$ rpki-client -vvf rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/BE466468B8D611ED876CBD7CC4F9AE02.roa File: BE466468B8D611ED876CBD7CC4F9AE02.roa (raw, json) Hash identifier: 3B1RpXRPYovGqaozvCJn8HvxK4358NVTnDJF2IMtKPE= Subject key identifier: 89:F1:EC:C6:F8:94:AB:1E:DE:A2:F2:73:8E:AF:A0:87:15:6D:F1:BC Certificate issuer: /CN=A914589A/serialNumber=262790CD914CEA8EC11E25869B898DE0001FBD09 Certificate serial: 18FA Authority key identifier: 26:27:90:CD:91:4C:EA:8E:C1:1E:25:86:9B:89:8D:E0:00:1F:BD:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/BE466468B8D611ED876CBD7CC4F9AE02.roa Signing time: Mon 30 Sep 2024 16:54:19 +0000 ROA not before: Mon 30 Sep 2024 16:54:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23893 IP address blocks: 180.210.128.0/19 maxlen: 19 180.210.128.0/23 maxlen: 24 180.210.130.0/23 maxlen: 24 180.210.133.0/24 maxlen: 24 180.210.134.0/23 maxlen: 24 180.210.136.0/23 maxlen: 24 180.210.138.0/23 maxlen: 24 180.210.140.0/23 maxlen: 24 180.210.142.0/23 maxlen: 24 180.210.144.0/23 maxlen: 24 180.210.146.0/23 maxlen: 24 180.210.148.0/23 maxlen: 24 180.210.150.0/23 maxlen: 24 180.210.152.0/23 maxlen: 24 180.210.154.0/23 maxlen: 24 180.210.156.0/23 maxlen: 24 180.210.158.0/23 maxlen: 24 2404:b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.crl rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6394 (0x18fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914589A/serialNumber=262790CD914CEA8EC11E25869B898DE0001FBD09 Validity Not Before: Sep 30 16:54:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fad7ba-5875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b6:54:c6:ea:5a:9c:d9:48:5f:c0:41:27:6b: 02:1e:23:67:bc:6b:99:40:4b:4c:f9:16:35:cf:75: d5:10:7a:1f:93:2e:52:2a:69:e6:71:66:0a:39:1d: f0:dd:f5:ee:e7:95:f9:99:ca:bf:17:4b:11:aa:ec: 44:3c:50:ff:78:b0:4e:6c:20:15:6f:36:d8:11:2e: 40:07:ff:d2:62:af:eb:a5:f0:36:11:c0:ff:2a:3f: 2f:c7:47:63:93:fc:e2:65:4a:4e:45:8a:c4:73:67: e0:b0:e7:d1:62:50:da:b8:89:19:16:28:1e:6e:39: 82:94:13:84:54:ed:d8:e2:03:f1:5b:5d:85:1b:c5: a6:28:01:d1:80:4c:54:ae:15:ae:31:c0:17:43:06: b9:e0:98:36:49:6a:21:5f:3d:a8:26:b2:b4:1b:45: 98:c2:dc:e0:28:47:c0:bc:f8:d2:0a:e1:d8:67:3d: 1d:ba:3d:7b:35:8b:9d:d9:d0:ab:c3:14:76:14:44: d8:c5:32:77:b6:bf:c7:92:1c:4f:86:dd:22:53:25: cf:ce:42:8b:1c:4a:39:ab:35:c1:3d:86:c3:1c:ec: 52:27:ec:58:54:6b:2d:28:f7:06:a5:d2:fa:69:8a: 91:ae:a4:fe:06:2c:7b:22:49:4c:3b:02:00:47:a3: 37:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F1:EC:C6:F8:94:AB:1E:DE:A2:F2:73:8E:AF:A0:87:15:6D:F1:BC X509v3 Authority Key Identifier: