$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/9A05BA12D86B11E9B8BFCE0AC4F9AE02.roa File: 9A05BA12D86B11E9B8BFCE0AC4F9AE02.roa (raw, json) Hash identifier: Dxxz+0RRzU627PcHaQAquZ9v+JbSol4zXAoOXpPJbsU= Subject key identifier: 88:69:1D:80:A2:CB:2A:26:F6:70:64:99:E5:77:39:58:C5:BD:15:99 Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Certificate serial: 33E7 Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/9A05BA12D86B11E9B8BFCE0AC4F9AE02.roa Signing time: Sat 02 Mar 2024 15:21:01 +0000 ROA not before: Sat 02 Mar 2024 15:21:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 45629 IP address blocks: 58.82.128.0/24 maxlen: 24 58.82.191.0/24 maxlen: 24 182.50.84.0/22 maxlen: 22 182.50.84.0/23 maxlen: 23 182.50.86.0/23 maxlen: 23 182.50.87.0/24 maxlen: 24 182.50.92.0/22 maxlen: 22 182.50.92.0/24 maxlen: 24 182.50.93.0/24 maxlen: 24 182.50.94.0/24 maxlen: 24 203.209.191.0/24 maxlen: 24 2404:4a00::/32 maxlen: 32 2404:4a00:3293::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 15:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13287 (0x33e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Validity Not Before: Mar 2 15:21:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e343dd-5164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:87:fe:85:59:68:10:0c:58:a2:3a:15:53:98: a8:68:d7:51:0b:a7:39:d3:bf:6b:7e:77:d1:41:8d: 3f:55:40:af:fd:f9:ba:09:ce:e3:c9:cc:a6:0e:cd: c7:20:79:6d:84:4f:e1:41:93:0b:04:39:81:53:1e: 2a:fa:a9:e2:0e:91:2b:09:9e:8f:e7:55:19:a4:50: 5c:b0:fe:5a:b8:59:44:94:42:fc:e8:62:73:10:a6: 34:1d:bc:75:c6:c0:ab:75:dd:03:65:21:f8:d9:38: 6f:77:f5:08:91:f6:6a:03:ca:40:a9:0a:22:89:1e: 1d:ec:48:88:09:7f:ab:d9:6d:5c:2d:55:34:78:6b: 0b:1d:71:31:99:2e:7a:53:f5:d6:90:d5:68:ab:20: 62:d5:00:4d:f4:65:7d:b0:5a:4d:aa:58:ef:ac:c6: f7:35:8c:ac:90:7c:63:21:39:09:4e:8f:4b:4b:53: 0a:80:a5:25:b7:7a:a8:df:ec:74:93:c5:95:02:fa: ef:9f:39:0a:ef:f7:65:1e:90:b4:d3:19:38:08:4b: 4f:3c:e4:c7:3f:e2:81:73:de:5e:c6:dd:29:06:08: b4:40:fb:bb:a4:15:ad:8b:76:42:fc:d0:72:2b:99: c8:53:07:d2:07:b1:6a:00:7f:68:47:e3:51:11:61: fc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:69:1D:80:A2:CB:2A:26:F6:70:64:99:E5:77:39:58:C5:BD:15:99 X509v3 Authority Key Identifier: keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/9A05BA12D86B11E9B8BFCE0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.82.128.0/24 58.82.191.0/24 182.50.84.0/22 182.50.92.0/22 203.209.191.0/24 IPv6: 2404:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 