$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/387BC130D36511ED90939D5BC4F9AE02.roa File: 387BC130D36511ED90939D5BC4F9AE02.roa (raw, json) Hash identifier: Qgq40x/6Yn8uQdvwTJ43+psRst8kHKJWs305k9LCnqA= Subject key identifier: 91:45:4A:22:80:D2:CE:B7:50:76:7E:64:58:15:EA:8C:69:BD:AA:88 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2CF1 Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/387BC130D36511ED90939D5BC4F9AE02.roa Signing time: Mon 02 Sep 2024 15:52:10 +0000 ROA not before: Mon 02 Sep 2024 15:52:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 17705 IP address blocks: 103.234.132.0/22 maxlen: 24 121.79.192.0/18 maxlen: 18 121.79.192.0/20 maxlen: 20 121.79.208.0/20 maxlen: 20 121.79.224.0/20 maxlen: 21 121.79.226.0/24 maxlen: 24 121.79.240.0/20 maxlen: 20 122.252.152.0/21 maxlen: 22 150.107.160.0/22 maxlen: 23 203.114.128.0/18 maxlen: 24 2404:1800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11505 (0x2cf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Sep 2 15:52:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d5df2a-0709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6e:a5:8e:6c:7d:4d:bb:58:34:77:c7:5c:cb: 2e:6e:75:e2:8c:2e:fc:fd:20:3c:30:5c:fa:1c:2e: 75:c0:e2:63:5e:5a:75:05:3c:de:35:d9:24:d5:a0: dd:40:73:0e:39:b7:e0:03:be:09:93:69:33:2b:25: d3:14:e6:92:b7:e8:d7:dd:e7:22:ee:0b:e9:4d:23: eb:72:7a:24:ae:b1:be:fb:07:87:fc:73:52:3e:26: 4c:1a:9b:9a:c8:6f:1b:cb:46:f1:6e:86:b7:ec:5e: 2a:04:cb:b1:33:55:48:3f:35:40:b6:16:f0:ad:88: 48:dc:07:2c:dd:e9:08:47:44:db:17:eb:f0:13:ed: 4d:ef:40:0e:ec:72:ae:76:9a:3e:6a:d5:61:e9:d9: 0f:8c:a1:99:89:65:88:7b:5b:dd:fc:d4:87:8a:46: 6f:ed:30:08:59:84:64:bf:94:a3:70:85:d6:90:fa: d0:7d:ca:50:33:87:d0:24:33:f2:98:92:83:23:b2: 05:41:ca:b9:9c:65:2c:2e:5b:e9:6f:5c:b1:77:55: 1b:a5:dc:1e:2c:fe:31:a3:cc:d2:3b:f2:20:27:42: 7d:cf:57:9c:8e:03:02:9e:b2:f0:92:f0:db:57:53: db:16:89:0c:55:ee:fb:05:4e:42:2e:bf:b4:17:88: c3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:45:4A:22:80:D2:CE:B7:50:76:7E:64:58:15:EA:8C:69:BD:AA:88 X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/387BC130D36511ED90939D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.132.0/22 121.79.192.0/18 122.252.152.0/21 150.107.160.0/22 203.114.128.0/18 IPv6: 2404:1800::/32 Signature Algorithm: sha256WithRSAEncryption 54:13:8f:1b:07:ef:dc:d7:5f:fe:d1:97:b1:3e:e1:81:0f:6b: 17:99:ef:e0:49:61:fe:1a:cd:f3:58:79:f8:e4:d4:67:1d:03: 47:ec:25:4c:c9:e1:e3:71:be:44:b7:f1:67:2f:c5:be:34:85: a8:10:40:b6:2e:74:a5:4f:25:bc:d3:91:a9:4d:4a:0b:7d:f7: 34:a2:93:5a:46:35:db:46:48:c1:a9:51:17:f9:2b:c0:01:55: 8c:17:35:47:01:9f:be:de:ac:24:f0:2a:60:72:ed:cb:08:26: a6:bf:0b:8f:b5:df:a7:05:71:35:eb:f3:68:cc:37:50:23:d6: 37:2a:b4:e7:68:89:a7:8d:01:8a:42:f3:cd:47:bb:1b:82:78: 5e:7d:4e:a0:d3:4d:02:51:e3:32:d2:df:5c:2c:1a:30:ca:92: 0b:57:20:79:12:7c:ad:95:e5:45:45:f5:5f:7d:14:fc:b2:52: 06:e3:34:90:25:97:1f:54:31:cf:3f:24:41:ff:9b:7d:08:8c: b5:aa:70:9f:6d:6c:9a:44:cf:42:97:a4:37:e4:97:9e:68:db: 05:50:19:a9:84:7a:47:a4:b1:a4:5d:cc:70:1c:62:01:51:26: c9:e1:d2:22:28:c7:2e:3d:be:de:f0:fb:ac:a0:ef:41:f4:15: c9:2f:97:de -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICLPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjQwOTAyMTU1MjEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1ZGYyYS0wNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm6ljmx9TbtYNHfHXMsubnXijC78/SA8MFz6HC51wOJjXlp1BTzeNdkk1aDd QHMOObfgA74Jk2kzKyXTFOaSt+jX3eci7gvpTSPrcnokrrG++weH/HNSPiZMGpua yG8by0bxboa37F4qBMuxM1VIPzVAthbwrYhI3Acs3ekIR0TbF+vwE+1N70AO7HKu dpo+atVh6dkPjKGZiWWIe1vd/NSHikZv7TAIWYRkv5SjcIXWkPrQfcpQM4fQJDPy mJKDI7IFQcq5nGUsLlvpb1yxd1UbpdweLP4xo8zSO/IgJ0J9z1ecjgMCnrLwkvDb V1PbFokMVe77BU5CLr+0F4jDywIDAQABo4ICvDCCArgwHQYDVR0OBBYEFJFFSiKA 0s63UHZ+ZFgV6oxpvaqIMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBNzIvMDVDODkxREE4OUVEMTFFMzg2OTE2RUE1NTkxMUVBMzIvMzg3QkMxMzBE MzY1MTFFRDkwOTM5RDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJn6oQDBAZ5T8ADBAN6/JgDBAKWa6ADBAbLcoAwDQQCAAIw BwMFACQEGAAwDQYJKoZIhvcNAQELBQADggEBAFQTjxsH79zXX/7Rl7E+4YEPaxeZ 7+BJYf4azfNYefjk1GcdA0fsJUzJ4eNxvkS38Wcvxb40hagQQLYudKVPJbzTkalN Sgt99zSik1pGNdtGSMGpURf5K8ABVYwXNUcBn77erCTwKmBy7csIJqa/C4+136cF cTXr82jMN1Aj1jcqtOdoiaeNAYpC881HuxuCeF59TqDTTQJR4zLS31wsGjDKkgtX IHkSfK2V5UVF9V99FPyyUgbjNJAllx9UMc8/JEH/m30IjLWqcJ9tbJpEz0KXpDfk l55o2wVQGamEekeksaRdzHAcYgFRJsnh0iIoxy49vt7w+6yg70H0Fckvl94= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:09 2024 by rpki-client on console-ams.rpki-client.org