$ rpki-client -vvf rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/8B903A32353211EBB3D0487FC4F9AE02.roa File: 8B903A32353211EBB3D0487FC4F9AE02.roa (raw, json) Hash identifier: ReV9a7hSveeezSpIAzgAbbvdpzxiWLw3q4n5gLELjhg= Subject key identifier: 17:7E:21:5F:97:38:B8:9B:8D:66:C1:D4:97:44:B7:EC:BC:0C:27:4B Certificate issuer: /CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Certificate serial: 2AA0 Authority key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/8B903A32353211EBB3D0487FC4F9AE02.roa Signing time: Wed 02 Oct 2024 15:52:24 +0000 ROA not before: Wed 02 Oct 2024 15:52:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38719 IP address blocks: 43.245.96.0/22 maxlen: 24 43.245.108.0/22 maxlen: 24 43.245.252.0/22 maxlen: 24 101.100.192.0/18 maxlen: 24 103.9.100.0/22 maxlen: 24 103.11.188.0/22 maxlen: 24 103.15.232.0/22 maxlen: 24 103.245.92.0/22 maxlen: 24 111.235.136.0/22 maxlen: 24 119.31.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10912 (0x2aa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Validity Not Before: Oct 2 15:52:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fd6c37-54dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:83:3b:45:6e:92:9e:24:87:9c:df:52:2c:27: b3:89:31:28:c8:70:ad:fd:7d:8c:15:d7:bd:84:54: 24:e0:a6:53:9a:3a:d3:53:0f:58:06:47:bc:6c:7a: 11:99:cf:6b:cb:43:a8:f1:71:d8:93:98:56:05:00: a5:99:0f:b4:b6:e5:7d:a4:ed:40:8e:4d:3c:a6:a4: c4:61:18:c2:ad:16:2b:bf:d1:5c:9d:47:1a:40:57: 08:ef:ae:a3:fd:47:30:bd:f4:16:c4:04:04:28:f6: fd:1d:6d:6c:56:62:de:11:80:a6:38:53:68:78:89: 42:11:2a:33:a7:4b:ed:3b:61:78:c0:0d:95:c9:8f: 17:59:6c:b5:70:0b:b1:c2:07:59:3e:c3:fb:37:07: 9e:78:9f:1a:ed:72:19:32:e8:56:95:14:aa:9d:8a: d1:41:66:e2:ec:18:c5:35:9c:c4:95:cf:4d:67:65: 8d:c0:44:68:94:96:54:9d:e1:63:db:65:d0:d1:83: d9:c9:bf:88:26:8c:e4:7f:73:61:f6:9b:75:9d:0b: 16:08:91:94:97:3e:14:bf:7e:68:83:ba:41:0f:05: 1a:58:4a:a5:af:f4:14:25:4b:34:99:91:c2:d2:8e: 05:7c:25:6e:16:ee:27:8f:83:73:d1:52:8b:0c:03: 4a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:7E:21:5F:97:38:B8:9B:8D:66:C1:D4:97:44:B7:EC:BC:0C:27:4B X509v3 Authority Key Identifier: keyid:9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/8B903A32353211EBB3D0487FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.96.0/22 43.245.108.0/22 43.245.252.0/22 101.100.192.0/18 103.9.100.0/22 103.11.188.0/22 103.15.232.0/22 103.245.92.0/22 111.235.136.0/22 119.31.232.