$ rpki-client -vvf rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/297BC4140D4611E794585E2FC4F9AE02.roa File: 297BC4140D4611E794585E2FC4F9AE02.roa (raw, json) Hash identifier: yJwIYH0HnsFs9Iy2kQBVrjVIvfYou5TYh0Yox/p0ekY= Subject key identifier: E1:ED:CE:71:CE:20:2D:62:9C:62:E3:E8:19:C2:40:A5:A1:7D:49:37 Certificate issuer: /CN=A9147456/serialNumber=C9CC794FFCB4CDF2D9DFBDEB763809B87D2D8F57 Certificate serial: 2457 Authority key identifier: C9:CC:79:4F:FC:B4:CD:F2:D9:DF:BD:EB:76:38:09:B8:7D:2D:8F:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/297BC4140D4611E794585E2FC4F9AE02.roa Signing time: Sun 04 Aug 2024 16:12:38 +0000 ROA not before: Sun 04 Aug 2024 16:12:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 64047 IP address blocks: 45.125.112.0/22 maxlen: 22 45.125.112.0/23 maxlen: 23 45.125.112.0/24 maxlen: 24 45.125.113.0/24 maxlen: 24 45.125.114.0/23 maxlen: 23 45.125.114.0/24 maxlen: 24 45.125.115.0/24 maxlen: 24 103.193.248.0/22 maxlen: 22 103.193.248.0/23 maxlen: 24 103.193.250.0/23 maxlen: 24 2402:b780::/32 maxlen: 32 2402:b780::/32 maxlen: 48 2402:b780:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.crl rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9303 (0x2457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147456/serialNumber=C9CC794FFCB4CDF2D9DFBDEB763809B87D2D8F57 Validity Not Before: Aug 4 16:12:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66afa875-5bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cf:4b:28:7f:0e:25:ba:d0:53:48:f5:d5:91: 0d:fa:2a:3f:59:14:e5:48:6d:74:90:f8:01:b1:78: 64:f9:13:c0:a9:de:4d:0d:8f:25:51:d5:01:48:97: 2a:90:fb:af:3a:26:07:d3:3a:8f:20:e2:af:2d:cf: 84:7b:49:e8:b0:f0:a6:28:a0:12:0d:ec:3e:b2:28: ec:92:32:05:59:a4:f2:26:d3:c7:99:81:05:f5:ce: b5:d6:8b:06:05:9e:d4:af:9f:90:2f:35:84:18:11: 49:f2:42:df:4a:bf:84:ca:8f:e4:e2:59:fc:58:16: 3c:8e:3e:23:b9:32:ff:5d:97:b1:b2:62:34:4a:9d: ec:db:c5:1c:c4:39:4f:0b:14:21:38:b2:11:2f:95: c9:d2:8c:55:e3:25:ce:6d:fe:af:36:8f:8a:24:c0: 8b:c2:46:fd:b0:09:6a:f9:30:c7:59:f8:0f:3b:63: 13:74:f4:61:05:e9:60:55:3d:af:70:f6:8c:1e:59: ea:43:0f:89:47:77:eb:d8:e7:e9:89:f6:e0:31:b6: be:a4:06:4d:25:b0:29:f3:4c:77:d1:ec:5a:be:f4: 96:31:1b:a2:ff:83:9a:3b:81:f3:f4:a5:67:5a:d6: 12:50:30:54:ba:d9:bd:40:f4:f2:ea:55:51:18:91: fb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:ED:CE:71:CE:20:2D:62:9C:62:E3:E8:19:C2:40:A5:A1:7D:49:37 X509v3 Authority Key Identifier: keyid:C9:CC:79:4F:FC:B4:CD:F2:D9:DF:BD:EB:76:38:09:B8:7D:2D:8F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/297BC4140D4611E794585E2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.112.0/22 