$ rpki-client -vvf rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/80A9DE56614C11EC9175DE54C4F9AE02.roa File: 80A9DE56614C11EC9175DE54C4F9AE02.roa (raw, json) Hash identifier: ygV29+CdpRjO1HlIMJ6Gkg3eEGxPeEnonRI3YwMUHgM= Subject key identifier: AE:B9:FD:E4:F0:A2:F4:14:82:1F:CA:68:F8:70:BF:D3:08:3A:3E:89 Certificate issuer: /CN=A9129C87/serialNumber=E8F92D6B2A2930F0A5BEAF53044C85D8EADE1EBA Certificate serial: 03CD Authority key identifier: E8:F9:2D:6B:2A:29:30:F0:A5:BE:AF:53:04:4C:85:D8:EA:DE:1E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/80A9DE56614C11EC9175DE54C4F9AE02.roa Signing time: Sun 03 Nov 2024 00:33:36 +0000 ROA not before: Sun 03 Nov 2024 00:33:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 56120 IP address blocks: 1.20.0.0/24 maxlen: 24 1.20.1.0/24 maxlen: 24 1.20.2.0/24 maxlen: 24 1.20.3.0/24 maxlen: 24 1.20.4.0/22 maxlen: 22 1.20.8.0/21 maxlen: 21 1.20.16.0/20 maxlen: 20 1.20.32.0/20 maxlen: 20 1.20.48.0/21 maxlen: 21 1.20.56.0/22 maxlen: 22 1.20.60.0/24 maxlen: 24 1.20.61.0/24 maxlen: 24 1.20.62.0/24 maxlen: 24 1.20.63.0/24 maxlen: 24 1.20.64.0/24 maxlen: 24 1.20.65.0/24 maxlen: 24 1.20.66.0/24 maxlen: 24 1.20.117.0/24 maxlen: 24 1.20.119.0/24 maxlen: 24 1.20.120.0/24 maxlen: 24 1.20.121.0/24 maxlen: 24 1.20.122.0/24 maxlen: 24 1.20.123.0/24 maxlen: 24 1.20.125.0/24 maxlen: 24 1.20.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.crl rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129C87/serialNumber=E8F92D6B2A2930F0A5BEAF53044C85D8EADE1EBA Validity Not Before: Nov 3 00:33:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726c4e0-a5be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:26:23:97:ce:9f:92:ce:ab:41:74:ce:c8:98: 4e:fe:cd:8c:81:13:5c:81:2a:c7:99:fd:02:30:a7: eb:9b:c2:ee:c6:aa:bb:13:02:da:ac:41:62:db:b0: 7e:0e:32:83:aa:63:55:d2:fe:b2:00:39:d8:98:80: e5:3e:49:4d:ed:74:e7:b3:32:28:0b:21:a7:01:fa: 6d:4e:b3:bd:09:40:eb:ba:8b:fb:50:a7:97:ff:d4: 6b:38:9c:c0:e6:52:6d:d9:b3:b3:42:69:cf:f3:86: d0:5d:b2:14:3e:7a:92:c9:af:52:87:65:46:93:39: a3:b7:a1:f3:1e:25:a7:53:77:f4:84:d2:c7:9d:e5: 23:a1:32:13:29:8d:08:76:42:d5:c5:4f:07:a3:2a: af:a5:3d:5b:b5:6b:c7:91:72:db:ea:2b:c9:82:4c: 23:db:94:2b:fc:bc:e5:05:ff:5e:bd:17:42:1f:0c: 84:34:c6:62:51:7d:77:79:07:0f:55:9f:30:ea:5e: 7c:78:de:aa:ca:e2:91:48:99:43:67:f9:c2:7d:da: 3e:13:53:c1:c2:07:45:60:1c:a5:a1:56:11:33:fb: 23:b4:1a:d2:f9:cf:4a:df:27:d3:24:ed:ae:8f:a9: 30:9a:d6:2f:9c:7f:d2:c8:07:43:91:02:ab:cb:ac: 45:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B9:FD:E4:F0:A2:F4:14:82:1F:CA:68:F8:70:BF:D3:08:3A:3E:89 X509v3 Authority Key Identifier: