$ rpki-client -vvf rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa File: 7E099DB21C5611EBB91D2683C4F9AE02.roa (raw, json) Hash identifier: B2v/Mb9QSV78ZbT0Kkk2qYHjvgGoZiVbEUOX62PctYM= Subject key identifier: 04:E7:2A:C6:3A:7F:1D:12:84:BC:1B:43:AA:C3:3E:4C:B8:C2:C6:22 Certificate issuer: /CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Certificate serial: 06F3 Authority key identifier: 78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa Signing time: Wed 24 Jul 2024 22:40:58 +0000 ROA not before: Wed 24 Jul 2024 22:40:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45785 IP address blocks: 116.193.157.0/24 maxlen: 24 183.78.168.0/24 maxlen: 24 183.78.169.0/24 maxlen: 24 183.78.170.0/24 maxlen: 24 183.78.171.0/24 maxlen: 24 202.43.100.0/24 maxlen: 24 202.43.101.0/24 maxlen: 24 202.43.102.0/24 maxlen: 24 202.43.103.0/24 maxlen: 24 210.1.224.0/24 maxlen: 24 210.1.225.0/24 maxlen: 24 210.1.226.0/24 maxlen: 24 210.1.227.0/24 maxlen: 24 210.1.228.0/24 maxlen: 24 210.1.229.0/24 maxlen: 24 210.1.230.0/24 maxlen: 24 210.1.231.0/24 maxlen: 24 2401:c400::/32 maxlen: 32 2401:c400:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Validity Not Before: Jul 24 22:40:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a182fa-9c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:9b:f5:8a:bf:6b:4e:e3:82:eb:8c:fb:62: b6:56:ba:c3:7e:c9:eb:5a:a1:70:7c:0b:3d:8d:c9: f1:d0:a1:81:1d:2f:30:59:91:64:80:05:12:22:9e: d8:ea:e4:76:f4:13:16:fe:e9:08:11:15:c0:7d:91: fc:f1:7f:2d:f8:6c:bb:90:be:37:f9:df:21:07:b6: 6d:ec:1a:d2:77:35:1c:27:29:92:30:31:c2:98:4c: e6:49:54:75:83:be:82:9f:ac:b2:c4:63:1e:3a:af: d1:b4:c2:0d:d8:52:ee:ec:a1:0d:9c:56:f7:10:ad: 5d:5d:4f:ef:c3:d8:82:1f:6d:43:e0:81:4d:d2:24: 06:49:da:70:1a:7a:eb:1d:fc:63:fa:c5:ec:e4:e4: 98:b2:51:8d:28:a2:d0:9c:17:ed:1a:8c:ca:48:eb: 2a:24:da:f7:da:96:d3:97:69:26:0c:0b:23:ee:5d: 1a:8b:92:f8:2b:6e:a4:d3:1a:1d:e4:48:a7:68:c8: 41:b8:eb:25:24:75:c2:1a:35:4c:3c:fe:cd:b6:71: 6d:52:13:70:80:2b:b2:28:0a:9e:7a:0e:8f:10:9d: dd:9d:4d:d2:3d:66:54:24:a4:eb:37:12:f8:16:63: 1b:57:89:86:14:f3:10:02:9d:b4:a6:8d:65:d0:07: e9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E7:2A:C6:3A:7F:1D:12:84:BC:1B:43:AA:C3:3E:4C:B8:C2:C6:22 X509v3 Authority Key Identifier: keyid:78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/7E099DB21C5611EBB91D2683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.157.0/24 183.78.168.0/22 202.43.100.0/22 210.1.224.0/21 IPv6: 