$ rpki-client -vvf rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa File: CA44DDA6C5A111EAA8D93F54C4F9AE02.roa (raw, json) Hash identifier: /ftC2uTOBPGHfei3sjcF0l8WczvnxJUD11gXFuZBxZo= Subject key identifier: F8:35:E7:7D:D9:9E:03:BD:5C:0A:F6:62:42:04:1C:6B:31:4E:0F:3C Certificate issuer: /CN=A9145C9B/serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Certificate serial: 07A5 Authority key identifier: 64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa Signing time: Fri 10 May 2024 22:31:32 +0000 ROA not before: Fri 10 May 2024 22:31:32 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17451 IP address blocks: 45.126.184.0/22 maxlen: 22 45.126.184.0/24 maxlen: 24 45.126.185.0/24 maxlen: 24 45.126.186.0/24 maxlen: 24 45.126.187.0/24 maxlen: 24 103.195.56.0/22 maxlen: 22 103.195.56.0/24 maxlen: 24 103.195.57.0/24 maxlen: 24 103.195.58.0/24 maxlen: 24 103.195.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145C9B/serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Validity Not Before: May 10 22:31:32 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663ea044-b6de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:71:e7:7e:51:bb:f7:2c:56:47:d4:b1:12: 89:26:27:e9:2a:0b:f4:0e:2e:99:8d:5e:dc:10:22: 95:11:e0:e0:97:0d:92:d9:ea:a8:81:be:a6:27:c0: 46:c2:4c:0b:91:a8:d2:1a:f9:9c:d1:1b:6c:63:04: cf:42:3f:89:bd:c8:8e:51:5a:b9:bf:d4:57:59:6d: 4f:ac:4d:80:a3:ba:09:ce:09:2a:6d:fb:f3:8a:76: 54:3a:08:56:d5:b4:b6:74:77:ca:d2:64:bc:79:fb: 66:a4:9a:2b:e7:50:4f:95:88:19:8d:68:34:da:d2: 1e:ca:5d:cb:d2:a1:ab:b6:41:b2:24:d2:2b:3c:65: 4f:8d:2e:84:97:66:84:9e:2d:09:2c:de:db:c5:c0: be:af:29:4f:c2:64:a8:37:21:74:a0:97:b8:ff:c3: 2c:c5:47:eb:44:55:4b:93:d5:f1:c7:14:dd:7f:89: d3:63:14:bf:37:34:c8:65:d8:78:bf:50:0f:53:f7: 8b:5a:b3:f5:c3:7e:e0:e4:21:84:d6:a3:10:39:ab: 86:dd:61:b1:f8:f6:26:76:8a:b2:76:f3:33:58:a0: 0e:5d:2e:ea:c5:9c:31:e1:c5:d4:65:89:b6:76:b9: c6:2d:fa:f0:86:01:af:a5:19:71:d7:af:64:65:c5: a0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:35:E7:7D:D9:9E:03:BD:5C:0A:F6:62:42:04:1C:6B:31:4E:0F:3C X509v3 Authority Key Identifier: keyid:64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.184.0/22 103.195.56.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:05:49:b4:59:12:75:6b:5a:74:51:35:c7:2c:58:38:ae:ae: 46:1b:ac:c2:78:6d:d8:3c:03:66:8c:f6:3b:7d:76:0b:8a:52: e9:16:3f:e5:be:84:d4:52:ab:93:cc:5b:ce:44:ca:bd:4a:af: 5d:51:da:be:6c:1c:0c:f9:26:76:b1:a8:40:f4:c7:e9:5c:1b: ca:6c:68:aa:c8:fa:91:90:e3:a4:1c:d6:c4:d4:f2:72:b6:9f: 11:3b:00:8e:30:c6:86:80:86:5f:de:86:85:a0:fe:f7:29:cf: bc:48:1c:fa:28:f0:e7:04:e2:4e:03:2f:0c:4c:29:47:e8:53: 39:0c:ac:cc:d2:27:9d:a6:7d:d7:ea:57:0b:84:7a:11:d3:ca: a4:81:38:87:25:01:ae:8d:5c:ec:40:82:ff:1c:62:71:6f:1d: 51:74:36:c2:1d:2a:5d:ba:d1:23:c4:69:48:4a:d4:07:33:b8: 0e:60:aa:b8:5e:82:3c:2e:82:e5:24:a2:3c:c2:a5:c5:16:63: 4d:8d:99:be:78:57:c9:43:d0:ab:35:3f:41:16:26:ef:b6:c6: 6a:ff:9f:d1:49:9e:78:e1:90:a9:ec:4f:ec:63:47:e4:2c:bc: b8:79:97:8c:92:9d:45:98:0f:d2:45:4f:46:4d:e4:a2:16:ca: 6d:48:46:bc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVDOUIxMTAvBgNVBAUTKDY0QTA2RURBRjM5NzU3RTQyOEQ0MUU3MTIwNjk3NEZE OUZGQTczQkQwHhcNMjQwNTEwMjIzMTMyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlYTA0NC1iNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ1x535Ru/csVkfUsRKJJifpKgv0Di6ZjV7cECKVEeDglw2S2eqogb6mJ8BG wkwLkajSGvmc0RtsYwTPQj+JvciOUVq5v9RXWW1PrE2Ao7oJzgkqbfvzinZUOghW 1bS2dHfK0mS8eftmpJor51BPlYgZjWg02tIeyl3L0qGrtkGyJNIrPGVPjS6El2aE ni0JLN7bxcC+rylPwmSoNyF0oJe4/8MsxUfrRFVLk9XxxxTdf4nTYxS/NzTIZdh4 v1APU/eLWrP1w37g5CGE1qMQOauG3WGx+PYmdoqydvMzWKAOXS7qxZwx4cXUZYm2 drnGLfrwhgGvpRlx169kZcWgFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPg1533Z ngO9XAr2YkIEHGsxTg88MB8GA1UdIwQYMBaAFGSgbtrzl1fkKNQecSBpdP2f+nO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUM5Qi9EMzlGRkU0QUM1 QTAxMUVBODc4NTkwNTNDNEY5QUUwMi9aS0J1MnZPWFYtUW8xQjV4SUdsMF9aXzZj NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLQnUydk9YVi1RbzFCNXhJR2wwX1pfNmM3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVDOUIvRDM5RkZFNEFDNUEwMTFFQTg3ODU5MDUzQzRGOUFFMDIvQ0E0NEREQTZD NUExMTFFQUE4RDkzRjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfrgDBAJnwzgwDQYJKoZIhvcNAQELBQADggEBAFoFSbRZ EnVrWnRRNccsWDiurkYbrMJ4bdg8A2aM9jt9dguKUukWP+W+hNRSq5PMW85Eyr1K r11R2r5sHAz5JnaxqED0x+lcG8psaKrI+pGQ46Qc1sTU8nK2nxE7AI4wxoaAhl/e hoWg/vcpz7xIHPoo8OcE4k4DLwxMKUfoUzkMrMzSJ52mfdfqVwuEehHTyqSBOIcl Aa6NXOxAgv8cYnFvHVF0NsIdKl260SPEaUhK1AczuA5gqrhegjwuguUkojzCpcUW Y02Nmb54V8lD0Ks1P0EWJu+2xmr/n9FJnnjhkKnsT+xjR+QsvLh5l4ySnUWYD9JF T0ZN5KIWym1IRrw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org