$ rpki-client -vvf rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa File: 1495D7EE854B11EAACB2FE39C4F9AE02.roa (raw, json) Hash identifier: 8ylyU2u6O91u6Kwgbu0niGIDIglLUsHPVcHeUP1oNtk= Subject key identifier: FD:CB:75:DB:6C:E2:37:BE:91:4E:2C:0A:FC:CC:72:AE:19:3A:E1:6E Certificate issuer: /CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Certificate serial: 0AF5 Authority key identifier: 59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa Signing time: Tue 16 Apr 2024 08:36:36 +0000 ROA not before: Tue 16 Apr 2024 08:36:36 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 23856 IP address blocks: 61.13.192.0/18 maxlen: 18 61.16.48.0/20 maxlen: 20 61.16.48.0/24 maxlen: 24 61.16.49.0/24 maxlen: 24 61.16.50.0/24 maxlen: 24 61.16.52.0/24 maxlen: 24 61.16.53.0/24 maxlen: 24 61.16.64.0/18 maxlen: 18 61.16.72.0/24 maxlen: 24 61.16.101.0/24 maxlen: 24 61.16.110.0/24 maxlen: 24 61.16.116.0/24 maxlen: 24 103.77.140.0/22 maxlen: 22 116.206.204.0/22 maxlen: 22 116.206.207.0/24 maxlen: 24 203.149.192.0/19 maxlen: 19 203.149.196.0/24 maxlen: 24 203.149.224.0/20 maxlen: 20 203.149.225.0/24 maxlen: 24 2407:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91274A4/serialNumber=595665FF85E4E477371F7541F7209DC244E60CA5 Validity Not Before: Apr 16 08:36:36 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=661e3894-259a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:ea:fa:06:bf:b3:3a:dd:26:10:d4:f2:4e: 0c:3d:3b:d4:21:d0:2c:0f:a0:cf:44:5a:81:19:02: a7:bf:b1:06:74:4e:9d:e2:94:ac:8f:3d:51:2c:26: 71:76:1a:54:00:bb:bc:8a:a8:4e:e8:5f:df:78:f1: a8:4a:7b:f4:1d:fa:4b:1e:dd:aa:70:d0:bf:58:c8: 74:de:f5:7e:a6:13:ef:83:59:7d:8a:15:fe:ed:24: 0f:bc:ba:bb:0a:c9:d2:fb:6b:78:69:82:66:4c:b8: 38:c5:23:59:a1:02:9a:d0:26:c7:52:8d:aa:2b:30: f7:79:c1:b1:26:38:fe:38:55:59:45:f8:93:53:6d: 8b:da:96:b2:8e:c9:92:aa:23:92:fd:c7:e4:1e:3e: e6:f0:fd:b0:ea:16:9d:a9:2b:e8:ac:b0:df:3c:00: d9:48:f0:46:b7:92:b6:b4:d9:36:a4:59:dc:0b:68: 8a:d0:fe:2e:5f:15:f0:7e:9b:92:04:43:9a:00:39: 99:d1:a7:02:37:f8:45:17:5e:2e:a6:6d:fb:43:0f: 36:85:ba:9a:b8:b0:60:f3:2d:11:c1:06:53:ed:14: 54:e5:45:a6:96:48:4f:0d:ef:51:62:4b:8f:f1:87: 61:a6:db:08:77:3d:ef:18:26:cd:e8:d3:77:d6:09: 1c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CB:75:DB:6C:E2:37:BE:91:4E:2C:0A:FC:CC:72:AE:19:3A:E1:6E X509v3 Authority Key Identifier: keyid:59:56:65:FF:85:E4:E4:77:37:1F:75:41:F7:20:9D:C2:44:E6:0C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVZl_4Xk5Hc3H3VB9yCdwkTmDKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91274A4/DDBE420A30F011EA9859AE53C4F9AE02/1495D7EE854B11EAACB2FE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.13.192.0/18 