$ rpki-client -vvf rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/88F058948E7E11EA955D1E64C4F9AE02.roa File: 88F058948E7E11EA955D1E64C4F9AE02.roa (raw, json) Hash identifier: LjFZkARdigofgjMJFtc/qBM/m3OntU9kJkRF62lZTLE= Subject key identifier: CE:04:71:40:8B:F3:20:79:5A:CA:41:85:DF:3B:FE:F4:3C:F5:41:AF Certificate issuer: /CN=A914A594/serialNumber=83CC72DE7D5C1FE53FC141F8BC1AC27B1DF303B1 Certificate serial: 0907 Authority key identifier: 83:CC:72:DE:7D:5C:1F:E5:3F:C1:41:F8:BC:1A:C2:7B:1D:F3:03:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8xy3n1cH-U_wUH4vBrCex3zA7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/88F058948E7E11EA955D1E64C4F9AE02.roa Signing time: Thu 26 Sep 2024 20:19:24 +0000 ROA not before: Thu 26 Sep 2024 20:19:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.240.0/22 maxlen: 22 45.117.240.0/24 maxlen: 24 103.58.20.0/22 maxlen: 22 202.151.16.0/20 maxlen: 20 2402:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/g8xy3n1cH-U_wUH4vBrCex3zA7E.crl rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/g8xy3n1cH-U_wUH4vBrCex3zA7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8xy3n1cH-U_wUH4vBrCex3zA7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2311 (0x907) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A594/serialNumber=83CC72DE7D5C1FE53FC141F8BC1AC27B1DF303B1 Validity Not Before: Sep 26 20:19:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f5c1cc-9e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:73:1a:8d:78:35:9c:1f:ad:60:ec:22:02: dd:9d:43:e3:2d:75:81:4c:1d:d3:92:85:df:fe:7a: b9:69:f7:62:9c:ac:d9:b0:c0:54:55:c0:65:99:3c: c0:d7:d7:bb:d4:72:8b:33:8a:0b:d1:72:9a:6b:af: 03:4b:f2:64:56:1e:ad:dd:2f:0d:06:3c:86:39:ce: 16:a7:1d:22:fb:73:fe:5f:30:6c:b1:0f:9a:2e:64: e0:a5:2a:d6:d8:59:91:f6:96:d6:97:9c:d2:8f:25: 8f:44:2e:06:66:21:07:69:78:8a:6b:44:c9:88:1f: 47:51:19:35:f8:b2:2c:44:9f:5e:ee:8e:82:12:77: ba:49:6a:a2:21:5e:aa:c3:ed:3d:3b:c0:45:97:40: e0:86:f3:eb:7d:7a:ef:7f:f0:0c:7a:f4:74:b3:6a: 19:e5:ce:f6:e4:89:51:fb:32:cc:75:0b:62:2d:d8: c3:7f:c2:83:89:e7:2b:e5:a0:46:e4:80:fc:43:1a: 6d:15:1c:0b:61:53:78:90:04:29:7a:cf:6a:e8:23: ab:99:35:a8:44:e3:7f:5c:cd:67:5a:d4:25:7a:39: 32:83:dc:34:01:6b:3a:c4:78:5f:ce:ba:00:90:05: 5b:b0:c2:d4:a6:b9:19:bd:a0:0f:e3:73:d0:dd:fb: e1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:04:71:40:8B:F3:20:79:5A:CA:41:85:DF:3B:FE:F4:3C:F5:41:AF X509v3 Authority Key Identifier: keyid:83:CC:72:DE:7D:5C:1F:E5:3F:C1:41:F8:BC:1A:C2:7B:1D:F3:03:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/g8xy3n1cH-U_wUH4vBrCex3zA7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8xy3n1cH-U_wUH4vBrCex3zA7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/88F058948E7E11EA955D1E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.240.0/22 