$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/F04A74EC90C511EDA07C3025C4F9AE02.roa File: F04A74EC90C511EDA07C3025C4F9AE02.roa (raw, json) Hash identifier: hWCgt4KmPIBt7/S3B9mMUj5grxgOnMh8nytxnRCNTBY= Subject key identifier: E6:35:89:AA:DB:AB:D0:AD:CE:AA:FF:3B:15:1C:6F:DC:AB:04:73:F2 Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 012C Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/F04A74EC90C511EDA07C3025C4F9AE02.roa Signing time: Sun 21 Jul 2024 04:16:12 +0000 ROA not before: Sun 21 Jul 2024 04:16:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38277 IP address blocks: 43.252.164.0/22 maxlen: 22 43.252.164.0/24 maxlen: 24 43.252.165.0/24 maxlen: 24 43.252.166.0/24 maxlen: 24 43.252.167.0/24 maxlen: 24 103.28.44.0/22 maxlen: 22 103.28.44.0/24 maxlen: 24 103.28.45.0/24 maxlen: 24 103.28.46.0/24 maxlen: 24 103.28.47.0/24 maxlen: 24 203.124.8.0/24 maxlen: 24 203.124.9.0/24 maxlen: 24 203.124.10.0/24 maxlen: 24 203.124.11.0/24 maxlen: 24 203.124.12.0/24 maxlen: 24 203.124.13.0/24 maxlen: 24 203.124.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Jul 21 04:16:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669c8b8c-14cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a1:28:30:83:61:86:0d:dd:d9:f1:d3:69:c9: d4:0b:49:cc:91:4d:3c:0c:6f:70:02:b4:d9:99:45: 82:01:5e:35:9f:11:cc:e4:0d:ab:54:e3:e4:61:03: 8d:ca:4d:cd:b5:3b:fd:51:17:57:38:d8:f3:3a:9b: 83:b7:33:9d:ed:b9:f9:23:65:cb:9b:57:d1:ad:11: ea:bc:25:e0:5b:c5:2f:d7:71:74:aa:5e:3a:7d:8b: ea:6d:0d:4e:35:bb:26:3f:67:73:9e:d9:bb:dd:9e: fd:c9:f7:35:03:5e:95:0d:7d:6b:ce:86:59:02:1e: 2a:49:c2:41:0e:d5:b3:84:26:fc:53:c5:92:22:b7: c1:56:ff:3d:bf:1b:14:29:b7:b9:54:bf:91:fb:b4: 38:a1:4b:b4:7a:b0:d3:d1:4a:a5:76:9c:48:58:75: 25:ec:93:0b:97:93:0f:d5:2d:78:67:dc:60:66:02: af:fe:56:81:b0:82:52:d9:5a:0e:da:5b:05:1b:2f: 43:ba:ba:a0:41:a5:47:07:89:be:14:e4:3f:a1:7f: 18:d2:b3:2c:ad:53:aa:c7:22:17:35:3f:f7:3c:e6: cb:13:5d:ac:c6:d5:d3:3e:df:f0:6b:30:1a:32:fb: e2:54:4c:a8:16:59:ea:3d:4f:4a:1b:51:a8:65:69: bb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:35:89:AA:DB:AB:D0:AD:CE:AA:FF:3B:15:1C:6F:DC:AB:04:73:F2 X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/F04A74EC90C511EDA07C3025C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.164.0/22 103.28.44.0/22 203.124.8.0-203.124.13.255 203.124.15.0/24 Signature Algorithm: sha256WithRSAEncryption 