$ rpki-client -vvf rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/DD55266E1E5611EFAFFD4839C4F9AE02.roa File: DD55266E1E5611EFAFFD4839C4F9AE02.roa (raw, json) Hash identifier: S8vJZLV3hFYN28UQC6htxXLXCqBEue/8E9M498OKSjo= Subject key identifier: 87:93:57:EE:1B:6F:61:14:F9:56:8C:D5:7A:E7:A8:2B:D5:22:4C:63 Certificate issuer: /CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA Certificate serial: 1B37 Authority key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/DD55266E1E5611EFAFFD4839C4F9AE02.roa Signing time: Thu 30 May 2024 07:33:10 +0000 ROA not before: Thu 30 May 2024 07:33:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149535 IP address blocks: 45.125.152.0/24 maxlen: 24 45.248.18.0/24 maxlen: 24 45.248.19.0/24 maxlen: 24 157.119.176.0/24 maxlen: 24 157.119.178.0/24 maxlen: 24 183.87.185.0/24 maxlen: 24 183.87.209.0/24 maxlen: 24 183.87.210.0/24 maxlen: 24 183.87.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6967 (0x1b37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA Validity Not Before: May 30 07:33:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66582bb6-e332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:9f:9e:01:7d:f3:f2:cc:5f:bd:ae:d3:e0: ee:f3:de:82:78:ae:0c:7b:10:39:8f:19:dc:13:b7: 74:bf:d0:3f:10:ae:0b:99:d0:b6:60:9e:f1:c1:40: 8a:49:cd:08:f1:ae:e9:ee:c3:d8:c0:8a:fa:9a:23: 5c:c5:5e:bd:2d:50:96:90:0d:6d:b4:9e:a6:81:37: 01:9e:af:b5:e2:72:9c:e4:61:ab:83:be:26:b3:78: 2f:8e:5f:13:ea:f5:80:c7:e2:96:8d:04:09:ff:a2: 68:e4:06:69:6c:cc:85:a0:87:aa:2c:ea:99:14:fc: e5:7d:ae:41:56:ec:3c:7d:77:0a:9d:a3:b0:be:2b: 5a:01:d0:e2:34:23:44:10:e6:b7:02:81:0d:8e:f5: 14:7c:24:f4:2d:da:66:a9:05:04:e3:ff:72:52:b7: db:f1:a3:c6:79:12:5c:6a:3f:21:49:8a:09:40:d3: 85:2d:eb:e6:dc:e6:19:34:13:c0:a4:14:95:f9:8e: 40:63:ad:b0:38:02:fc:d5:85:1b:c0:66:f1:89:aa: cf:56:27:56:a0:0f:e9:3c:cd:0d:26:b6:fe:27:1e: 08:43:9d:56:3d:09:d3:ba:ff:21:24:2d:13:d7:ca: 22:e0:aa:dc:1c:c4:35:c6:b8:e1:03:d3:67:fa:e6: d5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:93:57:EE:1B:6F:61:14:F9:56:8C:D5:7A:E7:A8:2B:D5:22:4C:63 X509v3 Authority Key Identifier: keyid:42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/DD55266E1E5611EFAFFD4839C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.152.0/24 45.248.18.0/23 157.119.176.0/24 157.119.178.0/24 183.87.185.0/24 183.87.209.0-183.87.211.255 Signature Algorithm: sha256WithRSAEncryption 58:37:49:b4:f6:b9:60:d4:1b:83:6b:28:1e:9b:54:8b:51:38: 