$ rpki-client -vvf rpki.apnic.net/member_repository/A911DA8C/F3164C20D10611ECB128F413C4F9AE02/D0279B7AD10A11ECA78C081CC4F9AE02.roa File: D0279B7AD10A11ECA78C081CC4F9AE02.roa (raw, json) Hash identifier: aPnt9G9PwhxXYMkZOwS2x4lOo/4L3AhIffLQ2SVs6TQ= Subject key identifier: 70:83:A1:C5:B3:D5:B3:A5:C6:B3:1C:30:56:6E:4D:04:5F:98:29:EC Certificate issuer: /CN=A911DA8C/serialNumber=8031886E7E609E4F4A346A45108110406875FEC8 Certificate serial: 028A Authority key identifier: 80:31:88:6E:7E:60:9E:4F:4A:34:6A:45:10:81:10:40:68:75:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDGIbn5gnk9KNGpFEIEQQGh1_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DA8C/F3164C20D10611ECB128F413C4F9AE02/D0279B7AD10A11ECA78C081CC4F9AE02.roa Signing time: Thu 29 Aug 2024 02:35:09 +0000 ROA not before: Thu 29 Aug 2024 02:35:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55769 IP address blocks: 45.250.236.0/22 maxlen: 24 103.242.56.0/22 maxlen: 24 144.48.136.0/22 maxlen: 24 144.48.228.0/22 maxlen: 24 157.119.96.0/22 maxlen: 24 202.53.144.0/22 maxlen: 24 2405:e280:2080::/48 maxlen: 48 2405:e280:2180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DA8C/F3164C20D10611ECB128F413C4F9AE02/gDGIbn5gnk9KNGpFEIEQQGh1_sg.crl rsync://rpki.apnic.net/member_repository/A911DA8C/F3164C20D10611ECB128F413C4F9AE02/gDGIbn5gnk9KNGpFEIEQQGh1_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDGIbn5gnk9KNGpFEIEQQGh1_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DA8C/serialNumber=8031886E7E609E4F4A346A45108110406875FEC8 Validity Not Before: Aug 29 02:35:09 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cfde5c-1c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e0:f4:4d:45:fd:ed:02:8a:af:15:35:5a:94: 1d:99:66:f3:ab:e2:cf:aa:83:53:38:df:bf:3e:f8: 69:09:1b:5b:5f:96:bb:69:a1:98:46:c8:8b:a1:54: cc:a2:f8:3b:f7:d3:02:bb:3a:88:2a:c2:66:53:f0: 5b:91:2b:fc:db:75:4f:5e:50:49:5f:8a:92:7f:47: 5a:ea:a6:81:58:e8:8e:9e:f2:16:d4:0f:15:e2:db: 7b:11:a7:32:8e:8a:f2:d8:1a:d1:0f:a2:00:46:7f: 8a:64:d2:d8:03:17:64:eb:d7:61:65:b3:1b:93:19: 92:76:e2:15:f7:52:eb:2b:35:51:ec:cf:e7:60:b2: 03:dc:ea:7d:76:71:92:21:79:b8:8f:4b:ea:05:26: 2d:14:9d:c7:7e:cc:e1:96:a2:e8:1b:af:02:02:37: 92:4f:31:1a:a9:2c:5c:6c:47:20:ed:cf:8a:4e:32: d4:97:41:68:4b:7d:1e:2c:c0:0f:44:cd:5b:5f:3a: ab:de:01:4d:5d:ff:c0:29:bf:c9:9d:3b:6d:66:e8: 47:b7:1f:94:a3:f6:fe:c0:f1:07:5a:76:f1:50:47: 48:b2:64:f0:a5:df:75:74:6f:58:67:6b:1f:33:02: da:75:e1:ef:12:a1:04:b9:d9:19:36:a8:dc:07:a4: b1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:83:A1:C5:B3:D5:B3:A5:C6:B3:1C:30:56:6E:4D:04:5F:98:29:EC X509v3 Authority Key Identifier: keyid:80:31:88:6E:7E:60:9E:4F:4A:34:6A:45:10:81:10:40:68:75:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DA8C/F3164C20D10611ECB128F413C4F9AE02/gDGIbn5gnk9KNGpFEIEQQGh1_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDGIbn5gnk9KNGpFEIEQQGh1_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/F3164C20D10611ECB128F413C4F9AE02/D0279B7AD10A11ECA78C081CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.236.0/22 