$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9BFE35A6541011ECA5AE5110C4F9AE02.roa File: 9BFE35A6541011ECA5AE5110C4F9AE02.roa (raw, json) Hash identifier: FEE/Yz2u0C6460KiPpeg19xz8ZxiIItdSXncKJokfdg= Subject key identifier: A7:AC:BB:CC:93:57:C8:54:D2:54:CB:D4:F6:ED:8B:69:29:7D:A3:42 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9320 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9BFE35A6541011ECA5AE5110C4F9AE02.roa Signing time: Wed 26 Jun 2024 06:09:20 +0000 ROA not before: Wed 26 Jun 2024 06:09:20 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38571 IP address blocks: 45.115.96.0/22 maxlen: 24 45.122.44.0/22 maxlen: 24 103.1.80.0/22 maxlen: 24 103.137.224.0/23 maxlen: 24 103.137.226.0/23 maxlen: 24 103.232.112.0/22 maxlen: 24 111.91.224.0/21 maxlen: 24 116.68.240.0/21 maxlen: 24 2401:fec0::/32 maxlen: 32 2401:fec0::/33 maxlen: 34 2401:fec0::/35 maxlen: 36 2401:fec0:4000::/34 maxlen: 35 2401:fec0:4000::/36 maxlen: 36 2401:fec0:6000::/35 maxlen: 36 2401:fec0:8000::/35 maxlen: 36 2401:fec0:a000::/35 maxlen: 36 2401:fec0:c000::/35 maxlen: 36 2401:fec0:e000::/35 maxlen: 35 2401:fec0:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37664 (0x9320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 26 06:09:20 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=667bb08f-0204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:fe:92:9f:bf:fb:6a:2d:06:02:d7:c3:8e: 5d:73:00:fe:98:1e:7d:c7:af:5a:e2:04:86:bd:af: cc:c6:65:ea:b2:16:78:0e:00:02:2a:a2:e3:95:f0: e9:60:57:bc:a4:8c:6c:a3:6e:c8:f5:af:90:d3:15: ed:46:49:0e:58:97:1c:98:50:ae:1b:49:31:88:65: b7:19:59:10:aa:74:ac:85:70:34:94:28:58:fb:3f: ef:54:e2:a7:8a:3e:8a:6f:90:69:4c:4e:98:9d:da: 2b:3f:1c:ef:c7:6f:e5:f4:34:78:6a:8f:a0:02:99: 5c:ad:1b:4a:2e:c9:8a:56:f9:9e:0f:88:81:d4:12: 69:cc:cb:29:71:1e:cf:4c:1d:10:ad:46:fe:d4:98: 33:79:f8:3a:e0:05:eb:df:17:7e:e0:d0:df:c4:b6: 4b:0c:b9:2e:24:74:7c:4f:2f:29:82:dc:00:c5:07: 1a:aa:34:1d:05:3f:63:f8:6a:da:92:40:29:89:d8: 94:9a:70:64:c5:ae:10:c4:02:88:75:81:a7:4e:66: 2e:e9:48:ae:ba:c2:c0:bb:37:6a:a9:50:ec:20:fa: c9:c8:1a:ff:d3:75:9a:44:3d:1d:48:81:e0:fb:12: 02:85:0a:6e:3e:d0:81:64:5c:ea:3f:37:d8:1d:8d: 19:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AC:BB:CC:93:57:C8:54:D2:54:CB:D4:F6:ED:8B:69:29:7D:A3:42 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9BFE35A6541011ECA5AE5110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.96.0/22 