$ rpki-client -vvf rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/04CC562A444E11E88204061CC4F9AE02.roa File: 04CC562A444E11E88204061CC4F9AE02.roa (raw, json) Hash identifier: bQ3KvLtmzclqglCfQCTMWY9jEZJ/oqjU8/5vFJyfH5U= Subject key identifier: 07:F7:D5:63:46:82:C6:57:BD:BC:8C:78:30:28:7D:FA:F3:4E:C2:08 Certificate issuer: /CN=A9147456/serialNumber=C9CC794FFCB4CDF2D9DFBDEB763809B87D2D8F57 Certificate serial: 2456 Authority key identifier: C9:CC:79:4F:FC:B4:CD:F2:D9:DF:BD:EB:76:38:09:B8:7D:2D:8F:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/04CC562A444E11E88204061CC4F9AE02.roa Signing time: Sun 04 Aug 2024 16:12:37 +0000 ROA not before: Sun 04 Aug 2024 16:12:37 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58779 IP address blocks: 45.125.112.0/23 maxlen: 23 45.125.113.0/24 maxlen: 24 45.125.114.0/23 maxlen: 23 45.125.114.0/24 maxlen: 24 45.125.115.0/24 maxlen: 24 103.193.248.0/23 maxlen: 23 103.193.250.0/23 maxlen: 23 103.193.250.0/24 maxlen: 24 103.193.251.0/24 maxlen: 24 2402:b780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.crl rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9302 (0x2456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147456/serialNumber=C9CC794FFCB4CDF2D9DFBDEB763809B87D2D8F57 Validity Not Before: Aug 4 16:12:37 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66afa875-0835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:fb:af:4b:20:3f:10:d5:c9:50:ae:99:a6: 36:7a:60:95:a0:9a:80:a4:76:5c:78:84:7c:b7:06: f7:44:85:2d:16:26:ec:92:e9:76:5a:0e:ff:82:50: 56:4f:25:8d:c8:7a:5e:1c:a1:26:ba:b5:9a:b3:04: d1:13:77:2a:53:d8:6e:3f:cc:48:00:02:1b:00:b5: ec:7a:a2:7b:78:d6:d7:5f:c8:54:7f:f8:7a:4f:43: 95:40:7e:e1:03:29:3a:8c:a9:57:26:c6:37:59:ca: 34:13:b0:b1:b3:ce:4a:26:9f:5a:f3:db:88:e2:be: 33:e2:00:87:af:bb:f0:c5:25:f8:1e:cc:c6:bf:a0: 35:85:be:4e:04:f6:8f:b1:37:de:e3:49:e1:e2:41: ec:65:99:95:73:d0:46:53:5e:f3:91:5d:26:bf:c8: 60:46:2a:c7:d0:8e:98:17:2b:5a:88:d0:4d:24:bb: c3:14:2d:50:af:c6:c5:ff:38:71:dd:1a:a0:6c:32: fd:4e:a4:f8:fa:17:81:d9:c5:06:be:d4:fc:d4:63: 6d:ca:00:70:7c:6c:83:ca:b6:36:d9:aa:82:7b:ae: 8c:a1:2e:57:8c:1c:5e:a2:22:b3:ac:9c:46:1d:de: 40:ce:af:ad:99:59:73:d7:55:be:b5:98:a1:d4:80: fa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F7:D5:63:46:82:C6:57:BD:BC:8C:78:30:28:7D:FA:F3:4E:C2:08 X509v3 Authority Key Identifier: keyid:C9:CC:79:4F:FC:B4:CD:F2:D9:DF:BD:EB:76:38:09:B8:7D:2D:8F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/04CC562A444E11E88204061CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.112.0/22 