$ rpki-client -vvf rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/98885BCE197311EF8021304AC4F9AE02.roa File: 98885BCE197311EF8021304AC4F9AE02.roa (raw, json) Hash identifier: GJJCfZ5BiuZYlICnNBOyHU1BPUhFBcT6HRnPg2Lp0Fw= Subject key identifier: 91:21:E6:79:93:88:7C:BC:0E:88:F4:49:34:B9:16:4F:61:61:D1:A7 Certificate issuer: /CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Certificate serial: 1189 Authority key identifier: A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/98885BCE197311EF8021304AC4F9AE02.roa Signing time: Fri 24 May 2024 02:16:14 +0000 ROA not before: Fri 24 May 2024 02:16:14 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134094 IP address blocks: 45.123.116.0/24 maxlen: 24 45.123.117.0/24 maxlen: 24 45.123.118.0/24 maxlen: 24 45.123.119.0/24 maxlen: 24 103.51.140.0/24 maxlen: 24 103.51.141.0/24 maxlen: 24 103.51.142.0/24 maxlen: 24 103.51.143.0/24 maxlen: 24 103.103.129.0/24 maxlen: 24 103.103.130.0/24 maxlen: 24 103.103.131.0/24 maxlen: 24 203.15.150.0/24 maxlen: 24 2401:f540::/48 maxlen: 48 2401:f540:1::/48 maxlen: 48 2401:f540:2::/48 maxlen: 48 2401:f540:3::/48 maxlen: 48 2401:f540:4::/48 maxlen: 48 2401:f540:5::/48 maxlen: 48 2401:f540:6::/48 maxlen: 48 2401:f540:7::/48 maxlen: 48 2401:f540:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Jul 2024 17:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Validity Not Before: May 24 02:16:14 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=664ff86e-7a01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:20:84:f3:1f:c8:29:fd:41:88:a2:22:d7: 1f:3e:a7:7d:bc:1e:e8:f8:9b:a8:7d:a4:5e:f7:61: c0:cd:52:f7:26:09:ce:3e:b3:b0:48:a4:66:cb:e5: 97:0a:ef:34:2c:32:83:1d:7e:f6:af:5e:7b:0d:9c: 40:4d:ac:39:70:73:5b:7e:62:e4:93:12:05:74:94: 22:6b:9f:7a:3b:5d:dd:3f:95:83:2a:82:9c:8a:fe: ff:f5:c1:45:04:eb:c7:0e:07:bc:65:d6:96:4c:f6: ab:1f:4a:df:f8:fb:3b:74:72:dc:f9:b4:31:3a:cf: 94:00:f7:5a:78:fe:6e:45:85:72:6a:03:f9:5f:e8: ab:b3:69:17:2f:b4:59:65:01:df:2b:38:42:51:91: 10:e0:c2:c6:e8:d6:61:75:d6:89:c7:9a:05:ea:0c: f1:36:70:cf:1e:b1:e6:ec:ba:7f:ff:07:be:50:2d: 8d:16:be:cf:76:e1:7c:1f:81:97:25:b2:f7:a4:b5: 21:ab:3c:2a:d6:64:a6:4a:c2:1c:5e:70:1e:a8:a8: a3:09:f7:11:17:b4:65:6f:8e:3c:24:53:7b:c1:77: c1:6b:1b:e8:3b:d7:53:7b:a5:3b:aa:4c:1c:e1:1b: b1:d5:3f:94:12:9a:54:c0:e0:6e:4d:92:8c:b6:33: 0b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:21:E6:79:93:88:7C:BC:0E:88:F4:49:34:B9:16:4F:61:61:D1:A7 X509v3 Authority Key Identifier: keyid:A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/98885BCE197311EF8021304AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.116.0/22 103.51.140.0/22 