$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/9CDAADC2091E11EAB375615BC4F9AE02.roa File: 9CDAADC2091E11EAB375615BC4F9AE02.roa (raw, json) Hash identifier: aBMu9G2pUD6O2IPIMcDI/GAMJ6VzUvCjlnn21Cf41Ns= Subject key identifier: 86:4D:A9:A0:B9:75:B2:BE:A2:7E:4F:31:1A:86:19:DF:BE:28:0C:E0 Certificate issuer: /CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Certificate serial: 0B4F Authority key identifier: 96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/9CDAADC2091E11EAB375615BC4F9AE02.roa Signing time: Mon 04 Mar 2024 19:47:38 +0000 ROA not before: Mon 04 Mar 2024 19:47:38 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55406 IP address blocks: 45.251.56.0/22 maxlen: 22 45.251.56.0/24 maxlen: 24 45.251.57.0/24 maxlen: 24 45.251.58.0/24 maxlen: 24 45.251.59.0/24 maxlen: 24 103.20.52.0/22 maxlen: 22 103.20.52.0/24 maxlen: 24 103.20.53.0/24 maxlen: 24 103.20.54.0/24 maxlen: 24 103.20.55.0/24 maxlen: 24 103.254.84.0/22 maxlen: 22 103.254.84.0/24 maxlen: 24 103.254.85.0/24 maxlen: 24 103.254.86.0/24 maxlen: 24 103.254.87.0/24 maxlen: 24 182.16.156.0/22 maxlen: 22 182.16.156.0/24 maxlen: 24 182.16.157.0/24 maxlen: 24 182.16.158.0/24 maxlen: 24 182.16.159.0/24 maxlen: 24 2405:f200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Validity Not Before: Mar 4 19:47:38 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e62559-729f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ba:03:71:60:55:72:85:c1:e7:18:04:d1:90: 80:41:3b:67:2c:92:b9:a5:a9:9d:55:f2:62:59:41: 90:77:14:74:5d:71:20:de:d7:9a:bd:3c:75:d6:f2: d0:d5:b6:f5:6c:91:e7:6d:1b:32:51:1c:8b:bc:59: 16:ac:67:b9:2c:9b:f8:bb:33:d3:03:f0:d0:d2:2b: a2:b1:e3:10:c6:49:c0:6d:54:6a:a7:de:7a:a9:38: 4a:09:db:11:4b:e0:1a:93:92:d7:15:9c:35:a4:b7: 7e:8d:5e:f1:33:af:57:66:9c:81:72:c7:3b:94:50: df:c8:cc:2e:71:8d:43:e2:35:ae:96:79:4f:49:5c: 8c:26:15:d5:79:37:15:45:b2:78:96:d7:ca:df:42: 66:35:a2:11:33:aa:61:4b:be:47:a7:86:be:50:88: c8:8f:b2:4e:34:47:5d:41:33:c7:aa:83:8d:20:1f: 4f:01:9c:6a:65:b3:b9:3d:98:56:4d:2d:53:e2:26: 3f:fb:2a:a3:32:8a:e2:b8:e8:cd:87:c1:04:4a:09: d7:61:8a:ad:9f:99:78:7f:2e:ad:e4:9a:2d:2b:6d: 09:66:3a:e2:20:cc:b5:fb:c8:06:e3:46:4b:72:fd: 31:df:34:3e:68:5d:76:5e:a4:9c:c9:01:02:9a:e3: 56:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4D:A9:A0:B9:75:B2:BE:A2:7E:4F:31:1A:86:19:DF:BE:28:0C:E0 X509v3 Authority Key Identifier: keyid:96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/9CDAADC2091E11EAB375615BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.56.0/22 103.20.52.0/22 