$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/4F1B63805A0A11ECAEA43C36C4F9AE02.roa File: 4F1B63805A0A11ECAEA43C36C4F9AE02.roa (raw, json) Hash identifier: rGfZC2Q1jf+rHCt6dtELEnO09+j2ChgYWKEfS3f0qlo= Subject key identifier: E6:51:CC:2A:B3:3E:D4:96:0D:04:ED:5D:9E:2E:C4:D8:C9:D5:F9:63 Certificate issuer: /CN=A914DC55/serialNumber=F38589F8464AA5A91699F808649EC536831B004A Certificate serial: 048A Authority key identifier: F3:85:89:F8:46:4A:A5:A9:16:99:F8:08:64:9E:C5:36:83:1B:00:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84WJ-EZKpakWmfgIZJ7FNoMbAEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/4F1B63805A0A11ECAEA43C36C4F9AE02.roa Signing time: Sun 13 Oct 2024 00:03:36 +0000 ROA not before: Sun 13 Oct 2024 00:03:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134677 IP address blocks: 45.127.32.0/24 maxlen: 24 45.127.33.0/24 maxlen: 24 45.127.34.0/24 maxlen: 24 45.127.35.0/24 maxlen: 24 103.195.188.0/24 maxlen: 24 103.195.189.0/24 maxlen: 24 103.195.190.0/24 maxlen: 24 103.195.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/84WJ-EZKpakWmfgIZJ7FNoMbAEo.crl rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/84WJ-EZKpakWmfgIZJ7FNoMbAEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84WJ-EZKpakWmfgIZJ7FNoMbAEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC55/serialNumber=F38589F8464AA5A91699F808649EC536831B004A Validity Not Before: Oct 13 00:03:36 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670b0e57-d575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6e:99:37:e8:77:94:4b:66:93:b1:4f:dd:ee: f8:16:d5:19:50:cf:03:a7:86:9a:a1:11:19:56:49: 53:bd:af:62:4a:73:85:3b:d7:7f:81:14:53:c0:4b: 2f:43:29:7e:c2:5f:1d:5d:1d:d0:b3:30:8b:d7:78: 8d:fe:8d:1b:1e:72:e6:74:e2:eb:2f:ca:4e:a8:08: 12:99:c0:22:55:44:67:85:9b:a8:55:84:9e:91:ab: d1:70:07:f4:a9:02:00:28:fd:ec:f9:c2:a9:c4:4c: 13:c4:ab:49:42:b1:db:71:d8:78:9f:f8:d3:4f:9d: 51:50:28:9f:a4:00:8e:98:0f:0e:08:e2:33:c7:b8: 25:a5:5c:a0:48:8c:72:23:fc:36:e8:35:ba:94:0d: 9d:e7:b1:e9:6a:cb:03:39:80:1d:1c:d6:4b:3e:d1: 25:ab:01:21:08:a2:03:f9:73:50:c5:8e:34:69:76: fb:17:33:f2:d8:ec:d4:c8:d1:c6:da:a6:0d:77:5b: 93:dc:d3:57:8c:b2:d8:64:20:04:e1:ce:75:10:cd: e0:08:5a:5d:3b:52:74:d1:29:77:c1:c3:36:ce:f1: a9:a2:4a:1c:c5:0f:86:91:62:59:d3:41:df:ef:cb: d2:95:ea:fc:7f:aa:7b:0d:a6:6d:e1:69:d1:59:be: de:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:51:CC:2A:B3:3E:D4:96:0D:04:ED:5D:9E:2E:C4:D8:C9:D5:F9:63 X509v3 Authority Key Identifier: keyid:F3:85:89:F8:46:4A:A5:A9:16:99:F8:08:64:9E:C5:36:83:1B:00:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/84WJ-EZKpakWmfgIZJ7FNoMbAEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84WJ-EZKpakWmfgIZJ7FNoMbAEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC55/CCBE1BA6176211EC81A0D11EC4F9AE02/4F1B63805A0A11ECAEA43C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.32.0/22 103.195.188.