$ rpki-client -vvf rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa File: 3EB855ACDE3A11E781926D6DC4F9AE02.roa (raw, json) Hash identifier: AMcNfp7F2XxS6fYEUJYfNIYxis7dlQgn+VV4onEe0GY= Subject key identifier: 84:E4:51:1E:45:F5:70:80:CD:75:FE:0E:4F:F2:B2:54:13:9F:0E:23 Certificate issuer: /CN=A911C075/serialNumber=16CE8C1970B86A4AF4F35639104668D095B3D4E8 Certificate serial: 16E5 Authority key identifier: 16:CE:8C:19:70:B8:6A:4A:F4:F3:56:39:10:46:68:D0:95:B3:D4:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa Signing time: Thu 10 Oct 2024 16:54:39 +0000 ROA not before: Thu 10 Oct 2024 16:54:39 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135607 IP address blocks: 36.255.60.0/22 maxlen: 22 36.255.60.0/24 maxlen: 24 36.255.61.0/24 maxlen: 24 36.255.62.0/24 maxlen: 24 36.255.63.0/24 maxlen: 24 103.236.176.0/24 maxlen: 24 103.236.177.0/24 maxlen: 24 103.236.178.0/24 maxlen: 24 103.236.179.0/24 maxlen: 24 2402:2dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.crl rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5861 (0x16e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C075/serialNumber=16CE8C1970B86A4AF4F35639104668D095B3D4E8 Validity Not Before: Oct 10 16:54:39 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670806cf-6391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ab:fe:8f:94:91:05:10:76:cb:86:45:87:0d: ef:ac:ab:c8:83:fe:56:0a:ac:d9:c0:31:48:b7:b4: 4f:fe:66:67:a0:b1:8c:87:7b:60:43:1f:06:69:a6: ea:0d:26:fc:e8:89:b6:4b:2b:c9:ef:b7:bc:9e:1e: 89:03:8f:23:00:98:7c:01:0c:6b:c5:77:01:da:07: a7:d8:c0:92:bb:bc:cf:4d:c1:f6:13:1f:d4:f2:b4: dc:fb:8d:0a:86:a3:fc:3a:15:27:18:84:2b:1f:77: 38:71:9c:a6:d5:0c:68:a3:53:af:ca:f3:cf:d7:93: a5:72:dd:47:54:53:8a:df:0a:3f:c1:4b:bb:8e:f7: 11:d7:e1:7e:76:26:2a:5a:ad:32:d0:ce:a1:53:2a: 62:5c:53:b2:17:b8:35:e8:9e:7d:ce:82:ca:28:b5: 37:54:c8:5c:11:42:df:02:9a:7f:e4:3e:77:04:cf: 7a:6f:f0:b9:06:1d:80:5e:0b:d9:c0:db:73:dd:d4: 78:31:97:71:25:c9:5a:e7:c3:7a:13:6e:92:06:58: 6d:08:50:69:9f:8c:0f:54:4a:da:a6:2a:e4:c7:02: a1:fe:5c:53:5c:43:ec:32:f5:b3:7a:61:37:88:f3: 02:60:61:73:cc:a1:ca:10:6a:74:c6:ad:76:0b:e9: 1d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E4:51:1E:45:F5:70:80:CD:75:FE:0E:4F:F2:B2:54:13:9F:0E:23 X509v3 Authority Key Identifier: keyid:16:CE:8C:19:70:B8:6A:4A:F4:F3:56:39:10:46:68:D0:95:B3:D4:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.60.0/22 103.236.176.0/22 IPv6: 2402:2dc0::/32 Signature