$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/7E8114F414E611EB82C98471C4F9AE02.roa File: 7E8114F414E611EB82C98471C4F9AE02.roa (raw, json) Hash identifier: sHP7c+MlTTHLdKKi6zJNHIBqxCcy6/U0BmbVd5RTe50= Subject key identifier: 39:89:8D:C7:7A:F7:DA:4E:A4:9D:3C:7F:C3:0B:40:F9:AA:E4:DF:DA Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 0696 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/7E8114F414E611EB82C98471C4F9AE02.roa Signing time: Tue 02 Jan 2024 23:00:47 +0000 ROA not before: Tue 02 Jan 2024 23:00:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55720 IP address blocks: 45.116.172.0/24 maxlen: 24 45.116.173.0/24 maxlen: 24 45.116.174.0/24 maxlen: 24 45.116.175.0/24 maxlen: 24 103.244.0.0/24 maxlen: 24 103.244.1.0/24 maxlen: 24 103.244.2.0/24 maxlen: 24 103.244.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 23:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1686 (0x696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Jan 2 23:00:47 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594959e-d69d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8f:ad:7d:20:3b:60:ad:a6:bc:3a:f5:98:6d: c7:c6:43:6d:65:0c:7b:7b:77:48:4b:9c:0d:f7:35: 8c:05:39:f3:40:28:35:b8:fe:4c:36:9a:74:1b:b5: 02:1a:96:89:f0:40:5e:84:0e:ce:db:2f:11:fc:60: 3a:6d:72:00:9a:8f:01:91:1e:c1:da:52:7a:23:3e: 28:41:44:a6:1f:e9:b0:7f:02:b2:3a:a9:3a:96:68: 8d:06:14:10:9f:0c:11:b3:e2:44:c1:b8:cf:55:69: fb:60:74:e6:a6:d5:05:0b:5f:8c:1a:53:68:2f:5e: 08:14:54:30:c5:9d:f6:3b:0d:a9:b7:b5:0d:46:11: 59:15:e6:0c:6c:35:e2:10:c8:ae:4c:ac:49:22:05: af:b6:ff:10:43:43:c8:79:90:62:05:96:3f:2a:db: b7:da:fb:3f:3e:6d:7f:07:9d:3f:83:7d:ca:54:58: e3:64:00:7b:70:26:ab:e3:dd:d7:68:6f:6e:50:13: 64:15:0c:e0:19:d0:1b:47:39:6e:b6:45:48:e4:59: c3:d4:02:df:81:d6:d4:9c:1f:62:22:72:9d:33:0d: e8:66:b8:01:28:26:5a:3f:0d:67:85:61:6d:67:b0: 0b:7a:b1:84:1f:6e:27:ad:54:c0:d5:67:46:f9:0c: 91:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:89:8D:C7:7A:F7:DA:4E:A4:9D:3C:7F:C3:0B:40:F9:AA:E4:DF:DA X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/7E8114F414E611EB82C98471C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.172.0/22 103.244.0.0/22 Signature Algorithm: sha256WithRSAEncryption ab:00:0c:a7:8a:ef:76:df:ec:b9:52:47:b1:8b:f6:3c:6f:87: 81:ed:f0:e6:16:55:b1:55:9c:4a:eb:c7:53:45:0a:a9:c9:14: 3c:0e:d4:9d:ce:25:ba:4f:3a:a2:e8:25:6f:71:3e:9c:f9:24: 8c:2a:36:a7:eb:96:9c:c3:ce:13:6a:31:51:4f:70:9d:2c:22: e3:15:53:bb:5e:73:e4:50:38:49:19:07:0a:c2:a1:9a:22:e5: ce:8b:3d:6c:a5:07:f4:60:c1:c8:2b:d4:c2:c2:95:78:d3:40: 51:c9:36:0a:9e:be:06:2f:4e:52:70:d9:41:ba:db:d9:d2:0c: 5f:6e:3b:1c:a1:e9:56:af:33:81:6f:9a:3e:0a:b7:3a:c4:75: 76:4e:3d:55:92:7e:69:53:2a:34:4f:b1:40:45:3b:30:26:56: 73:6e:ee:24:83:c9:1a:58:64:08:c5:fd:e5:ba:a3:c0:3d:6b: b3:8d:c2:69:ad:6d:b3:bc:bf:29:31:be:a1:28:b1:de:93:90: a0:9f:6c:b1:7a:50:46:23:37:87:61:1a:7c:1c:0a:cf:fe:e7: 40:2a:0f:c2:4d:b2:37:6d:f7:a5:9b:46:fb:31:c9:56:4c:9b: 89:a0:ca:59:81:62:aa:0a:8c:af:fb:3f:bd:26:e6:86:0c:93: f8:d9:59:a7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjQwMTAyMjMwMDQ3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0OTU5ZS1kNjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo+tfSA7YK2mvDr1mG3HxkNtZQx7e3dIS5wN9zWMBTnzQCg1uP5MNpp0G7UC GpaJ8EBehA7O2y8R/GA6bXIAmo8BkR7B2lJ6Iz4oQUSmH+mwfwKyOqk6lmiNBhQQ nwwRs+JEwbjPVWn7YHTmptUFC1+MGlNoL14IFFQwxZ32Ow2pt7UNRhFZFeYMbDXi EMiuTKxJIgWvtv8QQ0PIeZBiBZY/Ktu32vs/Pm1/B50/g33KVFjjZAB7cCar493X aG9uUBNkFQzgGdAbRzlutkVI5FnD1ALfgdbUnB9iInKdMw3oZrgBKCZaPw1nhWFt Z7ALerGEH24nrVTA1WdG+QyRMQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDmJjcd6 99pOpJ08f8MLQPmq5N/aMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJEODkvQzZBNEE1RTIwODQ0MTFFQjlDNzM2NTE0QzRGOUFFMDIvN0U4MTE0RjQx NEU2MTFFQjgyQzk4NDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItdKwDBAJn9AAwDQYJKoZIhvcNAQELBQADggEBAKsADKeK 73bf7LlSR7GL9jxvh4Ht8OYWVbFVnErrx1NFCqnJFDwO1J3OJbpPOqLoJW9xPpz5 JIwqNqfrlpzDzhNqMVFPcJ0sIuMVU7tec+RQOEkZBwrCoZoi5c6LPWylB/Rgwcgr 1MLClXjTQFHJNgqevgYvTlJw2UG629nSDF9uOxyh6VavM4Fvmj4KtzrEdXZOPVWS fmlTKjRPsUBFOzAmVnNu7iSDyRpYZAjF/eW6o8A9a7ONwmmtbbO8vykxvqEosd6T kKCfbLF6UEYjN4dhGnwcCs/+50AqD8JNsjdt96WbRvsxyVZMm4mgylmBYqoKjK/7 P70m5oYMk/jZWac= -----END CERTIFICATE-----Generated at Fri Jun 7 00:09:13 2024 by rpki-client on console-fra.rpki-client.org