$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa File: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (raw, json) Hash identifier: upnb9pWZD0/MwjWD3rqKlqLTBkCEQHcxZN7CAtlC5Co= Subject key identifier: 0B:26:1C:34:52:7B:B1:99:1B:4B:DA:52:32:04:9A:01:B3:E1:8E:73 Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 60 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa Signing time: Mon 15 Jul 2024 14:11:32 +0000 ROA not before: Mon 15 Jul 2024 14:11:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134375 IP address blocks: 43.230.64.0/22 maxlen: 24 45.122.120.0/22 maxlen: 24 103.62.236.0/22 maxlen: 24 103.77.0.0/22 maxlen: 22 103.77.0.0/23 maxlen: 23 103.77.0.0/24 maxlen: 24 103.77.1.0/24 maxlen: 24 103.77.2.0/23 maxlen: 23 103.77.2.0/24 maxlen: 24 103.77.3.0/24 maxlen: 24 103.251.140.0/22 maxlen: 24 116.206.156.0/22 maxlen: 24 203.189.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Jul 15 14:11:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66952e13-e219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:39:0e:10:c6:bb:3b:d4:9c:a9:55:2e:3d: 13:6b:97:5a:cf:65:6f:7c:ab:4f:bf:b0:06:af:fe: a3:1e:32:a1:a5:f6:6d:45:b2:7a:3e:a8:da:84:aa: 28:7e:06:2b:df:71:4e:5d:38:19:78:48:3f:df:0c: e2:7a:3d:43:71:19:bd:d7:db:86:3f:7c:ae:96:89: 10:07:05:a0:c4:57:eb:ff:92:b5:62:7b:02:d1:11: db:5b:19:27:59:67:a3:5d:0c:a7:a2:49:e5:ce:d7: 4b:46:6e:b2:65:6e:a1:fe:26:5a:80:d7:81:8d:57: 44:dc:10:bf:be:d5:b4:07:e6:7c:f7:84:10:79:9f: 53:2e:af:40:07:45:e6:4d:43:82:74:77:21:1e:50: de:d1:77:83:93:b8:92:44:ad:b8:66:0f:aa:a9:91: 3b:e4:89:66:e1:3d:71:06:f2:e9:47:b1:d5:86:42: 5f:6c:41:39:a4:a2:48:2c:13:bb:21:24:b2:bd:22: af:35:6f:15:5a:b1:70:90:d9:d2:59:59:2b:ca:d3: 19:e9:64:14:3a:17:0f:97:07:45:89:f0:db:2d:b4: df:3c:5c:80:92:59:80:8d:52:c9:a1:bc:40:2b:ed: 4d:65:97:2d:39:a2:fe:d5:8b:eb:6c:d5:cf:ca:ef: a5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:26:1C:34:52:7B:B1:99:1B:4B:DA:52:32:04:9A:01:B3:E1:8E:73 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.64.0/22 45.122.120.0/22 103.62.236.0/22 103.77.0.0/22 103.251.140.0/22 116.206.156.0/22 203.189.252.0/22 Signature Algorithm: sha256WithRSAEncryption 40:c3:5a:c9:eb:5e:4c:fd:3a:f9:76:fa:1a:7d:f0:8e:21:f7: 95:0d:fb:fb:74:18:33:96:fc:c0:66:5e:40:6d:0f:6f:e8:d2: cb:93:d2:a6:36:ff:74:21:06:78:c2:b4:b7:8e:fc:66:ca:cf: c4:19:d6:d6:cf:ce:7c:cb:82:60:29:cd:62:73:a7:a7:bf:1e: 2b:53:dc:08:45:22:42:11:4c:1b:9c:07:b4:12:a0:8d:a0:be: 90:36:d8:2e:12:c9:67:f7:e3:a8:1d:e8:f2:9b:4f:41:8a:7a: 61:7b:ce:58:81:db:db:df:76:37:77:a4:37:e6:8c:d7:10:ad: 4b:7f:77:20:b0:8f:7e:3a:00:89:ec:64:3d:ef:7a:da:0e:b2: ae:25:8d:5b:bb:2f:49:5f:fa:cd:55:a2:96:2c:7f:c9:6b:dc: ee:22:d4:61:4c:35:ec:25:4e:10:2e:a7:18:03:ee:00:8b:27: 6d:0d:8b:18:1a:8f:9c:dc:a7:90:b2:e8:cf:85:2e:9c:3f:fd: 9c:10:8e:63:1c:a4:eb:6c:f8:21:f9:4d:a5:0b:a4:c5:01:08: 74:ac:0c:86:38:6c:27:37:ab:ff:d9:a2:e9:58:49:52:5d:20: 99:7b:f9:dd:a5:42:19:68:6a:ad:fb:37:3e:fb:1e:71:ea:1d: 46:49:35:71 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QkI1MTExMC8GA1UEBRMoM0VBNDM0N0QyRDlGRDZFQjZBMDFCNDRFNTU3MUY4OEIw OEFDQzI1QjAeFw0yNDA3MTUxNDExMzJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTUyZTEzLWUyMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLTDkOEMa7O9ScqVUuPRNrl1rPZW98q0+/sAav/qMeMqGl9m1Fsno+qNqEqih+ BivfcU5dOBl4SD/fDOJ6PUNxGb3X24Y/fK6WiRAHBaDEV+v/krViewLREdtbGSdZ Z6NdDKeiSeXO10tGbrJlbqH+JlqA14GNV0TcEL++1bQH5nz3hBB5n1Mur0AHReZN Q4J0dyEeUN7Rd4OTuJJErbhmD6qpkTvkiWbhPXEG8ulHsdWGQl9sQTmkokgsE7sh JLK9Iq81bxVasXCQ2dJZWSvK0xnpZBQ6Fw+XB0WJ8NsttN88XICSWYCNUsmhvEAr 7U1lly05ov7Vi+ts1c/K76WzAgMBAAGjggK5MIICtTAdBgNVHQ4EFgQUCyYcNFJ7 sZkbS9pSMgSaAbPhjnMwHwYDVR0jBBgwFoAUPqQ0fS2f1utqAbROVXH4iwiswlsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCQjUxLzI1QUNGNUMwQzRC ODExRUVCRDcxQzQ0NkM0RjlBRTAyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3ds cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHFRMGZTMmYxdXRxQWJST1ZYSDRpd2lzd2xzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9BOUM1QzFDQUM0 QjgxMUVFOEEwM0Q1NDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBDBggrBgEFBQcBBwEB/wQ0 MDIwMAQCAAEwKgMEAivmQAMEAi16eAMEAmc+7AMEAmdNAAMEAmf7jAMEAnTOnAME Asu9/DANBgkqhkiG9w0BAQsFAAOCAQEAQMNayeteTP06+Xb6Gn3wjiH3lQ37+3QY M5b8wGZeQG0Pb+jSy5PSpjb/dCEGeMK0t478ZsrPxBnW1s/OfMuCYCnNYnOnp78e K1PcCEUiQhFMG5wHtBKgjaC+kDbYLhLJZ/fjqB3o8ptPQYp6YXvOWIHb2992N3ek N+aM1xCtS393ILCPfjoAiexkPe962g6yriWNW7svSV/6zVWilix/yWvc7iLUYUw1 7CVOEC6nGAPuAIsnbQ2LGBqPnNynkLLoz4UunD/9nBCOYxyk62z4IflNpQukxQEI dKwMhjhsJzer/9mi6VhJUl0gmXv53aVCGWhqrfs3PvseceodRkk1cQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:07 2024 by rpki-client on console-ams.rpki-client.org