$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa File: 747C7164462C11ED90035452C4F9AE02.roa (raw, json) Hash identifier: yNkp/KPSLhUlv+dxzffeqFiT5gCKYMvPJXUBj6wHW0A= Subject key identifier: B4:57:F1:3E:BD:39:7C:33:31:5B:7E:75:E6:52:FF:E8:83:87:52:5B Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 356B Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa Signing time: Thu 10 Oct 2024 14:50:47 +0000 ROA not before: Thu 10 Oct 2024 14:50:47 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17469 IP address blocks: 175.29.124.0/22 maxlen: 24 175.29.140.0/22 maxlen: 24 175.29.144.0/22 maxlen: 24 175.29.160.0/20 maxlen: 24 175.29.176.0/20 maxlen: 24 175.29.192.0/21 maxlen: 24 202.22.192.0/20 maxlen: 24 203.76.144.0/21 maxlen: 24 203.82.192.0/20 maxlen: 24 2404:150::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13675 (0x356b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 10 14:50:47 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6707e9c7-1edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:79:f5:b9:56:c8:7e:6d:50:54:cd:44:5f: 35:bf:ef:9f:b7:09:fd:2a:48:3e:77:ab:52:e5:fe: 67:f9:34:8e:7f:9e:cc:fa:e6:c2:cb:37:f7:ea:d1: 6b:b8:b8:b6:c7:61:2d:2f:ac:66:35:cd:47:64:e5: e7:8c:42:5c:a4:e0:5e:ed:6b:5c:98:ca:76:ab:43: bf:b2:e1:50:5e:1c:96:73:57:c7:50:26:c6:4a:90: b1:e5:7e:a8:c4:1f:e9:37:6d:38:95:da:82:13:ad: ea:04:08:9f:ff:ab:08:39:58:e1:b8:b9:9c:5e:39: 8d:12:13:19:78:8b:3c:27:ad:31:29:be:92:f5:4d: 4c:de:12:bb:71:3e:91:8b:1d:23:85:c8:ec:5b:a0: be:20:45:cf:48:5a:28:35:3f:70:4f:d2:d9:9e:65: ac:88:f7:c1:c3:11:de:18:b2:23:3e:6c:61:0c:1e: 9f:af:37:06:30:67:86:44:b8:6f:18:c9:8f:68:8b: 4b:d3:90:9f:8e:85:40:0f:84:fa:22:5d:ba:7b:b4: ad:cb:27:73:a4:4f:cf:77:a4:e2:1e:1a:9c:30:bf: 20:40:ec:c7:ed:be:a1:3f:f0:8c:be:1f:05:96:b7: d1:37:76:36:10:f9:e4:33:57:c4:f4:6e:ad:50:f3: 48:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:57:F1:3E:BD:39:7C:33:31:5B:7E:75:E6:52:FF:E8:83:87:52:5B X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.124.0/22 175.29.140.0-175.29.147.255 175.29.160.0-175.29.199.255 202.22.192.0/20 203.76.144.0/21 203.82.192.0/20 IPv6: 2404:150::/32 Signature Algorithm: sha256WithRSAEncryption 47:9a:7f:c0:43:ae:ce:4e:c3:a0:f8:68:16:91:64:2b:38:c3: b4:58:eb:4f:6f:5b:c8:22:2a:08:5d:50:25:9d:ff:e4:8b:c0: 35:4a:c0:c6:33:6d:cb:59:7b:b5:cf:b7:98:73:9e:21:3d:d3: 39:d6:74:8c:4a:79:5f:67:c8:da:ee:da:88:7a:6e:29:62:ae: 30:0b:46:07:94:34:5c:64:2a:09:d6:9c:b0:56:b1:01:5d:8f: 36:0d:4d:82:df:25:2d:68:d4:e7:28:1e:a2:9b:c9:65:35:9e: 14:90:8e:0e:74:84:fe:8c:9a:ee:e1:fe:f1:a8:24:d8:5e:24: 17:2c:92:76:d9:92:1a:65:07:5f:ab:4d:86:c3:33:66:e9:06: ce:c3:ce:b4:3d:df:6b:f3:4c:84:8d:11:84:2a:98:ce:1a:4a: 44:01:15:94:09:91:8f:ce:3c:90:7d:22:15:36:86:86:34:d3: cb:09:c3:2e:dd:b8:ae:10:0a:fb:4b:9d:fd:b9:19:c8:6e:84: 51:5c:fb:a3:d2:73:e8:95:18:5b:a4:62:7a:f6:de:95:f9:62: 99:cb:1a:3c:38:f0:10:7c:5f:25:e7:19:30:18:2e:ff:46:9c: 02:4a:7c:cc:8f:ac:92:2d:11:21:9d:05:c1:ee:ae:df:10:2e: 08:fa:96:35 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICNWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjQxMDEwMTQ1MDQ3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZTljNy0xZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunx59blWyH5tUFTNRF81v++ftwn9Kkg+d6tS5f5n+TSOf57M+ubCyzf36tFr uLi2x2EtL6xmNc1HZOXnjEJcpOBe7WtcmMp2q0O/suFQXhyWc1fHUCbGSpCx5X6o xB/pN204ldqCE63qBAif/6sIOVjhuLmcXjmNEhMZeIs8J60xKb6S9U1M3hK7cT6R ix0jhcjsW6C+IEXPSFooNT9wT9LZnmWsiPfBwxHeGLIjPmxhDB6frzcGMGeGRLhv GMmPaItL05CfjoVAD4T6Il26e7StyydzpE/Pd6TiHhqcML8gQOzH7b6hP/CMvh8F lrfRN3Y2EPnkM1fE9G6tUPNIuQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLRX8T69 OXwzMVt+deZS/+iDh1JbMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvNzQ3QzcxNjQ0 NjJDMTFFRDkwMDM1NDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDBAKvHXwwDAMEAq8djAMEAq8dkDAMAwQFrx2gAwQDrx3AAwQE yhbAAwQDy0yQAwQEy1LAMA0EAgACMAcDBQAkBAFQMA0GCSqGSIb3DQEBCwUAA4IB AQBHmn/AQ67OTsOg+GgWkWQrOMO0WOtPb1vIIioIXVAlnf/ki8A1SsDGM23LWXu1 z7eYc54hPdM51nSMSnlfZ8ja7tqIem4pYq4wC0YHlDRcZCoJ1pywVrEBXY82DU2C 3yUtaNTnKB6im8llNZ4UkI4OdIT+jJru4f7xqCTYXiQXLJJ22ZIaZQdfq02GwzNm 6QbOw860Pd9r80yEjRGEKpjOGkpEARWUCZGPzjyQfSIVNoaGNNPLCcMu3biuEAr7 S539uRnIboRRXPuj0nPolRhbpGJ69t6V+WKZyxo8OPAQfF8l5xkwGC7/RpwCSnzM j6ySLREhnQXB7q7fEC4I+pY1 -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:08 2024 by rpki-client on console-ams.rpki-client.org