$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa File: CAD5365E090C11EBA5412411C4F9AE02.roa (raw, json) Hash identifier: 1/UnllgrY9TLTTDeiVVZgSkXNLQXVP9JfAc/UDXvF4Q= Subject key identifier: 0D:AA:73:F5:BE:EE:94:41:0F:DD:05:44:9B:99:50:B5:B5:C7:DD:61 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35FD Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:35 +0000 ROA not before: Fri 16 Aug 2024 14:40:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 6507 IP address blocks: 45.250.208.0/22 maxlen: 24 103.219.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13821 (0x35fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:35 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64e2-bd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ec:8c:de:89:a9:7d:18:20:1a:6f:84:91:d6: 01:08:a4:0d:ba:09:c2:9c:0b:7d:66:37:a8:97:ab: 47:66:e3:ce:c4:81:a7:65:5c:c1:37:02:25:6e:53: ac:81:b9:40:fc:39:80:36:4f:fc:0e:3b:64:3b:57: b9:c8:90:61:c1:70:a2:19:9e:64:5f:e0:1c:22:40: ad:66:62:42:09:e2:29:3c:42:c1:1b:f9:2d:4a:5c: 29:ad:bc:81:a5:93:63:97:3a:a0:b8:47:46:38:7f: 24:fa:d9:e7:bf:8b:7c:56:1b:c3:57:2a:49:e9:9a: 38:07:eb:98:40:2b:8b:84:5a:16:79:f1:fa:6a:0a: 2c:89:a6:a0:23:b4:f6:cb:88:2f:1d:ca:a3:79:bc: c8:bc:92:c9:60:b5:6c:1b:2c:c3:d6:2f:c4:ef:fe: b9:48:df:8c:3a:8d:08:78:15:81:b9:dd:16:f8:55: 53:0c:e2:fb:bc:32:34:99:1f:17:fa:5d:eb:5a:58: db:76:8f:4b:e9:18:1c:39:8d:75:6d:51:0b:19:0a: 4c:fe:fd:35:b6:8e:74:f4:28:3c:fd:a2:5c:22:7d: b9:13:de:c0:88:de:5f:ff:82:af:2f:cf:58:30:62: 2b:c8:a7:02:e9:c4:25:79:a1:f4:39:ad:ad:e0:01: ff:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AA:73:F5:BE:EE:94:41:0F:DD:05:44:9B:99:50:B5:B5:C7:DD:61 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.208.0/22 103.219.128.0/22 Signature Algorithm: sha256WithRSAEncryption b0:40:86:71:37:b1:95:1d:29:91:95:10:9f:08:32:c6:eb:54: f4:9e:74:ee:04:85:89:7f:c1:ce:44:65:6c:98:06:50:c1:31: 94:b6:cd:a7:05:c9:4b:d4:8a:6c:19:bb:a2:46:53:eb:6f:56: be:bc:2b:2b:0e:e3:bc:28:97:2c:d5:f1:bd:5d:35:e6:d3:a9: 08:a8:80:64:47:30:3b:99:1a:a6:06:e7:d3:2b:b1:3a:72:1e: 1c:46:ce:6f:c2:3b:51:eb:39:8c:79:2a:4f:42:06:0a:42:4b: 08:90:58:72:1b:aa:b4:c4:2b:be:69:23:43:38:fc:ea:1e:29: 25:e8:f8:56:74:89:11:24:f4:d9:0a:fe:89:f1:3e:a6:6a:e9: d8:66:af:3d:77:19:67:fb:05:c9:e2:2d:63:ec:99:1d:6e:f7: 39:12:58:43:67:4b:22:9a:46:e0:fe:38:49:c5:22:4d:f3:27: d3:14:7d:67:66:79:43:69:d2:98:c7:af:6a:54:df:86:ce:0e: 22:9f:74:e1:1a:e0:be:f2:ec:87:20:f7:d5:17:30:9b:8f:7e: b8:06:a1:06:2d:de:63:2f:39:00:5b:62:22:18:d7:cd:fc:c2: 27:c2:9f:70:7a:ae:07:e9:d1:d3:6c:99:87:ec:0b:af:b1:29: 94:ef:8a:41 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDM1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRlMi1iZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OyM3ompfRggGm+EkdYBCKQNugnCnAt9Zjeol6tHZuPOxIGnZVzBNwIlblOs gblA/DmANk/8DjtkO1e5yJBhwXCiGZ5kX+AcIkCtZmJCCeIpPELBG/ktSlwprbyB pZNjlzqguEdGOH8k+tnnv4t8VhvDVypJ6Zo4B+uYQCuLhFoWefH6agosiaagI7T2 y4gvHcqjebzIvJLJYLVsGyzD1i/E7/65SN+MOo0IeBWBud0W+FVTDOL7vDI0mR8X +l3rWljbdo9L6RgcOY11bVELGQpM/v01to509Cg8/aJcIn25E97AiN5f/4KvL89Y MGIryKcC6cQleaH0Oa2t4AH/owIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA2qc/W+ 7pRBD90FRJuZULW1x91hMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQ0FENTM2NUUw OTBDMTFFQkE1NDEyNDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+tADBAJn24AwDQYJKoZIhvcNAQELBQADggEBALBAhnE3 sZUdKZGVEJ8IMsbrVPSedO4EhYl/wc5EZWyYBlDBMZS2zacFyUvUimwZu6JGU+tv Vr68KysO47wolyzV8b1dNebTqQiogGRHMDuZGqYG59MrsTpyHhxGzm/CO1HrOYx5 Kk9CBgpCSwiQWHIbqrTEK75pI0M4/OoeKSXo+FZ0iREk9NkK/onxPqZq6dhmrz13 GWf7BcniLWPsmR1u9zkSWENnSyKaRuD+OEnFIk3zJ9MUfWdmeUNp0pjHr2pU34bO DiKfdOEa4L7y7Icg99UXMJuPfrgGoQYt3mMvOQBbYiIY1838wifCn3B6rgfp0dNs mYfsC6+xKZTvikE= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:25 2024 by rpki-client on console-fra.rpki-client.org