$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa File: 209BA8B682DF11EAABBC5018C4F9AE02.roa (raw, json) Hash identifier: TJvzlJJ4h2hROUZigj4lfiGGrCluHICSdOd5TWc5xeM= Subject key identifier: 03:BB:9F:90:EC:CB:BE:63:3E:0E:73:4C:75:2F:78:F2:23:E2:63:CB Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 0906 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa Signing time: Tue 28 May 2024 21:31:45 +0000 ROA not before: Tue 28 May 2024 21:31:45 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135433 IP address blocks: 45.250.240.0/22 maxlen: 22 45.250.240.0/24 maxlen: 24 45.250.241.0/24 maxlen: 24 45.250.242.0/24 maxlen: 24 45.250.243.0/24 maxlen: 24 103.219.156.0/22 maxlen: 22 103.219.156.0/24 maxlen: 24 103.219.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: May 28 21:31:45 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66564d40-882d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:46:86:0e:50:b6:d2:5c:14:bf:5b:bd:5f: f0:70:11:19:3d:14:f3:17:cd:a6:16:84:5a:65:4c: cf:99:b5:9a:60:f1:18:64:c8:15:44:45:67:e0:3c: 2e:b9:4c:5e:6c:ad:c2:c4:82:01:43:cd:59:bb:e8: b6:26:62:19:aa:43:03:9f:a9:3f:4e:7f:2b:b0:d5: 7c:5f:23:e8:b2:cf:9b:8e:26:d7:e5:29:64:07:3f: 94:11:bc:cf:1c:a3:bb:14:4e:12:3b:d3:ce:cf:82: 0e:00:7f:ce:6b:69:a5:f7:96:0e:ec:c3:b1:fc:a5: 73:55:c0:f8:34:3d:fb:2b:3e:89:18:c6:35:93:09: 60:50:46:f7:2d:6c:b9:53:8b:a0:dc:59:26:eb:a4: af:b9:d2:97:67:93:02:97:b9:fd:49:57:55:07:9a: c6:09:fc:0f:75:1b:2c:73:48:1e:af:8d:0f:9d:68: e5:1c:d7:4f:81:ee:d1:20:3d:48:b6:a1:6c:43:91: 1d:7e:83:87:14:35:34:86:a1:82:b3:e8:4c:9f:06: e8:e5:cc:a8:83:64:52:b7:18:c2:a3:d1:32:99:bc: 91:d3:ee:c2:cd:69:25:8c:a1:3b:00:bc:73:bb:8e: 2a:db:bc:37:d9:04:a9:9a:c0:bd:58:5f:b5:d8:ad: b9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BB:9F:90:EC:CB:BE:63:3E:0E:73:4C:75:2F:78:F2:23:E2:63:CB X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.240.0/22 103.219.156.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:5f:6a:c9:c2:d7:88:37:49:a2:9a:56:92:5e:99:a2:0d:d4: 39:fa:f3:de:f4:7f:0f:07:03:60:19:c8:4c:39:a5:34:ba:d9: 35:4a:38:e6:35:d3:c8:ed:e7:ed:31:c8:f9:54:ca:3b:ed:f9: fb:fe:03:d5:6b:85:ed:df:6b:bf:1b:31:42:4d:dd:fd:fd:83: af:8a:66:60:0a:d4:c8:ca:29:65:55:5e:98:8b:e5:64:e2:26: 49:14:a5:5e:55:55:47:a6:84:81:4d:fd:3e:27:96:fd:74:7e: 4e:3d:f6:ec:cc:30:b2:f6:6d:2c:86:38:94:1b:61:9b:64:6b: c9:63:1d:b2:e4:4d:90:b7:15:09:07:85:30:3f:f2:6d:db:8e: c1:56:95:57:f8:3f:0c:39:5c:b8:17:c6:a7:66:f5:0a:59:c9: bf:fa:85:28:3c:fb:23:89:49:3a:dc:2e:6b:ef:ae:2b:64:c5: e3:ef:8c:5c:72:9f:6f:da:c4:ef:99:b5:5b:94:0f:a1:9b:8e: ab:3e:3c:9f:93:0f:82:fb:bd:2c:e0:99:83:8d:d5:c9:82:9a: 16:d9:24:6c:32:a9:e5:c2:a9:1c:ea:8f:80:bb:03:8d:83:cf: 71:f1:e8:d9:0e:2e:ac:d9:33:23:fa:47:2e:55:c5:11:2d:e7: 23:8d:fe:1e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjQwNTI4MjEzMTQ1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NGQ0MC04ODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLZGhg5QttJcFL9bvV/wcBEZPRTzF82mFoRaZUzPmbWaYPEYZMgVREVn4Dwu uUxebK3CxIIBQ81Zu+i2JmIZqkMDn6k/Tn8rsNV8XyPoss+bjibX5SlkBz+UEbzP HKO7FE4SO9POz4IOAH/Oa2ml95YO7MOx/KVzVcD4ND37Kz6JGMY1kwlgUEb3LWy5 U4ug3Fkm66SvudKXZ5MCl7n9SVdVB5rGCfwPdRssc0ger40PnWjlHNdPge7RID1I tqFsQ5EdfoOHFDU0hqGCs+hMnwbo5cyog2RStxjCo9EymbyR0+7CzWkljKE7ALxz u44q27w32QSpmsC9WF+12K25aQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAO7n5Ds y75jPg5zTHUvePIj4mPLMB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ5MjYvQjM4NTc4QzQ4MkQ5MTFFQUI5RkNEMjg1QzRGOUFFMDIvMjA5QkE4QjY4 MkRGMTFFQUFCQkM1MDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+vADBAJn25wwDQYJKoZIhvcNAQELBQADggEBAG9fasnC 14g3SaKaVpJemaIN1Dn68970fw8HA2AZyEw5pTS62TVKOOY108jt5+0xyPlUyjvt +fv+A9Vrhe3fa78bMUJN3f39g6+KZmAK1MjKKWVVXpiL5WTiJkkUpV5VVUemhIFN /T4nlv10fk499uzMMLL2bSyGOJQbYZtka8ljHbLkTZC3FQkHhTA/8m3bjsFWlVf4 Pww5XLgXxqdm9QpZyb/6hSg8+yOJSTrcLmvvritkxePvjFxyn2/axO+ZtVuUD6Gb jqs+PJ+TD4L7vSzgmYON1cmCmhbZJGwyqeXCqRzqj4C7A42Dz3Hx6NkOLqzZMyP6 Ry5VxREt5yON/h4= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:09 2024 by rpki-client on console-ams.rpki-client.org