$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/B377200E5ADD11EF9A462440C4F9AE02.roa File: B377200E5ADD11EF9A462440C4F9AE02.roa (raw, json) Hash identifier: ncT/DU/CkvY+ZDZUWWd4l8WmdC4akyN5fyxJxxvzE1c= Subject key identifier: A4:4B:0D:0C:3A:20:8B:9F:2F:A9:C5:82:D9:41:77:CE:6F:8F:34:34 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 02 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/B377200E5ADD11EF9A462440C4F9AE02.roa Signing time: Thu 15 Aug 2024 08:09:32 +0000 ROA not before: Thu 15 Aug 2024 08:09:32 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 26658 IP address blocks: 103.197.192.0/22 maxlen: 22 220.158.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Aug 15 08:09:32 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bdb7bb-1b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:46:69:02:20:0b:53:d1:38:ee:07:70:79:35: c0:06:f2:54:4a:ac:53:9d:99:7e:f2:90:aa:b5:de: 68:0b:68:57:99:39:70:6a:37:a1:7e:0f:47:3b:0c: 48:55:35:43:c8:b3:6c:58:80:82:be:a6:c2:bb:a7: 10:b8:db:ad:50:95:29:4a:be:32:75:f9:52:1b:d6: cb:39:7c:e4:cc:ae:9c:dc:ff:0a:12:91:62:e0:ee: 76:3d:41:8d:c9:31:ce:f4:3f:06:11:14:51:b2:61: 4d:6f:10:d3:88:72:d2:9d:26:59:75:cc:c0:8d:d3: 33:dd:be:82:e1:75:7f:92:71:92:b5:3e:00:5a:70: aa:88:c1:a1:f0:8d:30:5c:ca:1d:6f:9a:54:e8:82: 73:0b:fd:16:8a:95:5b:ec:38:e1:23:c1:45:fb:cf: a0:aa:af:58:cc:bd:72:39:45:d4:f3:72:cc:3b:ef: 0e:dd:bf:5a:41:e8:9a:fb:aa:48:b7:3b:e4:c7:43: 98:15:cc:6a:aa:6a:38:f8:48:28:26:56:dd:00:7d: fc:df:61:9d:aa:b0:75:74:18:ed:ef:1e:76:43:59: 09:b9:84:c1:df:63:e1:15:5b:4b:a2:a2:de:f9:c4: 26:f3:ca:fa:68:aa:e6:24:27:81:82:63:dd:ee:5c: f7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:4B:0D:0C:3A:20:8B:9F:2F:A9:C5:82:D9:41:77:CE:6F:8F:34:34 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/B377200E5ADD11EF9A462440C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.192.0/22 220.158.244.0/22 Signature Algorithm: sha256WithRSAEncryption 92:5f:d0:9c:97:5f:57:f9:5c:0a:6c:13:ca:cd:2c:3d:e4:e6: f6:6d:33:b1:80:e3:0c:54:37:55:1b:fd:76:d0:f3:5b:e5:ac: e5:ab:6d:0d:d0:4b:73:28:e5:fd:ed:b3:71:51:4e:66:83:51: 1a:bb:4d:11:e7:80:61:69:0a:25:b1:ff:46:bf:09:23:49:83: 09:3a:25:bc:79:3b:20:4a:c6:26:b1:28:e6:1e:cb:92:dc:e1: 51:f8:83:d4:70:2d:4c:dd:22:f8:7d:91:27:40:7a:d4:b8:9b: fc:dd:8d:0f:5b:9a:c1:6a:c3:9f:4c:3f:3d:49:ba:19:aa:12: e4:8f:b5:39:0b:99:65:a7:7e:c0:b2:5e:b4:f4:cf:3a:93:b1: 90:88:c1:72:47:b7:53:2a:8b:ce:1b:7a:03:4a:01:f5:f3:55: 68:46:68:3d:05:fa:42:b3:d5:fe:0a:56:5f:a9:90:46:14:b8: 3f:03:75:4e:3e:3a:b3:92:8d:b0:80:ef:fb:ff:80:5b:28:94: e5:39:02:3b:42:01:3d:0e:fe:93:94:08:85:11:c1:70:27:94: 68:4b:c4:58:fb:61:52:57:6a:a1:53:cf:1f:91:4e:54:f2:94: 92:74:e9:77:63:0d:93:fd:6d:b4:b3:c0:c7:36:79:d0:93:49: f7:95:71:68 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkNFNzExMC8GA1UEBRMoOTAxQTlGOUU4QUU0MDYyRTUyMTlCNzY1MkQ4RTlGRUU3 RUM1QUUzMzAeFw0yNDA4MTUwODA5MzJaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmRiN2JiLTFiNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQRmkCIAtT0TjuB3B5NcAG8lRKrFOdmX7ykKq13mgLaFeZOXBqN6F+D0c7DEhV NUPIs2xYgIK+psK7pxC4261QlSlKvjJ1+VIb1ss5fOTMrpzc/woSkWLg7nY9QY3J Mc70PwYRFFGyYU1vENOIctKdJll1zMCN0zPdvoLhdX+ScZK1PgBacKqIwaHwjTBc yh1vmlTognML/RaKlVvsOOEjwUX7z6Cqr1jMvXI5RdTzcsw77w7dv1pB6Jr7qki3 O+THQ5gVzGqqajj4SCgmVt0AffzfYZ2qsHV0GO3vHnZDWQm5hMHfY+EVW0uiot75 xCbzyvpoquYkJ4GCY93uXPffAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUpEsNDDog i58vqcWC2UF3zm+PNDQwHwYDVR0jBBgwFoAUkBqfnorkBi5SGbdlLY6f7n7FrjMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyQ0U3LzcyRjc1Qjk4NUFE RDExRUY4MTJDOTIzRkM0RjlBRTAyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJq TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0JxZm5vcmtCaTVTR2JkbExZNmY3bjdGcmpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9CMzc3MjAwRTVB REQxMUVGOUE0NjI0NDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfFwAMEAtye9DANBgkqhkiG9w0BAQsFAAOCAQEAkl/QnJdf V/lcCmwTys0sPeTm9m0zsYDjDFQ3VRv9dtDzW+Ws5attDdBLcyjl/e2zcVFOZoNR GrtNEeeAYWkKJbH/Rr8JI0mDCTolvHk7IErGJrEo5h7LktzhUfiD1HAtTN0i+H2R J0B61Lib/N2ND1uawWrDn0w/PUm6GaoS5I+1OQuZZad+wLJetPTPOpOxkIjBcke3 UyqLzht6A0oB9fNVaEZoPQX6QrPV/gpWX6mQRhS4PwN1Tj46s5KNsIDv+/+AWyiU 5TkCO0IBPQ7+k5QIhRHBcCeUaEvEWPthUldqoVPPH5FOVPKUknTpd2MNk/1ttLPA xzZ50JNJ95VxaA== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:58 2024 by rpki-client on console-ams.rpki-client.org