2401:c400::/32 Signature Algorithm: sha256WithRSAEncryption b8:99:ff:71:ad:5b:a1:17:a6:ff:5f:ce:4b:26:77:11:e5:2d: 64:29:16:89:ee:94:6f:54:57:5e:16:a5:24:06:d3:aa:e2:37: 44:19:23:ff:3b:ed:0c:8b:c7:af:04:99:3c:16:bc:6e:d9:eb: 67:03:a0:4d:18:a7:a4:d1:01:dc:cd:ea:c3:c0:42:0e:3a:ff: 7a:c8:0e:c7:e9:96:e8:14:79:9a:84:18:55:42:38:63:f6:ba: 36:90:93:29:ab:dd:e1:0f:9d:d0:bf:55:4f:8b:c4:c8:ea:02: 09:8a:08:aa:f5:33:c4:f0:42:60:6d:d1:1e:26:d3:35:8c:a9: 2d:4d:22:81:e6:16:45:b5:a7:14:5c:fc:b9:5f:de:08:b4:bf: 5c:a9:71:52:99:6c:6e:a3:2e:02:d1:7d:ab:98:96:84:51:2e: 97:e2:c2:d3:a2:9d:8f:5c:c9:e1:e6:f0:29:b8:2d:47:dc:12: 9e:30:63:81:d8:fe:2c:51:4b:78:af:66:39:ac:f6:77:bf:66: 0b:ab:8f:1d:9f:e1:81:af:26:90:c9:cd:a2:dd:4a:75:9c:32: 81:6c:80:76:26:d0:bc:ad:7e:e7:d0:5d:92:a0:24:c3:0b:61: b3:f5:5c:b3:2d:b8:35:f3:37:24:86:d6:67:9f:48:2d:25:d6: 26:b6:0c:9a -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NUExMTAvBgNVBAUTKDc4NUUwQkZGMDdCOTAzN0M2MDMzNEIyREYzMzY5Mjgx QTREQzNGNUEwHhcNMjQwNzI0MjI0MDU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExODJmYS05Yzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzSb9Yq/a07jguuM+2K2VrrDfsnrWqFwfAs9jcnx0KGBHS8wWZFkgAUSIp7Y 6uR29BMW/ukIERXAfZH88X8t+Gy7kL43+d8hB7Zt7BrSdzUcJymSMDHCmEzmSVR1 g76Cn6yyxGMeOq/RtMIN2FLu7KENnFb3EK1dXU/vw9iCH21D4IFN0iQGSdpwGnrr Hfxj+sXs5OSYslGNKKLQnBftGozKSOsqJNr32pbTl2kmDAsj7l0ai5L4K26k0xod 5EinaMhBuOslJHXCGjVMPP7NtnFtUhNwgCuyKAqeeg6PEJ3dnU3SPWZUJKTrNxL4 FmMbV4mGFPMQAp20po1l0Afp9wIDAQABo4ICtjCCArIwHQYDVR0OBBYEFATnKsY6 fx0ShLwbQ6rDPky4wsYiMB8GA1UdIwQYMBaAFHheC/8HuQN8YDNLLfM2koGk3D9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1QS84ODk0QTcwQTFD NTUxMUVCQUI4OEMxODJDNEY5QUUwMi9lRjRMX3dlNUEzeGdNMHN0OHphU2dhVGNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGNExfd2U1QTN4Z00wc3Q4emFTZ2FUY1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NUEvODg5NEE3MEExQzU1MTFFQkFCODhDMTgyQzRGOUFFMDIvN0UwOTlEQjIx QzU2MTFFQkI5MUQyNjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAB0wZ0DBAK3TqgDBALKK2QDBAPSAeAwDQQCAAIwBwMFACQB xAAwDQYJKoZIhvcNAQELBQADggEBALiZ/3GtW6EXpv9fzksmdxHlLWQpFonulG9U V14WpSQG06riN0QZI/877QyLx68EmTwWvG7Z62cDoE0Yp6TRAdzN6sPAQg46/3rI DsfplugUeZqEGFVCOGP2ujaQkymr3eEPndC/VU+LxMjqAgmKCKr1M8TwQmBt0R4m 0zWMqS1NIoHmFkW1pxRc/Llf3gi0v1ypcVKZbG6jLgLRfauYloRRLpfiwtOinY9c yeHm8Cm4LUfcEp4wY4HY/ixRS3ivZjms9ne/Zgurjx2f4YGvJpDJzaLdSnWcMoFs gHYm0LytfufQXZKgJMMLYbP1XLMtuDXzNySG1mefSC0l1ia2DJo= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org