$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/477192ACF3FA11EAB9D11D26C4F9AE02.roa File: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (raw, json) Hash identifier: yiF95qxdVC02mMlRMuSXuOtx8PRvp7gaxII4qCM32AQ= Subject key identifier: 45:BC:96:A3:24:A0:E3:FF:4F:74:3E:70:18:A2:20:9D:52:C3:C4:3A Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 0744 Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/477192ACF3FA11EAB9D11D26C4F9AE02.roa Signing time: Tue 18 Jun 2024 23:00:32 +0000 ROA not before: Tue 18 Jun 2024 23:00:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9534 IP address blocks: 43.240.20.0/22 maxlen: 22 43.240.20.0/24 maxlen: 24 43.240.21.0/24 maxlen: 24 43.240.22.0/24 maxlen: 24 43.240.23.0/24 maxlen: 24 103.239.248.0/22 maxlen: 22 202.75.128.0/19 maxlen: 19 202.75.160.0/19 maxlen: 19 202.151.192.0/18 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: Jun 18 23:00:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6672118f-a9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:51:26:24:18:e1:30:6b:e1:2b:31:f5:e7:f3: 6d:3a:4f:9f:f6:84:ea:e2:48:da:e9:7a:ef:01:33: ea:ac:f6:86:3b:83:63:71:b5:cd:f4:31:1f:1a:c4: dc:ab:c4:09:51:a2:8a:64:39:4a:ef:58:fc:87:9b: b6:75:f9:e8:80:5e:21:11:2a:eb:7d:a5:75:7e:42: ba:39:ad:2b:4a:ec:49:8b:5c:02:85:12:ca:9a:5d: 18:00:9f:eb:89:27:34:ef:15:ab:97:6f:29:86:cc: b3:26:44:f7:00:4f:a4:01:06:0c:3e:1d:b2:05:3b: 7a:82:b2:7d:17:07:16:9f:ae:55:7f:ee:a0:eb:a8: 67:6b:fc:ba:ce:21:57:c6:de:8e:f4:72:67:88:5e: 66:e9:90:e7:1a:f6:bb:b5:1b:2c:b8:51:fe:d5:fc: 9a:f0:7a:e0:d3:d1:5d:78:ec:b1:09:b9:39:66:ab: 5f:a2:f0:10:6f:23:07:8d:99:eb:31:61:80:20:e6: 77:0d:56:66:eb:d9:8c:29:09:6f:d0:df:93:d5:f4: ea:d0:6c:44:85:20:77:ba:67:e5:1d:32:5b:d9:8e: 2a:fa:5a:c3:b2:03:0c:f1:03:27:28:97:2b:94:7e: b1:e6:00:fa:48:c5:ac:07:7f:6c:11:08:e4:2b:05: 68:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:BC:96:A3:24:A0:E3:FF:4F:74:3E:70:18:A2:20:9D:52:C3:C4:3A X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/477192ACF3FA11EAB9D11D26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.240.20.0/22 103.239.248.0/22 202.75.128.0/18 202.151.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8b:5a:63:31:d4:ae:c1:c0:c1:87:a5:4a:2c:2d:71:72:bd:bb: 72:07:84:8d:31:84:bd:3e:37:f0:26:57:a4:6a:49:27:dc:71: 64:0a:da:ca:66:76:af:10:bf:27:f5:f8:df:77:46:ed:c5:d8: e7:97:db:29:fe:70:ca:ce:17:92:28:b3:e2:73:86:44:4a:d0: e4:02:c0:b1:0e:ab:2c:66:d7:a3:70:ee:69:c1:25:56:12:51: 17:08:f2:a8:b7:8b:9a:cf:1a:0c:99:b4:cb:0c:87:d2:73:de: f5:5c:4e:20:99:71:dd:e3:99:20:7b:55:19:80:fc:5f:a8:d7: 9a:7f:48:bc:ab:78:0b:85:15:f5:63:fc:0a:ce:9f:a1:75:38: 27:d6:73:27:cc:68:a8:eb:32:b7:fc:60:19:16:85:35:04:81: 5a:5e:08:82:ae:8e:4b:a2:1f:55:f2:a7:e3:3c:64:d4:b6:b5: 73:2d:3b:3d:2f:56:76:2f:cf:24:aa:65:fe:54:c4:ad:e0:97: 21:ae:ab:de:94:75:fe:bb:97:4f:54:62:8c:97:63:3c:27:a6: 42:c4:9c:0f:ac:af:58:ca:a4:2c:dd:cb:f6:41:46:9d:99:d2: 8a:5b:a5:95:bb:ab:72:36:b9:64:f7:be:9a:ff:ef:84:a2:a7: 09:cb:9e:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjQwNjE4MjMwMDMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMTE4Zi1hOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lEmJBjhMGvhKzH15/NtOk+f9oTq4kja6XrvATPqrPaGO4NjcbXN9DEfGsTc q8QJUaKKZDlK71j8h5u2dfnogF4hESrrfaV1fkK6Oa0rSuxJi1wChRLKml0YAJ/r iSc07xWrl28phsyzJkT3AE+kAQYMPh2yBTt6grJ9FwcWn65Vf+6g66hna/y6ziFX xt6O9HJniF5m6ZDnGva7tRssuFH+1fya8Hrg09FdeOyxCbk5ZqtfovAQbyMHjZnr MWGAIOZ3DVZm69mMKQlv0N+T1fTq0GxEhSB3umflHTJb2Y4q+lrDsgMM8QMnKJcr lH6x5gD6SMWsB39sEQjkKwVojwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEW8lqMk oOP/T3Q+cBiiIJ1Sw8Q6MB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM4MTIvQjI1RUY5OTBFOTE2MTFFQUE3MDVEODRGQzRGOUFFMDIvNDc3MTkyQUNG M0ZBMTFFQUI5RDExRDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr8BQDBAJn7/gDBAbKS4ADBAbKl8AwDQYJKoZIhvcNAQEL BQADggEBAItaYzHUrsHAwYelSiwtcXK9u3IHhI0xhL0+N/AmV6RqSSfccWQK2spm dq8Qvyf1+N93Ru3F2OeX2yn+cMrOF5Ios+JzhkRK0OQCwLEOqyxm16Nw7mnBJVYS URcI8qi3i5rPGgyZtMsMh9Jz3vVcTiCZcd3jmSB7VRmA/F+o15p/SLyreAuFFfVj /ArOn6F1OCfWcyfMaKjrMrf8YBkWhTUEgVpeCIKujkuiH1Xyp+M8ZNS2tXMtOz0v VnYvzySqZf5UxK3glyGuq96Udf67l09UYoyXYzwnpkLEnA+sr1jKpCzdy/ZBRp2Z 0opbpZW7q3I2uWT3vpr/74SipwnLnpg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org