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:b0:7c:21:a1:ac:6e:50:19:19:33:b1:74:1a:18:6c:5c:d6: 72:8c:66:7b:08:93:e0:b8:31:7f:df:1b:83:35:4b:98:7a:a0: 0e:ea:9e:41:36:fa:1c:c7:59:3b:ae:09:dc:94:6a:da:94:05: be:7e:ef:29:95:5f:b2:82:6d:67:74:83:22:68:ab:9b:5a:89: 64:3a:72:cf:13:1e:a5:ad:2a:56:eb:b9:92:3a:a3:21:3d:f8: ae:4d:ad:8a:12:7f:3b:9b:b4:f9:c2:fa:8e:f2:67:72:70:7c: a5:27:2f:e3:e1:26:a4:6b:4e:f7:f2:d4:3f:62:04:2c:a0:e3: d7:00:ce:c7:35:f2:5c:f8:ad:63:4e:e0:68:6e:22:0c:4d:9c: 9c:e6:f1:7d:b8:3d:1f:c7:6c:28:ba:7c:d9:66:f0:3d:71:ee: d2:e1:20:da:ee:cb:97:cc:3c:b0:fd:c4:00:91:7d:64:bc:34: bc:9d:1d:63:ee:9f:f1:a6:59:5f:3f:3a:2b:6a:28:15:0c:e2: 0d:b1:9b:1c:40:d0:ea:21:0b:24:f1:3e:df:48:4d:cb:87:16: 6b:0f:14:5e:68:ba:57:e5:00:97:fd:02:b6:d8:67:2d:45:b1: bb:57:0e:fc:51:12:b0:54:cb:bb:a1:27:3c:ed:99:8c:37:5a: ab:ee:2a:d2 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICKqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZFQzUxMTAvBgNVBAUTKDlGQ0UyODkxNEM1MERDOTk3NTVGMTA4QUI0MzM0Rjc3 MkNCRUEwRTIwHhcNMjQxMDAyMTU1MjI0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkNmMzNy01NGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4M7RW6SniSHnN9SLCeziTEoyHCt/X2MFde9hFQk4KZTmjrTUw9YBke8bHoR mc9ry0Oo8XHYk5hWBQClmQ+0tuV9pO1Ajk08pqTEYRjCrRYrv9FcnUcaQFcI766j /UcwvfQWxAQEKPb9HW1sVmLeEYCmOFNoeIlCESozp0vtO2F4wA2VyY8XWWy1cAux wgdZPsP7NweeeJ8a7XIZMuhWlRSqnYrRQWbi7BjFNZzElc9NZ2WNwERolJZUneFj 22XQ0YPZyb+IJozkf3Nh9pt1nQsWCJGUlz4Uv35og7pBDwUaWEqlr/QUJUs0mZHC 0o4FfCVuFu4nj4Nz0VKLDANKQwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFBd+IV+X OLibjWbB1JdEt+y8DCdLMB8GA1UdIwQYMBaAFJ/OKJFMUNyZdV8QirQzT3csvqDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkVDNS8yREVDQUU1NjBF NTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNKbDFYeENLdEROUGR5eS1v T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL244NG9rVXhRM0psMVh4Q0t0RE5QZHl5LW9PSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZFQzUvMkRFQ0FFNTYwRTU2MTFFNEI2RjE5NTNBQzRGOUFFMDIvOEI5MDNBMzIz NTMyMTFFQkIzRDA0ODdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwDBAIr9WADBAIr9WwDBAIr9fwDBAZlZMADBAJnCWQDBAJnC7wD BAJnD+gDBAJn9VwDBAJv64gDBAN3H+gwDQYJKoZIhvcNAQELBQADggEBAGywfCGh rG5QGRkzsXQaGGxc1nKMZnsIk+C4MX/fG4M1S5h6oA7qnkE2+hzHWTuuCdyUatqU Bb5+7ymVX7KCbWd0gyJoq5taiWQ6cs8THqWtKlbruZI6oyE9+K5NrYoSfzubtPnC +o7yZ3JwfKUnL+PhJqRrTvfy1D9iBCyg49cAzsc18lz4rWNO4GhuIgxNnJzm8X24 PR/HbCi6fNlm8D1x7tLhINruy5fMPLD9xACRfWS8NLydHWPun/GmWV8/OitqKBUM 4g2xmxxA0OohCyTxPt9ITcuHFmsPFF5oulflAJf9ArbYZy1FsbtXDvxRErBUy7uh JzztmYw3WqvuKtI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:16 2024 by rpki-client on console-ams.rpki-client.org