$ rpki-client -vvf rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa File: 6A8E3C9474A811EFA3123A41C4F9AE02.roa (raw, json) Hash identifier: apEkxffopCeqovMKL+kWef8zz6F2P5gxUW9hlBfV7TM= Subject key identifier: 96:68:3D:ED:25:4C:C3:54:DE:4E:79:3E:ED:E2:52:E8:6C:67:47:EA Certificate issuer: /CN=A912F515/serialNumber=FB5ACFBCF9FCEF034B8A93BD319E620442D6667F Certificate serial: 07 Authority key identifier: FB:5A:CF:BC:F9:FC:EF:03:4B:8A:93:BD:31:9E:62:04:42:D6:66:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa Signing time: Tue 17 Sep 2024 04:42:36 +0000 ROA not before: Tue 17 Sep 2024 04:42:36 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132300 IP address blocks: 45.121.60.0/24 maxlen: 24 45.121.61.0/24 maxlen: 24 45.121.62.0/24 maxlen: 24 45.121.63.0/24 maxlen: 24 103.29.188.0/24 maxlen: 24 103.29.189.0/24 maxlen: 24 103.29.190.0/24 maxlen: 24 103.29.191.0/24 maxlen: 24 183.90.168.0/22 maxlen: 22 183.90.168.0/24 maxlen: 24 183.90.169.0/24 maxlen: 24 183.90.170.0/24 maxlen: 24 183.90.171.0/24 maxlen: 24 183.90.172.0/23 maxlen: 24 183.90.174.0/24 maxlen: 24 183.90.175.0/24 maxlen: 24 202.129.205.0/24 maxlen: 24 202.129.206.0/24 maxlen: 24 202.129.207.0/24 maxlen: 24 2406:7900:7226::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.crl rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F515/serialNumber=FB5ACFBCF9FCEF034B8A93BD319E620442D6667F Validity Not Before: Sep 17 04:42:36 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66e908bc-f69a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9f:c8:18:06:9f:67:1a:40:b1:87:f8:34:45: b5:19:ac:26:1d:c8:89:89:7a:00:a7:a3:9f:26:ce: 71:71:df:37:07:f6:6e:35:06:59:84:22:d9:cb:cc: ef:d0:58:b6:c9:54:07:fa:36:ea:f4:fd:b8:16:00: 1c:8a:5c:8c:6c:ff:84:64:99:a0:26:e6:ad:f4:83: bd:93:a8:ff:25:42:18:2f:22:78:b9:05:5e:65:49: 8d:03:cd:ea:dc:07:1d:13:fc:1d:1c:af:b8:0a:6b: a0:cf:b9:6c:69:94:ca:cf:ab:3b:4a:74:ad:b0:58: 5d:21:b4:d9:4b:8b:cd:0c:cb:56:29:90:dd:ce:15: b0:b2:f3:f2:93:9d:db:e4:2e:fa:2e:54:98:1b:fd: 0d:a4:75:81:dd:64:68:0b:a4:d5:46:6e:53:fd:d0: 82:10:9f:a0:0b:67:c2:66:6f:44:33:7c:56:d1:8f: 59:c4:4e:4c:bc:cc:57:37:03:08:bd:7c:2a:41:10: e8:88:e9:03:7a:2c:03:85:1a:6f:31:25:7b:d8:1a: c7:73:db:2e:29:e6:48:44:6c:e6:c8:6d:ef:ae:4d: 7d:77:3d:9c:47:f6:20:91:a6:cc:0b:e8:42:9d:bb: a5:63:1f:0e:78:60:4f:4f:b0:ca:7a:87:c3:f0:cd: 45:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:68:3D:ED:25:4C:C3:54:DE:4E:79:3E:ED:E2:52:E8:6C:67:47:EA X509v3 Authority Key Identifier: keyid:FB:5A:CF:BC:F9:FC:EF:03:4B:8A:93:BD:31:9E:62:04:42:D6:66:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.60.0/22 103.29.188.0/22 