$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/8BA504FCB27911EB978CE10AC4F9AE02.roa File: 8BA504FCB27911EB978CE10AC4F9AE02.roa (raw, json) Hash identifier: YZjjtJ8um0oqlcIvVcIfCcr3lOq83jX0uJTw3FialkY= Subject key identifier: 08:38:57:1E:D9:14:3A:C6:D7:42:35:BB:BF:8D:AB:56:BB:D1:8A:1C Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0B06 Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/8BA504FCB27911EB978CE10AC4F9AE02.roa Signing time: Sun 02 Jul 2023 19:05:57 +0000 ROA not before: Sun 02 Jul 2023 19:05:57 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136908 IP address blocks: 45.121.32.0/22 maxlen: 24 103.96.244.0/22 maxlen: 24 2401:7f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2822 (0xb06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Jul 2 19:05:57 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a1ca95-5f7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:62:3e:87:5a:d5:56:e9:0c:64:4d:95:82:1d: 09:d1:99:49:55:26:c9:fc:11:a8:bf:73:a1:f2:19: eb:39:ec:01:9b:8f:36:72:f9:6f:24:9a:6b:ee:7c: 05:7f:d7:f5:b4:d6:ae:99:9b:b5:19:45:24:19:d4: 40:5c:2d:bb:bd:44:fa:38:21:2f:f9:02:d0:5b:ef: 6f:77:f3:3f:e7:4b:77:eb:3b:44:01:35:aa:ee:8a: aa:4d:42:77:b9:04:03:07:6c:47:ba:18:44:5a:3b: 61:17:4d:1f:d7:de:df:a0:1e:cf:70:65:a7:2c:e4: 23:51:d5:0c:70:7b:8d:3f:16:90:30:eb:e7:ac:36: 56:3b:82:08:15:af:4c:cc:01:05:cf:40:1b:39:76: 42:d4:5a:b8:3f:09:92:44:37:73:0f:ed:46:db:aa: b3:96:37:01:af:3c:3d:7c:ba:5b:ea:d3:ac:31:48: f5:6b:b3:b5:d0:69:c0:ef:4f:ac:e5:7f:75:f7:2a: 32:61:ab:5f:13:0d:48:6c:19:03:57:d8:7b:39:85: ed:58:90:18:17:72:92:c6:28:25:97:94:6d:0c:66: c1:53:9f:8e:b8:a1:a6:6a:d5:b6:0d:e5:74:5f:4b: e4:dc:90:71:41:e6:c6:fe:c0:8c:25:dd:40:8b:e9: a9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:38:57:1E:D9:14:3A:C6:D7:42:35:BB:BF:8D:AB:56:BB:D1:8A:1C X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/8BA504FCB27911EB978CE10AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.32.0/22 103.96.244.0/22 IPv6: 2401:7f40::/32 Signature Algorithm: sha256WithRSAEncryption c4:c5:b8:e2:a0:f9:07:f2:22:4a:c7:71:c2:42:7c:7d:d6:97: 7f:a4:38:bc:73:80:5c:d8:a0:e0:03:d9:16:c4:1f:83:f1:87: 17:ce:00:8d:30:26:b3:b8:81:ec:ea:d3:f6:df:e0:27:c9:13: 3d:0f:60:9f:26:fe:10:45:c6:ae:1d:50:95:91:fd:fc:b8:2b: 2e:b8:27:8a:71:c3:67:2e:17:eb:2b:b4:b5:b9:44:8e:0e:81: 3f:00:02:71:2e:81:04:48:00:23:22:b5:f9:67:28:4c:f5:29: d3:81:79:40:bc:b0:a1:2c:51:14:78:a5:31:9d:64:81:b4:45: 0b:fe:16:87:03:8f:f8:9e:6a:1a:cc:7e:2a:1e:4a:b1:5f:f8: 63:5d:76:0d:3b:f1:4a:52:18:50:1a:7d:d8:52:a5:91:24:b1: ea:7b:35:71:1d:5e:3f:0e:a9:9d:f5:c9:bd:64:2e:fb:ed:d8: 07:ab:1d:ef:0b:b5:c9:45:39:02:1e:48:0c:39:36:a5:1a:25: 46:2f:d3:8d:59:34:76:0a:10:25:21:6f:31:98:de:6e:61:27: 87:ce:1b:b0:de:9f:5c:36:5d:9f:13:ac:17:8e:1b:13:20:9f: 0d:33:1d:db:ed:31:46:ad:2f:18:1f:d9:0b:1e:09:37:e6:ee: 52:d4:7b:98 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjMwNzAyMTkwNTU3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGExY2E5NS01ZjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmI+h1rVVukMZE2Vgh0J0ZlJVSbJ/BGov3Oh8hnrOewBm482cvlvJJpr7nwF f9f1tNaumZu1GUUkGdRAXC27vUT6OCEv+QLQW+9vd/M/50t36ztEATWq7oqqTUJ3 uQQDB2xHuhhEWjthF00f197foB7PcGWnLOQjUdUMcHuNPxaQMOvnrDZWO4IIFa9M zAEFz0AbOXZC1Fq4PwmSRDdzD+1G26qzljcBrzw9fLpb6tOsMUj1a7O10GnA70+s 5X919yoyYatfEw1IbBkDV9h7OYXtWJAYF3KSxigll5RtDGbBU5+OuKGmatW2DeV0 X0vk3JBxQebG/sCMJd1Ai+mpcQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAg4Vx7Z FDrG10I1u7+Nq1a70YocMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZEODMvMTQ5NzQ3QkUwNjJBMTFFQThDOUE3NDQ0QzRGOUFFMDIvOEJBNTA0RkNC Mjc5MTFFQjk3OENFMTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIteSADBAJnYPQwDQQCAAIwBwMFACQBf0AwDQYJKoZIhvcN AQELBQADggEBAMTFuOKg+QfyIkrHccJCfH3Wl3+kOLxzgFzYoOAD2RbEH4PxhxfO AI0wJrO4gezq0/bf4CfJEz0PYJ8m/hBFxq4dUJWR/fy4Ky64J4pxw2cuF+srtLW5 RI4OgT8AAnEugQRIACMitflnKEz1KdOBeUC8sKEsURR4pTGdZIG0RQv+FocDj/ie ahrMfioeSrFf+GNddg078UpSGFAafdhSpZEksep7NXEdXj8OqZ31yb1kLvvt2Aer He8LtclFOQIeSAw5NqUaJUYv041ZNHYKECUhbzGY3m5hJ4fOG7Den1w2XZ8TrBeO GxMgnw0zHdvtMUatLxgf2QseCTfm7lLUe5g= -----END CERTIFICATE-----Generated at Fri May 31 22:13:07 2024 by rpki-client on console-fra.rpki-client.org