$ rpki-client -vvf rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa File: 76B90530747811EDA48E0D52C4F9AE02.roa (raw, json) Hash identifier: aDcFPj9k1Wma3kYuqtZDaJFjgE39HYPXBABBwap0MIs= Subject key identifier: 6D:37:D5:E6:C6:21:44:15:C8:54:D6:8E:4A:16:05:AB:10:3C:D6:26 Certificate issuer: /CN=A915D99A/serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Certificate serial: 33EF Authority key identifier: D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa Signing time: Sat 02 Mar 2024 14:30:28 +0000 ROA not before: Sat 02 Mar 2024 14:30:28 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 18024 IP address blocks: 45.64.251.0/24 maxlen: 24 103.245.240.0/23 maxlen: 23 119.2.96.0/20 maxlen: 20 119.2.112.0/20 maxlen: 20 202.144.128.0/20 maxlen: 20 202.144.144.0/20 maxlen: 20 202.144.149.0/24 maxlen: 24 2405:d000::/33 maxlen: 33 2405:d000:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13295 (0x33ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D99A/serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Validity Not Before: Mar 2 14:30:28 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e33804-b5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:36:d8:42:b6:cb:0d:44:f7:cb:b3:1d:09:95: 5b:0f:74:7e:3b:ac:5c:00:3c:23:17:95:b0:0a:40: 97:11:5a:b5:3c:df:23:fe:40:21:c2:90:3a:35:55: 80:63:d4:26:d9:54:51:8a:d9:1c:3e:32:20:ba:d6: cb:b6:8b:bd:34:a0:d5:17:e8:50:2d:e0:3d:ff:ae: d8:bc:56:d2:1d:7f:ee:7f:a6:57:a2:d6:a3:05:37: 85:ac:98:e2:05:c0:3b:d5:dd:c5:e7:eb:0a:70:2f: 81:ab:47:6c:75:d3:df:48:a5:c3:f6:8f:3b:dd:3f: aa:03:11:ba:37:e1:35:a5:d1:5b:3e:ea:2f:0f:4a: 9f:f0:f8:e8:9e:c5:36:50:cb:99:d0:12:45:ab:3c: 7a:f0:0c:40:7f:ad:1b:36:6d:b1:7c:8c:5f:58:b2: a2:80:f0:dc:51:c7:56:57:a1:6e:b0:15:1c:01:bd: e0:c2:e8:07:91:9d:ca:72:53:ea:b9:7e:2c:4e:d4: 27:75:fb:07:10:60:4e:99:6e:df:36:46:3a:b4:5e: 3b:71:1a:90:62:c9:49:fe:26:00:fa:b3:67:60:44: 9b:c1:7e:ff:b7:ea:f4:03:68:c5:53:6e:dc:c1:43: 71:e7:62:39:a9:85:29:3b:af:a0:13:40:93:f9:ec: 89:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:37:D5:E6:C6:21:44:15:C8:54:D6:8E:4A:16:05:AB:10:3C:D6:26 X509v3 Authority Key Identifier: keyid:D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.251.0/24 103.245.240.0/23 119.2.96.0/19 202.144.128.0/19 IPv6: 2405:d000::/32 Signature Algorithm: sha256WithRSAEncryption 11:6e:4d:2c:da:ba:10:b8:ff:dd:51:94:fa:d6:30:4f:3c:ee: f6:4b:86:87:c3:30:46:91:d9:40:69:8b:94:11:90:65:d2:76: 