$ rpki-client -vvf rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/B34FF580C40C11EB9C21CF7BC4F9AE02.roa File: B34FF580C40C11EB9C21CF7BC4F9AE02.roa (raw, json) Hash identifier: wlicGvXB0umyuCzVlCahepSZ0kBAuPKmNh7JPJt9sbQ= Subject key identifier: 5B:D6:25:7C:93:B9:78:C8:4A:D7:FD:E0:00:31:EA:C2:CD:32:11:2A Certificate issuer: /CN=A913ED35/serialNumber=7EE945E9E5E51C4B41D99C4332952F9C95876608 Certificate serial: 3444 Authority key identifier: 7E:E9:45:E9:E5:E5:1C:4B:41:D9:9C:43:32:95:2F:9C:95:87:66:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/B34FF580C40C11EB9C21CF7BC4F9AE02.roa Signing time: Mon 08 Jul 2024 15:01:18 +0000 ROA not before: Mon 08 Jul 2024 15:01:18 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 24550 IP address blocks: 43.228.192.0/22 maxlen: 24 103.225.244.0/22 maxlen: 24 111.119.32.0/19 maxlen: 19 111.119.32.0/21 maxlen: 24 111.119.48.0/20 maxlen: 24 116.90.224.0/20 maxlen: 24 118.91.160.0/20 maxlen: 24 2400:9700::/32 maxlen: 32 2400:9700:5::/48 maxlen: 48 2400:9700:6::/48 maxlen: 48 2400:9700:20::/44 maxlen: 44 2400:9700:100::/44 maxlen: 44 2400:9700:100::/48 maxlen: 48 2400:9700:110::/44 maxlen: 44 2400:9700:110::/48 maxlen: 48 2400:9700:120::/44 maxlen: 44 2400:9700:120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.crl rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13380 (0x3444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ED35/serialNumber=7EE945E9E5E51C4B41D99C4332952F9C95876608 Validity Not Before: Jul 8 15:01:18 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668bff3e-da7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:24:77:ac:0e:d5:e8:9c:4e:34:79:a1:19:60: 40:ea:57:70:8c:95:24:a4:99:e2:30:8c:4b:22:9f: 4f:a4:7b:f0:0a:27:e9:0c:c8:aa:e0:8d:fa:03:1c: c0:9c:b1:ed:4a:66:76:d6:a7:3a:ff:28:4c:b1:f6: 7e:88:bc:77:92:20:86:c5:8e:d3:16:a4:b5:21:26: d6:69:55:92:83:e4:96:15:bb:2b:70:67:b9:e8:23: a4:be:99:b2:20:1a:82:bd:33:15:fa:33:6a:39:80: 1a:5c:12:71:f0:f3:66:94:0a:3a:f8:34:2d:24:59: 2c:45:99:39:43:8f:f8:da:e1:27:58:6e:71:6a:53: fa:8a:af:b4:5f:c0:19:62:07:06:92:e4:1f:e6:58: cf:34:a3:bf:00:06:19:6d:be:25:6d:3f:e5:93:29: 3f:27:15:32:14:b3:a8:11:ac:84:a2:1a:7d:27:18: b7:c9:ae:50:0c:50:c9:60:1b:b5:9a:ff:e7:58:1e: 60:42:5c:1e:b4:c0:21:f4:47:8a:2d:04:4c:e0:8d: f1:db:ba:03:e4:06:b3:3f:4e:0a:cb:dc:36:cb:a3: 63:cb:55:a9:87:33:6c:5b:64:ad:bd:8f:26:fe:a5: 90:0c:b6:99:a2:0c:9e:2e:df:5a:d3:3d:18:ed:2b: d9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D6:25:7C:93:B9:78:C8:4A:D7:FD:E0:00:31:EA:C2:CD:32:11:2A X509v3 Authority Key Identifier: keyid:7E:E9:45:E9:E5:E5:1C:4B:41:D9:9C:43:32:95:2F:9C:95:87:66:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/B34FF580C40C11EB9C21CF7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.192.0/22 