$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa File: C3FEC56C855711EB871D267FC4F9AE02.roa (raw, json) Hash identifier: y8hsODPDu9mxz9gFgQEr+IEal2qwbZYp1jlJlCiW6og= Subject key identifier: D1:2F:0E:6C:48:78:4B:E0:C5:23:89:51:1B:83:36:51:1A:8C:7E:19 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 05CE Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa Signing time: Sat 10 Aug 2024 23:30:42 +0000 ROA not before: Sat 10 Aug 2024 23:30:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58505 IP address blocks: 43.245.176.0/24 maxlen: 24 43.245.177.0/24 maxlen: 24 43.245.178.0/23 maxlen: 23 103.4.172.0/24 maxlen: 24 103.4.173.0/24 maxlen: 24 103.13.84.0/24 maxlen: 24 103.13.85.0/24 maxlen: 24 2001:df0:26b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Aug 10 23:30:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b7f822-21bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:be:f8:2c:f8:47:e9:ed:c1:ea:f6:65:cc:83: 61:d2:11:bf:85:a4:88:2f:8e:4d:ea:93:67:74:c1: 33:cb:0a:a7:4f:3f:de:ca:f8:90:46:69:ee:a5:3b: 54:a2:ee:a5:1c:e6:d1:0b:a7:05:6c:8b:1a:4c:50: ef:87:fc:74:9a:27:6a:14:01:cf:14:03:b6:3e:ce: 84:28:a4:d7:04:81:16:d9:16:21:f2:08:ed:0f:c0: 42:55:db:28:a8:29:fc:31:a5:96:a6:c7:c0:83:5b: 3f:aa:74:b4:e2:a9:38:b5:27:64:b1:c1:47:14:42: 3e:e6:d0:fa:fd:26:4e:1f:0d:9b:48:77:9d:2e:12: f4:28:2d:38:80:45:93:d0:66:de:c5:47:d1:96:a3: 6e:1d:7b:b6:de:fc:b9:14:b0:9f:5c:b2:bb:95:24: d6:63:81:57:a6:7a:52:46:46:ac:5e:50:b6:13:c6: b4:1f:3e:2a:56:97:c0:a5:17:5f:12:56:3f:70:8e: b2:b4:34:bd:54:d9:a5:a7:1c:76:f1:21:9b:c2:2f: 1b:cc:d0:19:7d:e4:47:e1:2c:2f:c6:e5:47:45:09: 7e:a0:bd:cf:ef:49:a9:ce:4c:ec:75:bc:bf:ce:80: 52:e3:17:82:44:ff:83:60:df:ed:a9:df:15:4f:89: b2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2F:0E:6C:48:78:4B:E0:C5:23:89:51:1B:83:36:51:1A:8C:7E:19 X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.176.0/22 103.4.172.0/23 103.13.84.0/23 IPv6: 2001:df0:26b::/48 Signature Algorithm: sha256WithRSAEncryption 48:45:34:90:f3:9a:fb:4b:f3:55:c5:82:d8:3a:86:9c:91:ae: 32:c8:3b:5f:44:0c:c4:ed:12:1a:32:78:9c:04:e8:1a:82:d7: 61:7c:2c:9c:b8:20:7b:cb:13:aa:77:ff:df:5c:fa:fb:26:f9: 3d:b7:d8:6e:97:4c:6a:77:9e:14:8c:74:12:60:a7:b1:0b:8c: 03:86:94:7d:14:ce:52:25:66:ba:75:dd:ac:7b:9b:69:0b:2a: dd:6b:5e:a3:0a:cf:8e:cb:ea:6f:aa:e6:4e:ba:e0:0f:9a:df: e1:f3:14:cf:c2:0a:45:58:2a:2d:8e:d5:3c:fd:45:ab:d0:18: 6f:87:1a:0a:90:b2:77:e6:42:82:e2:86:49:cd:f9:18:1f:73: bf:01:a7:3d:e3:ad:fc:6a:4f:00:33:15:5f:b4:85:e8:74:d5: 60:ee:89:dd:f5:b0:15:db:f7:af:02:3a:f7:16:05:97:83:10: 9d:96:8d:b4:26:ff:09:46:f5:53:fb:a7:01:f3:0f:0f:96:d7: 8b:6b:f8:b9:bf:4b:64:f8:8a:c0:95:d6:03:13:44:e1:6c:4c: da:1e:54:95:c9:e8:94:44:3a:b3:1c:5b:dd:46:86:86:a6:5c: 74:ba:7d:4a:9d:7b:50:b6:cd:2b:2b:04:33:48:db:2a:41:f2: 40:b2:8f:18 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjQwODEwMjMzMDQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI3ZjgyMi0yMWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5L74LPhH6e3B6vZlzINh0hG/haSIL45N6pNndMEzywqnTz/eyviQRmnupTtU ou6lHObRC6cFbIsaTFDvh/x0midqFAHPFAO2Ps6EKKTXBIEW2RYh8gjtD8BCVdso qCn8MaWWpsfAg1s/qnS04qk4tSdkscFHFEI+5tD6/SZOHw2bSHedLhL0KC04gEWT 0GbexUfRlqNuHXu23vy5FLCfXLK7lSTWY4FXpnpSRkasXlC2E8a0Hz4qVpfApRdf ElY/cI6ytDS9VNmlpxx28SGbwi8bzNAZfeRH4SwvxuVHRQl+oL3P70mpzkzsdby/ zoBS4xeCRP+DYN/tqd8VT4myVwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFNEvDmxI eEvgxSOJURuDNlEajH4ZMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkwMkUvNTdBRkRCMjg4NTU1MTFFQjk0QzIyMTVGQzRGOUFFMDIvQzNGRUM1NkM4 NTU3MTFFQjg3MUQyNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAIr9bADBAFnBKwDBAFnDVQwDwQCAAIwCQMHACABDfACazAN BgkqhkiG9w0BAQsFAAOCAQEASEU0kPOa+0vzVcWC2DqGnJGuMsg7X0QMxO0SGjJ4 nAToGoLXYXwsnLgge8sTqnf/31z6+yb5PbfYbpdManeeFIx0EmCnsQuMA4aUfRTO UiVmunXdrHubaQsq3WteowrPjsvqb6rmTrrgD5rf4fMUz8IKRVgqLY7VPP1Fq9AY b4caCpCyd+ZCguKGSc35GB9zvwGnPeOt/GpPADMVX7SF6HTVYO6J3fWwFdv3rwI6 9xYFl4MQnZaNtCb/CUb1U/unAfMPD5bXi2v4ub9LZPiKwJXWAxNE4WxM2h5Ulcno lEQ6sxxb3UaGhqZcdLp9Sp17ULbNKysEM0jbKkHyQLKPGA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org