$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa File: B34D07906A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: gFTQhXxxWg+vWFd9YUvmY8166bjE5yYi7F/AL03zQaU= Subject key identifier: FD:6D:93:48:C0:82:96:7A:4B:B2:28:E4:2B:7F:F2:1E:C4:40:D8:7C Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 06D6 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa Signing time: Tue 22 Oct 2024 22:31:57 +0000 ROA not before: Tue 22 Oct 2024 22:31:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17444 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 22 22:31:57 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671827dd-f301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:5e:bc:80:11:4c:d6:d0:d4:26:85:6f:06: dd:ba:57:50:2d:67:5e:37:1d:09:b2:fe:5b:49:48: 0e:09:4a:0d:51:f2:84:ca:c9:3e:74:be:d2:ae:83: 9e:ae:ce:5a:56:81:7c:a7:06:76:0b:92:2a:4a:fb: 42:10:6c:7e:2d:50:55:e0:cd:13:03:06:94:b5:0c: 23:63:c0:bb:7a:9e:04:cd:84:cc:41:df:1e:b4:d5: 08:86:18:e2:7b:47:f4:0e:29:97:79:50:4d:c6:39: cb:a0:53:70:c4:f3:f9:92:fe:58:0d:0c:37:ee:19: 55:b5:86:ed:ab:83:48:d1:a4:20:76:6b:06:e5:f5: 2b:43:1f:6a:6e:a8:ce:ce:ad:42:37:48:16:44:3e: 05:76:16:26:1e:eb:01:23:b4:e5:38:40:c8:40:14: 50:41:2d:62:ca:57:83:fe:8a:86:29:c8:d0:43:4f: 6e:16:a4:ad:83:44:a6:d5:34:e6:10:20:28:1d:65: b5:29:ea:ab:f7:82:c8:c5:d0:6f:69:0e:a8:d1:1d: e7:a4:15:61:bb:f3:34:29:65:77:84:8d:40:bb:f6: a0:01:b4:df:8f:e8:d7:74:4d:d1:33:5e:67:61:7a: 32:ee:5c:4a:bb:23:b2:3b:b8:12:9d:4a:46:1b:a3: e4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6D:93:48:C0:82:96:7A:4B:B2:28:E4:2B:7F:F2:1E:C4:40:D8:7C X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 78:fe:78:1a:c4:76:58:bf:3b:ac:9e:25:cb:74:ff:e7:a0:04: 0f:14:e3:b0:57:42:53:26:b8:25:40:ec:1f:01:0f:21:76:9c: 14:2d:26:64:15:64:c4:79:6a:f1:7b:56:2e:41:28:32:4a:9c: 8f:6c:c1:32:31:5d:64:48:6e:71:22:08:af:12:42:cc:0b:27: aa:4c:2e:bb:92:90:5c:83:d5:08:93:ef:20:45:9f:99:e5:3d: 3a:b7:1a:7f:23:24:a7:0c:e1:ec:fe:fc:fb:2a:48:8f:03:74: 0c:c2:c3:4e:4c:dd:d0:96:05:e9:77:cd:b6:33:13:fc:ac:df: 3b:9e:f2:fc:d9:1d:cb:80:b0:02:c9:70:9a:e5:b8:fc:1a:2d: cb:9f:1b:49:da:23:c9:72:df:1f:fa:4a:b5:b3:8e:f1:02:55: 30:40:47:63:05:04:c2:13:a8:f8:a1:1a:05:07:92:f2:3e:be: 4e:77:60:4a:0a:d1:49:3d:e0:bc:f5:88:f9:e5:71:3c:3c:a9: 02:bc:54:c2:b4:d5:aa:b5:e8:4c:62:95:02:76:32:90:f2:a7: 1a:cf:45:6e:bb:88:a5:1b:c0:d8:b9:d6:aa:28:62:4f:47:e5: 1a:d8:98:2e:ac:e9:47:b1:68:69:85:82:0e:3d:84:d8:57:96: 2a:7f:f4:ca -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjQxMDIyMjIzMTU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MjdkZC1mMzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym5evIARTNbQ1CaFbwbduldQLWdeNx0Jsv5bSUgOCUoNUfKEysk+dL7SroOe rs5aVoF8pwZ2C5IqSvtCEGx+LVBV4M0TAwaUtQwjY8C7ep4EzYTMQd8etNUIhhji e0f0DimXeVBNxjnLoFNwxPP5kv5YDQw37hlVtYbtq4NI0aQgdmsG5fUrQx9qbqjO zq1CN0gWRD4FdhYmHusBI7TlOEDIQBRQQS1iyleD/oqGKcjQQ09uFqStg0Sm1TTm ECAoHWW1Keqr94LIxdBvaQ6o0R3npBVhu/M0KWV3hI1Au/agAbTfj+jXdE3RM15n YXoy7lxKuyOyO7gSnUpGG6Pk1QIDAQABo4IC3zCCAtswHQYDVR0OBBYEFP1tk0jA gpZ6S7Io5Ct/8h7EQNh8MB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjM0RDA3OTA2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAeP54GsR2WL87rJ4ly3T/56AEDxTjsFdCUya4JUDsHwEP IXacFC0mZBVkxHlq8XtWLkEoMkqcj2zBMjFdZEhucSIIrxJCzAsnqkwuu5KQXIPV CJPvIEWfmeU9OrcafyMkpwzh7P78+ypIjwN0DMLDTkzd0JYF6XfNtjMT/KzfO57y /Nkdy4CwAslwmuW4/Boty58bSdojyXLfH/pKtbOO8QJVMEBHYwUEwhOo+KEaBQeS 8j6+TndgSgrRST3gvPWI+eVxPDypArxUwrTVqrXoTGKVAnYykPKnGs9FbruIpRvA 2LnWqihiT0flGtiYLqzpR7FoaYWCDj2E2FeWKn/0yg== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org