$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa File: D6373CB80CD211EFB50E0B5EC4F9AE02.roa (raw, json) Hash identifier: 1KOLf59ICzEoI7M2NmFAlaU/cZ0TLw7hfRN8QYgYxBQ= Subject key identifier: E6:B6:60:A2:21:A3:5E:15:EB:29:F9:02:7F:56:A1:BF:E0:37:42:4F Certificate issuer: /CN=A9146B76/serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Certificate serial: 06D4 Authority key identifier: CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa Signing time: Wed 08 May 2024 00:35:15 +0000 ROA not before: Wed 08 May 2024 00:35:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55720 IP address blocks: 45.116.176.0/24 maxlen: 24 45.116.177.0/24 maxlen: 24 45.116.179.0/24 maxlen: 24 103.228.52.0/24 maxlen: 24 103.228.53.0/24 maxlen: 24 103.228.54.0/24 maxlen: 24 103.228.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B76/serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Validity Not Before: May 8 00:35:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663ac8c3-2b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:6e:5e:fc:a5:37:d6:a6:49:d5:4c:ef:81: 68:23:cb:bb:42:65:bd:71:a0:6a:80:12:88:20:80: 7d:a2:ec:82:65:ac:a3:e3:59:c3:a8:64:f8:6f:79: 72:5b:cf:9f:24:c1:4b:1f:7e:ce:a3:06:09:1d:28: 4d:53:34:bc:d5:2e:e6:c0:03:89:ad:66:9b:d1:d8: b4:6a:e2:df:25:3e:54:1f:eb:cf:95:61:28:cb:ad: 98:92:ab:7c:74:1b:00:2c:92:2b:74:61:d7:6b:da: c4:60:25:ba:af:55:b0:32:01:8b:d1:b2:a0:81:3e: b3:ab:60:e3:7e:bc:61:b9:5b:ae:b7:7e:06:c4:62: 29:28:ce:61:56:68:41:9a:49:1e:91:cd:5a:3d:3d: 17:50:02:1a:da:76:f1:20:e5:32:3b:a7:3d:26:5a: 97:e7:35:d5:cd:d8:54:b5:e6:bf:a1:2c:75:53:34: da:30:f6:2a:9c:6a:c3:6f:ad:2b:85:05:eb:fe:95: c4:8e:83:d0:eb:cb:a4:bd:88:9a:3f:92:01:20:88: a9:f8:f9:75:e4:61:f1:1a:77:08:82:3c:35:ad:7f: dd:ec:90:52:60:c8:82:a0:47:d9:a1:7a:fd:41:5f: c9:8c:78:6b:64:0d:a2:c3:73:77:f5:58:bf:d6:cb: 78:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B6:60:A2:21:A3:5E:15:EB:29:F9:02:7F:56:A1:BF:E0:37:42:4F X509v3 Authority Key Identifier: keyid:CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/D6373CB80CD211EFB50E0B5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.176.0/23 45.116.179.0/24 103.228.52.0/22 Signature Algorithm: sha256WithRSAEncryption 10:e5:88:76:a4:c1:79:fe:b9:35:3d:9d:74:83:a1:0d:41:31: 98:58:91:db:76:f0:8b:9e:54:5e:1f:18:61:08:42:17:a3:50: 7e:8c:83:e5:c7:a0:b9:04:94:a7:cb:c1:00:cd:c2:80:e3:43: 95:7e:76:93:80:ea:06:84:26:a8:57:e3:36:c1:10:98:e8:98: 42:80:2d:fe:11:29:df:6e:4b:b8:db:08:3c:92:f2:c8:2a:05: f6:68:88:2e:35:62:df:d1:3e:df:4e:54:b7:29:ba:96:86:31: ab:c1:59:28:57:3a:93:2f:f3:17:1a:5e:41:43:2e:40:14:bd: 59:30:50:e4:53:5f:86:a9:ca:0e:7f:bc:d8:3d:8a:c2:e1:85: 1b:0d:a4:da:7a:01:69:41:b9:0a:de:90:56:ac:a8:35:e9:50: 6e:db:af:ea:47:29:88:50:7c:10:f2:e9:85:28:96:ee:f3:1f: e6:d7:fc:eb:37:f0:79:dc:da:b3:31:28:1b:ca:85:d1:30:78: 3c:a3:71:b0:64:02:d5:8d:27:ec:f0:7b:04:6f:35:58:93:54: 8b:99:ba:8c:1a:63:fe:6c:cd:8f:e8:c4:71:46:70:cc:e7:db: cd:b1:72:e1:20:dd:c1:6c:85:3a:04:68:92:a0:bc:af:ac:4e: 05:37:da:15 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCNzYxMTAvBgNVBAUTKENBMTVDNTkwOEQwNzJERDgyMTcxNEVDNjdFMTE3NUUz QUE5MTEyRTYwHhcNMjQwNTA4MDAzNTE1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNhYzhjMy0yYjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y5uXvylN9amSdVM74FoI8u7QmW9caBqgBKIIIB9ouyCZayj41nDqGT4b3ly W8+fJMFLH37OowYJHShNUzS81S7mwAOJrWab0di0auLfJT5UH+vPlWEoy62Ykqt8 dBsALJIrdGHXa9rEYCW6r1WwMgGL0bKggT6zq2DjfrxhuVuut34GxGIpKM5hVmhB mkkekc1aPT0XUAIa2nbxIOUyO6c9JlqX5zXVzdhUtea/oSx1UzTaMPYqnGrDb60r hQXr/pXEjoPQ68ukvYiaP5IBIIip+Pl15GHxGncIgjw1rX/d7JBSYMiCoEfZoXr9 QV/JjHhrZA2iw3N39Vi/1st4oQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOa2YKIh o14V6yn5An9Wob/gN0JPMB8GA1UdIwQYMBaAFMoVxZCNBy3YIXFOxn4RdeOqkRLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkI3Ni82Q0EzMzY5QzA5 RDYxMUVCQjNDM0M2ODVDNEY5QUUwMi95aFhGa0kwSExkZ2hjVTdHZmhGMTQ2cVJF dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3loWEZrSTBITGRnaGNVN0dmaEYxNDZxUkV1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCNzYvNkNBMzM2OUMwOUQ2MTFFQkIzQzNDNjg1QzRGOUFFMDIvRDYzNzNDQjgw Q0QyMTFFRkI1MEUwQjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEtdLADBAAtdLMDBAJn5DQwDQYJKoZIhvcNAQELBQADggEB ABDliHakwXn+uTU9nXSDoQ1BMZhYkdt28IueVF4fGGEIQhejUH6Mg+XHoLkElKfL wQDNwoDjQ5V+dpOA6gaEJqhX4zbBEJjomEKALf4RKd9uS7jbCDyS8sgqBfZoiC41 Yt/RPt9OVLcpupaGMavBWShXOpMv8xcaXkFDLkAUvVkwUORTX4apyg5/vNg9isLh hRsNpNp6AWlBuQrekFasqDXpUG7br+pHKYhQfBDy6YUolu7zH+bX/Os38Hnc2rMx KBvKhdEweDyjcbBkAtWNJ+zwewRvNViTVIuZuowaY/5szY/oxHFGcMzn282xcuEg 3cFshToEaJKgvK+sTgU32hU= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:39 2024 by rpki-client on console-ams.rpki-client.org