$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/8008F5CA620C11ECAFF5941AC4F9AE02.roa File: 8008F5CA620C11ECAFF5941AC4F9AE02.roa (raw, json) Hash identifier: hcz8bi79veRCEwuC1ZyFgL8wsxYbSaWcsZHG1CCz/KQ= Subject key identifier: 26:86:4C:13:82:67:F8:5D:4B:6A:B9:E6:C9:16:50:1C:E7:93:FE:D5 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0B03 Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/8008F5CA620C11ECAFF5941AC4F9AE02.roa Signing time: Fri 16 Aug 2024 20:28:28 +0000 ROA not before: Fri 16 Aug 2024 20:28:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 32787 IP address blocks: 183.177.40.0/24 maxlen: 24 183.177.41.0/24 maxlen: 24 183.177.42.0/24 maxlen: 24 183.177.43.0/24 maxlen: 24 183.177.44.0/24 maxlen: 24 183.177.45.0/24 maxlen: 24 183.177.46.0/24 maxlen: 24 183.177.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2819 (0xb03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F Validity Not Before: Aug 16 20:28:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfb66b-a765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:28:65:d3:07:ae:dd:2f:a2:e7:30:4f:b1:54: 8c:8d:65:6a:8f:38:53:2a:7c:e4:bb:32:bf:a5:3d: 70:f5:f5:17:d7:7c:f1:ac:09:d7:24:14:47:64:62: a5:96:19:43:5f:52:7d:71:c1:51:95:6b:52:56:2d: e9:41:e6:59:d1:11:06:c8:40:a2:10:c4:39:ef:c5: 12:10:cb:ad:96:07:c2:b1:39:60:d3:b5:0e:c1:0b: ba:2b:d2:e0:20:b1:59:a7:bd:3b:27:2c:c2:20:e6: 4b:db:a1:01:9d:c4:04:f6:70:6a:41:5f:e1:bf:ec: 00:d2:a4:89:e3:c6:1b:df:47:68:7f:a3:c6:76:bc: 87:b8:7a:3a:49:e9:57:ca:ad:e6:7b:49:95:be:77: 88:5d:44:15:da:54:f9:5c:cc:ba:3d:70:f8:ef:bb: a8:ca:d0:6a:43:2b:da:4a:80:c1:e4:3e:f1:95:e4: bc:a2:a7:6c:0a:9a:fd:db:7c:1d:9c:de:0b:d1:7b: 98:eb:2a:18:99:40:30:e5:9f:80:33:5f:76:f9:fd: b8:67:4b:9f:4e:e5:00:8f:29:e7:3c:49:d6:97:c8: 8a:57:fc:12:10:65:a4:bf:2b:ae:1e:83:e4:e9:b1: f0:22:f0:b5:5b:6c:e9:9f:f2:7d:78:e5:a8:d6:67: b7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:86:4C:13:82:67:F8:5D:4B:6A:B9:E6:C9:16:50:1C:E7:93:FE:D5 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/8008F5CA620C11ECAFF5941AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.177.40.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:70:f0:4d:e7:f3:68:52:a6:f4:85:b8:60:e1:db:e9:16:9e: 97:8a:d5:c8:6a:0c:74:23:75:ff:4c:0d:75:82:7d:34:f8:87: 32:ef:84:04:22:43:cb:4e:ee:17:79:14:5c:7c:f8:cc:47:8a: 39:97:0e:72:1e:a4:62:43:be:4f:4c:4f:ff:7e:a8:7a:4b:68: 11:2d:f2:5d:82:4e:20:b1:66:0a:65:2d:0f:81:5a:e1:eb:cb: a0:6f:18:ff:a7:0f:83:77:cb:18:ab:a5:27:0c:8f:ae:44:df: 05:9c:ab:c0:2a:f5:fb:c8:1e:1b:2e:19:b2:7a:a2:76:97:d1: f4:02:15:d0:af:2b:75:0e:18:12:b5:e7:9b:1d:ce:72:46:58: fb:84:5c:36:79:ba:64:fd:67:ac:68:a2:3b:92:0a:22:e6:83: 90:49:50:bd:6f:c5:ff:6b:fe:e5:ab:97:23:17:72:fd:b3:68: e7:38:be:8d:bf:54:52:69:86:f6:c5:06:b9:09:4b:7f:4a:96: 47:78:af:40:60:e3:a9:60:8c:4f:29:d9:8d:af:61:04:43:b5: 7e:a8:f0:c7:0b:f2:f0:d1:1a:3d:7a:b8:06:62:2b:29:a7:40: 1e:57:59:62:ae:70:a2:0a:70:70:77:2c:cd:80:67:14:96:4b: 63:d8:c4:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjQwODE2MjAyODI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYjY2Yi1hNzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzihl0weu3S+i5zBPsVSMjWVqjzhTKnzkuzK/pT1w9fUX13zxrAnXJBRHZGKl lhlDX1J9ccFRlWtSVi3pQeZZ0REGyECiEMQ578USEMutlgfCsTlg07UOwQu6K9Lg ILFZp707JyzCIOZL26EBncQE9nBqQV/hv+wA0qSJ48Yb30dof6PGdryHuHo6SelX yq3me0mVvneIXUQV2lT5XMy6PXD477uoytBqQyvaSoDB5D7xleS8oqdsCpr923wd nN4L0XuY6yoYmUAw5Z+AM192+f24Z0ufTuUAjynnPEnWl8iKV/wSEGWkvyuuHoPk 6bHwIvC1W2zpn/J9eOWo1me3yQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCaGTBOC Z/hdS2q55skWUBznk/7VMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvODAwOEY1Q0E2 MjBDMTFFQ0FGRjU5NDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO3sSgwDQYJKoZIhvcNAQELBQADggEBABtw8E3n82hSpvSF uGDh2+kWnpeK1chqDHQjdf9MDXWCfTT4hzLvhAQiQ8tO7hd5FFx8+MxHijmXDnIe pGJDvk9MT/9+qHpLaBEt8l2CTiCxZgplLQ+BWuHry6BvGP+nD4N3yxirpScMj65E 3wWcq8Aq9fvIHhsuGbJ6onaX0fQCFdCvK3UOGBK155sdznJGWPuEXDZ5umT9Z6xo ojuSCiLmg5BJUL1vxf9r/uWrlyMXcv2zaOc4vo2/VFJphvbFBrkJS39Klkd4r0Bg 46lgjE8p2Y2vYQRDtX6o8McL8vDRGj16uAZiKymnQB5XWWKucKIKcHB3LM2AZxSW S2PYxNY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:48:22 2025 by rpki-client