$ rpki-client -vvf rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FF46137EA51C11EC8394365BC4F9AE02.roa File: FF46137EA51C11EC8394365BC4F9AE02.roa (raw, json) Hash identifier: cOVcwLcju5hPwYRcSfzpE7ERuwxFBHY7e9C8ABr7pMo= Subject key identifier: 6B:62:93:E5:E9:80:D6:B4:78:94:C7:3C:98:40:5A:8E:89:A4:83:5D Certificate issuer: /CN=A9114DDF/serialNumber=E8671750344F18C2AF747FFAF255850EBC79D01F Certificate serial: 0242 Authority key identifier: E8:67:17:50:34:4F:18:C2:AF:74:7F:FA:F2:55:85:0E:BC:79:D0:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FF46137EA51C11EC8394365BC4F9AE02.roa Signing time: Tue 05 Sep 2023 02:33:26 +0000 ROA not before: Tue 05 Sep 2023 02:33:26 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134553 IP address blocks: 45.126.88.0/22 maxlen: 22 45.126.88.0/24 maxlen: 24 45.126.89.0/24 maxlen: 24 45.126.90.0/24 maxlen: 24 45.126.91.0/24 maxlen: 24 103.236.228.0/22 maxlen: 22 103.236.228.0/24 maxlen: 24 103.236.229.0/24 maxlen: 24 103.236.230.0/24 maxlen: 24 103.236.231.0/24 maxlen: 24 2001:df1:2a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.crl rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114DDF/serialNumber=E8671750344F18C2AF747FFAF255850EBC79D01F Validity Not Before: Sep 5 02:33:26 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f69376-85d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d6:24:a8:a2:88:18:bb:c3:0e:ab:a1:7a:ee: 91:e9:ec:51:ae:c1:c2:34:ab:29:cd:3a:37:3d:e6: 7c:dd:49:0e:f2:92:bd:c2:54:28:e0:08:13:0b:54: ff:3b:52:81:2a:60:0b:c9:d9:dc:77:41:f9:1b:d7: 5a:81:eb:2b:2f:54:ea:7a:e8:5e:93:a2:43:5f:6a: 1f:cd:d2:40:81:6d:31:fb:9e:24:ef:94:5d:fb:ab: f6:ef:fc:e1:22:aa:1b:6a:b7:ac:40:32:8e:1f:f7: 9c:2b:27:2c:be:f3:58:63:88:49:25:00:2a:6f:b1: c3:7c:1a:07:03:fe:dd:c1:98:0d:fb:83:58:fa:2f: a9:d5:e8:e0:52:70:63:d2:a4:ad:ae:fd:ef:58:f0: ac:62:73:06:6d:af:9a:88:fd:d4:42:76:84:90:de: 0e:e2:bc:8a:c2:2c:89:cb:1e:87:3e:f4:41:82:a1: 83:0a:1e:3b:d5:6a:3a:15:3d:61:a2:dc:f0:52:65: fd:cd:86:fd:8a:1a:29:d9:ce:f4:e3:2f:1f:3b:11: 8b:0d:fc:1f:05:3f:b5:3d:7f:4c:47:dc:26:8b:4d: 14:34:92:4a:c8:bf:f0:a3:43:99:27:eb:99:48:af: b7:de:d9:24:b1:46:72:68:ed:04:74:df:f6:c5:a8: 85:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:62:93:E5:E9:80:D6:B4:78:94:C7:3C:98:40:5A:8E:89:A4:83:5D X509v3 Authority Key Identifier: keyid:E8:67:17:50:34:4F:18:C2:AF:74:7F:FA:F2:55:85:0E:BC:79:D0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FF46137EA51C11EC8394365BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.88.0/22 103.236.228.0/22 IPv6: 