103.103.129.0-103.103.131.255 203.15.150.0/24 IPv6: 2401:f540::/45 2401:f540:10::/48 Signature Algorithm: sha256WithRSAEncryption 8f:48:dc:c4:6b:f6:02:59:22:86:35:67:93:82:26:6a:c7:15: ea:75:6e:f1:d8:c3:05:6e:4f:b9:eb:c0:da:e7:7c:d5:2c:a1: 81:46:62:20:65:2d:47:f3:4d:aa:cb:4d:f7:f1:74:11:54:a4: ad:39:8d:fd:d5:6b:15:ca:da:29:98:94:d8:52:d9:92:39:83: a0:bf:90:c6:35:f6:88:0d:02:41:04:56:34:0e:b4:f3:39:88: 65:ac:ee:b1:d6:09:bd:15:9c:81:f1:7c:88:ba:99:6d:10:e9: 41:53:ce:f1:19:16:df:2a:a6:3f:59:04:fb:f6:80:d2:59:20: ae:f9:d8:69:dd:d9:d0:46:94:d3:54:f2:28:a3:50:bd:48:26: a6:00:40:da:98:44:19:7a:9d:f4:00:0f:86:06:79:37:85:eb: c9:40:32:83:06:70:49:cc:cb:b9:89:21:9a:d3:b8:99:f0:3f: 93:97:2a:ea:dd:7b:f2:74:b6:c1:c8:b2:ce:da:a6:10:02:f7: df:97:ef:66:c3:0d:7a:96:c7:4e:fc:fb:80:21:40:06:2a:a7: 5a:f9:24:a9:33:f4:d4:20:c4:b8:1d:93:ff:5f:25:96:9f:7e: 14:9b:cb:a8:98:47:8c:d7:b1:c9:e3:a7:e8:af:87:25:ed:a0: e2:b6:c1:04 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2NzYxMTAvBgNVBAUTKEE5RTk1QTQxNkJDQ0VFRkQ4NkVBMkZBMDE5QzI1RTRE NzZCOEU5RDkwHhcNMjQwNTI0MDIxNjE0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRmZjg2ZS03YTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqL8ghPMfyCn9QYiiItcfPqd9vB7o+JuofaRe92HAzVL3JgnOPrOwSKRmy+WX Cu80LDKDHX72r157DZxATaw5cHNbfmLkkxIFdJQia596O13dP5WDKoKciv7/9cFF BOvHDge8ZdaWTParH0rf+Ps7dHLc+bQxOs+UAPdaeP5uRYVyagP5X+irs2kXL7RZ ZQHfKzhCUZEQ4MLG6NZhddaJx5oF6gzxNnDPHrHm7Lp//we+UC2NFr7PduF8H4GX JbL3pLUhqzwq1mSmSsIcXnAeqKijCfcRF7Rlb448JFN7wXfBaxvoO9dTe6U7qkwc 4Rux1T+UEppUwOBuTZKMtjMLzQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFJEh5nmT iHy8Doj0STS5Fk9hYdGnMB8GA1UdIwQYMBaAFKnpWkFrzO79huovoBnCXk12uOnZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzY3Ni9DRDM4QUIxNkRE RDkxMUU4QUY0NTFGMEFDNEY5QUUwMi9xZWxhUVd2TTd2Mkc2aS1nR2NKZVRYYTQ2 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlbGFRV3ZNN3YyRzZpLWdHY0plVFhhNDZkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2NzYvQ0QzOEFCMTZEREQ5MTFFOEFGNDUxRjBBQzRGOUFFMDIvOTg4ODVCQ0Ux OTczMTFFRjgwMjEzMDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMCYEAgABMCADBAIte3QDBAJnM4wwDAMEAGdngQMEAmdngAMEAMsPljAYBAIA AjASAwcDJAH1QAAAAwcAJAH1QAAQMA0GCSqGSIb3DQEBCwUAA4IBAQCPSNzEa/YC WSKGNWeTgiZqxxXqdW7x2MMFbk+568Da53zVLKGBRmIgZS1H802qy0338XQRVKSt OY391WsVytopmJTYUtmSOYOgv5DGNfaIDQJBBFY0DrTzOYhlrO6x1gm9FZyB8XyI upltEOlBU87xGRbfKqY/WQT79oDSWSCu+dhp3dnQRpTTVPIoo1C9SCamAEDamEQZ ep30AA+GBnk3hevJQDKDBnBJzMu5iSGa07iZ8D+Tlyrq3XvydLbByLLO2qYQAvff l+9mww16lsdO/PuAIUAGKqda+SSpM/TUIMS4HZP/XyWWn34Um8uomEeM17HJ46fo r4cl7aDitsEE -----END CERTIFICATE-----Generated at Fri Jun 28 19:19:36 2024 by rpki-client on console-fra.rpki-client.org