103.254.84.0/22 182.16.156.0/22 IPv6: 2405:f200::/32 Signature Algorithm: sha256WithRSAEncryption c9:89:16:8e:d8:4d:eb:12:ef:32:21:0b:25:99:b1:7c:37:7f: a0:ed:3a:83:c4:55:b9:e7:88:f8:e5:92:6c:62:8c:06:6b:ed: f6:38:7c:e7:ac:b8:ae:4b:07:9d:6c:c8:3a:29:08:29:26:f5: 82:20:03:d7:8f:83:e0:e7:85:ed:9e:8f:77:93:8f:6b:03:12: 63:00:32:d0:e3:7c:ef:f2:a4:6f:28:99:5c:56:5f:55:04:41: 4d:fd:59:ea:39:14:0d:35:cd:e9:f7:d6:4e:43:17:87:a3:3f: 04:42:f4:dd:13:34:68:06:ba:5f:1a:7d:e9:e0:e6:7a:7a:36: cc:3b:d5:00:26:a2:ae:18:21:fb:3d:37:c5:9a:65:0a:f5:e1: f4:4a:2b:e5:8b:e5:4e:1b:0b:a7:2b:81:06:58:53:19:84:d3: 73:f8:14:33:71:6d:c0:ec:eb:7b:9a:ac:b0:19:29:fc:9c:14: 91:05:8e:b3:28:eb:16:66:08:45:3a:0f:53:70:98:2a:67:83: ca:6d:87:fe:66:b2:96:a1:46:6f:b2:77:7d:fa:c3:97:a5:68: 0e:86:c0:05:83:cf:70:90:3d:a4:dc:dc:30:46:64:6b:f0:40: 36:3c:df:2c:13:3d:d5:e2:3f:c5:6b:91:be:65:83:3c:c8:8c: 4f:18:fa:c1 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU2RTgxMTAvBgNVBAUTKDk2MjlBQzcxMEQzRTIxRDU5OTE5MjhENTlBNERCNjU0 MTFBOTZCRkYwHhcNMjQwMzA0MTk0NzM4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2MjU1OS03MjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7oDcWBVcoXB5xgE0ZCAQTtnLJK5pamdVfJiWUGQdxR0XXEg3teavTx11vLQ 1bb1bJHnbRsyURyLvFkWrGe5LJv4uzPTA/DQ0iuiseMQxknAbVRqp956qThKCdsR S+Aak5LXFZw1pLd+jV7xM69XZpyBcsc7lFDfyMwucY1D4jWulnlPSVyMJhXVeTcV RbJ4ltfK30JmNaIRM6phS75Hp4a+UIjIj7JONEddQTPHqoONIB9PAZxqZbO5PZhW TS1T4iY/+yqjMoriuOjNh8EESgnXYYqtn5l4fy6t5JotK20JZjriIMy1+8gG40ZL cv0x3zQ+aF12XqScyQECmuNW3wIDAQABo4ICtjCCArIwHQYDVR0OBBYEFIZNqaC5 dbK+on5PMRqGGd++KAzgMB8GA1UdIwQYMBaAFJYprHENPiHVmRko1ZpNtlQRqWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTZFOC83QkNBRkYwMjA5 MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlkV1pHU2pWbWsyMlZCR3Bh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xpbXNjUTAtSWRXWkdTalZtazIyVkJHcGFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU2RTgvN0JDQUZGMDIwOTFEMTFFQTkzQkQ5RTU2QzRGOUFFMDIvOUNEQUFEQzIw OTFFMTFFQUIzNzU2MTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIt+zgDBAJnFDQDBAJn/lQDBAK2EJwwDQQCAAIwBwMFACQF 8gAwDQYJKoZIhvcNAQELBQADggEBAMmJFo7YTesS7zIhCyWZsXw3f6DtOoPEVbnn iPjlkmxijAZr7fY4fOesuK5LB51syDopCCkm9YIgA9ePg+Dnhe2ej3eTj2sDEmMA MtDjfO/ypG8omVxWX1UEQU39Weo5FA01zen31k5DF4ejPwRC9N0TNGgGul8afeng 5np6Nsw71QAmoq4YIfs9N8WaZQr14fRKK+WL5U4bC6crgQZYUxmE03P4FDNxbcDs 63uarLAZKfycFJEFjrMo6xZmCEU6D1NwmCpng8pth/5mspahRm+yd336w5elaA6G wAWDz3CQPaTc3DBGZGvwQDY83ywTPdXiP8Vrkb5lgzzIjE8Y+sE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org