$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa File: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (raw, json) Hash identifier: hkJ88WsZE+BHMinN6yfbuiaAGQUAch41Smzi5V2G9DM= Subject key identifier: 1B:0B:0A:05:E4:BF:BE:69:2A:D2:6A:F9:A8:20:71:85:0C:6D:91:1A Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 0556 Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa Signing time: Tue 22 Oct 2024 23:32:58 +0000 ROA not before: Tue 22 Oct 2024 23:32:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.41.12.0/22 maxlen: 22 2001:ded::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: Oct 22 23:32:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6718362a-fa5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b7:50:ca:e0:8d:c3:68:13:c0:e0:92:45:ad: f7:d4:25:0b:79:84:ce:13:21:10:a1:c6:21:3a:a7: b3:85:0e:a4:8a:a1:5f:3a:68:54:1b:10:da:c2:95: 2f:6b:92:99:55:10:83:70:70:e8:9d:20:55:36:61: 82:0a:b1:6f:b1:50:8d:16:f3:73:59:a3:39:ed:a9: 49:53:23:7b:26:d5:a3:c8:e5:ba:21:d3:3e:7e:83: e0:79:8d:12:84:07:ca:19:db:60:29:a7:27:c6:98: 6d:12:65:38:79:8a:f6:dc:f3:2b:aa:ad:1b:a4:bc: a1:9e:61:32:84:4c:29:9e:83:ac:b4:26:51:d3:66: 95:b0:63:8f:71:f8:1e:82:f8:ee:c7:c6:40:a3:ed: ea:d1:53:6b:44:3a:a8:39:95:97:60:cd:73:cc:b2: b2:ef:b7:4d:81:4e:69:63:44:ad:81:89:2c:09:fc: 96:ba:9e:3f:de:2b:a8:63:08:04:0b:33:59:10:7b: 02:2e:7d:fc:f3:83:88:90:73:41:53:1c:59:64:82: e4:ca:6d:25:88:bb:64:15:1e:6e:83:89:ba:a5:ef: ae:f9:05:21:27:35:3f:cf:15:fa:42:3f:7e:ab:d7: 8e:1d:06:f4:ea:74:ac:fc:2b:dc:8b:8e:0e:c5:0c: 57:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0B:0A:05:E4:BF:BE:69:2A:D2:6A:F9:A8:20:71:85:0C:6D:91:1A X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.12.0/22 IPv6: 2001:ded::/64 Signature Algorithm: sha256WithRSAEncryption 98:e0:a6:42:7f:9e:e0:1c:e9:5d:e4:09:5d:39:82:ac:13:5b: db:fe:a7:28:49:5b:3a:44:54:5e:1c:04:20:fe:5a:f8:dc:5c: 31:18:88:60:2d:6a:77:80:71:82:bb:ac:35:24:dc:cc:12:b3: e6:ae:21:c9:be:be:df:02:0b:f0:60:e0:d8:0c:35:98:2c:57: 01:fe:ab:29:09:ce:ce:30:4d:71:49:1f:41:a3:44:6f:9b:b4: f1:f3:d5:0a:97:6e:6a:d1:44:c0:89:ec:a2:ae:43:5d:e0:dc: b4:54:98:9e:dc:44:75:52:ea:4b:e3:d0:96:0c:77:c1:c0:64: c4:45:26:90:39:0d:70:ad:ad:5d:e3:ba:2d:ea:48:60:99:61: ad:ee:a4:1e:33:83:14:7a:66:7a:d3:f3:9b:80:2c:18:c6:98: 54:15:64:03:1f:77:37:7c:87:86:16:0e:a6:14:2c:a6:eb:ff: 1f:cd:29:24:c7:88:4b:50:8e:72:b9:5d:ba:60:03:ad:05:d7: 90:06:e6:6b:76:d1:d4:e7:35:ea:a6:2e:da:fa:6a:72:4b:cb: 27:e2:cd:93:ee:63:05:a3:ca:18:5f:3d:21:6f:9a:13:0e:b8: a9:ca:6a:d6:db:e5:da:ec:ad:45:19:2b:ec:63:6e:ae:c4:a6: 8e:63:6b:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjQxMDIyMjMzMjU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MzYyYS1mYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rdQyuCNw2gTwOCSRa331CULeYTOEyEQocYhOqezhQ6kiqFfOmhUGxDawpUv a5KZVRCDcHDonSBVNmGCCrFvsVCNFvNzWaM57alJUyN7JtWjyOW6IdM+foPgeY0S hAfKGdtgKacnxphtEmU4eYr23PMrqq0bpLyhnmEyhEwpnoOstCZR02aVsGOPcfge gvjux8ZAo+3q0VNrRDqoOZWXYM1zzLKy77dNgU5pY0StgYksCfyWup4/3iuoYwgE CzNZEHsCLn3884OIkHNBUxxZZILkym0liLtkFR5ug4m6pe+u+QUhJzU/zxX6Qj9+ q9eOHQb06nSs/Cvci44OxQxXlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsLCgXk v75pKtJq+aggcYUMbZEaMB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBM0MvRDgzNjQ2RkVDMUYyMTFFQjk4NTY0MTc0QzRGOUFFMDIvNDMyQkJBOTBD MUY2MTFFQkFEOEQ3NDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBAJnKQwwEQQCAAIwCwMJACABDe0AAAAAMA0GCSqGSIb3DQEB CwUAA4IBAQCY4KZCf57gHOld5AldOYKsE1vb/qcoSVs6RFReHAQg/lr43FwxGIhg LWp3gHGCu6w1JNzMErPmriHJvr7fAgvwYODYDDWYLFcB/qspCc7OME1xSR9Bo0Rv m7Tx89UKl25q0UTAieyirkNd4Ny0VJie3ER1UupL49CWDHfBwGTERSaQOQ1wra1d 47ot6khgmWGt7qQeM4MUemZ60/ObgCwYxphUFWQDH3c3fIeGFg6mFCym6/8fzSkk x4hLUI5yuV26YAOtBdeQBuZrdtHU5zXqpi7a+mpyS8sn4s2T7mMFo8oYXz0hb5oT DripymrW2+Xa7K1FGSvsY26uxKaOY2tW -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:48 2024 by rpki-client on console-ams.rpki-client.org