$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/7A2B979E763011EFBA86FD49C4F9AE02.roa File: 7A2B979E763011EFBA86FD49C4F9AE02.roa (raw, json) Hash identifier: TccZk/TGvx3r9QdnASoZVSxv2kMWJg57Q5cy6O+RFSA= Subject key identifier: 83:0A:66:7E:49:4D:40:A8:D1:93:1B:0F:F6:F8:BB:2A:57:81:DC:19 Certificate issuer: /CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Certificate serial: 087D Authority key identifier: 07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/7A2B979E763011EFBA86FD49C4F9AE02.roa Signing time: Mon 18 Nov 2024 06:46:11 +0000 ROA not before: Mon 18 Nov 2024 06:46:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 15830 IP address blocks: 45.116.132.0/24 maxlen: 24 45.116.135.0/24 maxlen: 24 103.9.92.0/24 maxlen: 24 103.9.93.0/24 maxlen: 24 103.37.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Validity Not Before: Nov 18 06:46:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=673ae2b3-d748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:24:44:0c:f6:09:8d:3a:50:d6:ee:54:c2: 3d:52:f7:23:a4:3f:ff:5e:ed:bc:68:ef:6e:b5:e3: 74:bb:40:d3:02:30:6e:17:63:8a:a9:6f:36:a5:25: 33:24:34:7c:8e:dc:25:d9:2b:a4:44:0a:c6:00:44: 0d:f3:62:c8:15:9a:fe:3e:ca:64:07:8d:5e:29:cf: 68:0b:5e:61:c4:5c:19:83:1c:9a:f2:96:e3:ad:ea: 2b:31:72:3f:a3:90:9d:ef:69:50:bc:80:4f:eb:68: 41:d5:39:c9:bf:78:14:cd:c0:60:9e:cf:27:56:d1: 69:a6:6c:ed:1a:f4:8d:bb:7b:ba:ba:ac:19:be:11: 33:94:90:21:0b:65:e4:66:86:a6:06:26:4f:ad:66: 59:01:44:34:d2:41:25:54:3f:0b:82:5f:66:09:70: 94:71:a9:a7:be:0e:31:3f:8c:d5:06:e0:91:39:1d: 33:a6:e8:b6:02:1d:62:23:59:85:eb:2f:8d:1a:4e: e4:d4:aa:13:5d:de:71:08:0a:db:1f:7d:b5:b3:2a: 13:ec:7d:75:16:0f:21:5a:6c:be:a1:19:a5:c9:41: 4f:89:11:df:9d:64:a0:0f:16:67:c8:01:e0:1c:7a: b7:4d:37:32:3f:b5:07:1b:d9:b3:60:a3:8d:10:9f: e0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:0A:66:7E:49:4D:40:A8:D1:93:1B:0F:F6:F8:BB:2A:57:81:DC:19 X509v3 Authority Key Identifier: keyid:07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/7A2B979E763011EFBA86FD49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.132.0/24 45.116.135.0/24 103.9.92.0/23 103.37.132.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:d7:98:dc:db:e5:04:26:5c:c3:20:f4:bc:c8:e7:28:53:c7: de:af:3c:aa:91:dc:1c:67:75:6b:a7:e3:96:e9:d9:de:f1:43: 9d:96:aa:4e:7a:9b:5c:4a:19:e9:b4:03:28:79:a2:fc:cf:3a: a0:bf:1b:21:88:1f:e1:0f:07:4e:ff:9f:c8:02:82:dd:c2:57: 8a:c0:5c:49:25:b1:ad:56:c4:66:21:7e:49:c8:04:53:42:ab: 36:22:89:15:97:83:99:de:60:75:24:3b:20:0b:4f:26:e9:ed: d9:77:60:e3:e6:a2:7e:03:5e:7a:56:aa:ec:40:49:61:ff:7d: 41:12:e9:4f:50:24:60:6a:5b:68:5e:4a:f7:95:f1:d0:0d:0e: f8:00:e8:b0:50:4b:35:bb:94:98:e7:d6:66:31:a4:66:c4:58: 7f:22:98:4a:a1:b4:fc:90:23:69:00:ce:9e:35:62:f3:81:78: cc:9c:ee:2b:7e:b1:cf:44:db:29:ca:fb:e6:97:d7:ce:64:a8: 10:09:ef:ee:1a:3b:a0:ea:4c:c0:e4:a5:3a:e6:de:10:2d:13: c1:30:b7:0d:41:2f:87:a6:2c:dd:83:0c:31:0e:a6:19:97:cd: 23:ca:e0:d6:93:c7:66:47:cf:01:27:48:89:ca:32:a2:9e:12: 51:0f:54:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDQjExMTAvBgNVBAUTKDA3MkNERjY1MUIzMTJDQUZCREIwNDlBMzM1NjlGRUE2 RUY2Qzk1MTcwHhcNMjQxMTE4MDY0NjExWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNhZTJiMy1kNzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygskRAz2CY06UNbuVMI9UvcjpD//Xu28aO9uteN0u0DTAjBuF2OKqW82pSUz JDR8jtwl2SukRArGAEQN82LIFZr+PspkB41eKc9oC15hxFwZgxya8pbjreorMXI/ o5Cd72lQvIBP62hB1TnJv3gUzcBgns8nVtFppmztGvSNu3u6uqwZvhEzlJAhC2Xk ZoamBiZPrWZZAUQ00kElVD8Lgl9mCXCUcamnvg4xP4zVBuCROR0zpui2Ah1iI1mF 6y+NGk7k1KoTXd5xCArbH321syoT7H11Fg8hWmy+oRmlyUFPiRHfnWSgDxZnyAHg HHq3TTcyP7UHG9mzYKONEJ/gFQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFIMKZn5J TUCo0ZMbD/b4uypXgdwZMB8GA1UdIwQYMBaAFAcs32UbMSyvvbBJozVp/qbvbJUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNCMS9EMDBERDQ5OEJD MDIxMUVBQjhDNzkwNDhDNEY5QUUwMi9CeXpmWlJzeExLLTlzRW1qTlduLXB1OXNs UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5emZaUnN4TEstOXNFbWpOV24tcHU5c2xSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDQjEvRDAwREQ0OThCQzAyMTFFQUI4Qzc5MDQ4QzRGOUFFMDIvN0EyQjk3OUU3 NjMwMTFFRkJBODZGRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAtdIQDBAAtdIcDBAFnCVwDBABnJYQwDQYJKoZIhvcNAQEL BQADggEBAJ7XmNzb5QQmXMMg9LzI5yhTx96vPKqR3BxndWun45bp2d7xQ52Wqk56 m1xKGem0Ayh5ovzPOqC/GyGIH+EPB07/n8gCgt3CV4rAXEklsa1WxGYhfknIBFNC qzYiiRWXg5neYHUkOyALTybp7dl3YOPmon4DXnpWquxASWH/fUES6U9QJGBqW2he SveV8dANDvgA6LBQSzW7lJjn1mYxpGbEWH8imEqhtPyQI2kAzp41YvOBeMyc7it+ sc9E2ynK++aX185kqBAJ7+4aO6DqTMDkpTrm3hAtE8Ewtw1BL4emLN2DDDEOphmX zSPK4NaTx2ZHzwEnSInKMqKeElEPVGs= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:03 2024 by rpki-client on console-ams.rpki-client.org