61.16.48.0-61.16.127.255 103.77.140.0/22 116.206.204.0/22 203.149.192.0-203.149.239.255 IPv6: 2407:9880::/32 Signature Algorithm: sha256WithRSAEncryption 8a:e4:95:27:e0:39:48:16:10:05:0d:ba:5e:7d:bf:98:27:0c: 5a:a1:19:6b:f6:6e:b3:30:1e:26:29:da:d8:9d:8e:a2:32:5b: 09:d9:37:31:88:a9:e4:74:f2:87:76:cb:28:66:1c:4f:17:b3: 6f:90:34:a0:12:76:42:ef:6a:fd:4d:d0:1e:fa:6e:69:48:38: 16:8e:64:63:e6:77:d3:ee:44:f0:fd:3f:9e:39:fc:8e:e2:73: 0c:7a:ff:86:b9:8c:55:cf:83:b1:23:c4:71:79:34:9a:6a:df: d9:6f:d7:4e:2b:03:9b:a6:fc:24:b9:04:5d:33:81:9e:13:07: a9:9b:c6:34:20:18:0a:fe:fa:9f:0d:25:29:a2:bf:78:58:e3: f1:fd:e1:10:56:f2:91:b9:15:7d:94:07:b2:04:2c:c5:bc:21: 71:88:96:c3:33:2f:43:30:c8:45:fc:88:89:6f:09:f6:c0:7f: 5e:2c:2c:b0:d0:8f:7e:03:35:a3:08:7d:83:e3:97:7f:6a:51: 4e:b5:c6:9e:b7:68:3e:18:5f:66:85:2d:c5:fc:6c:cf:d3:ad: 93:dd:17:1c:aa:2a:79:6b:ef:f4:d0:53:b0:9e:8d:36:e6:3e: da:5d:91:2d:01:b9:ae:0c:c7:ac:96:0e:f4:cb:d6:02:b8:50: 08:81:f9:63 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc0QTQxMTAvBgNVBAUTKDU5NTY2NUZGODVFNEU0NzczNzFGNzU0MUY3MjA5REMy NDRFNjBDQTUwHhcNMjQwNDE2MDgzNjM2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlMzg5NC0yNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfrq+ga/szrdJhDU8k4MPTvUIdAsD6DPRFqBGQKnv7EGdE6d4pSsjz1RLCZx dhpUALu8iqhO6F/fePGoSnv0HfpLHt2qcNC/WMh03vV+phPvg1l9ihX+7SQPvLq7 CsnS+2t4aYJmTLg4xSNZoQKa0CbHUo2qKzD3ecGxJjj+OFVZRfiTU22L2payjsmS qiOS/cfkHj7m8P2w6hadqSvorLDfPADZSPBGt5K2tNk2pFncC2iK0P4uXxXwfpuS BEOaADmZ0acCN/hFF14upm37Qw82hbqauLBg8y0RwQZT7RRU5UWmlkhPDe9RYkuP 8YdhptsIdz3vGCbN6NN31gkcRwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFP3Lddts 4je+kU4sCvzMcq4ZOuFuMB8GA1UdIwQYMBaAFFlWZf+F5OR3Nx91QfcgncJE5gyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzRBNC9EREJFNDIwQTMw RjAxMUVBOTg1OUFFNTNDNEY5QUUwMi9XVlpsXzRYazVIYzNIM1ZCOXlDZHdrVG1E S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dWWmxfNFhrNUhjM0gzVkI5eUNkd2tUbURLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc0QTQvRERCRTQyMEEzMEYwMTFFQTk4NTlBRTUzQzRGOUFFMDIvMTQ5NUQ3RUU4 NTRCMTFFQUFDQjJGRTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMDQEAgABMC4DBAY9DcAwDAMEBD0QMAMEBz0QAAMEAmdNjAMEAnTOzDAMAwQG y5XAAwQEy5XgMA0EAgACMAcDBQAkB5iAMA0GCSqGSIb3DQEBCwUAA4IBAQCK5JUn 4DlIFhAFDbpefb+YJwxaoRlr9m6zMB4mKdrYnY6iMlsJ2TcxiKnkdPKHdssoZhxP F7NvkDSgEnZC72r9TdAe+m5pSDgWjmRj5nfT7kTw/T+eOfyO4nMMev+GuYxVz4Ox I8RxeTSaat/Zb9dOKwObpvwkuQRdM4GeEwepm8Y0IBgK/vqfDSUpor94WOPx/eEQ VvKRuRV9lAeyBCzFvCFxiJbDMy9DMMhF/IiJbwn2wH9eLCyw0I9+AzWjCH2D45d/ alFOtcaet2g+GF9mhS3F/GzP062T3Rccqip5a+/00FOwno025j7aXZEtAbmuDMes lg70y9YCuFAIgflj -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:21 2024 by rpki-client on console-fra.rpki-client.org