103.193.248.0/22 IPv6: 2402:b780::/32 Signature Algorithm: sha256WithRSAEncryption 93:38:57:5d:8c:f7:d1:60:aa:66:d3:07:f1:d5:bd:e7:c4:63: 2b:12:c9:aa:b0:2a:49:8c:a4:fe:ba:2c:c6:71:41:fa:ba:5e: f8:90:9f:0a:36:59:45:57:39:3e:44:65:48:1e:f1:64:48:63: 6a:9b:da:ae:d9:a4:1e:00:6e:d9:be:2d:a2:e5:e8:b9:ec:fe: 64:99:b8:eb:01:b3:66:8e:62:7e:20:61:7c:3b:ce:3c:5b:1b: 89:72:66:01:d9:95:5b:2d:9e:4d:5e:71:63:be:c3:bb:5b:a9: 7d:10:2f:a4:87:e9:ae:ee:19:b6:e7:dc:81:b0:f6:2a:75:df: 3b:4f:26:c7:85:3d:d4:fb:26:7e:9f:e9:dc:a9:3f:5e:b5:5c: c2:75:64:13:68:42:43:21:f4:b7:11:23:3f:15:52:28:89:b5: 1b:86:cf:e1:e6:b6:9a:c4:b8:73:e1:77:59:cc:b1:a8:be:ea: 41:04:c1:41:cb:4d:34:38:cf:26:f0:15:c5:6d:1e:7c:f0:2e: ff:dc:d8:e0:11:9a:01:53:a2:aa:cd:ee:14:d5:d3:99:ad:af: a1:66:a8:10:d6:25:ab:b6:85:26:3e:46:73:88:c1:71:db:c5: c0:7f:f1:4b:d5:b7:9c:3b:4d:20:94:fa:23:0a:a5:04:f2:29: d4:17:15:92 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0NTYxMTAvBgNVBAUTKEM5Q0M3OTRGRkNCNENERjJEOURGQkRFQjc2MzgwOUI4 N0QyRDhGNTcwHhcNMjQwODA0MTYxMjM3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFmYTg3NS0wODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxn37r0sgPxDVyVCumaY2emCVoJqApHZceIR8twb3RIUtFibskul2Wg7/glBW TyWNyHpeHKEmurWaswTRE3cqU9huP8xIAAIbALXseqJ7eNbXX8hUf/h6T0OVQH7h Ayk6jKlXJsY3Wco0E7Cxs85KJp9a89uI4r4z4gCHr7vwxSX4HszGv6A1hb5OBPaP sTfe40nh4kHsZZmVc9BGU17zkV0mv8hgRirH0I6YFytaiNBNJLvDFC1Qr8bF/zhx 3RqgbDL9TqT4+heB2cUGvtT81GNtygBwfGyDyrY22aqCe66MoS5XjBxeoiKzrJxG Hd5Azq+tmVlz11W+tZih1ID6HwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAf31WNG gsZXvbyMeDAoffrzTsIIMB8GA1UdIwQYMBaAFMnMeU/8tM3y2d+963Y4Cbh9LY9X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ1Ni82MTU0RDE2ODM3 MkUxMUU1ODFGMEZCMzlDNEY5QUUwMi95Y3g1VF95MHpmTFozNzNyZGpnSnVIMHRq MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljeDVUX3kwemZMWjM3M3JkamdKdUgwdGoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0NTYvNjE1NEQxNjgzNzJFMTFFNTgxRjBGQjM5QzRGOUFFMDIvMDRDQzU2MkE0 NDRFMTFFODgyMDQwNjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItfXADBAJnwfgwDQQCAAIwBwMFACQCt4AwDQYJKoZIhvcN AQELBQADggEBAJM4V12M99FgqmbTB/HVvefEYysSyaqwKkmMpP66LMZxQfq6XviQ nwo2WUVXOT5EZUge8WRIY2qb2q7ZpB4Abtm+LaLl6Lns/mSZuOsBs2aOYn4gYXw7 zjxbG4lyZgHZlVstnk1ecWO+w7tbqX0QL6SH6a7uGbbn3IGw9ip13ztPJseFPdT7 Jn6f6dypP161XMJ1ZBNoQkMh9LcRIz8VUiiJtRuGz+HmtprEuHPhd1nMsai+6kEE wUHLTTQ4zybwFcVtHnzwLv/c2OARmgFToqrN7hTV05mtr6FmqBDWJau2hSY+RnOI wXHbxcB/8UvVt5w7TSCU+iMKpQTyKdQXFZI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:18 2024 by rpki-client on console-ams.rpki-client.org