$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa File: D34588789F8A11ECB8E03812C4F9AE02.roa (raw, json) Hash identifier: wn3cySuLwXeKUJ473H4yvfiVQMWLgbgSubD4zK5xaVw= Subject key identifier: 65:21:C1:76:1A:8E:E1:8D:E3:D8:5B:FB:08:B6:66:FD:CF:27:00:8F Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0EBA Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa Signing time: Fri 12 Jan 2024 18:25:34 +0000 ROA not before: Fri 12 Jan 2024 18:25:34 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 59249 IP address blocks: 58.84.33.0/24 maxlen: 24 58.84.34.0/24 maxlen: 24 58.84.35.0/24 maxlen: 24 103.197.49.0/24 maxlen: 24 103.254.94.0/24 maxlen: 24 103.254.167.0/24 maxlen: 24 2404:9d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3770 (0xeba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Jan 12 18:25:34 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a1841e-159a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d1:b6:ab:ff:16:a4:45:5f:ce:1e:2b:1f:03: 8c:82:84:b6:14:2a:de:3a:dd:5c:58:fe:2d:fc:bb: 00:dd:33:81:37:66:d1:64:d8:64:6f:c3:b2:14:14: 68:16:20:55:75:73:bf:40:84:db:a3:cb:34:23:1d: 51:25:7a:ba:46:18:ae:51:15:68:dd:2f:f4:43:58: 1c:15:99:ff:af:6b:e7:29:1d:79:be:8e:cd:d3:08: 48:b7:54:e1:ce:03:58:5f:13:7c:b6:78:85:77:f7: 21:2e:cb:e3:25:e3:25:4b:7c:61:9b:12:5d:d1:35: 6b:38:aa:46:87:73:74:65:63:0f:89:86:85:27:5e: cb:dd:63:15:cc:6c:a6:91:30:3a:cc:9d:97:5c:8d: 90:0a:b0:14:f2:14:dd:99:22:8f:8c:b5:f4:73:67: 6c:34:40:72:91:93:39:1c:3e:2f:8c:20:55:2e:95: 60:53:20:90:41:2f:42:5e:32:bf:d6:90:1e:cc:be: 95:ab:8a:a6:65:5f:6e:f7:fe:42:81:83:40:56:8e: b7:2d:e9:3d:2e:dd:a6:ea:d6:48:e2:a4:00:d5:19: 1b:13:72:b6:8a:c8:75:50:2e:e7:61:c6:42:50:45: 5f:58:a1:6f:b5:5a:b0:be:0c:d9:01:85:d7:30:bb: 42:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:21:C1:76:1A:8E:E1:8D:E3:D8:5B:FB:08:B6:66:FD:CF:27:00:8F X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.33.0-58.84.35.255 103.197.49.0/24 103.254.94.0/24 103.254.167.0/24 IPv6: 2404:9d80::/32 Signature Algorithm: sha256WithRSAEncryption 0f:9f:71:e1:9e:2a:10:16:c0:1c:3d:8e:78:77:f9:c8:ee:b9: 46:ef:a6:00:ba:1e:c1:9b:64:b5:1a:07:b6:42:c1:99:6c:c5: 2d:83:6e:7f:d9:a6:0a:57:51:48:1e:30:52:b7:23:84:28:1c: 74:21:c0:cf:aa:01:cb:81:b9:6b:40:60:43:da:b3:e8:05:7e: c3:f8:59:b6:54:81:92:1f:5b:9b:64:21:e4:c6:30:63:13:bc: 39:f7:a3:a1:39:83:bc:4b:24:34:cf:34:f7:e8:ba:55:2c:81: 21:bd:9f:47:47:66:88:ad:09:5a:cb:61:e5:1e:c8:c3:48:7c: 35:4a:2a:e2:e0:86:61:b2:73:6d:d2:80:99:d5:0d:ad:71:a8: b7:4a:2f:1f:f8:91:d9:12:df:8d:ca:62:8f:09:3c:c4:7e:ff: 92:b8:2a:07:63:96:44:a0:ea:eb:fc:01:12:16:2f:f2:0d:3f: 2f:c2:8d:a1:8f:b3:5d:51:11:41:d9:e5:a4:72:28:fc:01:8c: 87:30:0a:01:64:8e:5d:98:a6:2f:f0:74:73:b0:d3:54:a7:9c: be:c4:19:87:45:15:d6:34:c2:23:b8:af:f9:9e:78:d7:f7:92: d8:53:ef:19:43:ca:7e:69:d7:45:f8:ac:a3:5c:82:8f:20:27: 90:46:79:67 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICDrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjQwMTEyMTgyNTM0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExODQxZS0xNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dG2q/8WpEVfzh4rHwOMgoS2FCreOt1cWP4t/LsA3TOBN2bRZNhkb8OyFBRo FiBVdXO/QITbo8s0Ix1RJXq6RhiuURVo3S/0Q1gcFZn/r2vnKR15vo7N0whIt1Th zgNYXxN8tniFd/chLsvjJeMlS3xhmxJd0TVrOKpGh3N0ZWMPiYaFJ17L3WMVzGym kTA6zJ2XXI2QCrAU8hTdmSKPjLX0c2dsNEBykZM5HD4vjCBVLpVgUyCQQS9CXjK/ 1pAezL6Vq4qmZV9u9/5CgYNAVo63Lek9Lt2m6tZI4qQA1RkbE3K2ish1UC7nYcZC UEVfWKFvtVqwvgzZAYXXMLtC2QIDAQABo4ICvjCCArowHQYDVR0OBBYEFGUhwXYa juGN49hb+wi2Zv3PJwCPMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZBRDIvODM0QUM0Nzg1OUJGMTFFOTg5QjkzQjYzQzRGOUFFMDIvRDM0NTg4Nzg5 RjhBMTFFQ0I4RTAzODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCAwDAMEADpUIQMEAjpUIAMEAGfFMQMEAGf+XgMEAGf+pzANBAIA AjAHAwUAJASdgDANBgkqhkiG9w0BAQsFAAOCAQEAD59x4Z4qEBbAHD2OeHf5yO65 Ru+mALoewZtktRoHtkLBmWzFLYNuf9mmCldRSB4wUrcjhCgcdCHAz6oBy4G5a0Bg Q9qz6AV+w/hZtlSBkh9bm2Qh5MYwYxO8OfejoTmDvEskNM809+i6VSyBIb2fR0dm iK0JWsth5R7Iw0h8NUoq4uCGYbJzbdKAmdUNrXGot0ovH/iR2RLfjcpijwk8xH7/ krgqB2OWRKDq6/wBEhYv8g0/L8KNoY+zXVERQdnlpHIo/AGMhzAKAWSOXZimL/B0 c7DTVKecvsQZh0UV1jTCI7iv+Z541/eS2FPvGUPKfmnXRfiso1yCjyAnkEZ5Zw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org