9c:6e:41:24:c4:53:1b:ca:82:95:be:2e:8c:07:3f:0e:50:cb: 15:ea:26:94:75:b0:6e:af:b8:07:d2:e1:16:63:0a:36:d0:be: 7e:66:0d:94:c9:e8:a1:fc:70:21:43:95:45:c0:d0:09:42:41: 66:40:4b:ca:16:c4:61:02:7a:a9:dc:d6:c6:2e:06:b0:25:9f: 71:2e:39:c5:ba:ad:13:ff:da:e7:3f:05:cb:75:ad:11:16:06: 6f:1f:11:c1:c8:e3:df:62:b2:e0:b9:9d:85:6e:26:dc:72:b6: 98:fa:28:3f:2f:6b:5e:c1:92:a9:6e:7d:6e:32:b0:41:0a:0b: 9f:bb:42:0c:37:bd:72:b3:ac:88:b1:44:15:05:b9:92:2a:c5: 3d:81:19:a5:41:1f:ec:2e:aa:7b:c8:22:ae:42:35:07:8c:2f: 12:9c:d5:25:76:fd:fd:a5:46:13:82:99:f7:14:ee:7c:5a:e6: 54:1c:aa:57:c0:77:91:9a:13:33:8a:85:2b:36:33:9a:d3:1f: bd:6b:03:7a:5b:d5:0b:ce:76:3d:cf:18:df:89:44:a8:81:c9: fe:82:14:36:87:6a:30:e7:d9:cf:3d:ae:97:5d:19:f5:ad:cc: e1:64:0e:73 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICGzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJGNzUxMTAvBgNVBAUTKDQyMEQ4QzJFQzNEMjQ3OUM1NDIzQUJGRjc0NzgyQjhB OEE0QjdERUEwHhcNMjQwNTMwMDczMzEwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4MmJiNi1lMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqICfngF98/LMX72u0+Du896CeK4MexA5jxncE7d0v9A/EK4LmdC2YJ7xwUCK Sc0I8a7p7sPYwIr6miNcxV69LVCWkA1ttJ6mgTcBnq+14nKc5GGrg74ms3gvjl8T 6vWAx+KWjQQJ/6Jo5AZpbMyFoIeqLOqZFPzlfa5BVuw8fXcKnaOwvitaAdDiNCNE EOa3AoENjvUUfCT0LdpmqQUE4/9yUrfb8aPGeRJcaj8hSYoJQNOFLevm3OYZNBPA pBSV+Y5AY62wOAL81YUbwGbxiarPVidWoA/pPM0NJrb+Jx4IQ51WPQnTuv8hJC0T 18oi4KrcHMQ1xrjhA9Nn+ubVzQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFIeTV+4b b2EU+VaM1XrnqCvVIkxjMB8GA1UdIwQYMBaAFEINjC7D0kecVCOr/3R4K4qKS33q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkY3NS8zQzhDRjYzRUZD QkQxMUU2ODhEMzEyNUVDNEY5QUUwMi9RZzJNTHNQU1I1eFVJNnZfZEhncmlvcExm ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnMk1Mc1BTUjV4VUk2dl9kSGdyaW9wTGZlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODJGNzUvM0M4Q0Y2M0VGQ0JEMTFFNjg4RDMxMjVFQzRGOUFFMDIvREQ1NTI2NkUx RTU2MTFFRkFGRkQ0ODM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAtfZgDBAEt+BIDBACdd7ADBACdd7IDBAC3V7kwDAMEALdX 0QMEArdX0DANBgkqhkiG9w0BAQsFAAOCAQEAWDdJtPa5YNQbg2soHptUi1E4nG5B JMRTG8qClb4ujAc/DlDLFeomlHWwbq+4B9LhFmMKNtC+fmYNlMnoofxwIUOVRcDQ CUJBZkBLyhbEYQJ6qdzWxi4GsCWfcS45xbqtE//a5z8Fy3WtERYGbx8Rwcjj32Ky 4LmdhW4m3HK2mPooPy9rXsGSqW59bjKwQQoLn7tCDDe9crOsiLFEFQW5kirFPYEZ pUEf7C6qe8girkI1B4wvEpzVJXb9/aVGE4KZ9xTufFrmVByqV8B3kZoTM4qFKzYz mtMfvWsDelvVC852Pc8Y34lEqIHJ/oIUNodqMOfZzz2ul10Z9a3M4WQOcw== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org