$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/AA3A944A27EA11ECB1EBEA82C4F9AE02.roa File: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (raw, json) Hash identifier: H0CS/wDvj/j+OGq6CMvz4MaVZLlE1z8NE8iE80Ojvas= Subject key identifier: 7E:3E:FE:82:FB:D4:C0:5A:14:66:54:1F:E9:73:5D:73:B9:BB:61:12 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 06B2 Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/AA3A944A27EA11ECB1EBEA82C4F9AE02.roa Signing time: Fri 01 Nov 2024 02:15:55 +0000 ROA not before: Fri 01 Nov 2024 02:15:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132203 IP address blocks: 129.226.144.0/20 maxlen: 20 129.226.152.0/24 maxlen: 24 162.62.48.0/20 maxlen: 24 162.62.64.0/20 maxlen: 24 162.62.80.0/20 maxlen: 23 162.62.96.0/19 maxlen: 24 162.62.128.0/19 maxlen: 24 162.62.208.0/20 maxlen: 20 162.62.255.0/24 maxlen: 24 170.106.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Nov 1 02:15:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=672439db-079a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:63:4d:b4:90:81:54:02:fd:f9:6f:1b:b2:42: 82:4c:99:8e:66:2d:36:04:06:f6:09:b7:0d:f1:01: 87:7e:e7:cf:7d:cc:f0:c4:51:21:9a:0f:89:b6:c7: dc:bb:c1:50:0c:91:7e:ff:27:13:b3:14:47:95:80: 8a:9f:6b:0f:a3:61:22:42:e7:95:a3:0c:d4:ba:ef: 47:ea:be:61:94:e0:0e:5a:56:ee:5e:3e:18:f3:58: e1:73:8e:eb:e5:b8:3c:2e:22:e3:a3:d1:99:41:41: 7d:d2:8a:95:b2:1c:ff:ee:ac:7b:d3:5d:97:ef:85: 39:79:29:e1:55:32:ee:08:e1:e5:da:69:38:8c:64: 31:d7:c5:49:8a:08:7b:bb:77:57:84:72:f6:af:b9: 60:72:ca:dc:7c:a5:f5:1f:58:23:89:44:f6:5c:7d: 96:71:e1:89:31:66:7c:59:c8:50:4f:3d:20:29:07: 10:a1:d6:47:fb:3e:82:c4:36:35:16:99:87:47:87: 67:1b:b3:7d:e3:63:b4:37:05:6d:f7:f6:86:eb:75: cc:fd:26:7c:07:a8:d9:56:b3:21:08:c8:96:a8:b1: 5f:90:c8:c4:0c:de:d9:02:67:07:64:76:25:c9:7c: 2c:17:2a:40:18:d1:12:c0:e1:d4:ab:ee:9b:47:8c: d7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3E:FE:82:FB:D4:C0:5A:14:66:54:1F:E9:73:5D:73:B9:BB:61:12 X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/AA3A944A27EA11ECB1EBEA82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.226.144.0/20 162.62.48.0-162.62.159.255 162.62.208.0/20 162.62.255.0/24 170.106.149.0/24 Signature Algorithm: sha256WithRSAEncryption 20:00:4d:57:a1:37:70:42:ed:b7:12:a3:10:76:26:88:16:1b: 05:53:50:38:5f:a1:ca:d9:2a:94:2d:59:61:b3:a9:a5:f1:b0: 4b:c4:10:f8:25:b1:ed:39:d2:17:fe:5f:70:7c:90:3b:18:3e: 43:19:98:93:72:0b:85:9a:7e:f9:48:2c:84:d7:75:18:2e:92: 6b:bb:a1:21:cb:f1:32:2d:88:d9:f0:46:38:f8:65:e9:63:95: 30:18:a8:80:8e:88:44:b6:4a:7e:82:a1:72:99:2c:2f:be:04: b5:72:90:fd:77:98:53:5d:fc:95:2d:c4:50:37:3b:99:b3:80: c4:23:ba:29:b0:25:63:c1:1b:d3:5f:05:ff:a7:50:77:4e:6b: 4f:29:38:9d:b0:0c:0f:cb:c6:4c:09:ef:3f:e2:1e:f6:0a:22: 87:70:2d:61:58:fa:02:79:c0:20:55:70:dc:7b:b2:5b:c9:3c: 1d:3f:1a:aa:f3:d3:59:3a:b3:70:78:2c:b1:8b:78:b8:63:a6: 48:a2:79:7d:35:03:fd:13:54:3e:40:46:90:88:3d:06:ab:01: 82:84:dc:37:c4:bb:ba:87:8e:1b:6c:c4:a3:03:d6:db:c5:86: 0a:8d:81:66:1c:5a:79:82:71:44:b2:cd:1c:e5:62:74:05:69: 28:9a:dd:67 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjQxMTAxMDIxNTU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI0MzlkYi0wNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWNNtJCBVAL9+W8bskKCTJmOZi02BAb2CbcN8QGHfufPfczwxFEhmg+Jtsfc u8FQDJF+/ycTsxRHlYCKn2sPo2EiQueVowzUuu9H6r5hlOAOWlbuXj4Y81jhc47r 5bg8LiLjo9GZQUF90oqVshz/7qx7012X74U5eSnhVTLuCOHl2mk4jGQx18VJigh7 u3dXhHL2r7lgcsrcfKX1H1gjiUT2XH2WceGJMWZ8WchQTz0gKQcQodZH+z6CxDY1 FpmHR4dnG7N942O0NwVt9/aG63XM/SZ8B6jZVrMhCMiWqLFfkMjEDN7ZAmcHZHYl yXwsFypAGNESwOHUq+6bR4zXJwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFH4+/oL7 1MBaFGZUH+lzXXO5u2ESMB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjcvNjAyODY2Mzg0NDJBMTFFQjk1OTlBRDM4QzRGOUFFMDIvQUEzQTk0NEEy N0VBMTFFQ0IxRUJFQTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBASB4pAwDAMEBKI+MAMEBaI+gAMEBKI+0AMEAKI+/wMEAKpq lTANBgkqhkiG9w0BAQsFAAOCAQEAIABNV6E3cELttxKjEHYmiBYbBVNQOF+hytkq lC1ZYbOppfGwS8QQ+CWx7TnSF/5fcHyQOxg+QxmYk3ILhZp++UgshNd1GC6Sa7uh IcvxMi2I2fBGOPhl6WOVMBiogI6IRLZKfoKhcpksL74EtXKQ/XeYU138lS3EUDc7 mbOAxCO6KbAlY8Eb018F/6dQd05rTyk4nbAMD8vGTAnvP+Ie9goih3AtYVj6AnnA IFVw3HuyW8k8HT8aqvPTWTqzcHgssYt4uGOmSKJ5fTUD/RNUPkBGkIg9BqsBgoTc N8S7uoeOG2zEowPW28WGCo2BZhxaeYJxRLLNHOVidAVpKJrdZw== -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:40 2024 by rpki-client on console-ams.rpki-client.org