$ rpki-client -vvf rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/5F436F7E39A011EE923F683AC4F9AE02.roa File: 5F436F7E39A011EE923F683AC4F9AE02.roa (raw, json) Hash identifier: wvEIUxvlUFTH2qcHsopuAxq+KjN4ylNQUioBhK93yXg= Subject key identifier: 02:93:BD:50:5F:07:48:E1:46:A6:B7:3D:53:AB:31:CE:54:1F:71:38 Certificate issuer: /CN=A911D834/serialNumber=FDB2754D950630EB11DF84E2855CAAB7D1626F80 Certificate serial: 3455 Authority key identifier: FD:B2:75:4D:95:06:30:EB:11:DF:84:E2:85:5C:AA:B7:D1:62:6F:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/5F436F7E39A011EE923F683AC4F9AE02.roa Signing time: Wed 02 Oct 2024 14:51:08 +0000 ROA not before: Wed 02 Oct 2024 14:51:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136762 IP address blocks: 103.232.152.0/22 maxlen: 24 110.34.0.0/19 maxlen: 24 116.66.192.0/21 maxlen: 24 163.47.148.0/22 maxlen: 22 163.47.148.0/24 maxlen: 24 163.47.149.0/24 maxlen: 24 163.47.150.0/24 maxlen: 24 163.47.151.0/24 maxlen: 24 182.93.64.0/19 maxlen: 24 202.63.240.0/21 maxlen: 24 2403:3800::/32 maxlen: 36 2403:3800:1200::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.crl rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 14:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13397 (0x3455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D834/serialNumber=FDB2754D950630EB11DF84E2855CAAB7D1626F80 Validity Not Before: Oct 2 14:51:08 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fd5ddc-090a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:02:f5:f3:f8:ae:99:8b:c9:03:e1:bd:99:2e: 2b:66:b1:46:98:1d:49:5e:be:cb:f8:50:b0:9f:ea: 2c:7b:45:56:50:91:da:c9:e6:2e:f3:b2:c8:7d:a1: 97:f9:3e:85:45:0f:07:69:b5:02:37:61:b8:a8:bb: a1:33:99:8e:e4:85:27:f7:7e:e8:f5:f5:a0:48:22: a8:39:ac:a9:f0:0f:5a:bf:69:59:5d:85:22:f0:17: 40:ea:d8:f4:7b:94:fa:7c:e6:4b:d2:92:4e:af:82: c8:76:2d:da:2d:9c:51:bd:ef:06:07:5a:a6:44:20: d2:16:59:27:c4:53:c5:45:c5:f1:fa:37:bc:59:1b: 57:c2:55:32:56:71:18:f3:a5:6a:e9:97:d9:85:b2: 82:6f:72:1e:98:6c:81:5d:23:0e:ca:3f:e4:75:af: 60:a5:58:a6:67:d3:a3:64:fc:34:06:35:5a:24:1c: 19:a9:38:c3:0a:b4:f7:be:8a:90:f4:e7:7b:12:91: 92:23:ac:1f:29:b7:4a:d7:3a:8e:a3:0d:2c:f2:06: 75:62:b1:e9:43:d7:b3:13:42:31:fe:9a:e5:e0:a6: 0e:0b:2e:64:d0:bd:20:d2:d6:39:51:52:9a:55:47: fe:ea:26:66:48:30:63:f1:02:16:03:46:8d:2d:82: 42:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:93:BD:50:5F:07:48:E1:46:A6:B7:3D:53:AB:31:CE:54:1F:71:38 X509v3 Authority Key Identifier: keyid:FD:B2:75:4D:95:06:30:EB:11:DF:84:E2:85:5C:AA:B7:D1:62:6F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/5F436F7E39A011EE923F683AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.152.0/22 