$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa File: E072F73492DF11EE9803F859C4F9AE02.roa (raw, json) Hash identifier: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU= Subject key identifier: 1E:1F:3D:99:CC:C4:B4:C3:D3:14:62:BE:00:DA:7C:D9:CC:45:1C:64 Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 0672 Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa Signing time: Wed 06 Nov 2024 22:00:48 +0000 ROA not before: Wed 06 Nov 2024 22:00:48 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 40138 IP address blocks: 45.127.112.0/23 maxlen: 24 45.127.114.0/24 maxlen: 24 45.127.115.0/24 maxlen: 24 103.196.36.0/22 maxlen: 24 2402:e580::/32 maxlen: 48 2402:e580:40::/42 maxlen: 42 2402:e580:100::/40 maxlen: 40 2402:e580:200::/39 maxlen: 39 2402:e580:400::/38 maxlen: 38 2402:e580:800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Nov 6 22:00:48 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672be710-7400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:79:f7:4c:e6:b7:9c:dc:62:a4:ea:85:00:47: 3f:07:85:d0:32:c5:07:c2:63:28:82:a4:2a:a6:a8: ae:9a:11:7d:51:e3:71:6c:a9:14:26:37:5d:29:0b: 5f:eb:44:18:b6:4f:0c:9f:c8:d4:c7:0d:d0:62:28: 37:fb:93:86:ad:43:bb:85:0c:76:c5:27:6b:13:70: 86:80:89:f5:a3:0f:5a:79:e3:e6:4f:bd:27:52:5c: dd:f0:05:b9:4e:52:4e:f7:ec:93:38:05:8b:74:ac: 24:fa:48:d8:45:d2:87:6b:05:b7:a0:b6:85:1f:ed: f8:56:6d:0e:79:cf:f2:10:78:4f:09:0c:28:00:2c: 74:22:11:9d:d9:4c:e3:5c:83:72:1c:0d:78:47:7e: 8e:7d:33:28:c4:02:21:e7:d3:c8:01:25:49:d3:a4: d8:54:93:44:8b:9e:2a:a1:7d:07:ae:2e:10:79:f9: 6d:5d:46:25:6e:89:ba:2b:29:9f:82:e1:8d:d1:88: 86:2e:c0:74:9e:d8:22:ee:dd:e5:4b:0e:ae:4b:01: 80:63:2c:a5:d9:04:85:96:8f:ae:7f:78:5e:5c:a6: af:59:fe:a0:13:15:d1:a8:dd:31:ef:91:ee:90:34: f1:71:c4:12:50:a0:cb:b9:0b:b7:4b:30:ad:d5:61: 0d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1F:3D:99:CC:C4:B4:C3:D3:14:62:BE:00:DA:7C:D9:CC:45:1C:64 X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/E072F73492DF11EE9803F859C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.112.0/22 103.196.36.0/22 IPv6: 2402:e580::/32 Signature Algorithm: sha256WithRSAEncryption 7c:ad:b2:a3:38:8d:4a:ae:04:e0:06:5d:03:3a:7d:93:5d:52: 3b:a1:b4:1f:51:19:7f:a8:2f:aa:31:38:64:92:3c:82:bf:c8: f0:98:26:b6:1f:97:07:38:e3:ab:ad:a6:0f:51:c3:d0:15:6c: 42:85:58:5d:54:fc:e2:10:25:2b:0f:5f:44:6b:2b:c6:f9:77: 22:d9:76:8c:f0:0b:59:8a:62:f6:a7:5b:84:2c:7d:c9:5a:75: f3:a6:2b:24:39:fc:1a:14:9e:73:f3:00:06:9a:4f:6d:09:4e: b4:58:70:73:f4:b5:55:89:e9:e8:2e:d6:28:ae:bf:ed:2e:c7: 4d:ca:6f:fb:e2:a1:53:5c:04:67:73:a9:60:dd:ea:d4:d0:61: 28:34:59:c9:82:b0:c0:af:31:5b:61:33:f2:4a:fe:f3:2f:8e: ce:8d:50:16:96:ce:d8:c5:25:8d:f8:50:e3:93:06:3e:18:85: 44:34:7a:70:cd:3e:3c:d7:6d:d4:5e:29:29:11:6b:17:22:03: e7:be:bc:13:73:24:55:44:5b:bc:5b:b2:b6:8d:72:a1:e1:3d: 46:9c:85:a0:a8:ac:f1:10:99:57:78:c9:17:18:27:17:5f:f8: 05:15:7e:04:bf:32:e9:42:84:eb:8a:9a:04:78:65:53:d7:35: 29:e7:64:75 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjQxMTA2MjIwMDQ4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZTcxMC03NDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3n3TOa3nNxipOqFAEc/B4XQMsUHwmMogqQqpqiumhF9UeNxbKkUJjddKQtf 60QYtk8Mn8jUxw3QYig3+5OGrUO7hQx2xSdrE3CGgIn1ow9aeePmT70nUlzd8AW5 TlJO9+yTOAWLdKwk+kjYRdKHawW3oLaFH+34Vm0Oec/yEHhPCQwoACx0IhGd2Uzj XINyHA14R36OfTMoxAIh59PIASVJ06TYVJNEi54qoX0Hri4QefltXUYlbom6Kymf guGN0YiGLsB0ntgi7t3lSw6uSwGAYyyl2QSFlo+uf3heXKavWf6gExXRqN0x75Hu kDTxccQSUKDLuQu3SzCt1WENywIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB4fPZnM xLTD0xRivgDafNnMRRxkMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAyNUMvQUMwNTU4MjY1RTI1MTFFQkFCMjk4OTJBQzRGOUFFMDIvRTA3MkY3MzQ5 MkRGMTFFRTk4MDNGODU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItf3ADBAJnxCQwDQQCAAIwBwMFACQC5YAwDQYJKoZIhvcN AQELBQADggEBAHytsqM4jUquBOAGXQM6fZNdUjuhtB9RGX+oL6oxOGSSPIK/yPCY JrYflwc446utpg9Rw9AVbEKFWF1U/OIQJSsPX0RrK8b5dyLZdozwC1mKYvanW4Qs fcladfOmKyQ5/BoUnnPzAAaaT20JTrRYcHP0tVWJ6egu1iiuv+0ux03Kb/vioVNc BGdzqWDd6tTQYSg0WcmCsMCvMVthM/JK/vMvjs6NUBaWztjFJY34UOOTBj4YhUQ0 enDNPjzXbdReKSkRaxciA+e+vBNzJFVEW7xbsraNcqHhPUachaCorPEQmVd4yRcY Jxdf+AUVfgS/MulChOuKmgR4ZVPXNSnnZHU= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:37 2024 by rpki-client on console-ams.rpki-client.org