02:e9:6c:9c:1f:0c:b8:17:0b:2f:0f:52:0d:4b:36:62:a4:30: 09:c4:b4:70:a3:a5:06:3e:0e:e8:95:1b:d7:07:23:93:8a:13: dc:fb:0c:a3:ce:0a:90:41:0a:6d:bf:35:6e:45:d0:99:cd:33: 0a:f2:16:ff:f2:32:bb:04:54:02:2b:36:0c:6e:1f:28:a1:21: 91:28:07:01:61:ec:b2:22:3b:b9:f6:64:dc:ec:7c:ad:c5:f6: 92:08:2f:36:97:ff:b4:2b:e9:34:5d:d1:fd:48:c5:ae:e6:a9: e1:47:7b:3f:32:88:b7:50:da:a4:40:24:e2:b2:df:ac:88:76: 42:21:2c:a1:ea:79:94:98:ae:03:8f:3d:67:f3:12:af:16:41: da:f1:d0:b5:dd:b5:8c:4e:d3:57:0b:93:0a:cf:4c:f4:52:8f: 52:75:35:2d:27:34:f5:cf:19:94:d4:ad:cd:b8:df:fa:3c:34: e2:43:fe:77:dc:38:07:40:f9:35:f7:0a:9d:db:f2:66:7a:a4: 4e:2a:58:c5:13:22:98:67:6d:e9:1b:e4:38:34:ac:34:2f:30: 7d:7d:a0:06:b9:e4:bf:d8:96:db:ef:fb:5c:e5:81:83:af:da: bd:0d:c7:dc:89:7e:aa:50:9f:14:08:51:b8:93:03:a0:e5:5a: 24:90:25:14 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICM+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDRENzIzOTU1MjQzQUU4OEQ1NTI0MzlBRjhFNEUwQTA5 QzhGNjU5MEQwHhcNMjQwMzAyMTUyMTAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNDNkZC01MTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYf+hVloEAxYojoVU5ioaNdRC6c5079rfnfRQY0/VUCv/fm6Cc7jycymDs3H IHlthE/hQZMLBDmBUx4q+qniDpErCZ6P51UZpFBcsP5auFlElEL86GJzEKY0Hbx1 xsCrdd0DZSH42Thvd/UIkfZqA8pAqQoiiR4d7EiICX+r2W1cLVU0eGsLHXExmS56 U/XWkNVoqyBi1QBN9GV9sFpNqljvrMb3NYyskHxjITkJTo9LS1MKgKUlt3qo3+x0 k8WVAvrvnzkK7/dlHpC00xk4CEtPPOTHP+KBc95ext0pBgi0QPu7pBWti3ZC/NBy K5nIUwfSB7FqAH9oR+NREWH8zwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFIhpHYCi yyom9nBkmeV3OVjFvRWZMB8GA1UdIwQYMBaAFE1yOVUkOuiNVSQ5r45OCgnI9lkN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS9ENTIxNDI3MDFE OUIxMUUyQjgyMUZEODkwOEIwMkNEMi9UWEk1VlNRNjZJMVZKRG12ams0S0NjajJX UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYSTVWU1E2NkkxVkpEbXZqazRLQ2NqMldRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvRDUyMTQyNzAxRDlCMTFFMkI4MjFGRDg5MDhCMDJDRDIvOUEwNUJBMTJE ODZCMTFFOUI4QkZDRTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAA6UoADBAA6Ur8DBAK2MlQDBAK2MlwDBADL0b8wDQQCAAIw BwMFACQESgAwDQYJKoZIhvcNAQELBQADggEBAALpbJwfDLgXCy8PUg1LNmKkMAnE tHCjpQY+DuiVG9cHI5OKE9z7DKPOCpBBCm2/NW5F0JnNMwryFv/yMrsEVAIrNgxu HyihIZEoBwFh7LIiO7n2ZNzsfK3F9pIILzaX/7Qr6TRd0f1Ixa7mqeFHez8yiLdQ 2qRAJOKy36yIdkIhLKHqeZSYrgOPPWfzEq8WQdrx0LXdtYxO01cLkwrPTPRSj1J1 NS0nNPXPGZTUrc243/o8NOJD/nfcOAdA+TX3Cp3b8mZ6pE4qWMUTIphnbekb5Dg0 rDQvMH19oAa55L/Yltvv+1zlgYOv2r0Nx9yJfqpQnxQIUbiTA6DlWiSQJRQ= -----END CERTIFICATE-----Generated at Sun Jun 2 18:46:18 2024 by rpki-client on console-ams.rpki-client.org