$ rpki-client -vvf rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/4DAE4D285BA111EFB0EA6762C4F9AE02.roa File: 4DAE4D285BA111EFB0EA6762C4F9AE02.roa (raw, json) Hash identifier: QXl/+0aNFkGZ5gCgd4EOstfrcyTbYv8foukH4CbuUJ4= Subject key identifier: 30:33:50:3C:A3:8D:73:F9:04:B7:F6:3E:60:4A:C2:35:0D:5D:FE:90 Certificate issuer: /CN=A91B61A7/serialNumber=BAEF78F78DC7CBF9B731270AAB1069F5E3433CBB Certificate serial: 02 Authority key identifier: BA:EF:78:F7:8D:C7:CB:F9:B7:31:27:0A:AB:10:69:F5:E3:43:3C:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uu94943Hy_m3MScKqxBp9eNDPLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/4DAE4D285BA111EFB0EA6762C4F9AE02.roa Signing time: Fri 16 Aug 2024 07:29:43 +0000 ROA not before: Fri 16 Aug 2024 07:29:43 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 26658 IP address blocks: 103.75.240.0/22 maxlen: 22 116.206.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/uu94943Hy_m3MScKqxBp9eNDPLs.crl rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/uu94943Hy_m3MScKqxBp9eNDPLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uu94943Hy_m3MScKqxBp9eNDPLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B61A7/serialNumber=BAEF78F78DC7CBF9B731270AAB1069F5E3433CBB Validity Not Before: Aug 16 07:29:43 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66beffe6-966d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d0:fd:82:bb:f4:43:9a:55:24:ee:84:4c:4f: fe:ac:ba:53:65:f8:8c:49:f6:ea:26:fb:75:20:ab: 3b:a0:dd:27:dc:29:ae:e5:be:71:91:67:a6:fc:85: ff:f7:4f:1c:47:02:ab:04:cb:ea:a3:17:d6:87:7a: 37:f1:39:84:0e:27:4e:5d:89:22:3d:45:e4:d8:31: f3:9f:f5:66:2f:64:e7:3a:58:70:9e:d1:b6:6b:03: bf:72:a7:d5:da:45:ec:b4:26:5f:cd:ba:48:c6:50: 8f:c3:7c:fe:f4:34:d0:89:1e:30:40:70:c4:8a:c2: 44:2f:3b:18:ba:c4:e0:b8:5f:08:1c:63:50:ce:06: 8f:6c:ac:93:bb:a6:ef:24:d8:e9:58:43:0f:aa:c2: 03:b0:7f:1a:5c:82:0d:ef:fe:11:e0:1d:8c:bc:ea: ba:dd:f4:19:9d:93:a5:58:ec:ce:18:57:a9:0b:0a: 1e:59:b9:eb:87:cc:f4:f9:2d:69:f5:0c:9d:e6:ea: 4e:66:df:1f:19:50:ec:ac:df:b9:8d:6d:43:36:3a: 89:6a:5b:3e:7d:10:59:3a:74:6f:f3:ea:4e:a9:4f: 9f:23:88:0b:a1:56:2d:22:41:23:6d:65:ae:af:b7: e3:87:74:b0:c4:f3:20:c2:d7:6b:3f:67:36:56:fa: b1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:33:50:3C:A3:8D:73:F9:04:B7:F6:3E:60:4A:C2:35:0D:5D:FE:90 X509v3 Authority Key Identifier: keyid:BA:EF:78:F7:8D:C7:CB:F9:B7:31:27:0A:AB:10:69:F5:E3:43:3C:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/uu94943Hy_m3MScKqxBp9eNDPLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uu94943Hy_m3MScKqxBp9eNDPLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B61A7/0F4992045BA111EF9A79E961C4F9AE02/4DAE4D285BA111EFB0EA6762C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.75.240.0/22 