$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/DDE4B378619211EEB366AF27C4F9AE02.roa File: DDE4B378619211EEB366AF27C4F9AE02.roa (raw, json) Hash identifier: eqYs/CfLdsQWS6a2nU5tic+qtbY5XcXRbl4XY/r8Xmo= Subject key identifier: D1:87:EF:9D:40:0B:87:0D:55:99:C9:CE:7C:25:7E:28:41:40:E8:D1 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3522 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/DDE4B378619211EEB366AF27C4F9AE02.roa Signing time: Sat 02 Dec 2023 14:40:15 +0000 ROA not before: Sat 02 Dec 2023 14:40:15 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 131090 IP address blocks: 61.7.128.0/18 maxlen: 24 103.10.228.0/22 maxlen: 22 103.10.228.0/24 maxlen: 24 103.10.229.0/24 maxlen: 24 103.10.230.0/24 maxlen: 24 103.10.231.0/24 maxlen: 24 110.77.128.0/17 maxlen: 24 110.78.128.0/18 maxlen: 24 116.58.224.0/19 maxlen: 24 119.42.64.0/18 maxlen: 24 2001:c38:b000::/36 maxlen: 36 2001:c38:b010::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Dec 2 14:40:15 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b41cf-8ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:03:c4:74:c7:6b:08:42:fa:ce:39:41:2f:51: a2:b5:81:4a:0e:e3:a1:15:31:69:d0:aa:5e:14:72: 77:2a:0c:6e:fa:da:d7:cf:7d:7b:ee:fd:8c:d2:9f: 61:83:70:99:ec:7d:43:7b:5c:0c:8c:9c:12:85:83: 1f:ce:7e:e1:41:a9:9d:52:05:97:52:e7:6b:eb:76: ee:42:d1:a4:86:fd:25:01:8b:10:17:33:ec:2e:47: 04:a6:3a:72:65:61:ba:de:8a:a0:ff:87:6a:09:a5: bc:15:f9:54:d8:45:e9:a5:09:f1:87:13:3c:b8:b1: 19:8c:58:73:b0:68:fb:3c:08:24:57:80:21:04:45: d0:ee:b4:56:07:ab:6a:74:22:59:72:4f:c0:cd:a7: 99:41:39:e1:63:92:74:11:94:cf:b7:04:9e:ca:24: 27:bb:98:1b:7f:65:40:f6:91:fb:29:e9:f5:6f:49: 9b:55:fc:85:df:16:f2:e1:e3:a6:2a:97:52:a3:92: 13:78:88:f5:dd:cd:59:95:f2:ba:9f:b5:d9:52:eb: 92:b4:e3:e8:da:61:8d:1d:be:4d:19:db:e8:d6:45: e6:5a:fd:67:d2:3f:0c:be:a2:c5:1c:75:c8:b1:f9: 65:06:04:c5:bc:bb:5f:e9:78:dc:24:0a:bc:bf:ae: 69:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:87:EF:9D:40:0B:87:0D:55:99:C9:CE:7C:25:7E:28:41:40:E8:D1 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/DDE4B378619211EEB366AF27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.7.128.0/18 103.10.228.0/22 110.77.128.0/17 110.78.128.0/18 116.58.224.0/19 119.42.64.0/18 IPv6: 2001:c38:b000::/36 Signature Algorithm: sha256WithRSAEncryption 64:26:cb:c4:d7:4b:9f:78:62:43:29:f9:0a:8f:f7:6d:0e:3e: 60:fd:99:bc:5c:cc:a9:d5:2f:81:44:b0:0a:85:34:13:60:01: 10:d7:26:70:57:62:cc:4e:9d:5a:1a:dc:ef:47:42:68:db:e7: c4:1f:7b:e5:be:0c:2e:c0:4c:29:9c:6a:68:6a:7b:e8:7d:2b: cb:ce:66:65:1f:53:21:f1:f9:fd:13:11:ac:05:81:39:2d:39: 1c:09:07:31:d8:56:6a:d8:cf:f6:7e:37:29:34:4c:06:bb:17: d3:ed:31:29:62:1c:62:ff:49:d3:49:30:b0:ed:7d:87:f5:49: eb:75:bc:ee:64:ce:89:cb:4d:75:d5:7c:c6:c9:89:29:b2:f3: a7:54:ec:bc:12:44:dc:0c:b9:f2:f1:34:07:0d:fb:47:c6:f0: a0:4f:e4:e8:ed:9b:99:1a:bb:a2:ab:df:c7:06:c3:40:05:43: 69:3e:44:fc:41:a2:42:55:1e:db:d0:f9:5b:3d:a2:14:ae:d3: 82:42:1e:f8:be:f1:b9:5c:97:8c:28:7e:0a:1c:b0:d7:25:f0: 86:0a:26:99:df:33:9b:2e:34:8b:d6:d5:ec:8e:02:58:f1:70: ff:bd:20:f5:b3:bc:dc:ce:d8:53:43:27:8d:71:74:ee:9e:c8: c2:9e:37:bc -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjMxMjAyMTQ0MDE1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNDFjZi04Y2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QPEdMdrCEL6zjlBL1GitYFKDuOhFTFp0KpeFHJ3Kgxu+trXz3177v2M0p9h g3CZ7H1De1wMjJwShYMfzn7hQamdUgWXUudr63buQtGkhv0lAYsQFzPsLkcEpjpy ZWG63oqg/4dqCaW8FflU2EXppQnxhxM8uLEZjFhzsGj7PAgkV4AhBEXQ7rRWB6tq dCJZck/AzaeZQTnhY5J0EZTPtwSeyiQnu5gbf2VA9pH7Ken1b0mbVfyF3xby4eOm KpdSo5ITeIj13c1ZlfK6n7XZUuuStOPo2mGNHb5NGdvo1kXmWv1n0j8MvqLFHHXI sfllBgTFvLtf6XjcJAq8v65pkQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFNGH751A C4cNVZnJznwlfihBQOjRMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvRERFNEIzNzg2 MTkyMTFFRUIzNjZBRjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MCoEAgABMCQDBAY9B4ADBAJnCuQDBAduTYADBAZuToADBAV0OuADBAZ3KkAw DgQCAAIwCAMGBCABDDiwMA0GCSqGSIb3DQEBCwUAA4IBAQBkJsvE10ufeGJDKfkK j/dtDj5g/Zm8XMyp1S+BRLAKhTQTYAEQ1yZwV2LMTp1aGtzvR0Jo2+fEH3vlvgwu wEwpnGpoanvofSvLzmZlH1Mh8fn9ExGsBYE5LTkcCQcx2FZq2M/2fjcpNEwGuxfT 7TEpYhxi/0nTSTCw7X2H9UnrdbzuZM6Jy0111XzGyYkpsvOnVOy8EkTcDLny8TQH DftHxvCgT+To7ZuZGruiq9/HBsNABUNpPkT8QaJCVR7b0PlbPaIUrtOCQh74vvG5 XJeMKH4KHLDXJfCGCiaZ3zObLjSL1tXsjgJY8XD/vSD1s7zczthTQyeNcXTunsjC nje8 -----END CERTIFICATE-----Generated at Thu May 16 15:21:28 2024 by rpki-client on console-ams.rpki-client.org