183.90.168.0/21 202.129.205.0-202.129.207.255 IPv6: 2406:7900:7226::/48 Signature Algorithm: sha256WithRSAEncryption cb:a9:95:e6:a2:2e:24:d8:59:e4:70:47:c5:f2:b7:5e:b0:04: a1:9e:9c:a6:db:44:5d:c3:0e:76:2a:4c:d8:d0:c7:a3:cf:c9: fe:ee:83:c5:36:f9:35:00:ec:7d:1c:65:39:87:fc:7a:56:16: 88:14:2c:af:3d:78:68:cf:01:37:9a:4a:26:b4:8a:b9:2b:8e: 44:bb:1c:61:2e:da:55:89:13:48:1d:93:9b:0d:c6:01:2d:a9: 1a:61:01:a7:d2:d8:24:52:66:b4:32:f8:fb:5a:d2:5a:04:63: 73:95:9c:1d:01:33:36:73:c4:0b:cf:04:0c:c5:66:db:e9:12: a5:dd:a6:a1:1e:bc:53:68:a2:4d:62:8b:8a:68:20:35:93:56: 77:d8:50:b1:37:24:d5:40:e6:29:c3:ea:d1:76:f0:39:3c:fc: 78:e7:36:7e:0b:36:c1:5b:67:c4:5b:31:15:25:b3:4f:24:77: 9c:2f:f0:e4:69:29:a8:95:83:93:7c:e4:4e:dd:d6:e2:01:6c: b2:27:b2:70:2d:84:ed:ca:56:b2:c4:f3:0e:05:a8:78:21:86: b8:6c:64:4c:6b:63:fd:ad:85:fe:1d:0e:ac:8e:e3:97:9a:cd: 06:9e:54:d9:c5:34:b9:3e:b4:8c:f5:59:66:4d:92:8c:03:e2: 42:13:1d:1e -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjUxNTExMC8GA1UEBRMoRkI1QUNGQkNGOUZDRUYwMzRCOEE5M0JEMzE5RTYyMDQ0 MkQ2NjY3RjAeFw0yNDA5MTcwNDQyMzZaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTkwOGJjLWY2OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwn8gYBp9nGkCxh/g0RbUZrCYdyImJegCno58mznFx3zcH9m41BlmEItnLzO/Q WLbJVAf6Nur0/bgWAByKXIxs/4RkmaAm5q30g72TqP8lQhgvIni5BV5lSY0Dzerc Bx0T/B0cr7gKa6DPuWxplMrPqztKdK2wWF0htNlLi80My1YpkN3OFbCy8/KTndvk LvouVJgb/Q2kdYHdZGgLpNVGblP90IIQn6ALZ8Jmb0QzfFbRj1nETky8zFc3Awi9 fCpBEOiI6QN6LAOFGm8xJXvYGsdz2y4p5khEbObIbe+uTX13PZxH9iCRpswL6EKd u6VjHw54YE9PsMp6h8PwzUUXAgMBAAGjggLAMIICvDAdBgNVHQ4EFgQUlmg97SVM w1TeTnk+7eJS6GxnR+owHwYDVR0jBBgwFoAU+1rPvPn87wNLipO9MZ5iBELWZn8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNTE1LzNEM0NBMzA4NzRB NzExRUY4RUEyQzUzREM0RjlBRTAyLy0xclB2UG44N3dOTGlwTzlNWjVpQkVMV1pu OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTFyUHZQbjg3d05MaXBPOU1aNWlCRUxXWm44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjUxNS8zRDNDQTMwODc0QTcxMUVGOEVBMkM1M0RDNEY5QUUwMi82QThFM0M5NDc0 QTgxMUVGQTMxMjNBNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBKBggrBgEFBQcBBwEB/wQ7 MDkwJgQCAAEwIAMEAi15PAMEAmcdvAMEA7daqDAMAwQAyoHNAwQEyoHAMA8EAgAC MAkDBwAkBnkAciYwDQYJKoZIhvcNAQELBQADggEBAMupleaiLiTYWeRwR8Xyt16w BKGenKbbRF3DDnYqTNjQx6PPyf7ug8U2+TUA7H0cZTmH/HpWFogULK89eGjPATea Sia0irkrjkS7HGEu2lWJE0gdk5sNxgEtqRphAafS2CRSZrQy+Pta0loEY3OVnB0B MzZzxAvPBAzFZtvpEqXdpqEevFNook1ii4poIDWTVnfYULE3JNVA5inD6tF28Dk8 /HjnNn4LNsFbZ8RbMRUls08kd5wv8ORpKaiVg5N85E7d1uIBbLInsnAthO3KVrLE 8w4FqHghhrhsZExrY/2thf4dDqyO45eazQaeVNnFNLk+tIz1WWZNkowD4kITHR4= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:22 2024 by rpki-client on console-fra.rpki-client.org