$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/55A4C5C004AA11E8935B7021C4F9AE02.roa File: 55A4C5C004AA11E8935B7021C4F9AE02.roa (raw, json) Hash identifier: Hux71er2Qs5CKXElMxsIIOBK+KutGucMBDid93LFsCU= Subject key identifier: 44:D8:03:1D:9F:59:60:33:48:7A:26:B4:4E:B2:7A:D1:8C:F4:94:18 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 33DF Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/55A4C5C004AA11E8935B7021C4F9AE02.roa Signing time: Fri 14 Jun 2024 16:11:20 +0000 ROA not before: Fri 14 Jun 2024 16:11:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55508 IP address blocks: 103.1.232.0/22 maxlen: 22 103.1.233.0/24 maxlen: 24 157.119.180.0/22 maxlen: 22 157.119.180.0/24 maxlen: 24 157.119.181.0/24 maxlen: 24 157.119.182.0/24 maxlen: 24 157.119.183.0/24 maxlen: 24 202.9.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13279 (0x33df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: Jun 14 16:11:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666c6ba8-6ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:9f:e0:bb:df:c9:53:99:2b:2b:6c:8a:fe:86: 6f:ca:c3:a8:8d:dd:ab:1a:05:be:5d:d9:5d:66:59: 23:21:71:5e:6c:8a:b6:17:0b:24:16:0d:bd:d9:28: 0d:01:78:ac:ad:52:6b:ec:24:54:4e:a4:b9:09:01: c1:2f:42:52:c0:a5:a8:0a:19:55:4a:9f:81:c7:62: b5:4b:12:f8:ff:18:db:45:c4:02:24:42:ea:41:fa: eb:8e:ce:3a:2f:34:e4:7f:a7:65:0e:3b:cf:51:d1: 62:e1:17:cf:74:dc:c2:ba:16:0b:63:1b:b4:dc:37: 78:a5:79:f9:9b:15:01:35:ba:f8:eb:22:1c:ee:0d: 2b:bc:4e:cf:d9:b7:35:e0:4a:66:39:40:e1:e8:bd: ea:34:5e:93:10:8c:c6:b3:1a:ee:01:b1:26:71:ba: f1:2a:9a:52:ed:68:48:6b:1d:f8:76:09:7d:19:03: 7c:92:1a:92:55:3f:98:1b:25:a8:58:f0:ad:c2:67: 16:0b:9e:6b:33:76:66:22:dd:ad:1f:cd:e0:b3:61: 6a:28:9f:6c:23:aa:ea:e9:c2:9a:3c:82:07:0f:4a: 15:55:32:29:e9:65:1f:96:05:81:c0:46:3d:6b:5c: 5d:2f:d6:ac:f1:0a:9c:bd:3d:32:bb:c6:f4:8c:48: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D8:03:1D:9F:59:60:33:48:7A:26:B4:4E:B2:7A:D1:8C:F4:94:18 X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/55A4C5C004AA11E8935B7021C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.232.0/22 157.119.180.0/22 202.9.76.0/23 Signature Algorithm: sha256WithRSAEncryption 01:ca:89:00:9e:d4:e2:a2:7a:17:3f:86:0f:6f:0a:1f:63:fa: e2:ad:2e:e2:7f:45:0f:0e:35:2d:bb:d6:d2:bd:39:1f:29:36: a1:85:8e:d4:f8:ec:4f:20:46:79:2f:de:ab:18:e2:58:26:19: fd:0a:eb:b1:67:69:0c:72:1c:3a:0c:34:c3:2c:9b:4d:d1:10: 0a:fd:2b:15:7a:82:a1:d1:25:9f:82:47:98:93:2a:94:6e:6c: fb:bc:99:50:98:b5:c4:e9:2a:f7:50:01:bb:f2:3e:56:0f:8c: 81:97:ca:81:f2:3d:03:6b:48:13:87:5c:4e:7c:a7:d4:89:a4: 25:88:20:da:d3:17:e6:14:79:28:2c:12:e7:31:d6:d6:2f:c0: 70:6b:7c:61:cd:ea:81:b5:70:ae:f0:f0:9e:07:fa:f1:ed:3d: 13:ce:f1:b2:5c:d3:5a:15:00:bc:b9:bb:75:c7:95:52:46:44: 18:57:09:af:ff:1e:f1:ef:6b:ca:9d:a7:e2:37:cd:8f:0a:b7: a4:04:d7:57:8f:b5:c6:44:ef:72:11:3d:b4:82:d6:c8:78:89: 86:33:4c:44:93:f7:0d:f4:0d:a2:4c:3d:53:f1:8e:e2:02:31: 76:48:23:4d:65:b4:ac:ff:15:78:26:8b:ee:f4:5f:9d:1e:29: 2b:61:65:c8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICM98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjQwNjE0MTYxMTIwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjNmJhOC02YWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA65/gu9/JU5krK2yK/oZvysOojd2rGgW+XdldZlkjIXFebIq2FwskFg292SgN AXisrVJr7CRUTqS5CQHBL0JSwKWoChlVSp+Bx2K1SxL4/xjbRcQCJELqQfrrjs46 LzTkf6dlDjvPUdFi4RfPdNzCuhYLYxu03Dd4pXn5mxUBNbr46yIc7g0rvE7P2bc1 4EpmOUDh6L3qNF6TEIzGsxruAbEmcbrxKppS7WhIax34dgl9GQN8khqSVT+YGyWo WPCtwmcWC55rM3ZmIt2tH83gs2FqKJ9sI6rq6cKaPIIHD0oVVTIp6WUflgWBwEY9 a1xdL9as8QqcvT0yu8b0jEhTQQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFETYAx2f WWAzSHomtE6yetGM9JQYMB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJDRUMvQjhCMEM3ODgxREE0MTFFMjhDOTNFNzlBMDhCMDJDRDIvNTVBNEM1QzAw NEFBMTFFODkzNUI3MDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnAegDBAKdd7QDBAHKCUwwDQYJKoZIhvcNAQELBQADggEB AAHKiQCe1OKiehc/hg9vCh9j+uKtLuJ/RQ8ONS271tK9OR8pNqGFjtT47E8gRnkv 3qsY4lgmGf0K67FnaQxyHDoMNMMsm03REAr9KxV6gqHRJZ+CR5iTKpRubPu8mVCY tcTpKvdQAbvyPlYPjIGXyoHyPQNrSBOHXE58p9SJpCWIINrTF+YUeSgsEucx1tYv wHBrfGHN6oG1cK7w8J4H+vHtPRPO8bJc01oVALy5u3XHlVJGRBhXCa//HvHva8qd p+I3zY8Kt6QE11ePtcZE73IRPbSC1sh4iYYzTEST9w30DaJMPVPxjuICMXZII01l tKz/FXgmi+70X50eKSthZcg= -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:56 2024 by rpki-client on console-fra.rpki-client.org