110.34.0.0/19 116.66.192.0/21 163.47.148.0/22 182.93.64.0/19 202.63.240.0/21 IPv6: 2403:3800::/32 Signature Algorithm: sha256WithRSAEncryption 1b:7f:57:8e:20:57:98:5e:23:0b:62:a8:aa:fd:46:03:6d:77: 5f:f5:a4:7d:93:7f:77:d9:93:80:0f:49:61:62:24:47:c2:72: 7d:4a:1e:ec:3e:61:e1:38:cc:da:27:42:0d:3d:c7:6e:0e:dc: 1d:be:a0:7b:22:8f:2c:a7:81:9a:d7:96:39:72:be:55:e0:29: f5:34:b5:8f:69:81:38:b9:ee:93:4f:ae:a2:e5:d9:17:b6:38: 63:d4:02:3c:a3:bb:3e:3f:1d:f0:67:00:f2:44:d1:65:07:d8: 81:c1:6b:c9:ec:90:78:09:0b:02:90:77:a1:65:5a:4f:34:c9: 21:3c:f4:a5:37:75:0d:a4:b9:da:cb:05:e1:10:43:fe:07:70: ec:7e:3b:6a:2b:9d:5a:8a:17:92:86:20:30:44:a1:ec:2c:73: 1f:97:92:85:72:01:17:15:8b:ad:58:59:53:e9:3a:41:5c:9f: 71:37:50:be:5d:9e:9d:01:95:ec:6f:db:25:82:66:0c:ed:df: fd:42:31:8a:38:6f:e9:39:7d:77:66:ce:da:b5:6f:3a:82:ea: e9:a6:b1:55:d9:50:8d:f3:d1:c7:b3:c3:2e:6f:b3:3e:d8:64: 62:3a:9f:ce:96:e1:d6:c5:36:60:ce:3a:81:64:17:76:d2:3a: 9e:a5:86:5a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4MzQxMTAvBgNVBAUTKEZEQjI3NTREOTUwNjMwRUIxMURGODRFMjg1NUNBQUI3 RDE2MjZGODAwHhcNMjQxMDAyMTQ1MTA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkNWRkYy0wOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAL18/iumYvJA+G9mS4rZrFGmB1JXr7L+FCwn+ose0VWUJHayeYu87LIfaGX +T6FRQ8HabUCN2G4qLuhM5mO5IUn937o9fWgSCKoOayp8A9av2lZXYUi8BdA6tj0 e5T6fOZL0pJOr4LIdi3aLZxRve8GB1qmRCDSFlknxFPFRcXx+je8WRtXwlUyVnEY 86Vq6ZfZhbKCb3IemGyBXSMOyj/kda9gpVimZ9OjZPw0BjVaJBwZqTjDCrT3voqQ 9Od7EpGSI6wfKbdK1zqOow0s8gZ1YrHpQ9ezE0Ix/prl4KYOCy5k0L0g0tY5UVKa VUf+6iZmSDBj8QIWA0aNLYJCFQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFAKTvVBf B0jhRqa3PVOrMc5UH3E4MB8GA1UdIwQYMBaAFP2ydU2VBjDrEd+E4oVcqrfRYm+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDgzNC9ERkJBNTBCODFE OEQxMUUyODI0REVERUIwOEIwMkNEMi9fYkoxVFpVR01Pc1IzNFRpaFZ5cXQ5Rmli NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19iSjFUWlVHTU9zUjM0VGloVnlxdDlGaWI0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ4MzQvREZCQTUwQjgxRDhEMTFFMjgyNERFREVCMDhCMDJDRDIvNUY0MzZGN0Uz OUEwMTFFRTkyM0Y2ODNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJn6JgDBAVuIgADBAN0QsADBAKjL5QDBAW2XUADBAPKP/Aw DQQCAAIwBwMFACQDOAAwDQYJKoZIhvcNAQELBQADggEBABt/V44gV5heIwtiqKr9 RgNtd1/1pH2Tf3fZk4APSWFiJEfCcn1KHuw+YeE4zNonQg09x24O3B2+oHsijyyn gZrXljlyvlXgKfU0tY9pgTi57pNPrqLl2Re2OGPUAjyjuz4/HfBnAPJE0WUH2IHB a8nskHgJCwKQd6FlWk80ySE89KU3dQ2kudrLBeEQQ/4HcOx+O2ornVqKF5KGIDBE oewscx+XkoVyARcVi61YWVPpOkFcn3E3UL5dnp0Blexv2yWCZgzt3/1CMYo4b+k5 fXdmztq1bzqC6ummsVXZUI3z0cezwy5vsz7YZGI6n86W4dbFNmDOOoFkF3bSOp6l hlo= -----END CERTIFICATE-----Generated at Tue Nov 26 17:19:18 2024 by rpki-client on console-fra.rpki-client.org