$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/B72206B4554B11E791BA5861C4F9AE02.roa File: B72206B4554B11E791BA5861C4F9AE02.roa (raw, json) Hash identifier: XD+rHi9pnwHv8fBlfHeLTMU0mL7clm3BjJgqv+KaLy8= Subject key identifier: 8A:CE:48:93:8B:0D:14:B8:64:22:AA:D5:04:58:F6:8D:1B:A1:D7:F1 Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 20E1 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/B72206B4554B11E791BA5861C4F9AE02.roa Signing time: Mon 04 Mar 2024 16:43:16 +0000 ROA not before: Mon 04 Mar 2024 16:43:16 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135036 IP address blocks: 45.250.68.0/22 maxlen: 22 45.250.68.0/24 maxlen: 24 45.250.69.0/24 maxlen: 24 45.250.70.0/24 maxlen: 24 45.250.71.0/24 maxlen: 24 103.206.208.0/22 maxlen: 22 103.206.208.0/24 maxlen: 24 103.206.209.0/24 maxlen: 24 103.206.210.0/24 maxlen: 24 103.206.211.0/24 maxlen: 24 2404:4480::/32 maxlen: 32 2404:4480:1000::/48 maxlen: 48 2404:4480:1001::/48 maxlen: 48 2404:4480:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8417 (0x20e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Mar 4 16:43:16 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e5fa24-3383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:29:7b:58:ab:43:0a:b3:48:79:9d:27:cc: a3:4d:d0:35:8d:d0:57:d4:23:2e:34:ce:46:65:e2: 09:e9:ba:d3:aa:5d:de:7d:a5:95:cc:f4:44:8a:a7: e1:7a:06:c5:f5:78:66:23:d8:2d:1d:d6:d3:5e:fc: b9:f2:23:40:0a:86:26:28:d0:05:c6:e5:94:a3:d4: 2c:30:ec:26:0b:0a:f2:22:a8:69:fe:98:5f:1f:24: ce:1a:78:2b:7d:39:90:3e:04:0c:e1:2d:a8:74:b5: f4:bc:37:d4:1c:d7:91:52:75:bb:60:8d:6e:f6:0e: 7d:62:94:67:a2:7b:0b:38:47:24:69:17:95:84:bb: 31:05:59:0e:97:67:c6:1e:94:80:c1:1a:f3:71:ca: fd:a0:f8:b4:8c:15:53:f9:60:de:a2:d9:0d:74:6e: 05:94:6a:76:5d:fa:09:19:c0:4a:86:dc:8d:9f:bc: b6:63:78:93:52:af:4b:96:f0:78:c6:c3:08:8e:0c: 45:b1:04:1f:34:dd:fe:f3:59:a8:a4:aa:fa:73:2a: dd:07:9f:6c:ef:f0:7b:b2:e1:b1:36:34:b0:09:b4: be:d2:7b:75:2c:11:d3:21:61:85:06:8a:48:c3:b4: 56:04:f4:de:d3:97:b9:7a:74:64:23:f2:1d:2f:8f: 90:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CE:48:93:8B:0D:14:B8:64:22:AA:D5:04:58:F6:8D:1B:A1:D7:F1 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/B72206B4554B11E791BA5861C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.68.0/22 103.206.208.0/22 IPv6: 2404:4480::/32 Signature Algorithm: sha256WithRSAEncryption 18:da:31:0c:d8:e9:0d:bb:9c:09:ea:71:75:2b:e0:80:3c:fe: 29:89:de:d9:25:a4:c0:d1:f9:87:94:21:52:72:78:7f:c6:a1: 52:2c:03:0c:14:52:b9:ef:01:1e:60:20:0f:96:59:a0:be:28: e0:f7:97:4e:b8:b2:dd:51:0c:42:87:41:a7:23:f6:84:36:4e: ad:2c:98:6a:81:5c:cc:5b:84:da:9d:fa:f4:84:bf:cb:8d:6d: 0e:53:00:8e:c7:a8:ae:31:68:58:21:d1:db:b0:34:1c:02:df: a2:5e:9d:3e:5a:0f:9c:cf:15:22:37:a4:65:e4:94:68:c9:6e: 5f:4c:e4:4f:19:10:cc:a4:e8:13:b6:c6:a3:12:a9:5f:63:02: 72:c5:f9:8f:c0:64:7c:e8:d4:a1:3b:b4:db:a2:a6:d1:b1:94: 41:02:82:1a:80:c3:3d:05:ef:54:71:f3:79:4b:0e:29:58:0d: b9:e3:39:24:77:31:ab:b3:8d:63:0f:f9:6e:71:7f:40:af:48: eb:42:ff:2d:63:5d:3e:e0:5b:32:c6:ff:e5:af:4a:8f:fb:ea: a1:04:3f:cb:0e:69:94:93:9f:13:c0:03:60:31:87:cf:b9:33: 3e:8f:e6:a4:2b:0b:40:ad:2e:8e:1f:1c:b0:8e:4d:70:d7:82: 7b:08:51:16 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICIOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjQwMzA0MTY0MzE2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU1ZmEyNC0zMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj4pe1irQwqzSHmdJ8yjTdA1jdBX1CMuNM5GZeIJ6brTql3efaWVzPREiqfh egbF9XhmI9gtHdbTXvy58iNACoYmKNAFxuWUo9QsMOwmCwryIqhp/phfHyTOGngr fTmQPgQM4S2odLX0vDfUHNeRUnW7YI1u9g59YpRnonsLOEckaReVhLsxBVkOl2fG HpSAwRrzccr9oPi0jBVT+WDeotkNdG4FlGp2XfoJGcBKhtyNn7y2Y3iTUq9LlvB4 xsMIjgxFsQQfNN3+81mopKr6cyrdB59s7/B7suGxNjSwCbS+0nt1LBHTIWGFBopI w7RWBPTe05e5enRkI/IdL4+QaQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIrOSJOL DRS4ZCKq1QRY9o0bodfxMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZGMkIvOTBGQURFRUNENUNEMTFFNUFBNDI2RTQwQzRGOUFFMDIvQjcyMjA2QjQ1 NTRCMTFFNzkxQkE1ODYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIt+kQDBAJnztAwDQQCAAIwBwMFACQERIAwDQYJKoZIhvcN AQELBQADggEBABjaMQzY6Q27nAnqcXUr4IA8/imJ3tklpMDR+YeUIVJyeH/GoVIs AwwUUrnvAR5gIA+WWaC+KOD3l064st1RDEKHQacj9oQ2Tq0smGqBXMxbhNqd+vSE v8uNbQ5TAI7HqK4xaFgh0duwNBwC36JenT5aD5zPFSI3pGXklGjJbl9M5E8ZEMyk 6BO2xqMSqV9jAnLF+Y/AZHzo1KE7tNuiptGxlEECghqAwz0F71Rx83lLDilYDbnj OSR3MauzjWMP+W5xf0CvSOtC/y1jXT7gWzLG/+WvSo/76qEEP8sOaZSTnxPAA2Ax h8+5Mz6P5qQrC0CtLo4fHLCOTXDXgnsIURY= -----END CERTIFICATE-----Generated at Thu May 16 18:26:02 2024 by rpki-client on console-fra.rpki-client.org