$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/C8436A008D7B11EDB7EB7F37C4F9AE02.roa File: C8436A008D7B11EDB7EB7F37C4F9AE02.roa (raw, json) Hash identifier: yUzUPNwrnnqA9y2QcEn+ohx6QfzL71Dl4zwJAGApA/o= Subject key identifier: 9F:6E:0B:2B:F7:7E:05:5A:84:E5:2F:13:04:51:9A:87:86:F9:3D:58 Certificate issuer: /CN=A91B2492/serialNumber=73B561DF3A58976F7FAD997A9BA8DE5F676DCFB2 Certificate serial: 0A92 Authority key identifier: 73:B5:61:DF:3A:58:97:6F:7F:AD:99:7A:9B:A8:DE:5F:67:6D:CF:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/C8436A008D7B11EDB7EB7F37C4F9AE02.roa Signing time: Fri 26 Jul 2024 20:09:50 +0000 ROA not before: Fri 26 Jul 2024 20:09:50 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 6507 IP address blocks: 43.229.64.0/22 maxlen: 24 103.240.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.crl rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2706 (0xa92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2492/serialNumber=73B561DF3A58976F7FAD997A9BA8DE5F676DCFB2 Validity Not Before: Jul 26 20:09:50 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a4028e-ff3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c1:c2:39:ba:f1:c4:aa:20:c7:09:69:b5:f3: f1:63:4d:50:5d:99:2f:a9:16:7c:02:f7:0d:60:46: c7:78:89:e9:7e:e0:fd:13:20:68:03:fa:b8:b5:48: 48:41:85:8d:e9:8e:e9:f7:92:db:8a:a2:f8:5b:cf: 4a:d4:a2:69:6e:6a:45:d0:22:33:d8:1a:4f:aa:a5: b6:df:cc:be:57:fc:0b:92:f8:f2:ff:48:2f:d2:b6: a9:14:ad:61:93:0c:2d:ed:68:89:53:e0:e9:ec:e4: b4:84:d6:1f:99:3f:d0:21:32:0c:c8:18:88:bc:0f: 7b:ab:bf:68:d8:24:73:69:f4:16:8b:79:f5:24:3b: c0:2d:b8:cf:3b:b1:e9:e6:d2:16:ba:4c:f8:ba:84: 55:ca:5e:2b:6c:98:2a:42:68:5c:65:d7:dc:34:ea: d5:05:3f:57:0d:7e:d6:16:b1:d6:7d:a9:c3:14:23: 22:6f:27:5c:6c:d3:79:cf:b9:5b:ab:3e:47:1e:e9: 00:d4:b9:ec:26:9b:5f:dc:c2:41:8d:e6:59:66:50: 64:9e:0c:f2:cc:f1:8c:02:89:76:51:2b:7a:0e:39: 58:2d:5a:b8:e6:a8:1f:50:e2:a2:f7:83:b7:6d:12: 23:1f:1b:b8:52:15:86:36:94:63:8d:aa:30:cf:f0: 76:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6E:0B:2B:F7:7E:05:5A:84:E5:2F:13:04:51:9A:87:86:F9:3D:58 X509v3 Authority Key Identifier: keyid:73:B5:61:DF:3A:58:97:6F:7F:AD:99:7A:9B:A8:DE:5F:67:6D:CF:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/C8436A008D7B11EDB7EB7F37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.64.0/22 103.240.224.