103.58.20.0/22 202.151.16.0/20 IPv6: 2402:1840::/32 Signature Algorithm: sha256WithRSAEncryption 16:9f:1b:00:38:7d:fe:06:b5:05:9e:ef:5c:1e:5a:ce:48:93: 6e:f4:e3:b9:d0:f1:ae:9f:72:4f:83:66:27:23:9a:3d:31:31: cf:5b:4b:4f:13:fa:ac:0d:f3:6c:6e:f3:fe:e7:0d:39:73:a7: 0c:d9:9d:5d:82:d2:08:ea:59:a4:37:d8:1a:9b:cc:e6:d1:d5: b4:ad:ab:6b:08:d9:73:d6:c8:83:e5:e5:c1:17:52:c5:f0:b5: d4:87:5c:9d:f8:45:95:c2:4a:43:12:d8:2e:8a:85:ac:ab:63: 8f:db:25:e3:4d:d2:80:1d:d3:e0:6b:a4:cc:24:a3:9a:73:06: e0:d8:06:6a:10:9a:4b:5b:7b:6a:38:b9:96:e4:12:7e:72:55: 67:0c:36:f2:89:f5:6b:49:3e:83:d3:09:c2:0f:32:5d:55:09: 39:02:b3:be:a5:a0:91:5d:25:0b:08:6e:96:e8:b1:cd:4e:89: 50:b1:ec:51:b7:cf:1b:f2:94:ae:17:48:0b:43:06:6f:ba:8f: 99:3d:03:48:e2:82:af:65:a0:65:ba:25:ab:3d:cc:ac:4d:2f: 1b:67:d0:91:b5:42:65:c6:fc:b4:6d:d0:55:32:9f:9f:3b:07: 5d:56:ce:e1:3c:0e:a6:e3:02:ad:75:d6:d9:1a:c6:2c:5c:a3: c3:f2:66:6d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1OTQxMTAvBgNVBAUTKDgzQ0M3MkRFN0Q1QzFGRTUzRkMxNDFGOEJDMUFDMjdC MURGMzAzQjEwHhcNMjQwOTI2MjAxOTI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1YzFjYy05ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqRzGo14NZwfrWDsIgLdnUPjLXWBTB3TkoXf/nq5afdinKzZsMBUVcBlmTzA 19e71HKLM4oL0XKaa68DS/JkVh6t3S8NBjyGOc4Wpx0i+3P+XzBssQ+aLmTgpSrW 2FmR9pbWl5zSjyWPRC4GZiEHaXiKa0TJiB9HURk1+LIsRJ9e7o6CEne6SWqiIV6q w+09O8BFl0DghvPrfXrvf/AMevR0s2oZ5c725IlR+zLMdQtiLdjDf8KDiecr5aBG 5ID8QxptFRwLYVN4kAQpes9q6COrmTWoRON/XM1nWtQlejkyg9w0AWs6xHhfzroA kAVbsMLUprkZvaAP43PQ3fvhsQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFM4EcUCL 8yB5WspBhd87/vQ89UGvMB8GA1UdIwQYMBaAFIPMct59XB/lP8FB+Lwawnsd8wOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU5NC81MzE3OUZGODhF N0QxMUVBQjVGMzMyNjFDNEY5QUUwMi9nOHh5M24xY0gtVV93VUg0dkJyQ2V4M3pB N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4eHkzbjFjSC1VX3dVSDR2QnJDZXgzekE3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE1OTQvNTMxNzlGRjg4RTdEMTFFQUI1RjMzMjYxQzRGOUFFMDIvODhGMDU4OTQ4 RTdFMTFFQTk1NUQxRTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdfADBAJnOhQDBATKlxAwDQQCAAIwBwMFACQCGEAwDQYJ KoZIhvcNAQELBQADggEBABafGwA4ff4GtQWe71weWs5Ik27047nQ8a6fck+DZicj mj0xMc9bS08T+qwN82xu8/7nDTlzpwzZnV2C0gjqWaQ32BqbzObR1bStq2sI2XPW yIPl5cEXUsXwtdSHXJ34RZXCSkMS2C6KhayrY4/bJeNN0oAd0+BrpMwko5pzBuDY BmoQmktbe2o4uZbkEn5yVWcMNvKJ9WtJPoPTCcIPMl1VCTkCs76loJFdJQsIbpbo sc1OiVCx7FG3zxvylK4XSAtDBm+6j5k9A0jigq9loGW6Jas9zKxNLxtn0JG1QmXG /LRt0FUyn587B11WzuE8DqbjAq111tkaxixco8PyZm0= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org