$ rpki-client -vvf rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa File: 0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa (raw, json) Hash identifier: YBvgqMAPKWiQEgBajy4UQ9Cl4DxiHgtXkIrFv7H3slA= Subject key identifier: DB:66:7D:C3:89:22:C7:EE:0E:D4:D9:AB:D0:0D:B6:94:19:D2:7C:F7 Certificate issuer: /CN=A9182502/serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Certificate serial: 0922 Authority key identifier: 8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa Signing time: Wed 02 Aug 2023 20:38:01 +0000 ROA not before: Wed 02 Aug 2023 20:38:01 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137969 IP address blocks: 39.109.66.0/23 maxlen: 23 39.109.66.0/24 maxlen: 24 39.109.67.0/24 maxlen: 24 39.109.68.0/22 maxlen: 22 39.109.68.0/24 maxlen: 24 39.109.69.0/24 maxlen: 24 39.109.70.0/24 maxlen: 24 39.109.71.0/24 maxlen: 24 39.109.72.0/21 maxlen: 21 39.109.72.0/24 maxlen: 24 39.109.73.0/24 maxlen: 24 39.109.74.0/24 maxlen: 24 39.109.75.0/24 maxlen: 24 39.109.79.0/24 maxlen: 24 39.109.80.0/21 maxlen: 21 39.109.80.0/24 maxlen: 24 39.109.88.0/22 maxlen: 22 39.109.88.0/24 maxlen: 24 39.109.89.0/24 maxlen: 24 103.98.14.0/24 maxlen: 24 103.119.132.0/23 maxlen: 23 103.119.132.0/24 maxlen: 24 103.119.133.0/24 maxlen: 24 2403:e840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2338 (0x922) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182502/serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Validity Not Before: Aug 2 20:38:01 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cabea8-c1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:73:e4:96:2d:bb:59:7c:cb:e4:9b:d0:8d: f3:ce:b4:0f:1e:dc:2e:b0:4b:5e:88:8f:fe:39:d5: ef:d6:60:20:06:0b:ef:b5:32:97:fa:0a:e8:92:c5: 7c:6d:17:8b:01:09:2f:a6:44:1a:2e:8a:77:e7:26: 3d:c7:e8:0c:a9:ea:ec:cd:70:ec:7d:76:88:49:6f: 84:90:c3:ab:88:40:a1:1f:d7:a9:2c:71:6a:f5:c8: 3d:e7:e5:ee:5c:5b:9e:35:a2:dd:63:86:a9:ee:ed: 4b:2d:2e:50:ad:87:98:67:9f:60:f2:2a:92:b7:84: 1b:11:03:cc:0d:b1:72:0c:97:47:96:b9:7f:11:27: aa:7a:38:dc:a4:3a:49:db:b5:77:58:4c:01:ac:47: 5f:f1:84:65:31:87:8e:51:a6:9f:03:6a:b5:21:5c: bb:ed:7f:1b:65:88:1b:73:23:2d:e8:5c:85:b3:19: d6:f8:c5:bf:29:ef:ad:7f:38:59:da:9b:71:a7:8b: 5a:f1:d6:a9:78:63:06:12:c4:58:e2:02:c3:5f:f8: ce:18:7a:9d:b7:20:79:dd:ac:21:2b:46:5f:a0:61: e9:ad:67:6f:8c:e9:ce:95:0a:58:3a:c9:23:30:54: 40:7d:56:94:33:af:e0:1d:88:4a:12:3e:e4:d3:b5: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:66:7D:C3:89:22:C7:EE:0E:D4:D9:AB:D0:0D:B6:94:19:D2:7C:F7 X509v3 Authority Key Identifier: keyid:8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0A5773F6BBBC11ECB2E7FF46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.109.66.0-39.109.91.255 