$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B4B1A742BE4C11EEB1327A54C4F9AE02.roa File: B4B1A742BE4C11EEB1327A54C4F9AE02.roa (raw, json) Hash identifier: P11sIa+o699M+Jrp/6j9KRqVJetMbcC+wvd26lTDVLs= Subject key identifier: A8:76:BA:5B:F5:F8:56:1B:F3:64:45:45:D9:94:0A:9E:5E:6F:02:B3 Certificate issuer: /CN=A9132B4D/serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Certificate serial: 05A2 Authority key identifier: 23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B4B1A742BE4C11EEB1327A54C4F9AE02.roa Signing time: Fri 31 May 2024 01:46:21 +0000 ROA not before: Fri 31 May 2024 01:46:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9231 IP address blocks: 58.82.192.0/19 maxlen: 24 58.82.224.0/19 maxlen: 24 103.15.84.0/22 maxlen: 24 161.81.0.0/16 maxlen: 24 182.239.72.0/21 maxlen: 24 182.239.80.0/20 maxlen: 24 182.239.104.0/21 maxlen: 24 182.239.112.0/20 maxlen: 24 203.142.97.0/24 maxlen: 24 203.142.98.0/24 maxlen: 24 203.142.99.0/24 maxlen: 24 203.142.127.0/24 maxlen: 24 223.122.0.0/18 maxlen: 24 223.122.64.0/18 maxlen: 24 223.122.128.0/17 maxlen: 24 2401:3000::/36 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B4D/serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Validity Not Before: May 31 01:46:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66592bed-6fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c9:c8:d5:cc:f9:2d:13:5a:f1:aa:f7:c9:6e: ac:83:89:d4:d9:42:5e:cb:61:61:03:52:8f:1c:4b: 55:fd:a6:e1:f5:f2:33:2b:ae:e7:cc:4e:61:4c:3f: 56:5e:01:10:c4:40:b1:02:74:72:1e:fc:6e:40:4f: 34:7e:6c:a7:b9:69:1d:11:5f:bc:e5:29:10:fa:03: 58:6c:8e:98:6a:07:af:4e:09:f4:1a:6e:b1:e4:14: af:b1:0a:3c:e6:f2:66:de:0b:e5:4e:6f:4d:b6:fc: aa:da:63:0b:56:c9:34:7d:ee:32:75:8c:db:db:fb: 80:30:75:01:36:af:dc:78:9f:b1:be:51:23:44:d4: 7d:f5:7e:20:e0:77:8f:b9:26:20:12:0d:f8:c1:00: 21:67:47:12:4c:61:b8:80:7f:d4:e0:88:76:8e:ca: ca:8b:d7:66:81:d0:03:76:5b:65:80:15:81:68:57: 2f:8f:00:09:91:a4:66:1d:b1:51:0b:88:55:4e:5d: 3e:14:1f:f2:ab:6a:ad:c9:77:10:0d:f6:bc:d7:0e: fa:0c:b7:1d:ec:79:d3:df:f1:d2:41:60:ce:4d:c3: 30:90:15:29:cf:ea:54:31:90:33:8c:69:a4:e4:bd: ad:c9:15:6c:f4:09:a5:73:66:60:57:0e:c9:24:78: 47:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:76:BA:5B:F5:F8:56:1B:F3:64:45:45:D9:94:0A:9E:5E:6F:02:B3 X509v3 Authority Key Identifier: keyid:23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B4B1A742BE4C11EEB1327A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.82.192.0/18 103.15.84.0/22 161.81.0.0/16 182.239.72.0-182.239.95.255 182.239.104.0-182.239.127.255 203.142.97.0-203.142.99.255 203.142.127.0/24 223.122.0.0/16 IPv6: 