$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa File: 209BA8B682DF11EAABBC5018C4F9AE02.roa (raw, json) Hash identifier: 8aW0SKFCuzpKiRgqZbEn9MAhCjT3ayoMsYjGk6vj7OA= Subject key identifier: E3:F0:BF:91:0F:0D:35:DD:ED:82:4D:72:2D:7F:A0:C5:CE:70:C0:7F Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 0941 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa Signing time: Mon 09 Sep 2024 05:18:09 +0000 ROA not before: Mon 09 Sep 2024 05:18:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135433 IP address blocks: 45.250.240.0/22 maxlen: 22 45.250.240.0/24 maxlen: 24 45.250.241.0/24 maxlen: 24 45.250.242.0/24 maxlen: 24 45.250.243.0/24 maxlen: 24 103.219.156.0/22 maxlen: 22 103.219.156.0/24 maxlen: 24 103.219.157.0/24 maxlen: 24 103.219.158.0/24 maxlen: 24 103.219.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2369 (0x941) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Sep 9 05:18:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66de8511-73a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6f:94:5d:51:38:4e:2d:bd:c6:3c:9a:d0:fc: 7d:a7:41:8d:dc:48:d0:bd:c3:ea:dd:6e:47:b8:ee: 86:fe:0e:14:3b:09:e4:45:d9:b0:c1:9b:eb:73:f9: 06:17:6f:c7:7a:86:01:10:3b:b6:d2:8f:58:57:03: 5f:dc:42:bd:3a:9b:e4:61:5a:bb:dc:2a:19:ce:28: d5:84:94:22:e5:f2:7b:68:8f:4e:fc:0b:83:3b:2d: 93:82:e7:d9:0a:32:45:e2:bb:74:01:a2:f7:3e:09: b9:d8:4a:c1:8e:99:04:8b:f1:4c:83:d8:31:6f:2a: 3f:97:ce:55:26:43:6f:29:a7:e9:75:4e:6f:62:1c: 67:39:74:5a:0a:81:a6:8b:89:b9:1f:e9:66:22:2d: 8d:0d:dd:2d:b5:b7:bb:de:45:c6:62:b1:90:33:5c: 4e:d6:fc:e1:55:bd:2c:2a:94:4c:87:a6:31:32:55: bf:89:39:93:44:8e:fd:b3:7d:9d:cc:f7:66:aa:2f: f4:89:9d:b2:17:c2:d8:ff:72:4e:0e:80:ab:46:33: 9c:e1:f5:d8:39:bb:81:f1:72:eb:3f:f4:29:44:6a: da:7f:db:ba:13:61:08:6d:93:1b:fd:50:fd:7f:64: 56:0c:25:f2:c1:97:1e:41:37:45:89:75:48:b6:90: a1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F0:BF:91:0F:0D:35:DD:ED:82:4D:72:2D:7F:A0:C5:CE:70:C0:7F X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.240.0/22 103.219.156.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:90:03:0a:ef:2f:ab:83:2e:e0:56:77:7a:3b:c4:66:c1:64: 5f:89:1a:a6:ed:d8:65:1c:76:06:fe:8c:8a:75:95:86:da:3e: 00:d1:f6:5e:6c:5a:6d:8d:95:61:54:cb:9e:09:57:c1:0f:af: 22:32:84:14:62:47:1c:0d:9a:fc:51:52:9a:04:98:ac:35:06: bb:ea:52:80:96:51:e6:2e:54:7b:f5:ab:81:a3:3e:e4:94:c7: 3b:dc:1a:24:79:62:1e:c4:1a:2b:3f:63:b9:47:33:40:2c:65: 08:28:4a:6d:11:58:49:cf:00:70:a9:72:92:75:ae:05:cd:82: 8a:a5:8c:0d:a0:29:12:33:70:3b:76:a9:cf:00:6f:21:ef:01: 7a:0a:2a:49:26:6b:03:f1:83:3e:e9:4b:7e:3e:40:e8:1f:45: 94:3e:e6:1d:17:0d:fc:2b:57:44:c0:a8:68:2e:ff:18:0f:f3: 99:05:9e:0f:ca:ca:7f:fa:ef:5c:13:d9:2b:49:27:40:44:e7: 1d:c4:07:07:66:3a:17:16:22:35:0f:e1:3a:a0:f3:a4:ef:91: 4f:ce:4e:ba:ac:59:92:a1:5b:b1:e2:f6:33:ac:83:77:bc:6e: 2c:6e:86:95:7b:da:97:81:30:4e:db:29:9e:4e:3f:90:f9:7d: 55:19:f9:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjQwOTA5MDUxODA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlODUxMS03M2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqW+UXVE4Ti29xjya0Px9p0GN3EjQvcPq3W5HuO6G/g4UOwnkRdmwwZvrc/kG F2/HeoYBEDu20o9YVwNf3EK9OpvkYVq73CoZzijVhJQi5fJ7aI9O/AuDOy2TgufZ CjJF4rt0AaL3Pgm52ErBjpkEi/FMg9gxbyo/l85VJkNvKafpdU5vYhxnOXRaCoGm i4m5H+lmIi2NDd0ttbe73kXGYrGQM1xO1vzhVb0sKpRMh6YxMlW/iTmTRI79s32d zPdmqi/0iZ2yF8LY/3JODoCrRjOc4fXYObuB8XLrP/QpRGraf9u6E2EIbZMb/VD9 f2RWDCXywZceQTdFiXVItpCh9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOPwv5EP DTXd7YJNci1/oMXOcMB/MB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ5MjYvQjM4NTc4QzQ4MkQ5MTFFQUI5RkNEMjg1QzRGOUFFMDIvMjA5QkE4QjY4 MkRGMTFFQUFCQkM1MDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+vADBAJn25wwDQYJKoZIhvcNAQELBQADggEBAF+QAwrv L6uDLuBWd3o7xGbBZF+JGqbt2GUcdgb+jIp1lYbaPgDR9l5sWm2NlWFUy54JV8EP ryIyhBRiRxwNmvxRUpoEmKw1BrvqUoCWUeYuVHv1q4GjPuSUxzvcGiR5Yh7EGis/ Y7lHM0AsZQgoSm0RWEnPAHCpcpJ1rgXNgoqljA2gKRIzcDt2qc8AbyHvAXoKKkkm awPxgz7pS34+QOgfRZQ+5h0XDfwrV0TAqGgu/xgP85kFng/Kyn/671wT2StJJ0BE 5x3EBwdmOhcWIjUP4Tqg86TvkU/OTrqsWZKhW7Hi9jOsg3e8bixuhpV72peBME7b KZ5OP5D5fVUZ+WQ= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org