$ rpki-client -vvf rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/E75B22220B5D11EBADED9667C4F9AE02.roa File: E75B22220B5D11EBADED9667C4F9AE02.roa (raw, json) Hash identifier: oaK2X9WpPOd/tSNz0Xu8JekRZKhCOx+n4q+VsyhqnUo= Subject key identifier: 89:AA:C3:D3:1F:B9:9C:ED:6F:6D:9A:57:73:29:B7:4F:23:B9:C4:B1 Certificate issuer: /CN=A9123072/serialNumber=E3BCBA88BEDC2A768A9865F416D68A7C3033F469 Certificate serial: 0690 Authority key identifier: E3:BC:BA:88:BE:DC:2A:76:8A:98:65:F4:16:D6:8A:7C:30:33:F4:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47y6iL7cKnaKmGX0FtaKfDAz9Gk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/E75B22220B5D11EBADED9667C4F9AE02.roa Signing time: Thu 30 Nov 2023 23:10:53 +0000 ROA not before: Thu 30 Nov 2023 23:10:53 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132825 IP address blocks: 118.107.244.0/24 maxlen: 24 118.107.245.0/24 maxlen: 24 118.107.246.0/24 maxlen: 24 118.107.247.0/24 maxlen: 24 118.107.252.0/24 maxlen: 24 118.107.253.0/24 maxlen: 24 118.107.254.0/24 maxlen: 24 118.107.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/47y6iL7cKnaKmGX0FtaKfDAz9Gk.crl rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/47y6iL7cKnaKmGX0FtaKfDAz9Gk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47y6iL7cKnaKmGX0FtaKfDAz9Gk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123072/serialNumber=E3BCBA88BEDC2A768A9865F416D68A7C3033F469 Validity Not Before: Nov 30 23:10:53 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6569167c-5f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3a:fd:a8:5e:14:49:b9:be:f9:4b:97:46:55: c0:0c:53:ee:df:bd:c2:32:d8:8d:67:a5:8b:9a:2c: db:d5:ee:ea:70:1f:bd:0d:f1:ec:e7:2d:79:34:3c: 0a:8c:c0:9d:39:14:0e:34:e3:7f:ab:26:25:21:32: 85:f3:ce:14:fd:5e:ab:ef:85:80:9c:cc:4a:93:3a: 4a:0a:b2:ee:f5:7c:d0:48:db:07:87:d6:23:b3:4c: 24:71:61:3b:3a:29:d4:78:67:a8:93:58:73:03:7b: 16:26:35:03:48:0f:bb:9d:10:d6:e5:66:f6:f3:bd: db:3a:c6:9f:d3:54:59:46:68:53:34:7e:63:46:b1: 5c:d6:e2:b3:6f:19:4c:48:d1:d8:73:d3:b2:e1:18: 2d:9e:5f:53:93:2e:06:56:06:e6:64:a2:23:12:16: aa:d6:4a:c0:1a:7f:71:df:af:f1:21:36:23:1a:af: 0f:ec:a4:ea:48:c7:d1:f5:2c:9c:f3:da:5e:7d:ae: cb:fa:3b:02:67:c7:f7:ee:04:c2:09:3b:b0:e8:7c: 80:01:18:41:f7:46:ea:54:49:a0:5a:48:87:df:7a: 02:47:d3:ac:aa:70:be:1d:c1:fd:c3:7a:b8:be:bb: 6e:ab:45:83:40:94:88:52:0d:d7:5e:ea:3b:16:49: ad:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AA:C3:D3:1F:B9:9C:ED:6F:6D:9A:57:73:29:B7:4F:23:B9:C4:B1 X509v3 Authority Key Identifier: