$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/9322B46CAEB111EA8EFC2878C4F9AE02.roa File: 9322B46CAEB111EA8EFC2878C4F9AE02.roa (raw, json) Hash identifier: eAspH5Rn5OnmP5MIJe3K5vWuZy/bcDzHIj224BW01Bw= Subject key identifier: A6:1F:7C:02:3C:D2:8D:8A:AA:3A:08:C0:9D:39:D2:15:63:BA:86:F4 Certificate issuer: /CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Certificate serial: 3499 Authority key identifier: 99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/9322B46CAEB111EA8EFC2878C4F9AE02.roa Signing time: Sat 02 Nov 2024 14:50:52 +0000 ROA not before: Sat 02 Nov 2024 14:50:52 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45761 IP address blocks: 112.121.110.0/24 maxlen: 24 112.121.111.0/24 maxlen: 24 112.121.118.0/24 maxlen: 24 112.121.119.0/24 maxlen: 24 112.121.124.0/23 maxlen: 23 112.121.124.0/24 maxlen: 24 112.121.125.0/24 maxlen: 24 112.121.126.0/24 maxlen: 24 112.121.127.0/24 maxlen: 24 202.80.109.0/24 maxlen: 24 202.80.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Validity Not Before: Nov 2 14:50:52 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67263c4c-c0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:58:d0:bc:9d:d2:f0:e1:50:ec:8d:5a:a7: 03:33:76:aa:50:d3:46:6b:0a:8b:85:1e:75:ca:fe: 5e:74:60:a5:74:f1:47:ec:e6:6a:7f:22:84:14:39: 15:49:f2:88:d4:c1:18:8a:59:cf:0f:e7:87:75:a4: 65:94:5f:36:90:58:eb:7b:d3:0b:19:4c:19:1b:c9: 8c:69:77:a1:13:77:4f:33:ac:b5:61:04:b9:10:e2: 34:59:5e:ed:82:6f:54:9e:92:09:f0:75:d2:a8:bc: 7d:76:42:9f:b9:e5:cc:b1:af:89:3c:a9:7c:20:28: 78:3e:6b:ac:0c:95:39:da:45:f1:cd:8a:59:ef:64: 63:25:79:1b:b3:66:1a:3c:47:7a:85:1c:e3:26:9a: 40:ca:b1:e2:fe:1a:d4:73:77:d3:c2:31:ad:15:33: 39:c3:25:52:35:72:53:92:62:71:ad:be:92:b0:d0: 2d:fe:45:6f:e5:c0:3c:11:42:14:4d:2f:ac:f5:9c: 0f:34:e1:ef:90:a6:e1:0b:66:2c:ce:4c:62:ae:4c: 13:2e:06:f2:d7:4d:aa:1b:e6:47:c0:a0:b9:85:2c: 26:1e:b1:a1:ee:21:da:07:e3:c4:78:91:c0:f5:ff: 89:31:a5:a1:d2:fe:9f:29:e5:ed:62:f1:fa:d7:4f: 8e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1F:7C:02:3C:D2:8D:8A:AA:3A:08:C0:9D:39:D2:15:63:BA:86:F4 X509v3 Authority Key Identifier: keyid:99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/9322B46CAEB111EA8EFC2878C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.110.0/23 112.121.118.0/23 112.121.124.0/22 202.80.109.0-202.80.110.255 Signature Algorithm: sha256WithRSAEncryption 31:9e:0c:1a:d9:0a:70:cd:10:61:e8:64:a4:4d:d5:0e:40:ea: 