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:f0:b6:a6:84:40:e0:4d:55:0e:04:ea:cb:bd:49:d1:9d:16: 5e:03:b4:2f:87:df:b4:09:6a:c5:0d:11:26:27:93:80:15:ae: 21:8d:0c:fc:aa:75:f9:44:be:e5:e7:d2:0c:66:05:c1:20:ad: fa:fb:9c:b7:77:a2:8c:8b:c7:03:85:31:0c:37:22:19:c9:b0: a5:9b:68:6b:1a:dd:3e:fb:20:f4:d2:41:7c:b5:64:d0:b9:db: 71:e3:bb:f0:3e:51:ae:32:9e:f3:78:c8:4e:0c:24:3b:b9:89: 32:2a:bd:84:e4:26:c7:cd:06:ba:6c:b2:98:45:ff:10:7f:b6: 2b:c9:32:e3:4b:df:f3:eb:0a:6f:f2:ae:c5:89:b4:0e:33:0c: 46:e7:fe:b5:a3:7a:e9:49:d2:fb:66:93:df:9e:87:d6:6d:f3: 89:ca:9e:e5:c8:60:b5:50:f9:90:88:00:81:58:e0:24:77:61: b3:e9:99:84:2d:b0:ee:44:26:0d:9c:b0:4c:27:b6:96:51:87: 68:d7:f5:1d:76:39:41:db:59:e5:0e:6d:17:01:7d:c5:83:24: a3:de:8f:6b:aa:38:02:ae:7c:fc:c5:0e:56:67:1b:70:9d:c6: 3b:0f:f3:4d:63:d3:b7:a5:00:b6:0d:64:84:16:48:73:88:84: 30:6e:80:1e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0OTIxMTAvBgNVBAUTKDczQjU2MURGM0E1ODk3NkY3RkFEOTk3QTlCQThERTVG Njc2RENGQjIwHhcNMjQwNzI2MjAwOTUwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE0MDI4ZS1mZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cHCObrxxKogxwlptfPxY01QXZkvqRZ8AvcNYEbHeInpfuD9EyBoA/q4tUhI QYWN6Y7p95LbiqL4W89K1KJpbmpF0CIz2BpPqqW238y+V/wLkvjy/0gv0rapFK1h kwwt7WiJU+Dp7OS0hNYfmT/QITIMyBiIvA97q79o2CRzafQWi3n1JDvALbjPO7Hp 5tIWukz4uoRVyl4rbJgqQmhcZdfcNOrVBT9XDX7WFrHWfanDFCMibydcbNN5z7lb qz5HHukA1LnsJptf3MJBjeZZZlBkngzyzPGMAol2USt6DjlYLVq45qgfUOKi94O3 bRIjHxu4UhWGNpRjjaowz/B2AwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ9uCyv3 fgVahOUvEwRRmoeG+T1YMB8GA1UdIwQYMBaAFHO1Yd86WJdvf62Zepuo3l9nbc+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ5Mi9EQUQ1MTBENDND QjUxMUVBQjgyQ0NDNkNDNEY5QUUwMi9jN1ZoM3pwWWwyOV9yWmw2bTZqZVgyZHR6 N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3VmgzenBZbDI5X3JabDZtNmplWDJkdHo3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI0OTIvREFENTEwRDQzQ0I1MTFFQUI4MkNDQzZDQzRGOUFFMDIvQzg0MzZBMDA4 RDdCMTFFREI3RUI3RjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5UADBAJn8OAwDQYJKoZIhvcNAQELBQADggEBAI/wtqaE QOBNVQ4E6su9SdGdFl4DtC+H37QJasUNESYnk4AVriGNDPyqdflEvuXn0gxmBcEg rfr7nLd3ooyLxwOFMQw3IhnJsKWbaGsa3T77IPTSQXy1ZNC523Hju/A+Ua4ynvN4 yE4MJDu5iTIqvYTkJsfNBrpssphF/xB/tivJMuNL3/PrCm/yrsWJtA4zDEbn/rWj eulJ0vtmk9+eh9Zt84nKnuXIYLVQ+ZCIAIFY4CR3YbPpmYQtsO5EJg2csEwntpZR h2jX9R12OUHbWeUObRcBfcWDJKPej2uqOAKufPzFDlZnG3CdxjsP801j07elALYN ZIQWSHOIhDBugB4= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:58 2024 by rpki-client on console-fra.rpki-client.org