$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/40965650EA4311EEA09F786BC4F9AE02.roa File: 40965650EA4311EEA09F786BC4F9AE02.roa (raw, json) Hash identifier: UOhw1kq9d+cXhpmk5TWMuSERdIf0YRt+xgjoXpvoadw= Subject key identifier: 8B:2D:14:98:9C:35:3E:64:96:FB:6B:E4:F4:24:5C:B9:58:A1:8F:6B Certificate issuer: /CN=A91ACF30/serialNumber=D3267AF9FB969089C3C12AFEBFD0FDE9BD867581 Certificate serial: 0750 Authority key identifier: D3:26:7A:F9:FB:96:90:89:C3:C1:2A:FE:BF:D0:FD:E9:BD:86:75:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/40965650EA4311EEA09F786BC4F9AE02.roa Signing time: Thu 04 Jul 2024 21:59:51 +0000 ROA not before: Thu 04 Jul 2024 21:59:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38278 IP address blocks: 45.114.28.0/22 maxlen: 22 103.115.220.0/24 maxlen: 24 103.115.221.0/24 maxlen: 24 103.115.222.0/24 maxlen: 24 103.115.223.0/24 maxlen: 24 103.248.108.0/22 maxlen: 24 103.251.0.0/22 maxlen: 24 111.221.48.0/21 maxlen: 24 202.169.24.0/21 maxlen: 24 2402:eec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.crl rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 20:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACF30/serialNumber=D3267AF9FB969089C3C12AFEBFD0FDE9BD867581 Validity Not Before: Jul 4 21:59:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66871b57-d3f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e3:b6:32:f4:f6:45:df:90:5f:4c:50:b6:35: 6c:61:ee:af:bc:bd:8d:18:d8:60:11:61:37:38:fb: a7:f0:41:dc:18:ba:c3:6d:dd:a1:1c:fd:9d:30:5b: cb:58:e7:d9:84:df:77:a2:9a:82:fe:9d:ed:1b:52: cc:60:8f:41:91:32:64:55:ac:ca:39:15:47:d8:01: c8:3b:b9:93:18:4c:8e:5d:1a:d5:83:73:60:26:09: 2f:a9:f5:e3:16:05:a7:37:b3:fa:27:fb:66:cf:35: 35:17:b4:e7:ef:22:dd:b1:44:e5:fd:74:ff:90:f9: c4:d2:98:8a:f6:62:13:e8:1c:12:76:43:1a:51:36: 56:50:ee:3d:12:4b:65:26:67:dd:01:c3:9d:e6:05: 43:81:84:e1:ce:33:cf:a7:42:9c:2c:61:21:de:3e: ce:0c:c4:e0:66:70:9e:29:3e:29:ab:24:6a:41:ee: dd:fe:ad:e7:d0:cd:3c:ee:22:ee:51:44:2d:c1:87: 67:b6:1a:bf:bb:13:fb:43:93:85:21:a7:60:88:ee: 72:de:20:6e:19:1a:d8:75:f4:e2:33:b5:0d:ac:8a: 87:4c:ca:9f:83:e0:cd:ec:11:a1:cf:7b:bc:64:93: 33:64:6a:53:ac:c4:31:98:f3:86:70:6b:f7:d5:1f: 57:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2D:14:98:9C:35:3E:64:96:FB:6B:E4:F4:24:5C:B9:58:A1:8F:6B X509v3 Authority Key Identifier: keyid:D3:26:7A:F9:FB:96:90:89:C3:C1:2A:FE:BF:D0:FD:E9:BD:86:75:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/40965650EA4311EEA09F786BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.28.0/22 103.115.220.0/22 103.248.108.0/22 103.251.0.0/22 111.221.48.0/21 