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:78:83:d0:7f:d4:70:39:79:99:ba:07:32:f7:fc:3f:fb:1d: 6c:2d:f7:52:dc:c0:a7:41:b6:75:03:ed:75:63:5c:b2:75:cb: a6:91:98:85:3a:28:ae:3c:cb:7b:cc:17:3e:ee:be:7b:fa:3f: be:09:fd:f9:25:8c:db:98:f5:35:33:1a:0b:b3:09:4b:7c:eb: c1:b3:f0:83:93:bf:3a:7c:41:87:d4:b6:eb:18:0e:ce:b4:2d: 68:a3:40:a9:c2:df:8d:ae:8b:0b:3c:2b:53:ea:54:06:db:9d: 32:06:ad:14:74:49:fa:04:3b:5c:89:3e:3c:ea:54:d0:89:b8: 4f:51:b6:bd:58:7e:82:ed:a0:02:14:2b:e9:99:00:3a:e3:f5: c0:00:de:ef:7d:a7:1a:53:17:4d:52:74:9e:c3:14:74:4a:2e: 3f:75:fe:9d:72:4f:e4:5a:1a:20:eb:69:16:3c:ae:5c:13:14: 09:bc:ad:75:c0:5f:13:c8:f0:a1:76:61:22:84:32:26:7e:4f: 16:98:af:0c:c2:59:54:02:b9:e9:26:57:65:09:11:06:c4:cb: ad:c4:aa:1f:17:cf:f4:2d:55:fd:e2:ba:95:91:92:fc:4f:4c: 33:1c:9f:51:6b:d3:1d:8d:3e:25:24:e8:87:2d:5b:77:63:b1: 3c:d9:99:32 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTUxMTAvBgNVBAUTKEYzODU4OUY4NDY0QUE1QTkxNjk5RjgwODY0OUVDNTM2 ODMxQjAwNEEwHhcNMjQxMDEzMDAwMzM2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBiMGU1Ny1kNTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsm6ZN+h3lEtmk7FP3e74FtUZUM8Dp4aaoREZVklTva9iSnOFO9d/gRRTwEsv Qyl+wl8dXR3QszCL13iN/o0bHnLmdOLrL8pOqAgSmcAiVURnhZuoVYSekavRcAf0 qQIAKP3s+cKpxEwTxKtJQrHbcdh4n/jTT51RUCifpACOmA8OCOIzx7glpVygSIxy I/w26DW6lA2d57HpassDOYAdHNZLPtElqwEhCKID+XNQxY40aXb7FzPy2OzUyNHG 2qYNd1uT3NNXjLLYZCAE4c51EM3gCFpdO1J00Sl3wcM2zvGpokocxQ+GkWJZ00Hf 78vSler8f6p7DaZt4WnRWb7eKQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOZRzCqz PtSWDQTtXZ4uxNjJ1fljMB8GA1UdIwQYMBaAFPOFifhGSqWpFpn4CGSexTaDGwBK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1NS9DQ0JFMUJBNjE3 NjIxMUVDODFBMEQxMUVDNEY5QUUwMi84NFdKLUVaS3Bha1dtZmdJWko3Rk5vTWJB RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0V0otRVpLcGFrV21mZ0laSjdGTm9NYkFFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNTUvQ0NCRTFCQTYxNzYyMTFFQzgxQTBEMTFFQzRGOUFFMDIvNEYxQjYzODA1 QTBBMTFFQ0FFQTQzQzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfyADBAJnw7wwDQYJKoZIhvcNAQELBQADggEBAG54g9B/ 1HA5eZm6BzL3/D/7HWwt91LcwKdBtnUD7XVjXLJ1y6aRmIU6KK48y3vMFz7uvnv6 P74J/fkljNuY9TUzGguzCUt868Gz8IOTvzp8QYfUtusYDs60LWijQKnC342uiws8 K1PqVAbbnTIGrRR0SfoEO1yJPjzqVNCJuE9Rtr1YfoLtoAIUK+mZADrj9cAA3u99 pxpTF01SdJ7DFHRKLj91/p1yT+RaGiDraRY8rlwTFAm8rXXAXxPI8KF2YSKEMiZ+ TxaYrwzCWVQCuekmV2UJEQbEy63Eqh8Xz/QtVf3iupWRkvxPTDMcn1Fr0x2NPiUk 6IctW3djsTzZmTI= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org