116.206.52.0/22 Signature Algorithm: sha256WithRSAEncryption aa:c8:45:20:a4:e4:7b:6e:8e:52:f9:2d:92:fb:23:73:8d:ba: 88:d2:e1:65:3a:c0:37:67:0a:f9:3f:8b:b2:76:0e:de:19:0e: 57:77:13:4f:4f:00:7e:d2:d4:8e:59:89:08:28:9f:8c:6e:27: f9:ee:c2:c0:95:8a:b3:4a:ed:30:9e:53:08:cb:7d:c9:87:c8: 9c:60:3d:15:79:bb:6a:20:7c:12:b2:fd:07:2a:55:51:85:5d: 10:9c:66:d4:4f:44:0a:66:35:0f:49:e4:cc:34:b6:86:e4:08: c2:98:a5:90:43:e2:53:c2:87:b3:8a:b8:f3:d4:b2:6f:f2:88: 27:97:a0:cc:36:fc:ef:71:f7:24:25:7a:8d:8f:a2:a3:fc:95: c5:7b:41:04:dd:f2:2b:43:3e:08:5e:07:57:a1:53:89:e6:18: 0a:48:36:45:1e:3b:75:af:59:b8:aa:b0:94:7b:59:ec:02:83: 10:5b:e3:2a:eb:01:f6:c9:7f:b0:c5:66:40:5d:e6:4d:4e:10: 38:16:0f:e9:8b:ab:f0:0f:0e:12:a5:c6:3e:cc:33:96:b3:a2: 73:cf:a3:a8:91:75:0a:69:ef:2b:3b:46:95:92:49:1c:7e:7c: 79:d1:bc:d0:7e:52:4a:21:dd:49:9a:12:e3:c4:60:90:e2:e4: e9:3c:33:ac -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjFBNzExMC8GA1UEBRMoQkFFRjc4Rjc4REM3Q0JGOUI3MzEyNzBBQUIxMDY5RjVF MzQzM0NCQjAeFw0yNDA4MTYwNzI5NDNaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmVmZmU2LTk2NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj0P2Cu/RDmlUk7oRMT/6sulNl+IxJ9uom+3Ugqzug3SfcKa7lvnGRZ6b8hf/3 TxxHAqsEy+qjF9aHejfxOYQOJ05diSI9ReTYMfOf9WYvZOc6WHCe0bZrA79yp9Xa Rey0Jl/NukjGUI/DfP70NNCJHjBAcMSKwkQvOxi6xOC4XwgcY1DOBo9srJO7pu8k 2OlYQw+qwgOwfxpcgg3v/hHgHYy86rrd9Bmdk6VY7M4YV6kLCh5ZueuHzPT5LWn1 DJ3m6k5m3x8ZUOys37mNbUM2OolqWz59EFk6dG/z6k6pT58jiAuhVi0iQSNtZa6v t+OHdLDE8yDC12s/ZzZW+rG/AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUMDNQPKON c/kEt/Y+YErCNQ1d/pAwHwYDVR0jBBgwFoAUuu94943Hy/m3MScKqxBp9eNDPLsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MUE3LzBGNDk5MjA0NUJB MTExRUY5QTc5RTk2MUM0RjlBRTAyL3V1OTQ5NDNIeV9tM01TY0txeEJwOWVORFBM cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdXU5NDk0M0h5X20zTVNjS3F4QnA5ZU5EUExzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjFBNy8wRjQ5OTIwNDVCQTExMUVGOUE3OUU5NjFDNEY5QUUwMi80REFFNEQyODVC QTExMUVGQjBFQTY3NjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmdL8AMEAnTONDANBgkqhkiG9w0BAQsFAAOCAQEAqshFIKTk e26OUvktkvsjc426iNLhZTrAN2cK+T+LsnYO3hkOV3cTT08AftLUjlmJCCifjG4n +e7CwJWKs0rtMJ5TCMt9yYfInGA9FXm7aiB8ErL9BypVUYVdEJxm1E9ECmY1D0nk zDS2huQIwpilkEPiU8KHs4q489Syb/KIJ5egzDb873H3JCV6jY+io/yVxXtBBN3y K0M+CF4HV6FTieYYCkg2RR47da9ZuKqwlHtZ7AKDEFvjKusB9sl/sMVmQF3mTU4Q OBYP6Yur8A8OEqXGPswzlrOic8+jqJF1CmnvKztGlZJJHH58edG80H5SSiHdSZoS 48RgkOLk6TwzrA== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:52 2024 by rpki-client on console-ams.rpki-client.org