103.242.56.0/22 144.48.136.0/22 144.48.228.0/22 157.119.96.0/22 202.53.144.0/22 IPv6: 2405:e280:2080::/48 2405:e280:2180::/48 Signature Algorithm: sha256WithRSAEncryption 18:36:d8:66:a6:9f:91:2b:ef:da:23:e8:1e:7c:25:15:65:20: 3b:a4:e9:99:21:2d:f2:6a:7b:8f:7e:4c:9f:8d:23:d7:30:19: 72:d8:90:30:4e:93:47:d5:68:31:e6:2a:87:45:d5:56:29:1a: be:29:d2:16:21:71:ca:32:78:1d:ab:9a:27:d7:b1:33:4b:e1: 60:15:7c:13:03:88:86:fe:81:b8:d9:8b:9d:0d:70:c5:0f:95: c9:80:24:46:4a:1c:29:77:0e:1c:e3:1c:a6:dd:06:dc:4a:a5: 08:87:cb:91:0a:a5:f6:45:c4:19:2b:1e:b9:b6:7b:5a:7e:d2: 2b:4b:45:b1:5f:6c:43:96:5a:64:3c:30:dc:82:11:ad:77:11: 33:a7:36:ba:7f:6e:39:fc:9c:de:67:7d:8a:f2:33:a6:50:64: 63:32:3a:83:44:3d:d9:44:45:a2:3b:90:42:37:4a:0c:c3:34: ca:43:86:53:7a:62:14:db:33:cc:64:d3:ed:ba:31:8c:98:a4: 01:35:5a:6b:ce:e7:79:9b:2f:c7:63:08:76:7a:fb:aa:c9:f4: 07:2e:ee:35:3e:6e:21:83:94:ad:eb:5d:d8:5c:1e:3f:41:87: d9:0d:a7:37:d8:5e:c9:a9:0e:18:1a:ea:c7:9f:55:80:77:3d: 69:a7:7c:2e -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgICAoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURBOEMxMTAvBgNVBAUTKDgwMzE4ODZFN0U2MDlFNEY0QTM0NkE0NTEwODExMDQw Njg3NUZFQzgwHhcNMjQwODI5MDIzNTA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmZGU1Yy0xYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+D0TUX97QKKrxU1WpQdmWbzq+LPqoNTON+/PvhpCRtbX5a7aaGYRsiLoVTM ovg799MCuzqIKsJmU/BbkSv823VPXlBJX4qSf0da6qaBWOiOnvIW1A8V4tt7Eacy jory2BrRD6IARn+KZNLYAxdk69dhZbMbkxmSduIV91LrKzVR7M/nYLID3Op9dnGS IXm4j0vqBSYtFJ3HfszhlqLoG68CAjeSTzEaqSxcbEcg7c+KTjLUl0FoS30eLMAP RM1bXzqr3gFNXf/AKb/JnTttZuhHtx+Uo/b+wPEHWnbxUEdIsmTwpd91dG9YZ2sf MwLadeHvEqEEudkZNqjcB6SxIwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFHCDocWz 1bOlxrMcMFZuTQRfmCnsMB8GA1UdIwQYMBaAFIAxiG5+YJ5PSjRqRRCBEEBodf7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREE4Qy9GMzE2NEMyMEQx MDYxMUVDQjEyOEY0MTNDNEY5QUUwMi9nREdJYm41Z25rOUtOR3BGRUlFUVFHaDFf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dER0libjVnbms5S05HcEZFSUVRUUdoMV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURBOEMvRjMxNjRDMjBEMTA2MTFFQ0IxMjhGNDEzQzRGOUFFMDIvRDAyNzlCN0FE MTBBMTFFQ0E3OEMwODFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVwYIKwYBBQUHAQcBAf8E SDBGMCoEAgABMCQDBAIt+uwDBAJn8jgDBAKQMIgDBAKQMOQDBAKdd2ADBALKNZAw GAQCAAIwEgMHACQF4oAggAMHACQF4oAhgDANBgkqhkiG9w0BAQsFAAOCAQEAGDbY ZqafkSvv2iPoHnwlFWUgO6TpmSEt8mp7j35Mn40j1zAZctiQME6TR9VoMeYqh0XV VikavinSFiFxyjJ4HauaJ9exM0vhYBV8EwOIhv6BuNmLnQ1wxQ+VyYAkRkocKXcO HOMcpt0G3EqlCIfLkQql9kXEGSseubZ7Wn7SK0tFsV9sQ5ZaZDww3IIRrXcRM6c2 un9uOfyc3md9ivIzplBkYzI6g0Q92URFojuQQjdKDMM0ykOGU3piFNszzGTT7box jJikATVaa87neZsvx2MIdnr7qsn0By7uNT5uIYOUretd2FweP0GH2Q2nN9heyakO GBrqx59VgHc9aad8Lg== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:31 2024 by rpki-client on console-ams.rpki-client.org