$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa File: D34D9A72BBEB11EC83BEA22AC4F9AE02.roa (raw, json) Hash identifier: iRd1/ZHW+2xlwhXyNjL/uUSU9QGRKaTGijCT9xr8AHM= Subject key identifier: E7:A1:7A:C1:9F:73:AD:17:AE:AE:F4:55:3B:F3:92:7A:FD:07:3D:52 Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Certificate serial: 0761 Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa Signing time: Wed 02 Oct 2024 22:00:34 +0000 ROA not before: Wed 02 Oct 2024 22:00:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132825 IP address blocks: 43.231.4.0/24 maxlen: 24 103.250.4.0/24 maxlen: 24 103.250.5.0/24 maxlen: 24 103.250.6.0/24 maxlen: 24 103.250.7.0/24 maxlen: 24 118.107.192.0/24 maxlen: 24 118.107.193.0/24 maxlen: 24 118.107.194.0/24 maxlen: 24 118.107.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Validity Not Before: Oct 2 22:00:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fdc282-f239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8b:43:f7:20:c9:ce:25:1b:bd:e1:7a:c7:b7: 6c:e6:cd:64:ba:42:3c:f6:96:8d:56:d2:9f:ae:be: 7c:90:25:7a:d9:ab:72:8d:b5:f3:09:31:82:c3:23: e9:ae:30:da:a5:7d:c6:58:60:45:eb:e1:48:4e:0b: 7d:6b:f2:98:e0:cc:7c:82:65:59:19:da:d4:2e:26: 7a:eb:5c:1a:32:a2:91:c7:25:35:3d:b4:a1:7f:b9: 8a:40:2c:b3:2a:4f:80:5d:97:b1:3c:3b:e1:11:67: 9d:af:69:bb:3d:84:40:27:f8:a6:c8:fc:ae:94:4d: ad:1b:a4:21:c4:95:fc:ce:dc:11:31:32:a9:53:40: 6e:c1:45:94:16:e1:ad:97:08:46:a6:f5:95:0d:1a: 0f:b3:32:d2:a9:0c:d5:a5:e5:54:fe:64:2a:a2:48: 4c:13:4a:42:a4:03:1b:03:54:b2:bf:b0:ab:d3:18: 12:1b:0a:62:73:76:e0:f8:f8:7d:a6:56:f4:8c:76: db:33:7c:58:e4:dc:cc:a0:ef:4b:28:6b:5d:9b:4c: 26:4b:d2:9d:12:42:02:f3:34:21:d1:1c:9b:75:05: 37:52:3b:ef:81:c2:a4:90:23:28:2b:67:cf:2b:7e: df:d1:39:e1:b6:b7:cc:99:b3:63:c6:b6:9c:f2:ad: 47:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A1:7A:C1:9F:73:AD:17:AE:AE:F4:55:3B:F3:92:7A:FD:07:3D:52 X509v3 Authority Key Identifier: keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.4.0/24 103.250.4.0/22 118.107.192.0/22 Signature Algorithm: sha256WithRSAEncryption c7:d5:26:57:af:23:a4:05:dd:89:aa:47:15:cb:85:20:d2:3d: 14:79:59:0a:b4:bf:d2:74:c5:98:b7:d8:57:a5:cf:48:50:7a: fa:80:5c:cb:3c:ac:20:24:40:61:95:0d:d8:01:0c:c1:2d:0d: a2:e2:b0:45:8d:81:00:1b:39:80:24:78:75:33:c5:70:a5:0d: cc:f9:2b:5a:b8:4f:6c:b3:ed:7e:4d:aa:a4:15:e4:44:3f:67: c8:e3:ed:73:2c:81:94:85:1a:2c:10:e2:45:19:9e:e8:d2:19: d1:52:ba:7c:b8:22:2f:1b:c4:f4:2b:59:57:79:de:57:5e:a9: 00:a3:71:01:60:f0:62:20:d6:97:ff:23:dc:05:40:03:8a:72: b2:9f:2f:c0:d9:5f:7a:b7:57:53:41:e8:2a:2a:ff:16:d7:87: 64:92:01:21:be:74:17:f1:59:0d:e4:cf:e7:b4:4e:a8:ce:fc: 11:1c:69:a6:2e:b9:55:e9:d3:81:2b:81:6e:36:f4:d9:58:07: 3f:83:d9:c2:4a:62:c1:af:34:e0:07:19:36:47:02:19:9c:00: 0e:b1:3a:6b:c7:25:b0:58:5f:ed:60:13:e3:25:86:55:9f:98: 1c:65:d0:cd:80:9f:ed:3d:b6:fa:c3:3d:04:6f:19:cf:7e:09: c4:c1:df:d2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE3NkQxMTAvBgNVBAUTKDk2RjQyRTE5RjY5RDU5NkEwMzE4OTIxNTkwQTE3REQ1 MzIzM0U1OTUwHhcNMjQxMDAyMjIwMDM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkYzI4Mi1mMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsotD9yDJziUbveF6x7ds5s1kukI89paNVtKfrr58kCV62atyjbXzCTGCwyPp rjDapX3GWGBF6+FITgt9a/KY4Mx8gmVZGdrULiZ661waMqKRxyU1PbShf7mKQCyz Kk+AXZexPDvhEWedr2m7PYRAJ/imyPyulE2tG6QhxJX8ztwRMTKpU0BuwUWUFuGt lwhGpvWVDRoPszLSqQzVpeVU/mQqokhME0pCpAMbA1Syv7Cr0xgSGwpic3bg+Ph9 plb0jHbbM3xY5NzMoO9LKGtdm0wmS9KdEkIC8zQh0RybdQU3UjvvgcKkkCMoK2fP K37f0TnhtrfMmbNjxrac8q1HiQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOehesGf c60Xrq70VTvzknr9Bz1SMB8GA1UdIwQYMBaAFJb0Lhn2nVlqAxiSFZChfdUyM+WV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTc2RC85M0QxN0NEMDA2 QTAxMUVCQjQwOTA4NTlDNEY5QUUwMi9sdlF1R2ZhZFdXb0RHSklWa0tGOTFUSXo1 WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2UXVHZmFkV1dvREdKSVZrS0Y5MVRJejVaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE3NkQvOTNEMTdDRDAwNkEwMTFFQkI0MDkwODU5QzRGOUFFMDIvRDM0RDlBNzJC QkVCMTFFQzgzQkVBMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr5wQDBAJn+gQDBAJ2a8AwDQYJKoZIhvcNAQELBQADggEB AMfVJlevI6QF3YmqRxXLhSDSPRR5WQq0v9J0xZi32Felz0hQevqAXMs8rCAkQGGV DdgBDMEtDaLisEWNgQAbOYAkeHUzxXClDcz5K1q4T2yz7X5NqqQV5EQ/Z8jj7XMs gZSFGiwQ4kUZnujSGdFSuny4Ii8bxPQrWVd53ldeqQCjcQFg8GIg1pf/I9wFQAOK crKfL8DZX3q3V1NB6Coq/xbXh2SSASG+dBfxWQ3kz+e0TqjO/BEcaaYuuVXp04Er gW429NlYBz+D2cJKYsGvNOAHGTZHAhmcAA6xOmvHJbBYX+1gE+MlhlWfmBxl0M2A n+09tvrDPQRvGc9+CcTB39I= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org