65:f9:bc:bc:d4:6c:ae:f8:0a:6d:29:85:48:e3:82:bb:6a:6e: 9c:b4:b7:2e:5b:21:9e:5d:dc:98:45:23:bf:fd:97:27:0d:4f: 94:49:24:3e:e8:dd:93:4d:36:a9:d8:40:56:d8:84:a9:56:9b: 39:fd:18:f3:7f:7b:bb:fd:0d:80:b1:01:87:18:92:06:90:a6: 74:9f:9b:bf:67:43:2a:31:c9:eb:51:f2:31:77:15:54:81:32: f0:1e:a2:c8:9a:f3:b9:6b:bd:f8:37:cf:83:f2:43:d5:59:84: 03:d4:b4:d6:0b:fa:16:91:4e:9e:a2:4b:4e:c9:a7:e9:07:71: 34:ad:0c:54:46:a2:65:c3:65:3c:bd:c9:6b:63:e2:d7:21:ca: 32:3b:cc:16:4e:6a:fd:7f:24:b7:ee:ac:a0:8b:28:b2:03:b4: e0:9f:d8:98:7d:8f:41:61:48:22:30:a3:7f:64:eb:21:c9:fd: 73:6d:a9:82:a4:4e:8a:b3:eb:8a:f9:0d:f0:ca:1f:e6:02:18: db:23:9f:bf:cc:9c:79:81:6b:ec:f7:ec:b7:ff:a4:2f:1c:3b: 5b:1d:c6:3d:90:49:47:81:57:e7:30:6d:06:f3:ca:77:f4:13: b8:95:b6:16:71:e4:c3:a9:43:24:e2:09:fc:f5:db:98:f8:b9: b6:27:67:0d -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2OTYxMTAvBgNVBAUTKDI3Qjg3MjJDODU5Q0E0RjZGMDNFQzFFMDYxRkRENEMz QjlCNDk3RTUwHhcNMjQwNzIxMDQxNjEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjljOGI4Yy0xNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaEoMINhhg3d2fHTacnUC0nMkU08DG9wArTZmUWCAV41nxHM5A2rVOPkYQON yk3NtTv9URdXONjzOpuDtzOd7bn5I2XLm1fRrRHqvCXgW8Uv13F0ql46fYvqbQ1O NbsmP2dzntm73Z79yfc1A16VDX1rzoZZAh4qScJBDtWzhCb8U8WSIrfBVv89vxsU Kbe5VL+R+7Q4oUu0erDT0UqldpxIWHUl7JMLl5MP1S14Z9xgZgKv/laBsIJS2VoO 2lsFGy9DurqgQaVHB4m+FOQ/oX8Y0rMsrVOqxyIXNT/3PObLE12sxtXTPt/wazAa MvviVEyoFlnqPU9KG1GoZWm7mwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFOY1iarb q9Ctzqr/OxUcb9yrBHPyMB8GA1UdIwQYMBaAFCe4ciyFnKT28D7B4GH91MO5tJfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY5Ni9ENkExMUM0QTkw QkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQYndQc0hnWWYzVXc3bTBs LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2OTYvRDZBMTFDNEE5MEJGMTFFRDhDQzFFNzgzQzRGOUFFMDIvRjA0QTc0RUM5 MEM1MTFFREEwN0MzMDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAIr/KQDBAJnHCwwDAMEA8t8CAMEAct8DAMEAMt8DzANBgkq hkiG9w0BAQsFAAOCAQEAZfm8vNRsrvgKbSmFSOOCu2punLS3Llshnl3cmEUjv/2X Jw1PlEkkPujdk002qdhAVtiEqVabOf0Y8397u/0NgLEBhxiSBpCmdJ+bv2dDKjHJ 61HyMXcVVIEy8B6iyJrzuWu9+DfPg/JD1VmEA9S01gv6FpFOnqJLTsmn6QdxNK0M VEaiZcNlPL3Ja2Pi1yHKMjvMFk5q/X8kt+6soIsosgO04J/YmH2PQWFIIjCjf2Tr Icn9c22pgqROirPrivkN8Mof5gIY2yOfv8yceYFr7Pfst/+kLxw7Wx3GPZBJR4FX 5zBtBvPKd/QTuJW2FnHkw6lDJOIJ/PXbmPi5tidnDQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:54 2024 by rpki-client on console-ams.rpki-client.org