7a:bc:2c:ab:8d:16:3b:0e:48:0a:94:b4:fb:e6:6c:b6:d3:22: ec:c5:5a:ad:fc:7c:c6:a0:fc:33:81:b3:95:b2:40:8b:15:3f: fa:6a:ad:44:d8:1e:d0:7f:4b:96:af:13:2e:80:f8:b8:2e:2e: b1:ff:e6:8c:21:96:69:de:49:5f:25:79:29:ab:48:ad:93:93: 36:16:55:af:eb:2a:f5:80:c0:06:96:05:f3:48:30:8a:95:77: 32:21:81:6d:9c:f5:11:27:27:89:c0:d0:90:62:5c:53:5e:b7: 6f:dc:4b:4c:cb:87:81:ac:fa:8a:9a:42:6c:b4:b7:7f:f1:81: 46:0c:ad:dd:c5:99:09:f5:15:b4:62:6a:17:ee:fc:1a:7b:d6: 3c:d2:4c:fe:bc:2c:f3:2e:cc:6a:74:c0:dd:57:78:eb:fb:c3: be:5a:4f:7d:a0:77:66:4c:fd:34:e7:1f:28:ce:20:24:ac:65: 6f:3d:2b:ca:ae:88:c5:46:21:37:a6:3f:6e:b0:5f:28:d7:90: ab:cb:32:0c:2c:5d:83:1b:66:7b:d9:81:b9:32:d8:71:20:95: 07:68:92:8b:0b:4f:1d:c9:81:07:69:bf:f7:18:7f:32:71:44: 26:ce:6d:88 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNTAxMTAvBgNVBAUTKDk5MUIzRjE3MDg0Rjc2RjEyRjlGMDUwOUQ1OTdGMEZG RUNBMDRCNEEwHhcNMjQxMTAyMTQ1MDUyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2M2M0Yy1jMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphZY0Lyd0vDhUOyNWqcDM3aqUNNGawqLhR51yv5edGCldPFH7OZqfyKEFDkV SfKI1MEYilnPD+eHdaRllF82kFjre9MLGUwZG8mMaXehE3dPM6y1YQS5EOI0WV7t gm9UnpIJ8HXSqLx9dkKfueXMsa+JPKl8ICh4PmusDJU52kXxzYpZ72RjJXkbs2Ya PEd6hRzjJppAyrHi/hrUc3fTwjGtFTM5wyVSNXJTkmJxrb6SsNAt/kVv5cA8EUIU TS+s9ZwPNOHvkKbhC2YszkxirkwTLgby102qG+ZHwKC5hSwmHrGh7iHaB+PEeJHA 9f+JMaWh0v6fKeXtYvH610+OswIDAQABo4ICrzCCAqswHQYDVR0OBBYEFKYffAI8 0o2KqjoIwJ050hVjuob0MB8GA1UdIwQYMBaAFJkbPxcIT3bxL58FCdWX8P/soEtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I1MC85RDEzMDVDODFE OEYxMUUyQTAyQkNERUUwOEIwMkNEMi9tUnNfRndoUGR2RXZud1VKMVpmd18teWdT MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Sc19Gd2hQZHZFdm53VUoxWmZ3Xy15Z1Mwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdCNTAvOUQxMzA1QzgxRDhGMTFFMkEwMkJDREVFMDhCMDJDRDIvOTMyMkI0NkNB RUIxMTFFQThFRkMyODc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAFweW4DBAFweXYDBAJweXwwDAMEAMpQbQMEAMpQbjANBgkq hkiG9w0BAQsFAAOCAQEAMZ4MGtkKcM0QYehkpE3VDkDqerwsq40WOw5ICpS0++Zs ttMi7MVarfx8xqD8M4GzlbJAixU/+mqtRNge0H9Llq8TLoD4uC4usf/mjCGWad5J XyV5KatIrZOTNhZVr+sq9YDABpYF80gwipV3MiGBbZz1EScnicDQkGJcU163b9xL TMuHgaz6ippCbLS3f/GBRgyt3cWZCfUVtGJqF+78GnvWPNJM/rws8y7ManTA3Vd4 6/vDvlpPfaB3Zkz9NOcfKM4gJKxlbz0ryq6IxUYhN6Y/brBfKNeQq8syDCxdgxtm e9mBuTLYcSCVB2iSiwtPHcmBB2m/9xh/MnFEJs5tiA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:37 2024 by rpki-client on console-fra.rpki-client.org