$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa File: 53B6182C213611EAB9F02B49C4F9AE02.roa (raw, json) Hash identifier: fVwaR7oxSksyLHVRcYVo6TOHPah+wm3ypcA3PooO91M= Subject key identifier: 9A:5B:6F:30:05:1F:37:F8:43:6A:28:9C:F0:FE:C3:C4:36:04:28:47 Certificate issuer: /CN=A9185CF3/serialNumber=A7A2674E8484603920779A352C55804E55365014 Certificate serial: 0B2F Authority key identifier: A7:A2:67:4E:84:84:60:39:20:77:9A:35:2C:55:80:4E:55:36:50:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa Signing time: Sun 08 Sep 2024 20:27:38 +0000 ROA not before: Sun 08 Sep 2024 20:27:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58983 IP address blocks: 45.119.160.0/22 maxlen: 22 45.119.160.0/23 maxlen: 23 45.119.162.0/23 maxlen: 23 103.240.176.0/22 maxlen: 22 103.240.176.0/23 maxlen: 23 103.240.176.0/24 maxlen: 24 103.240.177.0/24 maxlen: 24 103.240.178.0/23 maxlen: 23 103.240.178.0/24 maxlen: 24 103.240.179.0/24 maxlen: 24 2400:5880::/33 maxlen: 33 2400:5880:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.crl rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CF3/serialNumber=A7A2674E8484603920779A352C55804E55365014 Validity Not Before: Sep 8 20:27:38 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66de08ba-61b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3d:20:7a:39:6f:c3:01:36:3e:a9:e5:b0:73: c9:32:9f:80:f4:e5:e6:0c:51:8d:b8:5f:85:11:10: 80:b2:33:7b:cb:49:c5:6c:60:7f:76:28:2d:bf:03: 61:fb:67:e4:a7:61:24:73:27:1e:c8:ef:98:65:38: e3:0e:56:29:32:14:24:55:76:52:84:a6:33:f5:a9: ea:f8:fb:14:18:4f:e6:70:92:fd:70:1c:d5:fb:7a: 78:f3:36:cd:af:4e:3c:4c:0d:65:0e:cd:94:45:fd: 25:8c:3c:d5:e1:8c:94:b5:6e:1d:41:99:2c:08:1a: 84:eb:f5:e6:3b:c2:08:64:c0:13:ca:19:3d:c7:16: 51:7a:b8:de:01:5d:67:2e:79:5f:4f:ee:ec:c7:96: e5:c8:7c:0a:7a:ce:ed:61:72:57:cb:a5:42:99:b2: 4e:92:c5:f0:d8:97:74:88:d4:a8:63:58:d3:ef:76: 55:b6:e7:f2:00:9d:b0:f2:3c:4a:d8:88:92:e5:ec: 77:e5:23:ea:25:19:87:01:41:2d:11:f2:be:65:df: c4:f2:3a:4b:60:31:dc:bf:b9:c8:97:68:3d:cf:6f: 19:f2:8d:55:4b:eb:aa:78:f3:73:6f:a7:29:a2:96: 3e:66:34:e3:bc:90:43:2b:a2:b6:e2:c4:0c:76:8a: cb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5B:6F:30:05:1F:37:F8:43:6A:28:9C:F0:FE:C3:C4:36:04:28:47 X509v3 Authority Key Identifier: keyid:A7:A2:67:4E:84:84:60:39:20:77:9A:35:2C:55:80:4E:55:36:50:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/p6JnToSEYDkgd5o1LFWATlU2UBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p6JnToSEYDkgd5o1LFWATlU2UBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CF3/4BDD518E213511EABE488747C4F9AE02/53B6182C213611EAB9F02B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.160.0/22 