$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa File: 2F220BBA95AA11ED84962E13C4F9AE02.roa (raw, json) Hash identifier: szuCGA/YKFnqAyQx0YvfNE1CLpywYPi051pqX/mLZ+o= Subject key identifier: CE:88:04:4A:D1:A0:F7:3A:97:05:2F:CB:AE:94:FA:4B:D5:90:DB:91 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 075F Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa Signing time: Wed 12 Jun 2024 23:00:55 +0000 ROA not before: Wed 12 Jun 2024 23:00:55 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 61414 IP address blocks: 103.213.244.0/22 maxlen: 24 144.48.4.0/22 maxlen: 24 2401:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1887 (0x75f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Jun 12 23:00:55 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666a28a7-4336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cf:52:fb:c5:86:ce:38:51:c2:dc:b2:68:87: 74:5d:d5:34:2b:52:3e:31:dc:a2:89:91:44:23:30: 98:5e:ff:c5:7f:99:ca:9d:8b:65:a4:dc:4c:45:8a: 7e:37:15:dd:1a:b1:46:4a:dd:22:16:52:29:72:7d: df:1e:a6:1c:99:50:1d:7b:7f:42:56:fb:a9:27:3f: 3e:8c:12:5c:a8:71:08:34:d3:e6:ba:0c:cd:d8:9f: 7f:0d:04:33:65:2a:55:50:ef:ef:83:8f:58:f6:cb: 8a:e4:65:75:ad:70:f4:38:7d:ea:0a:67:9f:9d:d7: 4e:97:9a:4a:e5:43:0d:19:ae:dc:b7:70:17:77:8b: 7e:00:3f:88:24:0f:07:38:1d:a7:7b:df:16:25:ea: 63:db:0d:3c:1a:13:42:30:ee:c5:8e:cd:79:c5:4f: dc:21:fa:af:24:82:18:12:4f:ee:14:cf:37:bf:2f: 0b:04:85:5b:9b:68:ce:ba:de:83:0a:98:c8:37:15: b8:7c:ae:f6:9c:a3:9d:c2:63:9a:8b:48:3e:2d:ec: d3:3f:b4:0c:c7:98:50:72:25:16:9d:9b:47:cd:97: 16:7f:d8:af:52:6b:bc:be:3c:af:93:38:aa:cd:11: 06:8e:f2:34:3b:df:7f:c1:47:4b:e4:84:5d:b7:7b: eb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:88:04:4A:D1:A0:F7:3A:97:05:2F:CB:AE:94:FA:4B:D5:90:DB:91 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 IPv6: 2401:1640::/32 Signature Algorithm: sha256WithRSAEncryption 94:91:65:bf:d9:b8:8b:bb:66:c4:18:d3:04:81:0e:57:01:20: b9:44:e2:bd:e1:db:dd:d8:70:11:fd:35:bb:8a:80:18:cd:73: 6e:b4:24:73:17:f3:ea:ac:d0:c2:04:97:23:06:ef:6f:a7:aa: 4c:0b:0e:75:fb:d0:01:06:b6:14:40:19:e4:00:7d:ac:b6:bc: 57:2a:c0:bc:7d:b3:d7:db:b4:84:8a:08:2a:d0:89:a1:50:01: bc:e6:91:80:c9:26:06:c4:05:c0:bb:83:43:cc:09:c6:cb:94: 60:dc:64:45:45:cc:e2:3d:e4:18:30:de:aa:17:d1:42:28:97: 15:0c:a2:c0:41:d4:c5:39:cb:9c:e8:a2:eb:a8:be:c0:ab:d6: 5f:9f:09:df:08:ca:79:60:f2:3a:e0:dd:71:b0:34:75:d4:e3: ec:6d:cc:af:23:e4:f8:0b:2b:14:2c:4e:93:4c:9f:78:72:b0: 06:12:20:32:4e:c2:c4:1c:fa:ca:de:a0:2f:86:39:74:c4:a7: 4d:45:9b:80:89:9c:12:91:d6:cb:94:32:a3:89:70:ed:eb:26: 68:57:13:e7:9f:91:9b:31:ad:55:d7:a7:75:07:f0:af:36:01: 15:1d:32:58:e0:eb:4b:2f:82:fe:64:b2:ae:ff:17:45:ce:60: 34:5e:2c:bf -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNjEyMjMwMDU1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMjhhNy00MzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7M9S+8WGzjhRwtyyaId0XdU0K1I+MdyiiZFEIzCYXv/Ff5nKnYtlpNxMRYp+ NxXdGrFGSt0iFlIpcn3fHqYcmVAde39CVvupJz8+jBJcqHEINNPmugzN2J9/DQQz ZSpVUO/vg49Y9suK5GV1rXD0OH3qCmefnddOl5pK5UMNGa7ct3AXd4t+AD+IJA8H OB2ne98WJepj2w08GhNCMO7Fjs15xU/cIfqvJIIYEk/uFM83vy8LBIVbm2jOut6D CpjINxW4fK72nKOdwmOai0g+LezTP7QMx5hQciUWnZtHzZcWf9ivUmu8vjyvkziq zREGjvI0O99/wUdL5IRdt3vr/wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM6IBErR oPc6lwUvy66U+kvVkNuRMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvMkYyMjBCQkE5 NUFBMTFFRDg0OTYyRTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1fQDBAKQMAQwDQQCAAIwBwMFACQBFkAwDQYJKoZIhvcN AQELBQADggEBAJSRZb/ZuIu7ZsQY0wSBDlcBILlE4r3h293YcBH9NbuKgBjNc260 JHMX8+qs0MIElyMG72+nqkwLDnX70AEGthRAGeQAfay2vFcqwLx9s9fbtISKCCrQ iaFQAbzmkYDJJgbEBcC7g0PMCcbLlGDcZEVFzOI95Bgw3qoX0UIolxUMosBB1MU5 y5zoouuovsCr1l+fCd8Iynlg8jrg3XGwNHXU4+xtzK8j5PgLKxQsTpNMn3hysAYS IDJOwsQc+sreoC+GOXTEp01Fm4CJnBKR1suUMqOJcO3rJmhXE+efkZsxrVXXp3UH 8K82ARUdMljg60svgv5ksq7/F0XOYDReLL8= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:09 2024 by rpki-client on console-ams.rpki-client.org