$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6B9CB51CA0E911EF83DDD22FC4F9AE02.roa File: 6B9CB51CA0E911EF83DDD22FC4F9AE02.roa (raw, json) Hash identifier: t9+oNGlQY2PwDj3ky547bu8/2LqhNiYgP4LlO2XhlGI= Subject key identifier: 0F:73:E2:3F:B9:F1:30:8C:6D:8D:1D:B9:66:74:68:04:07:47:3D:B2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9D32 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6B9CB51CA0E911EF83DDD22FC4F9AE02.roa Signing time: Tue 12 Nov 2024 11:36:04 +0000 ROA not before: Tue 12 Nov 2024 11:36:04 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133255 IP address blocks: 45.124.144.0/22 maxlen: 24 103.39.139.0/24 maxlen: 24 103.39.236.0/23 maxlen: 24 103.84.128.0/22 maxlen: 24 103.137.174.0/23 maxlen: 24 103.170.20.0/24 maxlen: 24 103.234.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40242 (0x9d32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Nov 12 11:36:04 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67333da4-2ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:77:93:3c:8b:d1:69:86:1d:77:7a:30:7b:12: 26:ea:fb:95:4e:62:79:d3:00:d5:af:b9:9b:4c:7a: 91:b5:82:43:c5:f0:f7:54:e3:84:33:ea:30:5f:23: e6:e9:b0:58:2d:77:47:37:4c:39:45:ba:26:b9:b4: 78:bb:87:9a:e3:a0:24:67:d2:fd:d5:f4:62:87:37: b4:55:45:a5:2b:eb:1d:f4:6d:96:34:9a:67:cd:08: 28:d9:bb:7d:37:fe:ac:f0:4e:cf:0b:77:be:47:f9: 13:b4:6f:dc:6c:d5:8a:ce:f1:b9:d0:60:2d:35:ac: b0:f7:72:fd:93:60:a9:87:de:43:f9:8c:93:bf:9e: 7d:71:f2:08:86:bd:ef:40:f0:cf:65:e1:44:54:5e: 29:00:d1:ae:71:a2:9a:3f:1f:d7:bc:ce:7e:ba:42: 86:d3:bb:f2:f8:51:a1:60:ca:06:4e:9b:bd:c5:4f: 88:9d:91:f0:4e:49:8c:e5:27:95:00:b0:de:12:88: e1:e9:47:b9:fb:55:01:e9:56:05:b0:a2:9b:3a:24: 20:6a:41:4f:f6:b9:56:c9:23:77:50:c6:0a:fd:7a: 19:90:05:7f:04:b4:80:e2:f7:22:1b:a9:38:ca:4b: 81:74:5e:41:6d:c8:7c:23:9a:53:b5:9c:00:04:2c: d6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:73:E2:3F:B9:F1:30:8C:6D:8D:1D:B9:66:74:68:04:07:47:3D:B2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6B9CB51CA0E911EF83DDD22FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.144.0/22 103.39.139.0/24 103.39.236.0/23 103.84.128.0/22 103.137.174.0/23 103.170.20.0/24 103.234.94.0/24 Signature Algorithm: sha256WithRSAEncryption aa:7c:35:39:80:4f:88:d7:d9:ec:4f:a8:c4:11:27:f0:cc:b7: 27:86:41:3e:7d:05:25:b1:00:da:52:10:1a:dd:47:61:91:33: 24:d8:99:ec:0a:25:e1:31:1f:25:30:9c:2a:ac:3a:c7:e6:ce: 8a:0d:f0:a7:b1:72:15:4a:2f:80:07:90:85:e6:e3:1e:95:8e: 40:54:49:07:92:9e:57:90:e5:13:56:dd:e2:6e:91:b0:ac:a4: e5:fc:70:0e:7a:8c:75:31:22:be:01:d7:40:d9:52:c1:f7:36: b8:9b:54:39:3b:5b:eb:e7:14:0d:a5:bd:72:84:8f:89:7e:11: 67:d8:19:ce:7d:2c:75:cc:20:dc:4a:3a:0c:06:29:05:22:cc: 81:7e:23:33:ae:d9:5c:8d:55:ca:db:ff:20:32:35:98:38:e1: 28:9a:50:81:42:0e:d4:9b:df:9c:89:97:57:2d:1c:f4:37:93: e2:b8:2b:7b:3d:b2:2d:fb:f6:bf:02:50:76:8f:6e:7a:c8:92: 65:7f:13:0f:e9:7a:9e:2c:d2:6f:7b:ea:59:81:ae:58:19:6a: 48:cc:4e:7e:7f:6d:a1:fb:dd:21:3f:49:be:64:fb:02:07:90: a4:15:47:ba:a5:f9:db:77:2a:dd:34:4f:bf:8c:b4:36:6f:b6: 26:95:b2:30 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgIDAJ0yMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTExMjExMzYwNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjczMzNkYTQtMmJhNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOB3kzyL0WmGHXd6MHsSJur7lU5iedMA1a+5m0x6kbWCQ8Xw91TjhDPqMF8j 5umwWC13RzdMOUW6Jrm0eLuHmuOgJGfS/dX0Yoc3tFVFpSvrHfRtljSaZ80IKNm7 fTf+rPBOzwt3vkf5E7Rv3GzVis7xudBgLTWssPdy/ZNgqYfeQ/mMk7+efXHyCIa9 70Dwz2XhRFReKQDRrnGimj8f17zOfrpChtO78vhRoWDKBk6bvcVPiJ2R8E5JjOUn lQCw3hKI4elHuftVAelWBbCimzokIGpBT/a5Vskjd1DGCv16GZAFfwS0gOL3Ihup OMpLgXReQW3IfCOaU7WcAAQs1kECAwEAAaOCArkwggK1MB0GA1UdDgQWBBQPc+I/ ufEwjG2NHblmdGgEB0c9sjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZCOUNCNTFD QTBFOTExRUY4M0RERDIyRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEMGCCsGAQUFBwEHAQH/ BDQwMjAwBAIAATAqAwQCLXyQAwQAZyeLAwQBZyfsAwQCZ1SAAwQBZ4muAwQAZ6oU AwQAZ+peMA0GCSqGSIb3DQEBCwUAA4IBAQCqfDU5gE+I19nsT6jEESfwzLcnhkE+ fQUlsQDaUhAa3UdhkTMk2JnsCiXhMR8lMJwqrDrH5s6KDfCnsXIVSi+AB5CF5uMe lY5AVEkHkp5XkOUTVt3ibpGwrKTl/HAOeox1MSK+AddA2VLB9za4m1Q5O1vr5xQN pb1yhI+JfhFn2BnOfSx1zCDcSjoMBikFIsyBfiMzrtlcjVXK2/8gMjWYOOEomlCB Qg7Um9+ciZdXLRz0N5PiuCt7PbIt+/a/AlB2j256yJJlfxMP6XqeLNJve+pZga5Y GWpIzE5+f22h+90hP0m+ZPsCB5CkFUe6pfnbdyrdNE+/jLQ2b7YmlbIw -----END CERTIFICATE-----Generated at Mon Nov 25 13:04:58 2024 by rpki-client on console-fra.rpki-client.org