103.240.176.0/22 IPv6: 2400:5880::/32 Signature Algorithm: sha256WithRSAEncryption 8a:23:cf:33:b5:9b:87:01:5b:8b:77:5b:94:e8:d5:0e:4d:45: a7:66:cb:cb:3a:90:90:2f:73:6f:50:82:93:e9:cb:f2:f9:6d: 11:f0:70:32:cc:1b:87:ee:83:ef:dc:ba:25:07:22:d5:34:a4: 7e:6f:64:38:d4:72:18:3d:2c:77:23:57:5d:98:bf:4b:dd:8b: d5:86:b3:92:f8:bc:f0:27:5f:8c:26:c8:1d:82:00:e3:51:d6: 8d:e7:92:fe:a7:80:cc:84:ec:34:3d:0c:9a:42:24:6a:4c:a0: e8:8c:3a:c3:a0:3f:21:4f:9e:57:85:c7:ef:f3:5a:99:98:d8: c7:41:7e:d7:1c:bd:25:c3:42:35:07:18:05:d0:69:33:66:27: e3:8d:1b:12:c2:75:73:9f:08:01:ac:e1:df:7e:af:b1:c3:59: 7d:75:0b:d1:06:43:a8:23:0c:89:e5:cd:e5:14:8d:d6:a2:e0: 0d:97:dd:37:b2:81:31:25:ef:ed:7c:5c:3b:bd:de:e7:3f:b8: e6:04:64:02:4d:b2:db:ee:ff:e6:0a:71:3d:02:3b:a5:1f:c5: bb:0f:50:a2:39:44:ff:c9:2d:97:3b:3b:38:8c:f0:1a:9b:8e: a2:42:a7:d4:69:a4:c0:4f:55:2c:17:42:d8:40:e5:f0:ce:27: 6e:b7:43:ae -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRjMxMTAvBgNVBAUTKEE3QTI2NzRFODQ4NDYwMzkyMDc3OUEzNTJDNTU4MDRF NTUzNjUwMTQwHhcNMjQwOTA4MjAyNzM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlMDhiYS02MWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwz0gejlvwwE2PqnlsHPJMp+A9OXmDFGNuF+FERCAsjN7y0nFbGB/digtvwNh +2fkp2EkcyceyO+YZTjjDlYpMhQkVXZShKYz9anq+PsUGE/mcJL9cBzV+3p48zbN r048TA1lDs2URf0ljDzV4YyUtW4dQZksCBqE6/XmO8IIZMATyhk9xxZRerjeAV1n LnlfT+7sx5blyHwKes7tYXJXy6VCmbJOksXw2Jd0iNSoY1jT73ZVtufyAJ2w8jxK 2IiS5ex35SPqJRmHAUEtEfK+Zd/E8jpLYDHcv7nIl2g9z28Z8o1VS+uqePNzb6cp opY+ZjTjvJBDK6K24sQMdorLwQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJpbbzAF Hzf4Q2oonPD+w8Q2BChHMB8GA1UdIwQYMBaAFKeiZ06EhGA5IHeaNSxVgE5VNlAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNGMy80QkRENTE4RTIx MzUxMUVBQkU0ODg3NDdDNEY5QUUwMi9wNkpuVG9TRVlEa2dkNW8xTEZXQVRsVTJV QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A2Sm5Ub1NFWURrZ2Q1bzFMRldBVGxVMlVCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVDRjMvNEJERDUxOEUyMTM1MTFFQUJFNDg4NzQ3QzRGOUFFMDIvNTNCNjE4MkMy MTM2MTFFQUI5RjAyQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItd6ADBAJn8LAwDQQCAAIwBwMFACQAWIAwDQYJKoZIhvcN AQELBQADggEBAIojzzO1m4cBW4t3W5To1Q5NRadmy8s6kJAvc29QgpPpy/L5bRHw cDLMG4fug+/cuiUHItU0pH5vZDjUchg9LHcjV12Yv0vdi9WGs5L4vPAnX4wmyB2C AONR1o3nkv6ngMyE7DQ9DJpCJGpMoOiMOsOgPyFPnleFx+/zWpmY2MdBftccvSXD QjUHGAXQaTNmJ+ONGxLCdXOfCAGs4d9+r7HDWX11C9EGQ6gjDInlzeUUjdai4A2X 3TeygTEl7+18XDu93uc/uOYEZAJNstvu/+YKcT0CO6UfxbsPUKI5RP/JLZc7OziM 8BqbjqJCp9RppMBPVSwXQthA5fDOJ263Q64= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:33 2024 by rpki-client on console-ams.rpki-client.org