103.98.14.0/24 103.119.132.0/23 IPv6: 2403:e840::/32 Signature Algorithm: sha256WithRSAEncryption 20:b4:0b:1b:33:e5:90:78:4e:b5:45:2f:03:33:dd:d3:fd:f7: 1a:b8:31:87:8c:59:dd:0c:0c:66:be:fa:55:c9:09:e9:30:c3: cd:e8:26:62:0d:62:e6:f5:47:f9:3f:a8:0b:cf:40:94:9e:c3: 7d:93:30:39:8f:4e:77:a1:31:ca:43:29:df:b9:81:a4:5f:0d: cb:bf:97:a6:c5:e4:8b:8b:d5:06:92:79:4c:fa:43:d3:b2:36: 5d:70:93:a1:ed:10:ba:ef:a7:12:b6:29:75:46:e9:00:8a:85: cd:d6:ac:3b:d8:77:9f:a9:d6:03:37:57:8b:1f:0a:96:01:ac: 69:9e:20:41:e1:91:e1:d2:65:2b:91:92:22:f7:7f:6e:d5:46: a9:c0:d3:d1:dc:b6:3d:54:ed:2e:b6:75:59:fc:cc:69:1d:18: 48:c8:44:9a:98:b1:3e:6e:4b:38:43:40:e1:71:11:7b:b7:29: e6:34:a9:a2:de:be:16:a7:39:10:d6:38:92:58:78:61:e1:13: 8a:84:17:61:56:40:25:09:1e:b1:75:ae:9d:d7:68:44:86:a2: b1:3b:0a:03:0f:10:0b:70:b7:36:28:2d:37:0b:7f:20:b5:af: 5d:47:e1:e0:4f:b1:64:ac:4e:a8:91:c9:7b:f8:e4:f0:ea:5f: f5:c2:b5:51 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICCSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI1MDIxMTAvBgNVBAUTKDhDM0NDQjRGRkI4OTE4OUM2RUY1QjM0REZEQUFCRTE4 MDZBNTIxOEEwHhcNMjMwODAyMjAzODAxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhYmVhOC1jMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3xz5JYtu1l8y+Sb0I3zzrQPHtwusEteiI/+OdXv1mAgBgvvtTKX+groksV8 bReLAQkvpkQaLop35yY9x+gMqerszXDsfXaISW+EkMOriEChH9epLHFq9cg95+Xu XFueNaLdY4ap7u1LLS5QrYeYZ59g8iqSt4QbEQPMDbFyDJdHlrl/ESeqejjcpDpJ 27V3WEwBrEdf8YRlMYeOUaafA2q1IVy77X8bZYgbcyMt6FyFsxnW+MW/Ke+tfzhZ 2ptxp4ta8dapeGMGEsRY4gLDX/jOGHqdtyB53awhK0ZfoGHprWdvjOnOlQpYOskj MFRAfVaUM6/gHYhKEj7k07VnHwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFNtmfcOJ IsfuDtTZq9ANtpQZ0nz3MB8GA1UdIwQYMBaAFIw8y0/7iRicbvWzTf2qvhgGpSGK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjUwMi9EQTE2QzYzQTcz Q0MxMUVBQTM5OTUzMjZDNEY5QUUwMi9qRHpMVF91SkdKeHU5Yk5OX2FxLUdBYWxJ WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEekxUX3VKR0p4dTliTk5fYXEtR0FhbElZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI1MDIvREExNkM2M0E3M0NDMTFFQUEzOTk1MzI2QzRGOUFFMDIvMEE1NzczRjZC QkJDMTFFQ0IyRTdGRjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEASdtQgMEAidtWAMEAGdiDgMEAWd3hDANBAIAAjAHAwUA JAPoQDANBgkqhkiG9w0BAQsFAAOCAQEAILQLGzPlkHhOtUUvAzPd0/33Grgxh4xZ 3QwMZr76VckJ6TDDzegmYg1i5vVH+T+oC89AlJ7DfZMwOY9Od6ExykMp37mBpF8N y7+XpsXki4vVBpJ5TPpD07I2XXCToe0Quu+nErYpdUbpAIqFzdasO9h3n6nWAzdX ix8KlgGsaZ4gQeGR4dJlK5GSIvd/btVGqcDT0dy2PVTtLrZ1WfzMaR0YSMhEmpix Pm5LOENA4XERe7cp5jSpot6+Fqc5ENY4klh4YeETioQXYVZAJQkesXWunddoRIai sTsKAw8QC3C3NigtNwt/ILWvXUfh4E+xZKxOqJHJe/jk8Opf9cK1UQ== -----END CERTIFICATE-----Generated at Thu Jun 6 21:52:41 2024 by rpki-client on console-fra.rpki-client.org