$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/3772F678BC1211EE8C54FD2EC4F9AE02.roa File: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (raw, json) Hash identifier: j7yQ3MutAQIbhYtrFWB2H4tUIBZNV1HrV9jMJoM2fj8= Subject key identifier: A5:37:71:D2:5A:03:50:EA:EE:18:05:25:D7:91:2E:94:76:24:DC:A9 Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 2A Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/3772F678BC1211EE8C54FD2EC4F9AE02.roa Signing time: Wed 03 Apr 2024 23:32:51 +0000 ROA not before: Wed 03 Apr 2024 23:32:51 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45960 IP address blocks: 45.121.36.0/22 maxlen: 22 103.61.124.0/22 maxlen: 22 203.56.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Apr 3 23:32:51 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=660de723-a8fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0d:75:c4:5e:83:1c:68:ff:27:2b:4d:05:f7: 44:5c:3c:de:cc:ec:31:41:1a:b4:1d:0e:94:80:cb: 18:f9:91:9a:ce:a4:eb:89:03:51:c0:08:20:80:f8: 19:10:f0:48:8a:b2:9d:e3:a1:2d:e8:f6:a2:e0:ff: 9e:f0:5e:f0:4b:c3:41:7d:cd:1a:51:87:ec:2e:fe: fa:ee:db:72:29:84:c7:e0:cb:41:e6:58:1c:86:fa: 8e:28:b2:e7:12:64:6b:22:3e:06:c5:35:0f:1d:9e: 89:9b:23:25:c1:59:63:b9:26:ec:02:19:6d:0f:5d: 5e:4c:61:34:0c:e3:22:f5:d2:4c:5c:31:92:f6:62: 7e:3b:24:5e:64:bb:2e:7b:97:e3:15:05:b7:08:cc: 61:de:00:6b:c1:b6:5a:6d:76:ec:1e:eb:f7:f3:a6: 05:68:a6:fc:a6:92:7d:90:89:ce:6a:13:80:aa:4a: ce:4d:4d:88:ad:48:06:52:e3:e1:62:07:5e:ea:40: a1:1f:1c:5a:36:c2:a3:71:83:b5:11:a4:48:54:0d: d0:14:e0:ac:f1:0c:d7:db:ef:d2:8e:63:e1:05:4b: 59:8a:17:39:bf:22:77:2a:63:81:f5:5a:ef:f6:3d: e7:9d:d1:72:b1:d2:77:ea:af:15:6d:05:a1:8c:0e: 75:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:37:71:D2:5A:03:50:EA:EE:18:05:25:D7:91:2E:94:76:24:DC:A9 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/3772F678BC1211EE8C54FD2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.36.0/22 103.61.124.0/22 203.56.25.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:67:47:db:45:b3:a6:6b:77:68:db:a9:92:77:c9:e0:74:25: aa:1f:00:f0:29:c1:9e:d3:79:32:f0:17:88:12:0a:c2:2c:22: c6:6a:ec:29:14:5b:3a:18:91:1a:d2:f0:ab:1a:1b:c2:1b:83: 21:e8:87:43:25:9d:81:08:9c:1a:4b:f1:8b:37:b1:40:59:21: 41:fe:9d:a2:4b:de:93:46:96:b4:8f:79:cb:4b:af:97:89:d5: a4:f4:3e:2a:ba:84:dd:e1:eb:dc:c8:ad:57:ea:3c:da:07:df: 5c:22:2d:f5:97:f8:e0:06:a4:da:c9:19:d6:62:e0:99:12:f7: 28:d0:91:40:9d:7c:d3:0f:64:7e:dd:36:8c:08:18:61:7e:8d: 59:1d:9e:f8:61:9d:af:2a:2e:5e:e8:1b:14:b6:82:e2:90:2f: 82:25:37:6f:f3:a6:14:26:51:f9:1f:11:33:f0:77:23:85:5d: bc:af:ef:f8:c9:7b:ba:22:10:1f:c7:28:38:c1:64:f1:4e:7c: 5f:75:35:50:df:89:0f:1b:ce:81:15:ae:61:12:b1:7b:1f:43: 5e:71:99:98:14:66:d7:1f:f9:10:ee:73:d8:26:9f:a6:20:b1: 3e:5c:06:b3:4a:56:ed:50:43:88:2d:85:f2:90:73:a9:fd:ec: 55:83:27:27 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTA3MDExMC8GA1UEBRMoNTM5QkI3NkM4QTQzNzlBNERFMzk5QzA1MkQzOEMxQjQ1 M0E2NkYxQjAeFw0yNDA0MDMyMzMyNTFaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGRlNzIzLWE4ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChDXXEXoMcaP8nK00F90RcPN7M7DFBGrQdDpSAyxj5kZrOpOuJA1HACCCA+BkQ 8EiKsp3joS3o9qLg/57wXvBLw0F9zRpRh+wu/vru23IphMfgy0HmWByG+o4osucS ZGsiPgbFNQ8dnombIyXBWWO5JuwCGW0PXV5MYTQM4yL10kxcMZL2Yn47JF5kuy57 l+MVBbcIzGHeAGvBtlptduwe6/fzpgVopvymkn2Qic5qE4CqSs5NTYitSAZS4+Fi B17qQKEfHFo2wqNxg7URpEhUDdAU4KzxDNfb79KOY+EFS1mKFzm/IncqY4H1Wu/2 Peed0XKx0nfqrxVtBaGMDnVPAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUpTdx0loD UOruGAUl15EulHYk3KkwHwYDVR0jBBgwFoAUU5u3bIpDeaTeOZwFLTjBtFOmbxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMDcwLzg5QzU1OTdDQkMx MDExRUU4QkVCMTM3QUM0RjlBRTAyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTV1M2JJcERlYVRlT1p3RkxUakJ0Rk9tYnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi8zNzcyRjY3OEJD MTIxMUVFOEM1NEZEMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAi15JAMEAmc9fAMEAMs4GTANBgkqhkiG9w0BAQsFAAOCAQEA LWdH20Wzpmt3aNupknfJ4HQlqh8A8CnBntN5MvAXiBIKwiwixmrsKRRbOhiRGtLw qxobwhuDIeiHQyWdgQicGkvxizexQFkhQf6dokvek0aWtI95y0uvl4nVpPQ+KrqE 3eHr3MitV+o82gffXCIt9Zf44Aak2skZ1mLgmRL3KNCRQJ180w9kft02jAgYYX6N WR2e+GGdryouXugbFLaC4pAvgiU3b/OmFCZR+R8RM/B3I4VdvK/v+Ml7uiIQH8co OMFk8U58X3U1UN+JDxvOgRWuYRKxex9DXnGZmBRm1x/5EO5z2CafpiCxPlwGs0pW 7VBDiC2F8pBzqf3sVYMnJw== -----END CERTIFICATE-----Generated at Thu Jun 13 10:58:39 2024 by rpki-client on console-ams.rpki-client.org