$ rpki-client -vvf rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/CA9C08E07C7E11EFBDC93555C4F9AE02.roa File: CA9C08E07C7E11EFBDC93555C4F9AE02.roa (raw, json) Hash identifier: S5JwooKRcG2nooK4J+7E2v2ZBdB4PEPfcgWkojlGiLI= Subject key identifier: B0:D8:93:EA:8F:C5:CE:62:5B:A4:4F:B5:F0:75:AA:02:7F:BF:37:ED Certificate issuer: /CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33 Certificate serial: 0693 Authority key identifier: 77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/CA9C08E07C7E11EFBDC93555C4F9AE02.roa Signing time: Fri 27 Sep 2024 03:16:33 +0000 ROA not before: Fri 27 Sep 2024 03:16:33 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 62468 IP address blocks: 43.250.172.0/22 maxlen: 24 103.42.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33 Validity Not Before: Sep 27 03:16:33 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66f62391-26b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0b:ba:5b:4d:e1:91:de:b3:6c:d4:31:61:e3: 8c:46:91:bb:ab:4b:58:d9:f7:9a:7d:13:b5:51:2c: d6:6b:4b:db:08:34:0b:5d:06:fa:21:a7:8e:6c:1b: 1e:53:87:a0:cf:12:2a:05:84:11:87:c1:e7:0d:c8: e2:e8:82:45:d6:1e:59:da:88:e8:80:c1:b6:1a:49: c4:d4:0b:d8:6f:dc:19:56:31:0d:a6:37:24:b1:03: 0d:e2:2f:30:a2:d7:06:c8:bb:94:f9:3f:62:97:36: 2c:82:2c:5a:53:eb:3d:98:f3:3d:a0:01:bb:fd:61: e6:0d:a8:f6:7d:c6:8f:c2:43:09:b9:42:03:01:ad: 1e:86:73:70:1d:c8:35:d5:db:9d:d7:80:f6:f5:42: 71:d5:84:a5:04:cc:a1:3b:4f:d4:0a:af:f9:1a:f3: d0:21:3f:30:c3:f8:6d:0d:d0:f7:92:fa:5a:28:dd: df:cc:60:65:8f:96:46:eb:98:46:cb:45:e7:ec:f8: 7e:be:d8:30:11:77:fd:8a:c6:12:3b:0e:09:cf:92: 51:24:f0:e8:af:12:81:59:85:73:08:b3:5d:f8:54: cc:a8:7d:6f:1d:d4:3b:eb:3f:01:33:12:78:fa:db: 65:c0:f2:43:f3:34:b0:7f:8e:30:f4:68:69:90:f5: 18:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D8:93:EA:8F:C5:CE:62:5B:A4:4F:B5:F0:75:AA:02:7F:BF:37:ED X509v3 Authority Key Identifier: keyid:77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/CA9C08E07C7E11EFBDC93555C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.172.0/22 103.42.28.0/22 Signature Algorithm: sha256WithRSAEncryption 52:55:a9:99:13:07:4a:37:3e:16:93:f1:fb:16:e2:32:31:1d: 9b:a8:54:fd:b4:60:2d:05:17:85:c5:dd:54:ea:67:0c:16:f3: 68:34:7f:80:eb:59:03:cb:51:18:fd:e1:30:36:b9:af:01:c5: 9c:15:38:82:42:70:81:ec:e3:ce:ec:44:0b:dd:95:82:7b:94: ef:c7:98:df:81:1a:10:99:43:27:71:f1:7e:c6:11:b9:1c:62: 67:93:91:20:25:53:6a:46:8c:6a:db:ab:0e:a8:3e:5f:2a:3b: b6:29:08:cb:8b:12:a8:9a:cf:63:3e:ce:32:ab:5a:5f:e6:ed: 73:b3:86:72:bd:7b:1b:b6:13:98:da:f3:e4:50:c3:d1:35:fd: 53:0e:47:1b:ed:39:c8:2f:1f:a5:48:0d:59:58:5e:ce:92:a9: be:51:07:7e:00:2b:9e:8a:fb:93:32:b8:36:25:44:c8:e0:d5: 47:43:89:9a:4b:b2:7a:6b:ee:e6:5f:e5:cd:b6:72:4b:36:9a: 9a:9e:08:d1:40:64:e4:fc:3e:13:ef:73:dd:1a:52:74:6a:99: e4:b1:56:98:10:11:5b:62:d8:29:88:48:35:44:a9:3b:05:26: 94:a5:92:e6:06:7a:de:7b:74:8d:dc:19:c3:14:65:b6:ec:e1: 3c:1d:f7:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVDRTcxMTAvBgNVBAUTKDc3MzcwQkMwNzMwNUQxOURCREFDQ0U0QkY3MjA5RTFF QjZENDBFMzMwHhcNMjQwOTI3MDMxNjMzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MjM5MS0yNmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywu6W03hkd6zbNQxYeOMRpG7q0tY2feafRO1USzWa0vbCDQLXQb6IaeObBse U4egzxIqBYQRh8HnDcji6IJF1h5Z2ojogMG2GknE1AvYb9wZVjENpjcksQMN4i8w otcGyLuU+T9ilzYsgixaU+s9mPM9oAG7/WHmDaj2fcaPwkMJuUIDAa0ehnNwHcg1 1dud14D29UJx1YSlBMyhO0/UCq/5GvPQIT8ww/htDdD3kvpaKN3fzGBlj5ZG65hG y0Xn7Ph+vtgwEXf9isYSOw4Jz5JRJPDorxKBWYVzCLNd+FTMqH1vHdQ76z8BMxJ4 +ttlwPJD8zSwf44w9GhpkPUY0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLDYk+qP xc5iW6RPtfB1qgJ/vzftMB8GA1UdIwQYMBaAFHc3C8BzBdGdvazOS/cgnh621A4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUNFNy81RTA1REJBNDVG QUMxMUVCODQ5NDQ1MkZDNEY5QUUwMi9kemNMd0hNRjBaMjlyTTVMOXlDZUhyYlVE ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R6Y0x3SE1GMFoyOXJNNUw5eUNlSHJiVURqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVDRTcvNUUwNURCQTQ1RkFDMTFFQjg0OTQ0NTJGQzRGOUFFMDIvQ0E5QzA4RTA3 QzdFMTFFRkJEQzkzNTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+qwDBAJnKhwwDQYJKoZIhvcNAQELBQADggEBAFJVqZkT B0o3PhaT8fsW4jIxHZuoVP20YC0FF4XF3VTqZwwW82g0f4DrWQPLURj94TA2ua8B xZwVOIJCcIHs487sRAvdlYJ7lO/HmN+BGhCZQydx8X7GEbkcYmeTkSAlU2pGjGrb qw6oPl8qO7YpCMuLEqiaz2M+zjKrWl/m7XOzhnK9exu2E5ja8+RQw9E1/VMORxvt OcgvH6VIDVlYXs6Sqb5RB34AK56K+5MyuDYlRMjg1UdDiZpLsnpr7uZf5c22cks2 mpqeCNFAZOT8PhPvc90aUnRqmeSxVpgQEVti2CmISDVEqTsFJpSlkuYGet57dI3c GcMUZbbs4Twd97Y= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:47 2024 by rpki-client on console-fra.rpki-client.org