2001:df1:2a00::/48 Signature Algorithm: sha256WithRSAEncryption 98:74:d7:34:04:96:a2:2a:52:43:76:f1:5d:ea:71:50:f8:b8: c2:db:cf:e4:9a:5c:2f:70:e7:4f:5d:0e:ff:55:75:9f:d3:54: 87:dd:fd:90:8d:07:c3:e4:28:69:70:2a:57:43:d6:fc:41:3d: 66:c5:65:2f:21:d9:af:43:98:5c:e1:d2:1e:57:d4:4c:ac:09: f0:0e:36:05:f2:e6:55:0a:e6:97:cf:b0:7d:c4:1e:05:82:1d: 04:2f:33:4b:83:1e:d9:af:bd:f8:60:b1:e0:d1:60:d9:6f:00: ed:7b:76:5b:e7:30:30:f9:34:cf:87:e9:b5:66:c9:85:b7:93: 50:54:74:d7:f7:5b:f6:b7:a5:0a:bd:0c:2a:76:5a:0b:10:59: 8f:9e:45:a9:d4:11:ad:60:9b:55:a9:e8:43:cb:c3:b6:fd:56: 42:b1:bd:1a:56:92:a9:c2:5b:bf:e2:b7:64:23:db:6b:fa:9e: 7f:62:cc:05:61:59:0c:c3:11:fe:3d:7a:e6:8c:4d:02:a2:7c: 92:c3:ef:5b:90:d4:b7:9d:7a:20:60:f6:05:55:c5:d8:e7:1d: c6:90:bf:02:e9:24:79:e5:96:86:4e:87:2f:46:8e:af:36:02: c9:93:a5:8f:0a:44:f1:44:68:73:64:c2:72:fe:53:24:83:3b: de:1f:19:81 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTREREYxMTAvBgNVBAUTKEU4NjcxNzUwMzQ0RjE4QzJBRjc0N0ZGQUYyNTU4NTBF QkM3OUQwMUYwHhcNMjMwOTA1MDIzMzI2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2OTM3Ni04NWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9YkqKKIGLvDDquheu6R6exRrsHCNKspzTo3PeZ83UkO8pK9wlQo4AgTC1T/ O1KBKmALydncd0H5G9dagesrL1Tqeuhek6JDX2ofzdJAgW0x+54k75Rd+6v27/zh IqobaresQDKOH/ecKycsvvNYY4hJJQAqb7HDfBoHA/7dwZgN+4NY+i+p1ejgUnBj 0qStrv3vWPCsYnMGba+aiP3UQnaEkN4O4ryKwiyJyx6HPvRBgqGDCh471Wo6FT1h otzwUmX9zYb9ihop2c704y8fOxGLDfwfBT+1PX9MR9wmi00UNJJKyL/wo0OZJ+uZ SK+33tkksUZyaO0EdN/2xaiFwwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGtik+Xp gNa0eJTHPJhAWo6JpINdMB8GA1UdIwQYMBaAFOhnF1A0TxjCr3R/+vJVhQ68edAf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNERERi81QjA2RkVGMkE1 MEExMUVDQjI3NzhENUNDNEY5QUUwMi82R2NYVURSUEdNS3ZkSF82OGxXRkRyeDUw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZHY1hVRFJQR01LdmRIXzY4bFdGRHJ4NTBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTREREYvNUIwNkZFRjJBNTBBMTFFQ0IyNzc4RDVDQzRGOUFFMDIvRkY0NjEzN0VB NTFDMTFFQzgzOTQzNjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAItflgDBAJn7OQwDwQCAAIwCQMHACABDfEqADANBgkqhkiG 9w0BAQsFAAOCAQEAmHTXNASWoipSQ3bxXepxUPi4wtvP5JpcL3DnT10O/1V1n9NU h939kI0Hw+QoaXAqV0PW/EE9ZsVlLyHZr0OYXOHSHlfUTKwJ8A42BfLmVQrml8+w fcQeBYIdBC8zS4Me2a+9+GCx4NFg2W8A7Xt2W+cwMPk0z4fptWbJhbeTUFR01/db 9relCr0MKnZaCxBZj55FqdQRrWCbVanoQ8vDtv1WQrG9GlaSqcJbv+K3ZCPba/qe f2LMBWFZDMMR/j165oxNAqJ8ksPvW5DUt516IGD2BVXF2OcdxpC/AukkeeWWhk6H L0aOrzYCyZOljwpE8URoc2TCcv5TJIM73h8ZgQ== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:10 2024 by rpki-client on console-ams.rpki-client.org