keyid:26:27:90:CD:91:4C:EA:8E:C1:1E:25:86:9B:89:8D:E0:00:1F:BD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/BE466468B8D611ED876CBD7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.210.128.0/19 IPv6: 2404:b00::/32 Signature Algorithm: sha256WithRSAEncryption a3:75:a1:b0:a1:51:1d:a4:d8:a3:84:10:88:fe:a5:7e:00:12: e0:ad:5b:0c:35:47:8d:50:d5:31:0c:fc:17:64:eb:52:33:92: f6:3a:ea:1a:77:1e:8d:04:b1:2a:04:ad:5c:22:3e:66:fa:f5: 10:7b:1b:c9:0d:4e:4e:0f:c2:0b:4f:c9:20:a5:bb:65:5c:a2: 95:b7:db:1d:f2:02:20:c2:47:56:7f:50:d1:27:a9:b8:ef:c3: fe:91:24:42:12:a9:27:e3:f1:39:8c:80:93:9e:b0:83:46:76: fb:36:44:08:de:4d:ef:00:5a:73:57:f9:23:74:60:6f:6f:6d: 6d:46:18:39:62:4c:8d:27:df:c8:db:f4:1a:5b:f8:85:66:71: 95:5c:25:91:a1:75:1d:e2:a4:df:23:ae:ac:3d:ff:59:94:94: 87:fd:ec:cc:9d:dc:15:57:b9:c4:22:10:0d:38:a1:bf:b6:08: 0b:e0:e1:2c:02:76:fc:ca:41:c6:83:7e:35:a0:63:84:07:0a: 1d:ca:6b:3d:26:f9:70:e2:45:42:79:b5:b5:53:b4:30:e4:b4: f5:1e:47:8d:c3:f6:9a:bd:f4:b6:4f:5c:73:d4:fd:09:ab:81: 81:92:f6:b5:e6:64:fe:6b:31:53:a3:78:c8:2b:d7:0e:43:7f: 75:69:91:e5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU4OUExMTAvBgNVBAUTKDI2Mjc5MENEOTE0Q0VBOEVDMTFFMjU4NjlCODk4REUw MDAxRkJEMDkwHhcNMjQwOTMwMTY1NDE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZDdiYS01ODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rZUxupanNlIX8BBJ2sCHiNnvGuZQEtM+RY1z3XVEHofky5SKmnmcWYKOR3w 3fXu55X5mcq/F0sRquxEPFD/eLBObCAVbzbYES5AB//SYq/rpfA2EcD/Kj8vx0dj k/ziZUpORYrEc2fgsOfRYlDauIkZFigebjmClBOEVO3Y4gPxW12FG8WmKAHRgExU rhWuMcAXQwa54Jg2SWohXz2oJrK0G0WYwtzgKEfAvPjSCuHYZz0duj17NYud2dCr wxR2FETYxTJ3tr/HkhxPht0iUyXPzkKLHEo5qzXBPYbDHOxSJ+xYVGstKPcGpdL6 aYqRrqT+Bix7IklMOwIAR6M3XQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFInx7Mb4 lKse3qLyc46voIcVbfG8MB8GA1UdIwQYMBaAFCYnkM2RTOqOwR4lhpuJjeAAH70J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTg5QS9BQ0Q2RkI4QTdE OTQxMUU3OTM4QkNGNEVDNEY5QUUwMi9KaWVRelpGTTZvN0JIaVdHbTRtTjRBQWZ2 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ppZVF6WkZNNm83QkhpV0dtNG1ONEFBZnZRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU4OUEvQUNENkZCOEE3RDk0MTFFNzkzOEJDRjRFQzRGOUFFMDIvQkU0NjY0NjhC OEQ2MTFFRDg3NkNCRDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAW00oAwDQQCAAIwBwMFACQECwAwDQYJKoZIhvcNAQELBQAD ggEBAKN1obChUR2k2KOEEIj+pX4AEuCtWww1R41Q1TEM/Bdk61IzkvY66hp3Ho0E sSoErVwiPmb69RB7G8kNTk4PwgtPySClu2VcopW32x3yAiDCR1Z/UNEnqbjvw/6R JEISqSfj8TmMgJOesINGdvs2RAjeTe8AWnNX+SN0YG9vbW1GGDliTI0n38jb9Bpb +IVmcZVcJZGhdR3ipN8jrqw9/1mUlIf97Myd3BVXucQiEA04ob+2CAvg4SwCdvzK QcaDfjWgY4QHCh3Kaz0m+XDiRUJ5tbVTtDDktPUeR43D9pq99LZPXHPU/QmrgYGS 9rXmZP5rMVOjeMgr1w5Df3VpkeU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org