202.169.24.0/21 IPv6: 2402:eec0::/32 Signature Algorithm: sha256WithRSAEncryption 81:a8:cb:39:32:3c:fc:5c:6e:1d:a1:f9:51:1d:64:7f:a3:5f: 98:4d:70:a8:aa:61:6b:8e:ae:f5:b3:b8:cd:2b:5d:f0:27:ff: 83:81:64:53:fa:90:9a:a2:3b:ed:05:ca:83:1d:2f:52:91:f8: 8d:dd:6d:c2:0a:0e:fc:1d:43:7e:cf:11:07:23:b3:f9:6a:02: 73:43:b7:d7:c3:e1:0d:e6:ea:e8:a8:bb:94:6b:94:17:e8:ba: 43:da:e0:a9:04:b9:ff:de:f8:cf:64:72:4d:01:69:1f:6d:66: 1d:6b:df:90:50:ec:f2:e0:10:d3:65:5c:da:7a:5e:34:cf:3b: 87:0c:50:21:1e:dc:b7:5d:c9:35:4e:f4:5a:29:6b:dd:ba:62: d1:10:c7:7a:47:dc:8c:64:41:11:01:6f:3c:72:a6:4a:e6:f3: 3b:fa:cd:b3:05:64:9b:71:3a:59:e7:13:49:04:27:d3:43:20: 63:e9:4f:31:87:2c:c2:2f:49:f5:d0:26:45:1f:50:5d:94:98: b3:02:cb:86:70:20:49:f5:a7:01:17:21:1c:38:72:23:63:e9: a4:ba:a6:33:fb:46:64:6f:47:86:ec:5c:08:00:fc:c7:1d:f3: 20:26:f6:54:b9:bd:b5:46:02:ef:c6:ea:bd:5e:99:6b:87:39: 4d:09:0e:90 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGMzAxMTAvBgNVBAUTKEQzMjY3QUY5RkI5NjkwODlDM0MxMkFGRUJGRDBGREU5 QkQ4Njc1ODEwHhcNMjQwNzA0MjE1OTUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3MWI1Ny1kM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuO2MvT2Rd+QX0xQtjVsYe6vvL2NGNhgEWE3OPun8EHcGLrDbd2hHP2dMFvL WOfZhN93opqC/p3tG1LMYI9BkTJkVazKORVH2AHIO7mTGEyOXRrVg3NgJgkvqfXj FgWnN7P6J/tmzzU1F7Tn7yLdsUTl/XT/kPnE0piK9mIT6BwSdkMaUTZWUO49Ektl JmfdAcOd5gVDgYThzjPPp0KcLGEh3j7ODMTgZnCeKT4pqyRqQe7d/q3n0M087iLu UUQtwYdnthq/uxP7Q5OFIadgiO5y3iBuGRrYdfTiM7UNrIqHTMqfg+DN7BGhz3u8 ZJMzZGpTrMQxmPOGcGv31R9XbwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFIstFJic NT5klvtr5PQkXLlYoY9rMB8GA1UdIwQYMBaAFNMmevn7lpCJw8Eq/r/Q/em9hnWB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0YzMC8zQjkxMkYxMkYx ODIxMUVBQTUzNzk3MEFDNEY5QUUwMi8weVo2LWZ1V2tJbkR3U3ItdjlEOTZiMkdk WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5WjYtZnVXa0luRHdTci12OUQ5NmIyR2RZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNGMzAvM0I5MTJGMTJGMTgyMTFFQUE1Mzc5NzBBQzRGOUFFMDIvNDA5NjU2NTBF QTQzMTFFRUEwOUY3ODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAItchwDBAJnc9wDBAJn+GwDBAJn+wADBANv3TADBAPKqRgw DQQCAAIwBwMFACQC7sAwDQYJKoZIhvcNAQELBQADggEBAIGoyzkyPPxcbh2h+VEd ZH+jX5hNcKiqYWuOrvWzuM0rXfAn/4OBZFP6kJqiO+0FyoMdL1KR+I3dbcIKDvwd Q37PEQcjs/lqAnNDt9fD4Q3m6uiou5RrlBfoukPa4KkEuf/e+M9kck0BaR9tZh1r 35BQ7PLgENNlXNp6XjTPO4cMUCEe3LddyTVO9Fopa926YtEQx3pH3IxkQREBbzxy pkrm8zv6zbMFZJtxOlnnE0kEJ9NDIGPpTzGHLMIvSfXQJkUfUF2UmLMCy4ZwIEn1 pwEXIRw4ciNj6aS6pjP7RmRvR4bsXAgA/Mcd8yAm9lS5vbVGAu/G6r1emWuHOU0J DpA= -----END CERTIFICATE-----Generated at Tue Nov 26 21:52:59 2024 by rpki-client on console-ams.rpki-client.org