103.225.244.0/22 111.119.32.0/19 116.90.224.0/20 118.91.160.0/20 IPv6: 2400:9700::/32 Signature Algorithm: sha256WithRSAEncryption 16:14:17:f3:dc:35:6f:86:73:1d:97:de:2b:b6:37:dc:36:2e: d0:60:07:cf:b4:6d:22:75:1f:40:d6:d3:de:b1:8b:b5:dc:0a: b0:ab:5c:4e:f2:db:4a:32:5b:42:d0:a2:0d:8f:6a:a5:56:9d: a0:de:da:55:c2:48:96:a0:f6:55:7f:ec:87:78:01:c9:5d:ad: c6:45:f2:6c:80:dc:4a:2d:a7:16:67:44:8e:8a:23:cb:30:bb: 78:bf:65:94:d8:f4:a3:95:f6:92:9a:bc:c7:ee:e1:03:07:16: 0c:fe:dd:7e:0f:bd:f8:bf:39:72:c8:bc:cd:fe:81:3c:45:d9: 6e:99:de:26:0c:10:46:bb:24:22:73:f6:29:87:44:09:ec:62: 3d:5c:b7:7d:89:48:92:a9:6e:fa:27:1d:01:ec:0a:be:55:af: 0b:3d:5a:23:0e:cc:ec:77:bd:5f:20:f1:92:58:a4:d9:f2:20: 82:8d:e0:b2:84:97:ee:6b:fa:24:3e:8c:36:89:14:ba:e7:63: ee:9f:6b:7f:3f:d0:01:ea:98:ea:ed:da:1d:f8:49:b9:9d:a2: 8b:2a:01:ee:56:03:c8:b0:a4:32:46:7e:9b:96:70:72:d7:30: 67:d0:42:8a:ef:84:61:c3:ca:58:8d:96:18:79:76:8c:89:1c: e5:2f:e5:bb -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICNEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VEMzUxMTAvBgNVBAUTKDdFRTk0NUU5RTVFNTFDNEI0MUQ5OUM0MzMyOTUyRjlD OTU4NzY2MDgwHhcNMjQwNzA4MTUwMTE4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhiZmYzZS1kYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCR3rA7V6JxONHmhGWBA6ldwjJUkpJniMIxLIp9PpHvwCifpDMiq4I36AxzA nLHtSmZ21qc6/yhMsfZ+iLx3kiCGxY7TFqS1ISbWaVWSg+SWFbsrcGe56COkvpmy IBqCvTMV+jNqOYAaXBJx8PNmlAo6+DQtJFksRZk5Q4/42uEnWG5xalP6iq+0X8AZ YgcGkuQf5ljPNKO/AAYZbb4lbT/lkyk/JxUyFLOoEayEohp9Jxi3ya5QDFDJYBu1 mv/nWB5gQlwetMAh9EeKLQRM4I3x27oD5AazP04Ky9w2y6Njy1WphzNsW2StvY8m /qWQDLaZogyeLt9a0z0Y7SvZGwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFFvWJXyT uXjIStf94AAx6sLNMhEqMB8GA1UdIwQYMBaAFH7pRenl5RxLQdmcQzKVL5yVh2YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUQzNS9CNjNCQTdFRTFE OTQxMUUyOUQxQTJFRjkwOEIwMkNEMi9mdWxGNmVYbEhFdEIyWnhETXBVdm5KV0ha Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1bEY2ZVhsSEV0QjJaeERNcFV2bkpXSFpnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VEMzUvQjYzQkE3RUUxRDk0MTFFMjlEMUEyRUY5MDhCMDJDRDIvQjM0RkY1ODBD NDBDMTFFQjlDMjFDRjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAIr5MADBAJn4fQDBAVvdyADBAR0WuADBAR2W6AwDQQCAAIw BwMFACQAlwAwDQYJKoZIhvcNAQELBQADggEBABYUF/PcNW+Gcx2X3iu2N9w2LtBg B8+0bSJ1H0DW096xi7XcCrCrXE7y20oyW0LQog2PaqVWnaDe2lXCSJag9lV/7Id4 AcldrcZF8myA3EotpxZnRI6KI8swu3i/ZZTY9KOV9pKavMfu4QMHFgz+3X4Pvfi/ OXLIvM3+gTxF2W6Z3iYMEEa7JCJz9imHRAnsYj1ct32JSJKpbvonHQHsCr5Vrws9 WiMOzOx3vV8g8ZJYpNnyIIKN4LKEl+5r+iQ+jDaJFLrnY+6fa38/0AHqmOrt2h34 SbmdoosqAe5WA8iwpDJGfpuWcHLXMGfQQorvhGHDyliNlhh5doyJHOUv5bs= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:17 2024 by rpki-client on console-ams.rpki-client.org