$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa File: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (raw, json) Hash identifier: Ds+NhA319pny+P4IRt5z4T91HtH5A62GJ0ezQK1TtfA= Subject key identifier: 12:16:26:E5:0B:95:96:4D:ED:8C:38:26:79:57:3F:2F:8B:7D:65:AB Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0B46 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa Signing time: Fri 30 Aug 2024 19:57:54 +0000 ROA not before: Fri 30 Aug 2024 19:57:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38835 IP address blocks: 45.123.104.0/22 maxlen: 24 103.63.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Aug 30 19:57:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d22442-afc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:37:c1:e2:4e:74:3b:e5:34:0e:a6:7d:d6: 98:a4:9d:dd:3b:a3:fd:b4:90:96:ed:fb:9c:5f:8c: 06:48:c3:22:bf:57:a8:fe:d6:71:c8:4f:51:a3:8e: 61:6c:24:9e:93:0e:65:27:8e:6e:ae:5c:53:9f:e5: 80:db:c6:25:73:90:4e:d6:42:4d:d2:c0:73:a5:07: 4b:3c:08:43:3f:8a:1e:47:da:9e:d8:18:47:3d:e3: 8e:92:79:01:0d:ee:1c:64:80:af:ea:b7:d6:d9:44: 54:14:3a:78:4d:43:f9:c5:ba:d1:84:1e:e8:81:5e: 4c:e3:bb:83:6e:c3:34:7b:cb:7a:df:f9:3d:a6:39: ba:07:e9:f7:7c:85:ea:cd:8f:ea:45:36:01:25:64: 0a:b4:4d:3c:29:a9:51:a3:23:01:b3:a7:66:2a:e3: 03:5d:0d:bb:6f:c1:bc:e4:a3:67:0a:bb:cd:2f:86: e1:ff:69:51:0c:78:1d:41:89:23:da:64:95:1e:34: 4b:a0:6c:1a:04:3a:0b:76:20:46:13:54:37:33:ed: 9b:0f:9d:3a:50:83:28:49:73:c3:e3:e9:d6:a3:67: ea:39:17:36:c0:1d:e8:2d:d7:b5:bb:67:2f:f4:9a: e9:ec:c4:a8:bb:5a:eb:9c:50:8a:3a:6e:54:bf:70: b2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:16:26:E5:0B:95:96:4D:ED:8C:38:26:79:57:3F:2F:8B:7D:65:AB X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.104.0/22 103.63.228.0/22 Signature Algorithm: sha256WithRSAEncryption 45:ba:6d:7c:4c:da:4a:6c:62:22:f5:12:68:89:95:d9:c6:28: b7:2e:c7:d9:48:b5:58:c4:31:04:99:29:b7:4b:3e:e0:03:b7: 68:7a:bb:24:cd:03:ec:8f:8d:90:34:56:72:06:a7:f4:6c:37: 32:d4:d6:6a:ed:85:44:92:15:52:60:c0:0b:77:24:72:02:89: e6:e0:94:db:c9:ce:66:cc:8b:74:37:c1:17:14:40:04:03:a8: 03:1a:68:1a:e1:49:25:f9:d3:4b:9f:dd:f5:74:93:21:61:c0: d5:5c:6b:2c:5a:c7:e4:50:7b:df:0b:cb:29:ac:ce:37:8f:b4: ea:07:ea:9d:d2:40:78:59:d1:ae:a2:37:da:41:e3:14:a3:90: 83:85:36:88:90:63:58:0a:6e:51:7a:be:b4:5f:41:f2:81:c4: f7:98:24:86:4a:5a:4a:ed:74:95:1a:18:7e:62:9d:fe:13:43: 78:28:81:fc:3b:d2:b5:71:2b:69:a4:41:d6:08:f8:aa:70:f2: 9b:ed:76:9a:ec:4b:57:8d:ec:91:cb:48:da:6d:c3:96:82:25: 35:d8:a3:2d:88:dc:42:50:22:55:62:be:f1:04:32:13:c9:e5: f2:75:32:d7:51:68:5f:3f:65:8f:dd:1b:0f:ad:3c:8e:68:9f: d0:27:5e:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjQwODMwMTk1NzU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyMjQ0Mi1hZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcA3weJOdDvlNA6mfdaYpJ3dO6P9tJCW7fucX4wGSMMiv1eo/tZxyE9Ro45h bCSekw5lJ45urlxTn+WA28Ylc5BO1kJN0sBzpQdLPAhDP4oeR9qe2BhHPeOOknkB De4cZICv6rfW2URUFDp4TUP5xbrRhB7ogV5M47uDbsM0e8t63/k9pjm6B+n3fIXq zY/qRTYBJWQKtE08KalRoyMBs6dmKuMDXQ27b8G85KNnCrvNL4bh/2lRDHgdQYkj 2mSVHjRLoGwaBDoLdiBGE1Q3M+2bD506UIMoSXPD4+nWo2fqORc2wB3oLde1u2cv 9Jrp7MSou1rrnFCKOm5Uv3CyewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBIWJuUL lZZN7Yw4JnlXPy+LfWWrMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NUYvQkY5NjZFNEExQzg5MTFFQUE5Qjk1NzYxQzRGOUFFMDIvOEJCMUVCOUUx QzhBMTFFQUJBQTczQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIte2gDBAJnP+QwDQYJKoZIhvcNAQELBQADggEBAEW6bXxM 2kpsYiL1EmiJldnGKLcux9lItVjEMQSZKbdLPuADt2h6uyTNA+yPjZA0VnIGp/Rs NzLU1mrthUSSFVJgwAt3JHICiebglNvJzmbMi3Q3wRcUQAQDqAMaaBrhSSX500uf 3fV0kyFhwNVcayxax+RQe98LyymszjePtOoH6p3SQHhZ0a6iN9pB4xSjkIOFNoiQ Y1gKblF6vrRfQfKBxPeYJIZKWkrtdJUaGH5inf4TQ3gogfw70rVxK2mkQdYI+Kpw 8pvtdprsS1eN7JHLSNptw5aCJTXYoy2I3EJQIlVivvEEMhPJ5fJ1MtdRaF8/ZY/d Gw+tPI5on9AnXhE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org