$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/8C2774CA0F3511EF93020023C4F9AE02.roa File: 8C2774CA0F3511EF93020023C4F9AE02.roa (raw, json) Hash identifier: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g= Subject key identifier: 50:18:95:81:C1:D9:FF:18:78:89:24:29:CF:53:8F:AE:6D:52:A7:62 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 343D Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/8C2774CA0F3511EF93020023C4F9AE02.roa Signing time: Sun 20 Oct 2024 14:30:15 +0000 ROA not before: Sun 20 Oct 2024 14:30:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9937 IP address blocks: 103.255.148.0/22 maxlen: 22 103.255.148.0/24 maxlen: 24 103.255.149.0/24 maxlen: 24 180.149.208.0/20 maxlen: 20 180.149.208.0/24 maxlen: 24 180.149.209.0/24 maxlen: 24 180.149.210.0/24 maxlen: 24 180.149.211.0/24 maxlen: 24 180.149.212.0/24 maxlen: 24 180.149.213.0/24 maxlen: 24 180.149.223.0/24 maxlen: 24 182.255.50.0/24 maxlen: 24 182.255.51.0/24 maxlen: 24 2402:7c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13373 (0x343d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Oct 20 14:30:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671513f6-ecaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:71:0d:e8:f8:e7:d3:14:00:aa:13:a9:f1:70: ef:95:5b:7e:a7:fc:ec:7b:3c:8e:e5:1d:5f:f0:d7: c5:11:3a:e2:22:16:72:d1:18:69:e6:60:72:a9:22: 22:bf:3e:46:76:cb:a9:de:27:37:9a:00:10:4b:b4: 41:40:1f:fc:b0:dd:77:ba:0a:af:d1:83:b9:15:44: 8c:29:85:e1:c1:52:7a:c0:5e:b1:98:cb:ae:62:e7: f1:8c:b2:c7:58:94:75:a5:5b:8e:9b:bf:ef:b0:1d: 38:34:39:d8:32:c0:b8:7b:c4:f2:d3:75:73:e9:df: d7:69:18:ac:0b:5c:11:08:cd:21:a8:18:13:7b:c3: 6e:a0:0c:ad:7b:df:17:c7:53:0a:c1:3e:d2:05:f3: 50:aa:fc:5c:fb:78:1d:47:8c:0c:7d:7c:cc:b7:89: 06:09:9f:e8:51:b6:62:11:de:5c:9e:16:bc:fc:31: 38:16:32:7c:b3:38:3f:4d:8a:bc:97:ff:5b:47:99: 63:84:7f:5f:e7:d7:f2:50:e6:29:46:35:69:2b:a7: 85:e1:dd:97:0d:fb:84:1f:31:65:1e:6e:1d:f5:3a: a2:72:75:83:07:7b:c5:75:cd:75:f0:97:fb:36:80: 31:5e:35:44:eb:a8:e7:aa:8c:94:8c:50:7b:e8:b1: 03:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:18:95:81:C1:D9:FF:18:78:89:24:29:CF:53:8F:AE:6D:52:A7:62 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/8C2774CA0F3511EF93020023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.148.0/22 180.149.208.0/20 182.255.50.0/23 IPv6: 2402:7c00::/32 Signature Algorithm: sha256WithRSAEncryption aa:85:bd:a1:af:d0:05:a6:87:82:96:1f:4d:44:a0:a7:4a:a6: 79:4d:42:62:b5:19:b9:5a:78:aa:da:ad:7a:73:de:f8:e7:3e: 4c:cc:10:50:8e:55:b2:7f:f9:79:17:84:8a:83:90:6d:e7:43: 88:65:9b:fc:31:02:fc:96:c5:74:16:89:6a:77:e1:cf:30:73: 43:90:d1:88:ec:36:95:1e:d3:46:de:e9:11:88:c6:8d:d9:59: 7e:35:bd:77:5f:34:2e:b2:d5:3d:6b:cb:08:83:f4:71:8a:b7: 34:69:76:9e:71:bc:95:9b:9e:a3:a6:dd:ae:77:42:d1:6c:a1: 6c:6f:5a:2d:b6:98:3f:82:ea:49:21:3a:37:23:03:bb:10:81: b0:3b:8c:98:a3:b1:b7:9f:a8:18:3b:91:5b:74:4d:23:4c:80: 3d:f3:fd:ed:85:26:f7:35:1f:7a:cb:ac:0e:33:3e:11:a5:09: 8b:2c:84:32:cd:b2:1f:68:07:f2:b2:ed:92:b2:8c:61:f3:6d: 29:0d:53:fb:fe:dc:14:9c:17:57:08:53:29:2e:08:67:de:05: a5:6c:94:cd:43:a0:ef:31:d0:e2:74:d0:2d:21:2b:ee:ec:17: 7c:0e:98:fc:6c:7f:92:e2:51:93:12:de:85:4a:74:c4:1c:de: 4b:1c:f0:3b -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICND0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjQxMDIwMTQzMDE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE1MTNmNi1lY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnEN6Pjn0xQAqhOp8XDvlVt+p/zsezyO5R1f8NfFETriIhZy0Rhp5mByqSIi vz5Gdsup3ic3mgAQS7RBQB/8sN13ugqv0YO5FUSMKYXhwVJ6wF6xmMuuYufxjLLH WJR1pVuOm7/vsB04NDnYMsC4e8Ty03Vz6d/XaRisC1wRCM0hqBgTe8NuoAyte98X x1MKwT7SBfNQqvxc+3gdR4wMfXzMt4kGCZ/oUbZiEd5cnha8/DE4FjJ8szg/TYq8 l/9bR5ljhH9f59fyUOYpRjVpK6eF4d2XDfuEHzFlHm4d9TqicnWDB3vFdc118Jf7 NoAxXjVE66jnqoyUjFB76LEDhwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFFAYlYHB 2f8YeIkkKc9Tj65tUqdiMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ2NEQvRDkzMzNGRTQxRDZFMTFFMkE4NTA4MEIwMDhCMDJDRDIvOEMyNzc0Q0Ew RjM1MTFFRjkzMDIwMDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJn/5QDBAS0ldADBAG2/zIwDQQCAAIwBwMFACQCfAAwDQYJ KoZIhvcNAQELBQADggEBAKqFvaGv0AWmh4KWH01EoKdKpnlNQmK1GblaeKrarXpz 3vjnPkzMEFCOVbJ/+XkXhIqDkG3nQ4hlm/wxAvyWxXQWiWp34c8wc0OQ0YjsNpUe 00be6RGIxo3ZWX41vXdfNC6y1T1rywiD9HGKtzRpdp5xvJWbnqOm3a53QtFsoWxv Wi22mD+C6kkhOjcjA7sQgbA7jJijsbefqBg7kVt0TSNMgD3z/e2FJvc1H3rLrA4z PhGlCYsshDLNsh9oB/Ky7ZKyjGHzbSkNU/v+3BScF1cIUykuCGfeBaVslM1DoO8x 0OJ00C0hK+7sF3wOmPxsf5LiUZMS3oVKdMQc3ksc8Ds= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:18 2024 by rpki-client on console-ams.rpki-client.org