$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa File: B57F14B86A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: e4/df1ZKDr4aEamOFlzJbyomY0cdDHsDrVrwwMv17eI= Subject key identifier: F9:2B:3B:46:79:32:E4:E1:8C:60:1C:1F:0A:F1:D5:14:6D:55:89:7A Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 06DB Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa Signing time: Tue 22 Oct 2024 22:32:03 +0000 ROA not before: Tue 22 Oct 2024 22:32:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9381 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 22 22:32:02 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671827e2-0195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:72:0c:15:75:57:0e:6f:e7:77:de:f3:42: 37:f7:e0:71:83:f9:40:93:7f:14:79:d5:c9:19:85: e9:ab:1a:ab:07:3e:b1:8a:e4:06:a1:53:80:81:ed: 20:27:32:88:d4:7d:a2:55:66:ee:51:23:14:b6:97: 0f:ac:cc:3d:42:b1:11:f1:9a:8a:2a:e9:89:b8:07: e7:45:de:34:58:de:55:01:33:c5:17:ae:42:98:d5: 0b:70:44:54:10:5f:0f:f0:a3:77:9f:71:66:ba:c3: a4:1b:c4:d7:9d:da:ab:31:03:8e:0e:2e:04:6c:c6: 25:5b:7e:13:34:45:6d:7a:e4:93:8f:5e:66:0a:c5: a5:fa:c0:bf:e6:6c:bd:75:ce:87:8c:01:1b:c5:a7: 50:c1:df:bf:27:45:2b:83:7c:a5:c0:43:55:0d:65: 2c:68:2a:f5:86:1b:d1:77:c9:da:ed:96:b4:fd:12: 28:98:ad:f0:3b:54:3f:8e:ce:d5:e4:17:a0:d5:d9: f3:f0:0b:d4:9c:6b:54:2a:c6:fd:cf:fb:9a:77:1e: c3:6b:3b:a7:e8:ac:78:8c:62:e3:af:2c:0b:26:a8: 73:6e:2c:28:bb:d8:c2:02:3b:5a:0e:b9:09:d6:cf: 74:c3:98:5a:e7:64:99:30:42:13:28:12:c7:40:08: 4b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2B:3B:46:79:32:E4:E1:8C:60:1C:1F:0A:F1:D5:14:6D:55:89:7A X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 31:39:ea:c7:f3:95:e8:6d:b1:43:6f:79:ee:b9:e8:50:19:d0: a4:8f:54:23:1e:62:01:ed:c6:33:ac:cf:95:33:79:e0:53:15: 71:a6:88:c1:65:ac:ac:5e:7a:bc:4d:bc:fa:33:54:de:f2:26: 48:04:fb:04:7f:ae:31:b8:f8:f2:68:0c:59:f3:0e:de:ae:99: d2:19:f1:f3:fa:33:a4:72:60:b0:9d:82:aa:67:1d:13:ce:6d: 42:18:e2:f9:67:97:eb:31:4d:f9:ce:7f:09:7a:0e:17:a3:28: 5c:18:e2:7b:af:05:ae:61:f4:77:12:d5:06:00:34:71:1b:67: 88:26:48:53:c9:5b:3b:80:1b:98:5d:66:00:3a:4e:92:e5:b6: ca:09:e0:0f:25:56:57:16:f6:96:07:4f:a4:20:cc:4b:ef:0e: 29:1d:e4:f1:f4:f2:f1:e4:dd:a8:18:d2:b5:4d:19:af:8a:fa: dd:59:8b:ab:f0:5a:8e:36:36:d3:26:2d:be:8a:33:bc:d2:98: 9b:be:ae:2e:43:8f:af:e3:5d:62:b4:8e:fd:8b:38:cf:1b:f0: a3:c2:5b:0c:b3:46:48:16:44:21:bd:aa:1d:b1:71:04:9c:56: 0a:5d:20:82:bd:80:fc:17:99:f9:8d:18:12:7b:2d:6b:13:4f: 44:da:9b:48 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjQxMDIyMjIzMjAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MjdlMi0wMTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeJyDBV1Vw5v53fe80I39+Bxg/lAk38UedXJGYXpqxqrBz6xiuQGoVOAge0g JzKI1H2iVWbuUSMUtpcPrMw9QrER8ZqKKumJuAfnRd40WN5VATPFF65CmNULcERU EF8P8KN3n3FmusOkG8TXndqrMQOODi4EbMYlW34TNEVteuSTj15mCsWl+sC/5my9 dc6HjAEbxadQwd+/J0Urg3ylwENVDWUsaCr1hhvRd8na7Za0/RIomK3wO1Q/js7V 5Beg1dnz8AvUnGtUKsb9z/uadx7Dazun6Kx4jGLjrywLJqhzbiwou9jCAjtaDrkJ 1s90w5ha52SZMEITKBLHQAhLZwIDAQABo4IC3zCCAtswHQYDVR0OBBYEFPkrO0Z5 MuThjGAcHwrx1RRtVYl6MB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjU3RjE0Qjg2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAMTnqx/OV6G2xQ2957rnoUBnQpI9UIx5iAe3GM6zPlTN5 4FMVcaaIwWWsrF56vE28+jNU3vImSAT7BH+uMbj48mgMWfMO3q6Z0hnx8/ozpHJg sJ2CqmcdE85tQhji+WeX6zFN+c5/CXoOF6MoXBjie68FrmH0dxLVBgA0cRtniCZI U8lbO4AbmF1mADpOkuW2ygngDyVWVxb2lgdPpCDMS+8OKR3k8fTy8eTdqBjStU0Z r4r63VmLq/BajjY20yYtvoozvNKYm76uLkOPr+NdYrSO/Ys4zxvwo8JbDLNGSBZE Ib2qHbFxBJxWCl0ggr2A/BeZ+Y0YEnstaxNPRNqbSA== -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:43 2024 by rpki-client on console-fra.rpki-client.org