2e:bd:d3:db:74:bd:32:24:9a:27:38:a4:ea:19:77:f5:40:29: f8:ed:93:b3:3f:2b:ed:96:3f:1d:0e:60:4c:10:a8:a4:b8:6e: e3:82:05:96:0e:b5:b6:c1:bd:45:4c:a6:c9:37:ee:35:f5:ab: e0:41:e0:6e:df:c7:00:19:78:1d:3c:7e:df:df:b5:5c:42:73: d7:56:a6:a2:b2:a1:77:90:4a:bf:99:66:87:d2:e9:81:68:61: 00:a3:01:4b:c7:80:ad:21:b4:df:6c:32:c0:2d:f4:c7:53:a4: 47:63:9c:96:a7:96:d0:de:5e:a5:04:7f:b6:8a:39:36:f6:0e: 52:53:4d:c9:bc:87:ce:9c:d0:cd:43:e1:db:91:d7:76:2e:37: 46:fe:73:cd:96:a6:6c:48:eb:2c:45:6b:b5:e5:32:e1:83:7e: 85:5a:2f:ed:cc:92:3e:f0:a0:e3:1e:f6:44:15:ce:ab:01:6e: aa:3b:37:b2:7d:27:7e:bf:2f:0d:9a:ac:6d:d7:48:85:db:1f: 50:77:43:51:02:83:f6:1f:e0:b1:44:01:5b:8a:14:5b:67:76: d2:2f:32:7a -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICM+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5OUExMTAvBgNVBAUTKEQxN0Q3N0NCMEM4OUI5OTRDRERBQ0JBMjc1MjcwQTFF NzREQ0FBMjcwHhcNMjQwMzAyMTQzMDI4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzMzgwNC1iNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzbYQrbLDUT3y7MdCZVbD3R+O6xcADwjF5WwCkCXEVq1PN8j/kAhwpA6NVWA Y9Qm2VRRitkcPjIgutbLtou9NKDVF+hQLeA9/67YvFbSHX/uf6ZXotajBTeFrJji BcA71d3F5+sKcC+Bq0dsddPfSKXD9o873T+qAxG6N+E1pdFbPuovD0qf8PjonsU2 UMuZ0BJFqzx68AxAf60bNm2xfIxfWLKigPDcUcdWV6FusBUcAb3gwugHkZ3KclPq uX4sTtQndfsHEGBOmW7fNkY6tF47cRqQYslJ/iYA+rNnYESbwX7/t+r0A2jFU27c wUNx52I5qYUpO6+gE0CT+eyJpQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFG031ebG IUQVyFTWjkoWBasQPNYmMB8GA1UdIwQYMBaAFNF9d8sMibmUzdrLonUnCh503Kon MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk5QS8xNzg4MjJEQTFE ODUxMUUyQTgyQTdDREIwOEIwMkNEMi8wWDEzeXd5SnVaVE4yc3VpZFNjS0huVGNx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBYMTN5d3lKdVpUTjJzdWlkU2NLSG5UY3FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ5OUEvMTc4ODIyREExRDg1MTFFMkE4MkE3Q0RCMDhCMDJDRDIvNzZCOTA1MzA3 NDc4MTFFREE0OEUwRDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAAtQPsDBAFn9fADBAV3AmADBAXKkIAwDQQCAAIwBwMFACQF 0AAwDQYJKoZIhvcNAQELBQADggEBABFuTSzauhC4/91RlPrWME887vZLhofDMEaR 2UBpi5QRkGXSdi6909t0vTIkmic4pOoZd/VAKfjtk7M/K+2WPx0OYEwQqKS4buOC BZYOtbbBvUVMpsk37jX1q+BB4G7fxwAZeB08ft/ftVxCc9dWpqKyoXeQSr+ZZofS 6YFoYQCjAUvHgK0htN9sMsAt9MdTpEdjnJanltDeXqUEf7aKOTb2DlJTTcm8h86c 0M1D4duR13YuN0b+c82WpmxI6yxFa7XlMuGDfoVaL+3Mkj7woOMe9kQVzqsBbqo7 N7J9J36/Lw2arG3XSIXbH1B3Q1ECg/Yf4LFEAVuKFFtndtIvMno= -----END CERTIFICATE-----Generated at Mon May 20 15:11:14 2024 by rpki-client on console-fra.rpki-client.org