2401:3000::/36 Signature Algorithm: sha256WithRSAEncryption 18:84:20:86:42:b9:e1:3c:5d:2a:67:00:19:30:11:77:d0:a5: 3c:f0:cc:99:20:a6:89:3f:69:65:2b:9d:f1:cb:b0:aa:a7:e0: ec:1c:92:2f:04:a9:06:38:38:ba:c0:1b:e8:2d:1f:35:c9:a5: bf:96:2d:d7:53:15:ac:a6:93:3e:04:47:df:b1:4a:f0:47:72: ca:f2:54:a0:1b:76:c3:96:05:98:1c:ac:cd:76:ce:6a:71:fd: 1e:43:30:33:cd:62:b8:24:fe:08:69:b5:8a:ab:22:08:e3:ed: 14:33:cb:99:04:8b:81:20:c3:57:00:76:a4:7c:f3:21:3f:34: 74:f4:00:36:1d:f5:c3:0e:b2:9e:9e:73:22:99:0d:fe:97:de: 75:a1:5d:d0:0a:30:38:f5:c1:5d:d0:5c:f1:5f:7e:8a:4d:5f: 74:c1:83:bb:ea:11:a4:77:bf:87:dc:bf:b3:9f:68:fb:a9:4a: 91:d1:fd:57:d1:3c:75:c9:e6:68:9a:f2:bf:cb:e6:2d:8b:2f: 19:a2:20:ee:4b:42:e2:c7:4c:0f:02:8e:d8:17:74:bc:cc:8a: cb:b4:f9:8b:39:9a:48:86:70:ea:b3:77:5f:aa:4c:bd:f4:ad: a8:ff:65:5b:f9:df:71:30:eb:2c:14:de:d6:db:97:7e:9a:a1: 95:03:0b:62 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCNEQxMTAvBgNVBAUTKDIzRjVEOTNBODJFN0Q3ODQwNjc5QjFDNjREQTM3QzM3 Q0ZGRTc3RUYwHhcNMjQwNTMxMDE0NjIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5MmJlZC02ZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MnI1cz5LRNa8ar3yW6sg4nU2UJey2FhA1KPHEtV/abh9fIzK67nzE5hTD9W XgEQxECxAnRyHvxuQE80fmynuWkdEV+85SkQ+gNYbI6YagevTgn0Gm6x5BSvsQo8 5vJm3gvlTm9Ntvyq2mMLVsk0fe4ydYzb2/uAMHUBNq/ceJ+xvlEjRNR99X4g4HeP uSYgEg34wQAhZ0cSTGG4gH/U4Ih2jsrKi9dmgdADdltlgBWBaFcvjwAJkaRmHbFR C4hVTl0+FB/yq2qtyXcQDfa81w76DLcd7HnT3/HSQWDOTcMwkBUpz+pUMZAzjGmk 5L2tyRVs9Amlc2ZgVw7JJHhHOwIDAQABo4IC5TCCAuEwHQYDVR0OBBYEFKh2ulv1 +FYb82RFRdmUCp5ebwKzMB8GA1UdIwQYMBaAFCP12TqC59eEBnmxxk2jfDfP/nfv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI0RC9DMTk5RTAwNkIy MDUxMUVCQUVBRTlGMTBDNEY5QUUwMi9JX1haT29MbjE0UUdlYkhHVGFOOE44Xy1k LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lfWFpPb0xuMTRRR2ViSEdUYU44TjhfLWQtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCNEQvQzE5OUUwMDZCMjA1MTFFQkFFQUU5RjEwQzRGOUFFMDIvQjRCMUE3NDJC RTRDMTFFRUIxMzI3QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbwYIKwYBBQUHAQcBAf8E YDBeMEwEAgABMEYDBAY6UsADBAJnD1QDAwChUTAMAwQDtu9IAwQFtu9AMAwDBAO2 72gDBAe27wAwDAMEAMuOYQMEAsuOYAMEAMuOfwMDAN96MA4EAgACMAgDBgQkATAA ADANBgkqhkiG9w0BAQsFAAOCAQEAGIQghkK54TxdKmcAGTARd9ClPPDMmSCmiT9p ZSud8cuwqqfg7BySLwSpBjg4usAb6C0fNcmlv5Yt11MVrKaTPgRH37FK8EdyyvJU oBt2w5YFmByszXbOanH9HkMwM81iuCT+CGm1iqsiCOPtFDPLmQSLgSDDVwB2pHzz IT80dPQANh31ww6ynp5zIpkN/pfedaFd0AowOPXBXdBc8V9+ik1fdMGDu+oRpHe/ h9y/s59o+6lKkdH9V9E8dcnmaJryv8vmLYsvGaIg7ktC4sdMDwKO2Bd0vMyKy7T5 izmaSIZw6rN3X6pMvfStqP9lW/nfcTDrLBTe1tuXfpqhlQMLYg== -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:19 2024 by rpki-client on console-fra.rpki-client.org