keyid:E8:F9:2D:6B:2A:29:30:F0:A5:BE:AF:53:04:4C:85:D8:EA:DE:1E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/80A9DE56614C11EC9175DE54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.20.0.0-1.20.66.255 1.20.117.0/24 1.20.119.0-1.20.123.255 1.20.125.0-1.20.126.255 Signature Algorithm: sha256WithRSAEncryption e2:8e:d7:0f:c4:e2:2c:72:15:8a:cb:80:20:98:63:31:6d:4f: 5c:98:25:03:0f:8e:c4:bf:d0:a4:ed:a6:2d:d5:86:f4:3c:c6: 6d:37:90:e1:9d:1d:58:95:85:22:b7:81:ba:6b:99:5a:7a:c9: 38:c6:6c:c4:a6:53:b4:c8:d4:26:ff:73:f2:d5:09:ec:94:16: e4:3d:0d:2d:48:39:c3:a6:ef:94:e3:b6:09:d8:91:33:20:8b: 4f:fb:b4:0b:ba:91:0d:3f:7e:0c:83:20:a0:6a:2c:62:bd:e6: ca:43:37:db:36:a2:bd:9b:ca:af:0c:f5:01:ef:f3:70:60:c1: 6a:5a:1a:23:e4:ac:3f:c7:81:a0:b1:99:38:00:1f:c3:62:c6: c4:63:1a:fd:e6:35:aa:a6:d1:3c:5a:9e:2d:35:00:a2:a8:f1: 6a:9e:bb:ab:cf:b2:5c:ef:66:56:4d:6a:11:ec:4a:27:0f:80: a5:78:a1:a8:ab:67:50:ac:5f:ce:a0:69:15:df:ac:ee:32:93: ba:a2:d6:af:e0:99:18:65:ff:a5:85:35:02:1a:37:9d:27:47: 4c:7e:6e:e9:06:44:f7:8a:5a:d1:54:a1:9e:a4:b7:6a:2e:e8: db:c6:f5:44:13:d5:c1:56:35:2e:11:c7:5f:16:e9:a5:ca:bf: 0c:75:00:44 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlDODcxMTAvBgNVBAUTKEU4RjkyRDZCMkEyOTMwRjBBNUJFQUY1MzA0NEM4NUQ4 RUFERTFFQkEwHhcNMjQxMTAzMDAzMzM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YzRlMC1hNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SYjl86fks6rQXTOyJhO/s2MgRNcgSrHmf0CMKfrm8Luxqq7EwLarEFi27B+ DjKDqmNV0v6yADnYmIDlPklN7XTnszIoCyGnAfptTrO9CUDruov7UKeX/9RrOJzA 5lJt2bOzQmnP84bQXbIUPnqSya9Sh2VGkzmjt6HzHiWnU3f0hNLHneUjoTITKY0I dkLVxU8HoyqvpT1btWvHkXLb6ivJgkwj25Qr/LzlBf9evRdCHwyENMZiUX13eQcP VZ8w6l58eN6qyuKRSJlDZ/nCfdo+E1PBwgdFYByloVYRM/sjtBrS+c9K3yfTJO2u j6kwmtYvnH/SyAdDkQKry6xFWQIDAQABo4ICvjCCArowHQYDVR0OBBYEFK65/eTw ovQUgh/KaPhwv9MIOj6JMB8GA1UdIwQYMBaAFOj5LWsqKTDwpb6vUwRMhdjq3h66 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUM4Ny9GRDA4M0Y1ODVF RUQxMUVDOUE0OTZENTlDNEY5QUUwMi82UGt0YXlvcE1QQ2x2cTlUQkV5RjJPcmVI cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZQa3RheW9wTVBDbHZxOVRCRXlGMk9yZUhyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlDODcvRkQwODNGNTg1RUVEMTFFQzlBNDk2RDU5QzRGOUFFMDIvODBBOURFNTY2 MTRDMTFFQzkxNzVERTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MDUEAgABMC8wCwMDAgEUAwQAARRCAwQAARR1MAwDBAABFHcDBAIBFHgwDAME AAEUfQMEAAEUfjANBgkqhkiG9w0BAQsFAAOCAQEA4o7XD8TiLHIVisuAIJhjMW1P XJglAw+OxL/QpO2mLdWG9DzGbTeQ4Z0dWJWFIreBumuZWnrJOMZsxKZTtMjUJv9z 8tUJ7JQW5D0NLUg5w6bvlOO2CdiRMyCLT/u0C7qRDT9+DIMgoGosYr3mykM32zai vZvKrwz1Ae/zcGDBaloaI+SsP8eBoLGZOAAfw2LGxGMa/eY1qqbRPFqeLTUAoqjx ap67q8+yXO9mVk1qEexKJw+ApXihqKtnUKxfzqBpFd+s7jKTuqLWr+CZGGX/pYU1 Aho3nSdHTH5u6QZE94pa0VShnqS3ai7o28b1RBPVwVY1LhHHXxbppcq/DHUARA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org