$ rpki-client -vvf rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa File: 5D8DFB5684CA11EF9F92574DC4F9AE02.roa (raw, json) Hash identifier: APURPczfV1ii5Oz3jn5uLGx4X2/aeoAU9n96jwy9b0A= Subject key identifier: 07:9E:E9:5F:4B:EE:C2:17:17:DD:56:16:9A:63:4C:FC:29:E3:5F:47 Certificate issuer: /CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Certificate serial: 0D Authority key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa Signing time: Wed 09 Oct 2024 06:50:09 +0000 ROA not before: Wed 09 Oct 2024 06:50:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55933 IP address blocks: 45.125.16.0/22 maxlen: 24 103.242.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Validity Not Before: Oct 9 06:50:09 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670627a1-6f06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:84:1f:ff:2b:6d:5d:32:ec:6d:24:f0:80:4e: 00:27:45:5c:e6:35:81:98:d5:7f:5a:8b:c6:9f:eb: fb:31:b3:f5:3b:1a:0f:39:10:b9:54:c2:b1:6c:36: df:1c:2e:74:10:75:23:0d:97:7b:96:58:4d:82:f1: 08:0d:06:9c:ed:44:df:01:d1:ce:b4:a9:38:3d:b4: d0:62:e8:52:ee:56:92:33:30:cf:94:b3:f0:6e:e0: a6:39:bd:aa:91:7a:0e:72:53:f9:ee:73:d7:98:f7: 75:73:46:30:42:83:e7:3b:59:34:40:12:17:ac:a2: 30:86:59:a0:05:41:22:7a:31:54:7d:8c:f2:5a:b2: 0e:c1:b0:d2:72:b8:52:b7:11:07:7d:aa:9d:99:00: b2:2b:8d:85:d0:46:6d:c5:de:51:db:6a:70:14:d8: 13:dc:5e:f9:14:68:11:40:96:c1:79:c2:e5:5f:77: 51:1b:0d:d9:08:d4:de:a8:ee:d9:ef:e0:49:37:72: 69:e3:90:9f:21:05:99:11:ce:db:90:24:63:39:d0: 13:85:9d:68:dd:f0:2b:b5:0e:20:c5:8a:66:92:93: 1a:92:c2:42:83:8d:47:51:76:d6:2d:41:79:f0:fa: a2:e5:04:f9:e7:9e:af:8e:9f:30:6a:93:fa:9e:26: b3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9E:E9:5F:4B:EE:C2:17:17:DD:56:16:9A:63:4C:FC:29:E3:5F:47 X509v3 Authority Key Identifier: keyid:55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.16.0/22 103.242.132.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:f8:43:24:08:d8:c2:43:c8:35:3c:c1:7f:04:e9:d4:27:fc: 80:58:92:0d:dc:45:6f:75:28:97:e5:6e:92:94:d2:7d:2c:48: 09:8f:fd:c4:bc:56:1b:97:a8:f5:dd:49:a7:f1:f2:0b:b4:b3: e9:22:16:70:68:de:fe:e0:aa:b9:ac:63:22:65:5b:29:3c:f5: 28:38:83:8e:d6:ce:1d:e7:76:2b:53:4a:9e:5e:fc:a9:b4:22: b4:e4:47:1e:b6:bc:95:f6:c6:e2:a7:9b:0c:e0:7c:f6:54:c3: 80:23:e4:71:0d:92:e7:3d:00:06:35:ca:53:07:d3:89:15:0a: 8c:ad:c8:7b:5e:cd:3a:5a:66:85:f4:59:be:20:45:e6:80:c7: dd:b5:89:e8:95:a1:5a:f4:9c:8d:51:41:5a:77:1d:de:ea:cb: dc:dd:76:b7:e2:81:43:a7:f7:64:db:a3:dc:19:d0:40:83:eb: 63:9d:f9:e5:10:e6:c4:9a:91:f6:dc:87:58:6f:69:3e:10:5a: 5c:df:f2:d6:63:97:ea:3b:7a:01:88:17:63:fb:45:08:7d:a8: a7:8e:74:ed:2f:fc:2c:74:75:85:62:a3:d6:72:d6:6b:17:ad: d8:33:e8:e4:e7:8d:77:0b:bd:12:8b:42:31:52:85:0e:f8:c3: ec:41:9d:23 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzZGQTExMC8GA1UEBRMoNTUzM0E3QzU3QkY0REIxRTUzOEY5RTc3RTBCNDg2OEI4 RjkwQzU4MjAeFw0yNDEwMDkwNjUwMDlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyN2ExLTZmMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3hB//K21dMuxtJPCATgAnRVzmNYGY1X9ai8af6/sxs/U7Gg85ELlUwrFsNt8c LnQQdSMNl3uWWE2C8QgNBpztRN8B0c60qTg9tNBi6FLuVpIzMM+Us/Bu4KY5vaqR eg5yU/nuc9eY93VzRjBCg+c7WTRAEhesojCGWaAFQSJ6MVR9jPJasg7BsNJyuFK3 EQd9qp2ZALIrjYXQRm3F3lHbanAU2BPcXvkUaBFAlsF5wuVfd1EbDdkI1N6o7tnv 4Ek3cmnjkJ8hBZkRztuQJGM50BOFnWjd8Cu1DiDFimaSkxqSwkKDjUdRdtYtQXnw +qLlBPnnnq+OnzBqk/qeJrN7AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUB57pX0vu whcX3VYWmmNM/CnjX0cwHwYDVR0jBBgwFoAUVTOnxXv02x5Tj5534LSGi4+QxYIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3NkZBLzlDNTJBN0U4ODRD OTExRUZCNTREMEM0OUM0RjlBRTAyL1ZUT254WHYwMng1VGo1NTM0TFNHaTQtUXhZ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlRPbnhYdjAyeDVUajU1MzRMU0dpNC1ReFlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZGQS85QzUyQTdFODg0QzkxMUVGQjU0RDBDNDlDNEY5QUUwMi81RDhERkI1Njg0 Q0ExMUVGOUY5MjU3NERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAi19EAMEAmfyhDANBgkqhkiG9w0BAQsFAAOCAQEAO/hDJAjY wkPINTzBfwTp1Cf8gFiSDdxFb3Uol+VukpTSfSxICY/9xLxWG5eo9d1Jp/HyC7Sz 6SIWcGje/uCquaxjImVbKTz1KDiDjtbOHed2K1NKnl78qbQitORHHra8lfbG4qeb DOB89lTDgCPkcQ2S5z0ABjXKUwfTiRUKjK3Ie17NOlpmhfRZviBF5oDH3bWJ6JWh WvScjVFBWncd3urL3N12t+KBQ6f3ZNuj3BnQQIPrY5355RDmxJqR9tyHWG9pPhBa XN/y1mOX6jt6AYgXY/tFCH2op4507S/8LHR1hWKj1nLWaxet2DPo5OeNdwu9EotC MVKFDvjD7EGdIw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org