45.122.44.0/22 103.1.80.0/22 103.137.224.0/22 103.232.112.0/22 111.91.224.0/21 116.68.240.0/21 IPv6: 2401:fec0::/32 Signature Algorithm: sha256WithRSAEncryption 39:f1:83:86:21:b2:6a:54:88:e5:a2:42:c4:85:e0:5e:6a:78: 75:c2:e1:00:5a:e9:9e:0b:9b:55:6b:db:b4:2f:bc:33:a8:da: d8:da:f0:d1:e6:41:ec:b9:22:cf:63:cb:3d:da:b1:89:01:c6: 63:0e:93:8c:e9:70:10:5e:71:6d:93:5e:ce:52:41:16:8c:00: 17:74:42:ad:87:31:cf:76:bc:94:77:6b:4c:e8:ed:d2:ec:a7: 75:bb:f6:14:7d:34:be:74:10:7f:c0:36:9e:3a:a9:91:a2:fa: 08:50:45:5b:03:8b:21:33:88:9c:72:a0:6a:67:84:bf:5a:4f: ae:89:2c:50:9a:98:a4:92:5f:77:01:f5:5d:4e:52:f9:48:7f: dd:66:e6:86:78:70:e7:cb:fc:c8:2d:4d:af:cd:6c:2c:96:2b: f4:e2:7b:0f:3c:b8:1d:a8:be:2b:96:dd:12:42:5f:1a:ce:84: af:50:69:d8:7b:e9:79:43:33:1b:75:0a:26:68:d5:20:d1:c5: 73:1e:91:9f:84:a5:25:a3:2e:3d:61:2f:26:31:d0:f9:14:d7: 76:e7:43:f8:7b:ea:5f:69:01:e2:9c:1c:15:f5:17:b0:0e:58: 05:61:a6:63:6d:da:91:f7:e8:1f:b6:45:60:e2:43:05:04:ef: ad:46:1a:ed -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIDAJMgMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDYyNjA2MDkyMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY3YmIwOGYtMDIwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWc/pKfv/tqLQYC18OOXXMA/pgefcevWuIEhr2vzMZl6rIWeA4AAiqi45Xw 6WBXvKSMbKNuyPWvkNMV7UZJDliXHJhQrhtJMYhltxlZEKp0rIVwNJQoWPs/71Ti p4o+im+QaUxOmJ3aKz8c78dv5fQ0eGqPoAKZXK0bSi7Jilb5ng+IgdQSaczLKXEe z0wdEK1G/tSYM3n4OuAF698XfuDQ38S2Swy5LiR0fE8vKYLcAMUHGqo0HQU/Y/hq 2pJAKYnYlJpwZMWuEMQCiHWBp05mLulIrrrCwLs3aqlQ7CD6ycga/9N1mkQ9HUiB 4PsSAoUKbj7QgWRc6j832B2NGT8CAwEAAaOCAsgwggLEMB0GA1UdDgQWBBSnrLvM k1fIVNJUy9T27YtpKX2jQjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlCRkUzNUE2 NTQxMDExRUNBNUFFNTExMEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFIGCCsGAQUFBwEHAQH/ BEMwQTAwBAIAATAqAwQCLXNgAwQCLXosAwQCZwFQAwQCZ4ngAwQCZ+hwAwQDb1vg AwQDdETwMA0EAgACMAcDBQAkAf7AMA0GCSqGSIb3DQEBCwUAA4IBAQA58YOGIbJq VIjlokLEheBeanh1wuEAWumeC5tVa9u0L7wzqNrY2vDR5kHsuSLPY8s92rGJAcZj DpOM6XAQXnFtk17OUkEWjAAXdEKthzHPdryUd2tM6O3S7Kd1u/YUfTS+dBB/wDae OqmRovoIUEVbA4shM4iccqBqZ4S/Wk+uiSxQmpikkl93AfVdTlL5SH/dZuaGeHDn y/zILU2vzWwsliv04nsPPLgdqL4rlt0SQl8azoSvUGnYe+l5QzMbdQomaNUg0cVz HpGfhKUloy49YS8mMdD5FNd250P4e+pfaQHinBwV9RewDlgFYaZjbdqR9+gftkVg 4kMFBO+tRhrt -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:21 2024 by rpki-client on console-ams.rpki-client.org