$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa File: E1F3085E777E11EFB3F75352C4F9AE02.roa (raw, json) Hash identifier: k8bmIEi5AkEe4xzWalacEnF3qdgyVE7VkZI11nYD+RY= Subject key identifier: A6:1D:6A:8C:6A:BC:0E:8D:45:9F:F1:38:B3:4C:6F:28:D3:7A:CB:9A Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 25 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa Signing time: Fri 01 Nov 2024 09:12:26 +0000 ROA not before: Fri 01 Nov 2024 09:12:26 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135530 IP address blocks: 45.254.36.0/23 maxlen: 23 45.254.36.0/24 maxlen: 24 45.254.37.0/24 maxlen: 24 45.254.39.0/24 maxlen: 24 2405:a280:34::/48 maxlen: 48 2405:a280:35::/48 maxlen: 48 2405:a280:42::/48 maxlen: 48 2405:a280:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Nov 1 09:12:26 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67249b79-9ad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:aa:b7:1c:86:83:13:68:a9:fd:67:38:f9: 52:45:fe:4d:f5:78:87:1c:7c:a3:4a:ac:88:af:ce: 69:01:58:65:ca:c6:14:48:7f:2d:c1:ba:96:b9:74: d5:d4:42:9d:3a:3f:f5:5c:6b:4b:1e:8a:65:7a:c8: 02:7f:ff:f9:6d:2d:74:c5:37:46:87:eb:1d:b9:2d: 67:95:22:8b:fc:b6:51:84:12:de:ba:49:44:8f:b4: f8:ae:08:e0:ba:b2:65:41:51:0a:36:57:20:01:83: 0f:f3:6c:5e:30:6a:30:3a:a2:05:7f:de:68:62:c0: c7:97:7d:21:5f:21:d1:ab:a0:01:16:a7:c5:83:65: d1:ba:71:b5:fa:05:71:08:c9:af:42:e8:12:55:0f: e3:5e:cc:52:3d:1c:e2:d6:21:ec:e2:2a:99:61:a5: 3c:39:87:dd:b3:66:ed:64:a6:de:ba:b3:a4:ad:9e: b2:3c:76:9a:b2:69:ac:96:e4:03:72:0d:c1:69:84: 59:22:af:23:5a:03:0e:4a:d1:68:b1:22:ae:e1:af: 5e:ef:bc:38:59:cf:fb:65:d4:5f:13:26:8a:4e:7c: 4e:01:f4:ea:9c:02:4c:4a:bc:36:08:bc:4e:9e:70: 08:f6:0f:c0:41:bd:b9:5a:22:57:90:02:6a:35:f7: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1D:6A:8C:6A:BC:0E:8D:45:9F:F1:38:B3:4C:6F:28:D3:7A:CB:9A X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/E1F3085E777E11EFB3F75352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.254.36.0/23 45.254.39.0/24 IPv6: 2405:a280:34::/47 2405:a280:42::/47 Signature Algorithm: sha256WithRSAEncryption 91:43:54:3e:b8:fd:a8:85:76:4b:44:fe:ad:68:71:af:cc:25: 83:3f:22:6d:55:e2:90:1f:6e:58:c7:f1:1d:1b:56:25:e1:20: 72:d1:61:23:32:d9:94:34:4b:59:6c:de:56:91:ab:f7:9d:65: 24:5a:6b:23:7d:47:84:58:63:5a:d8:a6:8c:19:42:d4:2d:a3: e1:01:72:7d:a1:c3:16:85:73:e3:e8:80:48:ed:68:f5:f5:17: 75:8e:ca:38:a0:e5:85:18:ec:3f:2e:e2:24:a0:7e:7a:c5:ab: fa:bb:1d:4f:33:68:e6:46:8f:23:59:04:64:24:d8:64:34:02: 4c:f1:5d:76:86:4c:f4:f9:6e:61:c0:0b:e0:03:96:78:40:2d: 19:7a:30:b0:c6:1d:d7:ec:16:7e:d5:76:33:de:3b:54:4e:c4: 88:43:6d:69:5b:66:5a:89:b5:3b:f3:70:d4:05:5f:c1:32:3e: be:f6:b6:6c:8c:5d:d9:ea:19:24:c0:40:9e:d5:57:3e:c9:c2: d8:94:25:f1:bb:0f:ba:af:39:0c:2a:36:9c:fd:3e:20:e9:7c: ee:58:e2:4e:9e:2a:4b:84:e7:f3:63:f4:5c:67:ef:2c:ac:25: e6:80:a4:f6:23:30:d4:a1:4c:e6:e9:9d:7b:2c:69:5f:a1:e9: 8b:30:ef:a6 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDkyQzExMC8GA1UEBRMoODE3REQzODAyRjI2RTU3RUNFODI2NUNFODYyNkZDQkI5 QzY0RTlENDAeFw0yNDExMDEwOTEyMjZaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjQ5Yjc5LTlhZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxo6q3HIaDE2ip/Wc4+VJF/k31eIccfKNKrIivzmkBWGXKxhRIfy3Bupa5dNXU Qp06P/Vca0seimV6yAJ///ltLXTFN0aH6x25LWeVIov8tlGEEt66SUSPtPiuCOC6 smVBUQo2VyABgw/zbF4wajA6ogV/3mhiwMeXfSFfIdGroAEWp8WDZdG6cbX6BXEI ya9C6BJVD+NezFI9HOLWIeziKplhpTw5h92zZu1kpt66s6StnrI8dpqyaayW5ANy DcFphFkiryNaAw5K0WixIq7hr17vvDhZz/tl1F8TJopOfE4B9OqcAkxKvDYIvE6e cAj2D8BBvblaIleQAmo19yjzAgMBAAGjggK1MIICsTAdBgNVHQ4EFgQUph1qjGq8 Do1Fn/E4s0xvKNN6y5owHwYDVR0jBBgwFoAUgX3TgC8m5X7OgmXOhib8u5xk6dQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTJDL0UyQzA3N0RFNzc2 NjExRUZCNTVFRDI3OUM0RjlBRTAyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1gzVGdDOG01WDdPZ21YT2hpYjh1NXhrNmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9FMUYzMDg1RTc3 N0UxMUVGQjNGNzUzNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA/BggrBgEFBQcBBwEB/wQw MC4wEgQCAAEwDAMEAS3+JAMEAC3+JzAYBAIAAjASAwcBJAWigAA0AwcBJAWigABC MA0GCSqGSIb3DQEBCwUAA4IBAQCRQ1Q+uP2ohXZLRP6taHGvzCWDPyJtVeKQH25Y x/EdG1Yl4SBy0WEjMtmUNEtZbN5Wkav3nWUkWmsjfUeEWGNa2KaMGULULaPhAXJ9 ocMWhXPj6IBI7Wj19Rd1jso4oOWFGOw/LuIkoH56xav6ux1PM2jmRo8jWQRkJNhk NAJM8V12hkz0+W5hwAvgA5Z4QC0ZejCwxh3X7BZ+1XYz3jtUTsSIQ21pW2ZaibU7 83DUBV/BMj6+9rZsjF3Z6hkkwECe1Vc+ycLYlCXxuw+6rzkMKjac/T4g6XzuWOJO nipLhOfzY/RcZ+8srCXmgKT2IzDUoUzm6Z17LGlfoemLMO+m -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org