103.193.248.0/22 IPv6: 2402:b780::/32 Signature Algorithm: sha256WithRSAEncryption 7e:06:1e:fb:41:a4:6c:b8:a3:68:a6:99:0c:ae:a8:51:b4:aa: 2c:a0:22:1c:0e:ec:f8:92:d8:91:d4:a6:d9:62:7d:f1:7b:da: 2d:68:f8:2a:95:9f:36:0e:9c:50:82:2c:cb:3a:8b:5d:6a:d5: 41:33:f8:04:88:65:82:e6:c9:b0:1e:71:6a:7d:72:80:08:e8: 46:83:77:8a:26:15:b0:25:1b:e0:b8:bb:28:6e:62:a7:03:4c: 45:ed:a5:4a:e3:ba:67:25:f0:a4:c6:6c:9c:a8:54:18:03:8a: b3:9f:09:71:c7:c8:21:9c:8f:71:1b:9d:02:f1:7e:9e:91:dd: 8f:67:e7:e3:2a:93:7b:e4:3f:21:8c:d5:57:17:34:cb:6c:76: d8:58:d8:55:dd:03:3c:c0:9e:a5:5b:94:12:7b:e3:ad:e5:28: 72:ad:b5:e9:d2:d9:d1:cd:da:aa:3f:32:f5:4d:32:de:2f:bf: da:f4:a5:e6:c1:9b:98:f9:1b:a7:00:30:3e:d7:39:6c:ed:71: d3:5e:bc:a2:5b:ae:49:01:25:bf:43:ee:29:73:32:3d:ca:e0: 61:6d:df:43:5a:5a:ba:48:5b:bb:e1:e9:88:51:00:85:b0:cf: 5f:19:ad:cc:81:a4:2a:61:1e:81:74:4b:ce:df:1e:3b:e6:18: ee:0c:b8:48 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0NTYxMTAvBgNVBAUTKEM5Q0M3OTRGRkNCNENERjJEOURGQkRFQjc2MzgwOUI4 N0QyRDhGNTcwHhcNMjQwODA0MTYxMjM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFmYTg3NS01YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc9LKH8OJbrQU0j11ZEN+io/WRTlSG10kPgBsXhk+RPAqd5NDY8lUdUBSJcq kPuvOiYH0zqPIOKvLc+Ee0nosPCmKKASDew+sijskjIFWaTyJtPHmYEF9c611osG BZ7Ur5+QLzWEGBFJ8kLfSr+Eyo/k4ln8WBY8jj4juTL/XZexsmI0Sp3s28UcxDlP CxQhOLIRL5XJ0oxV4yXObf6vNo+KJMCLwkb9sAlq+TDHWfgPO2MTdPRhBelgVT2v cPaMHlnqQw+JR3fr2OfpifbgMba+pAZNJbAp80x30exavvSWMRui/4OaO4Hz9KVn WtYSUDBUutm9QPTy6lVRGJH7CwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOHtznHO IC1inGLj6BnCQKWhfUk3MB8GA1UdIwQYMBaAFMnMeU/8tM3y2d+963Y4Cbh9LY9X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ1Ni82MTU0RDE2ODM3 MkUxMUU1ODFGMEZCMzlDNEY5QUUwMi95Y3g1VF95MHpmTFozNzNyZGpnSnVIMHRq MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljeDVUX3kwemZMWjM3M3JkamdKdUgwdGoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0NTYvNjE1NEQxNjgzNzJFMTFFNTgxRjBGQjM5QzRGOUFFMDIvMjk3QkM0MTQw RDQ2MTFFNzk0NTg1RTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItfXADBAJnwfgwDQQCAAIwBwMFACQCt4AwDQYJKoZIhvcN AQELBQADggEBAH4GHvtBpGy4o2immQyuqFG0qiygIhwO7PiS2JHUptliffF72i1o +CqVnzYOnFCCLMs6i11q1UEz+ASIZYLmybAecWp9coAI6EaDd4omFbAlG+C4uyhu YqcDTEXtpUrjumcl8KTGbJyoVBgDirOfCXHHyCGcj3EbnQLxfp6R3Y9n5+Mqk3vk PyGM1VcXNMtsdthY2FXdAzzAnqVblBJ7463lKHKttenS2dHN2qo/MvVNMt4vv9r0 pebBm5j5G6cAMD7XOWztcdNevKJbrkkBJb9D7ilzMj3K4GFt30NaWrpIW7vh6YhR AIWwz18ZrcyBpCphHoF0S87fHjvmGO4MuEg= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:43 2024 by rpki-client on console-fra.rpki-client.org