$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa File: DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa (raw, json) Hash identifier: lUm2TNPxrCXgL1T7LIO3Y79aFpYIYcK/d2SLX4eq438= Subject key identifier: CF:1D:CD:32:10:ED:DE:A6:07:F3:9F:15:09:FA:AF:C7:41:30:58:CA Certificate issuer: /CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Certificate serial: 084B Authority key identifier: 07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa Signing time: Mon 02 Sep 2024 21:29:57 +0000 ROA not before: Mon 02 Sep 2024 21:29:57 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17819 IP address blocks: 45.116.132.0/24 maxlen: 24 45.116.135.0/24 maxlen: 24 103.9.92.0/24 maxlen: 24 103.9.93.0/24 maxlen: 24 103.37.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Validity Not Before: Sep 2 21:29:57 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d62e55-4395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:91:39:ad:57:7c:09:ea:2e:3f:ab:34:22:bb: a3:89:fe:70:79:4e:c5:57:d5:d8:67:36:ff:4a:09: e6:53:28:d5:6c:b4:d1:5e:ef:78:9e:fe:8b:d2:e3: b1:fa:b6:b6:0e:75:a3:f8:61:dc:84:e4:b3:5c:9b: 8e:64:5f:fa:3b:83:30:99:59:1f:43:77:7b:fb:5b: 92:5b:93:7c:40:08:1b:7b:ab:f5:c7:c5:99:fb:a0: c6:30:58:b5:64:87:ae:65:0d:b3:b3:49:da:f3:b8: ce:95:d3:fa:94:22:c1:fc:fe:40:23:04:77:f5:02: 89:76:5d:ca:39:c5:ab:b7:e2:de:c2:b4:49:82:7c: fc:6c:2b:4a:01:95:04:af:0c:3c:10:80:37:5a:50: 87:2b:c7:ac:ea:54:e5:52:d4:68:90:ca:f4:bb:76: 3b:f9:aa:a0:1f:8e:91:7d:a3:69:30:a1:44:79:2f: f0:37:77:cc:08:5b:db:48:a9:f9:ce:52:a6:ca:c4: cf:c4:89:0e:55:65:94:91:eb:43:39:11:38:91:a3: da:a8:d5:f9:d2:81:f1:ac:39:38:70:4e:ee:52:1d: 33:bb:dd:2e:89:ab:f4:1c:96:8f:14:f9:f4:27:70: df:b7:62:e9:d9:dd:17:ac:8b:2d:03:97:4f:59:4b: 8f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:1D:CD:32:10:ED:DE:A6:07:F3:9F:15:09:FA:AF:C7:41:30:58:CA X509v3 Authority Key Identifier: keyid:07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.132.0/24 45.116.135.0/24 103.9.92.0/23 103.37.132.0/24 Signature Algorithm: sha256WithRSAEncryption 95:70:6c:36:6c:89:9b:42:ee:5c:74:fc:6c:41:f7:a4:fb:a3: c7:e8:9d:5c:72:a1:ee:c1:91:34:3c:09:74:f9:a8:3f:cc:d4: f1:2d:60:25:42:54:ad:44:5b:a1:ec:c3:42:93:2b:9f:ea:07: 84:96:d7:31:a7:35:9f:0e:b9:4f:65:e4:84:cb:f0:bc:7e:81: 21:39:5f:8d:84:bc:71:3c:f6:6c:17:ef:a9:ec:3b:a9:58:48: 54:3e:3a:6f:3a:8e:1f:12:9a:25:73:30:50:8c:6d:d4:25:a5: 12:50:8b:1e:cb:3b:7a:86:47:3d:93:07:bd:38:a9:c6:5a:68: d4:03:2d:3a:38:5c:b5:8f:e0:4b:4e:db:b4:3e:93:97:49:6d: 03:83:59:3d:03:cc:d5:0c:8c:9b:3f:23:1f:7d:b5:33:39:dc: e9:3f:6c:9d:00:98:fa:03:75:52:fe:16:8e:ac:c7:ba:1b:7a: ae:b2:c4:47:e7:ce:13:ea:91:d6:a6:39:3f:2d:60:56:e6:d1: fd:64:d3:c9:0f:53:4f:02:0c:ef:71:2f:55:57:b4:fb:d2:1d: 27:69:88:28:5a:45:d7:3c:a6:3f:58:9c:9b:87:54:1a:b9:47: 69:66:b8:b3:ee:fa:d9:5c:1c:4e:50:44:2e:17:be:ff:7c:fd: 14:63:3d:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDQjExMTAvBgNVBAUTKDA3MkNERjY1MUIzMTJDQUZCREIwNDlBMzM1NjlGRUE2 RUY2Qzk1MTcwHhcNMjQwOTAyMjEyOTU3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MmU1NS00Mzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pE5rVd8CeouP6s0Irujif5weU7FV9XYZzb/SgnmUyjVbLTRXu94nv6L0uOx +ra2DnWj+GHchOSzXJuOZF/6O4MwmVkfQ3d7+1uSW5N8QAgbe6v1x8WZ+6DGMFi1 ZIeuZQ2zs0na87jOldP6lCLB/P5AIwR39QKJdl3KOcWrt+LewrRJgnz8bCtKAZUE rww8EIA3WlCHK8es6lTlUtRokMr0u3Y7+aqgH46RfaNpMKFEeS/wN3fMCFvbSKn5 zlKmysTPxIkOVWWUketDORE4kaPaqNX50oHxrDk4cE7uUh0zu90uiav0HJaPFPn0 J3Dft2Lp2d0XrIstA5dPWUuPCwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFM8dzTIQ 7d6mB/OfFQn6r8dBMFjKMB8GA1UdIwQYMBaAFAcs32UbMSyvvbBJozVp/qbvbJUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNCMS9EMDBERDQ5OEJD MDIxMUVBQjhDNzkwNDhDNEY5QUUwMi9CeXpmWlJzeExLLTlzRW1qTlduLXB1OXNs UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5emZaUnN4TEstOXNFbWpOV24tcHU5c2xSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDQjEvRDAwREQ0OThCQzAyMTFFQUI4Qzc5MDQ4QzRGOUFFMDIvREY1RTdDQjZF RDlDMTFFRTgxRUZENDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAtdIQDBAAtdIcDBAFnCVwDBABnJYQwDQYJKoZIhvcNAQEL BQADggEBAJVwbDZsiZtC7lx0/GxB96T7o8fonVxyoe7BkTQ8CXT5qD/M1PEtYCVC VK1EW6Hsw0KTK5/qB4SW1zGnNZ8OuU9l5ITL8Lx+gSE5X42EvHE89mwX76nsO6lY SFQ+Om86jh8SmiVzMFCMbdQlpRJQix7LO3qGRz2TB704qcZaaNQDLTo4XLWP4EtO 27Q+k5dJbQODWT0DzNUMjJs/Ix99tTM53Ok/bJ0AmPoDdVL+Fo6sx7obeq6yxEfn zhPqkdamOT8tYFbm0f1k08kPU08CDO9xL1VXtPvSHSdpiChaRdc8pj9YnJuHVBq5 R2lmuLPu+tlcHE5QRC4Xvv98/RRjPQU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:28 2024 by rpki-client on console-ams.rpki-client.org