$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/F63AA888900F11ED8B4CB41DC4F9AE02.roa File: F63AA888900F11ED8B4CB41DC4F9AE02.roa (raw, json) Hash identifier: SXmEoVAwCuv2S1VkQaBNQLi7h8OwZxPvKiz0YPbjYQg= Subject key identifier: C0:08:CD:51:EF:04:25:D5:0A:F3:77:EE:5A:58:6E:F2:16:B2:F5:E9 Certificate issuer: /CN=A91E9467/serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Certificate serial: 03C1 Authority key identifier: 52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/F63AA888900F11ED8B4CB41DC4F9AE02.roa Signing time: Wed 05 Jun 2024 03:38:45 +0000 ROA not before: Wed 05 Jun 2024 03:38:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 133660 IP address blocks: 45.112.200.0/22 maxlen: 22 45.112.200.0/23 maxlen: 23 45.112.200.0/24 maxlen: 24 45.112.201.0/24 maxlen: 24 45.112.202.0/23 maxlen: 23 45.112.202.0/24 maxlen: 24 45.112.203.0/24 maxlen: 24 103.42.84.0/22 maxlen: 22 103.42.84.0/23 maxlen: 23 103.42.84.0/24 maxlen: 24 103.42.85.0/24 maxlen: 24 103.42.86.0/23 maxlen: 23 103.42.86.0/24 maxlen: 24 103.42.87.0/24 maxlen: 24 2406:640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9467/serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Validity Not Before: Jun 5 03:38:45 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665fddc5-2050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9d:da:a2:34:3c:9c:83:e5:51:83:98:69:02: fa:e4:c3:eb:95:3c:a0:42:40:b7:2d:eb:95:11:0a: f4:92:e7:98:04:b5:6b:19:7b:9f:31:22:61:1d:3a: d9:9c:6e:51:35:e9:92:e9:7f:29:d7:8c:b2:91:d5: eb:e2:fb:eb:85:77:53:86:4d:e1:be:f8:95:f3:38: aa:d7:62:1d:92:f9:ad:ec:48:2f:f5:2c:6f:22:e1: 5f:ff:df:53:e7:be:9b:73:d5:f8:38:d7:dd:a2:27: 21:a3:39:25:26:93:a1:c4:3c:d2:bb:e1:6a:82:0d: 44:92:58:48:6a:2e:ae:66:a3:e9:27:22:9e:d4:2c: 81:09:89:72:9f:57:a8:18:48:5a:4a:76:51:1d:50: fd:ef:61:e5:73:bd:51:36:36:78:81:1a:8b:ac:c4: aa:7b:d7:c1:c9:c0:ea:ee:c6:22:35:0a:61:3b:c2: f3:55:7e:90:93:13:10:61:0d:34:bd:a6:e8:57:4c: be:72:e5:f6:30:8d:a9:0f:ea:9b:d9:c8:af:e4:02: e6:ac:e4:ae:54:88:9d:41:bd:6d:c3:e9:e2:48:22: 87:cb:59:49:27:e2:f1:20:06:e4:6c:c8:4b:45:ed: 0e:aa:2b:86:28:0e:75:ff:51:f4:aa:56:83:b6:dc: 65:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:08:CD:51:EF:04:25:D5:0A:F3:77:EE:5A:58:6E:F2:16:B2:F5:E9 X509v3 Authority Key Identifier: keyid:52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/F63AA888900F11ED8B4CB41DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.200.0/22 103.42.84.0/22 IPv6: 2406:640::/32 