keyid:E3:BC:BA:88:BE:DC:2A:76:8A:98:65:F4:16:D6:8A:7C:30:33:F4:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/47y6iL7cKnaKmGX0FtaKfDAz9Gk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47y6iL7cKnaKmGX0FtaKfDAz9Gk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/E75B22220B5D11EBADED9667C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.107.244.0/22 118.107.252.0/22 Signature Algorithm: sha256WithRSAEncryption 36:9d:e6:dd:d0:02:cb:02:83:63:a3:6e:84:0c:9c:29:d3:b8: 4f:89:04:f3:14:18:f8:f2:38:a6:a9:3a:d7:f7:be:27:b9:3a: c9:29:69:4f:4e:fb:11:0b:b0:53:4e:c8:3b:19:23:f7:a3:51: ee:29:21:e9:2a:ab:cb:d4:20:e0:29:06:5a:74:ee:5b:21:04: 4b:ae:cb:20:80:6d:5e:8e:3c:1d:94:93:64:cd:2e:65:57:9d: f9:6f:51:93:e6:ce:ad:ae:21:10:7f:11:c4:19:0c:0d:c2:79: cd:0a:3e:dc:ab:62:1c:e0:8b:9e:43:5b:32:ad:30:48:58:1b: 0c:a0:a3:47:56:99:0f:76:7a:6c:1d:1e:4b:71:77:24:3d:03: 9a:2a:0f:13:0c:99:c3:e8:ee:c0:81:39:af:53:4b:6d:50:7f: 21:51:b5:09:7c:0f:16:3a:99:a6:ab:99:64:f4:c7:01:92:bf: 82:aa:3c:05:35:d8:2e:1e:8a:69:42:ed:9e:4a:5c:b2:d3:99: 02:78:9f:06:47:d0:28:d1:7c:7c:72:67:c5:b5:ec:d4:57:87: da:ad:1d:33:f7:8b:84:e8:74:9f:aa:79:b4:ef:fd:69:d7:25: 92:8c:73:53:ac:7a:42:f6:ca:21:b8:f4:af:cb:2f:4a:88:80: 1e:6c:14:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwNzIxMTAvBgNVBAUTKEUzQkNCQTg4QkVEQzJBNzY4QTk4NjVGNDE2RDY4QTdD MzAzM0Y0NjkwHhcNMjMxMTMwMjMxMDUzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY5MTY3Yy01ZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Dr9qF4USbm++UuXRlXADFPu373CMtiNZ6WLmizb1e7qcB+9DfHs5y15NDwK jMCdORQONON/qyYlITKF884U/V6r74WAnMxKkzpKCrLu9XzQSNsHh9Yjs0wkcWE7 OinUeGeok1hzA3sWJjUDSA+7nRDW5Wb2873bOsaf01RZRmhTNH5jRrFc1uKzbxlM SNHYc9Oy4Rgtnl9Tky4GVgbmZKIjEhaq1krAGn9x36/xITYjGq8P7KTqSMfR9Syc 89pefa7L+jsCZ8f37gTCCTuw6HyAARhB90bqVEmgWkiH33oCR9OsqnC+HcH9w3q4 vrtuq0WDQJSIUg3XXuo7FkmtAwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFImqw9Mf uZztb22aV3Mpt08jucSxMB8GA1UdIwQYMBaAFOO8uoi+3Cp2iphl9BbWinwwM/Rp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzA3Mi8wQ0VBNDk1QzBC NUMxMUVCOTlBMTc1NjJDNEY5QUUwMi80N3k2aUw3Y0tuYUttR1gwRnRhS2ZEQXo5 R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ3eTZpTDdjS25hS21HWDBGdGFLZkRBejlHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMwNzIvMENFQTQ5NUMwQjVDMTFFQjk5QTE3NTYyQzRGOUFFMDIvRTc1QjIyMjIw QjVEMTFFQkFERUQ5NjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJ2a/QDBAJ2a/wwDQYJKoZIhvcNAQELBQADggEBADad5t3Q AssCg2OjboQMnCnTuE+JBPMUGPjyOKapOtf3vie5OskpaU9O+xELsFNOyDsZI/ej Ue4pIekqq8vUIOApBlp07lshBEuuyyCAbV6OPB2Uk2TNLmVXnflvUZPmzq2uIRB/ EcQZDA3Cec0KPtyrYhzgi55DWzKtMEhYGwygo0dWmQ92emwdHktxdyQ9A5oqDxMM mcPo7sCBOa9TS21QfyFRtQl8DxY6maarmWT0xwGSv4KqPAU12C4eimlC7Z5KXLLT mQJ4nwZH0CjRfHxyZ8W17NRXh9qtHTP3i4TodJ+qebTv/WnXJZKMc1OsekL2yiG4 9K/LL0qIgB5sFMA= -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org