Algorithm: sha256WithRSAEncryption 98:d6:eb:80:5b:1c:08:07:1f:cd:71:73:fd:9e:3c:72:2f:56: 48:0d:e3:67:80:6f:ce:ee:9f:1b:55:3b:b5:8f:3a:27:2a:51: 77:d1:20:28:b9:8a:f8:22:71:19:82:ea:e7:6f:41:48:31:13: 1d:5c:04:0d:45:2e:c6:1e:81:54:8f:5a:5a:be:82:93:ae:1a: 70:ea:ed:7a:5a:23:33:90:2a:21:2c:f1:37:28:7e:03:ed:12: e0:b3:0e:da:60:a0:9f:cc:b3:f5:0e:dd:db:92:d8:4d:d8:c4: 5b:71:0d:18:1f:bf:73:fc:3e:dc:bf:2a:9c:83:49:ea:3c:42: 4e:12:dc:18:d6:3c:60:7d:fe:4a:9e:0e:a9:7e:38:17:b0:76: c0:de:43:f8:9e:cb:02:c3:d6:de:7f:e8:31:93:6a:6f:7c:54: 50:87:f4:09:28:92:cb:bb:06:b7:21:07:ea:bc:5d:fb:05:f1: e7:f9:e1:ac:9a:ed:79:87:8d:ad:e6:a3:21:85:c7:55:f1:47: a2:be:73:fb:cb:37:8a:b4:62:c4:e4:f3:62:be:c8:93:f5:09: 1b:c0:2e:2a:b8:15:fe:6b:39:63:39:bf:41:a8:35:fb:ce:fe: 8a:4a:b0:a1:a5:af:97:cb:fa:90:38:4a:fb:5c:80:01:eb:a3: 3f:46:b1:a6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwNzUxMTAvBgNVBAUTKDE2Q0U4QzE5NzBCODZBNEFGNEYzNTYzOTEwNDY2OEQw OTVCM0Q0RTgwHhcNMjQxMDEwMTY1NDM5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4MDZjZi02MzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKv+j5SRBRB2y4ZFhw3vrKvIg/5WCqzZwDFIt7RP/mZnoLGMh3tgQx8Gaabq DSb86Im2SyvJ77e8nh6JA48jAJh8AQxrxXcB2gen2MCSu7zPTcH2Ex/U8rTc+40K hqP8OhUnGIQrH3c4cZym1Qxoo1OvyvPP15Olct1HVFOK3wo/wUu7jvcR1+F+diYq Wq0y0M6hUypiXFOyF7g16J59zoLKKLU3VMhcEULfApp/5D53BM96b/C5Bh2AXgvZ wNtz3dR4MZdxJcla58N6E26SBlhtCFBpn4wPVErapirkxwKh/lxTXEPsMvWzemE3 iPMCYGFzzKHKEGp0xq12C+kd/QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFITkUR5F 9XCAzXX+Dk/yslQTnw4jMB8GA1UdIwQYMBaAFBbOjBlwuGpK9PNWORBGaNCVs9To MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzA3NS83NUE2MjE4QURF MzkxMUU3ODNCN0NDNkNDNEY5QUUwMi9GczZNR1hDNGFrcjA4MVk1RUVabzBKV3ox T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZzNk1HWEM0YWtyMDgxWTVFRVpvMEpXejFPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMwNzUvNzVBNjIxOEFERTM5MTFFNzgzQjdDQzZDQzRGOUFFMDIvM0VCODU1QUNE RTNBMTFFNzgxOTI2RDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIk/zwDBAJn7LAwDQQCAAIwBwMFACQCLcAwDQYJKoZIhvcN AQELBQADggEBAJjW64BbHAgHH81xc/2ePHIvVkgN42eAb87unxtVO7WPOicqUXfR ICi5ivgicRmC6udvQUgxEx1cBA1FLsYegVSPWlq+gpOuGnDq7XpaIzOQKiEs8Tco fgPtEuCzDtpgoJ/Ms/UO3duS2E3YxFtxDRgfv3P8Pty/KpyDSeo8Qk4S3BjWPGB9 /kqeDql+OBewdsDeQ/ieywLD1t5/6DGTam98VFCH9Akoksu7BrchB+q8XfsF8ef5 4aya7XmHja3moyGFx1XxR6K+c/vLN4q0YsTk82K+yJP1CRvALiq4Ff5rOWM5v0Go NfvO/opKsKGlr5fL+pA4SvtcgAHroz9GsaY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org