Signature Algorithm: sha256WithRSAEncryption 3b:5c:9b:72:c6:c8:e8:1f:5d:ca:f2:cc:ff:fa:78:ac:f0:dd: 12:94:a7:58:bf:59:67:f7:3b:e1:9b:e5:fb:32:56:65:e7:88: 7d:8c:85:96:aa:20:88:ba:b4:50:8a:f7:b8:d1:8a:4b:ac:d1: 60:8d:c3:fc:1e:31:69:d5:0c:21:ec:31:40:18:9c:54:31:a7: 8e:65:dd:73:8a:23:2f:06:9f:29:fa:4b:da:f3:9e:5b:f9:33: 15:ee:a5:98:a3:11:ae:1e:24:3c:2c:17:93:0e:d3:47:2e:74: da:22:eb:e8:81:2b:4a:70:6f:7e:df:13:7a:f5:bd:9e:8e:ad: 95:ad:db:c0:64:0d:36:64:38:a3:5a:09:8d:b5:58:5e:4f:a8: ec:fb:d6:aa:3c:50:e2:c8:b0:08:ec:a8:03:67:92:df:cd:0f: 04:f3:ef:4e:7c:b9:13:54:03:57:80:4b:34:ac:8c:3e:49:f8: 9d:22:9f:06:3f:95:13:35:fe:57:55:41:2a:32:90:d9:2c:22: 20:97:33:fc:d1:d5:ed:62:bf:bb:5c:2a:18:a4:9b:85:71:4b: 6a:af:61:9b:1c:7c:17:98:70:e2:59:bd:d3:45:65:9b:da:23: 1a:91:e2:27:28:38:f3:eb:7d:6f:0b:c1:89:85:a1:53:bf:5b: ee:cc:d4:4f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0NjcxMTAvBgNVBAUTKDUyQkU5RERFOTU2OEZFNEFEQ0EwRjM0NUIzNjE3QTYz QzMwNzU4NDUwHhcNMjQwNjA1MDMzODQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZGRjNS0yMDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp53aojQ8nIPlUYOYaQL65MPrlTygQkC3LeuVEQr0kueYBLVrGXufMSJhHTrZ nG5RNemS6X8p14yykdXr4vvrhXdThk3hvviV8ziq12Idkvmt7Egv9SxvIuFf/99T 576bc9X4ONfdoichozklJpOhxDzSu+Fqgg1EklhIai6uZqPpJyKe1CyBCYlyn1eo GEhaSnZRHVD972Hlc71RNjZ4gRqLrMSqe9fBycDq7sYiNQphO8LzVX6QkxMQYQ00 vaboV0y+cuX2MI2pD+qb2civ5ALmrOSuVIidQb1tw+niSCKHy1lJJ+LxIAbkbMhL Re0OqiuGKA51/1H0qlaDttxl+QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMAIzVHv BCXVCvN37lpYbvIWsvXpMB8GA1UdIwQYMBaAFFK+nd6VaP5K3KDzRbNhemPDB1hF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQ2Ny83NzBCNEYxQTUy NkYxMUVDQkM1MEVCMTdDNEY5QUUwMi9VcjZkM3BWb19rcmNvUE5GczJGNlk4TUhX RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyNmQzcFZvX2tyY29QTkZzMkY2WThNSFdFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk0NjcvNzcwQjRGMUE1MjZGMTFFQ0JDNTBFQjE3QzRGOUFFMDIvRjYzQUE4ODg5 MDBGMTFFRDhCNENCNDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcMgDBAJnKlQwDQQCAAIwBwMFACQGBkAwDQYJKoZIhvcN AQELBQADggEBADtcm3LGyOgfXcryzP/6eKzw3RKUp1i/WWf3O+Gb5fsyVmXniH2M hZaqIIi6tFCK97jRikus0WCNw/weMWnVDCHsMUAYnFQxp45l3XOKIy8Gnyn6S9rz nlv5MxXupZijEa4eJDwsF5MO00cudNoi6+iBK0pwb37fE3r1vZ6OrZWt28BkDTZk OKNaCY21WF5PqOz71qo8UOLIsAjsqANnkt/NDwTz7058uRNUA1eASzSsjD5J+J0i nwY/lRM1/ldVQSoykNksIiCXM/zR1e1iv7tcKhikm4VxS2qvYZscfBeYcOJZvdNF ZZvaIxqR4icoOPPrfW8LwYmFoVO/W+7M1E8= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org