$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/CCA801A2B97F11ED98ED3A74C4F9AE02.roa File: CCA801A2B97F11ED98ED3A74C4F9AE02.roa (raw, json) Hash identifier: 70nEfW6y679vz54r1rMiwd9UT2VLDF6LzETjWTqp0aI= Subject key identifier: 8D:99:29:83:85:F8:21:04:BC:2E:EE:31:25:0F:80:6C:44:76:EB:FE Certificate issuer: /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Certificate serial: 0111 Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/CCA801A2B97F11ED98ED3A74C4F9AE02.roa Signing time: Sat 03 Aug 2024 05:15:42 +0000 ROA not before: Sat 03 Aug 2024 05:15:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45352 IP address blocks: 43.246.176.0/24 maxlen: 24 43.246.177.0/24 maxlen: 24 43.246.178.0/24 maxlen: 24 43.246.179.0/24 maxlen: 24 103.12.152.0/23 maxlen: 24 103.12.154.0/24 maxlen: 24 103.12.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Validity Not Before: Aug 3 05:15:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66adbcfe-dedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:e4:9e:de:cb:ea:dc:c5:85:ad:89:27:e0: cc:f9:70:a0:93:e3:d7:b3:a9:51:e1:b8:7b:62:49: 69:c4:5c:4f:ad:83:a1:6d:da:e9:f9:08:4d:3d:0b: 65:18:aa:0f:a9:0e:1f:91:8e:28:7a:b0:49:a6:dd: 43:59:3b:6a:5a:3e:67:1f:76:b0:53:e2:d8:34:e0: c8:54:95:20:0f:32:78:15:fe:45:86:8b:97:fe:c5: 07:45:49:2f:c8:a9:ec:53:8a:0a:22:a6:7a:e4:82: d7:e7:0f:5c:c8:55:cf:64:3c:e8:f3:f5:b0:f5:23: 63:61:cc:6e:94:18:cd:d9:d7:bb:7c:d3:d1:42:f9: 27:c5:72:2a:27:25:3f:3d:3c:d3:2e:a5:cf:21:fd: 5e:94:70:1f:a8:16:85:78:58:00:77:a4:38:64:62: c7:aa:ed:d8:0a:20:cf:dc:e2:e7:10:7c:2f:5a:83: d3:ce:1b:15:89:b7:9a:ea:e0:06:73:f3:1f:50:10: 66:e9:0c:fb:ea:87:36:02:aa:bd:5c:1a:df:10:cd: 63:1a:78:53:e4:c1:53:31:af:5e:a8:9f:2d:53:1a: 48:92:13:0f:1c:a7:d5:84:06:13:c6:27:b4:9f:cb: 85:f3:9b:f7:9a:f9:a6:f3:53:f9:7f:90:4f:4b:37: 10:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:99:29:83:85:F8:21:04:BC:2E:EE:31:25:0F:80:6C:44:76:EB:FE X509v3 Authority Key Identifier: keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/CCA801A2B97F11ED98ED3A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.176.0/22 103.12.152.0/22 Signature Algorithm: sha256WithRSAEncryption b9:ed:fb:61:48:ec:b1:b4:5a:46:9a:f1:41:2e:fa:92:23:fc: b0:ae:d7:a5:4a:a7:cc:23:aa:0c:9a:0a:19:3c:9f:ac:d7:69: 83:a9:1c:ca:ce:cf:e0:76:9b:73:1c:4f:84:f9:ab:2b:37:ef: 8a:54:74:50:43:46:46:59:05:0a:a4:50:ce:d1:78:8b:af:63: e4:12:5f:5c:7f:11:dc:0b:fc:c2:40:5c:91:f6:69:f9:da:2b: c9:f7:c5:d2:83:8e:c1:3b:bf:14:2e:da:6c:f1:da:55:a4:df: ad:09:9c:fc:01:b5:be:f6:f8:d8:33:69:dd:05:be:b6:a8:1c: 32:98:ce:7c:f9:74:ce:45:29:be:cc:87:ad:5a:ac:59:d3:6f: e3:3a:45:71:ab:98:ac:43:0c:6d:c6:60:24:74:27:9a:7f:1f: a6:e7:ef:7f:36:13:2e:24:ed:67:e9:10:b6:71:c1:2d:72:54: 0a:94:63:9e:72:05:d9:4e:a4:bc:26:45:43:c6:0a:80:02:d7: e3:a7:57:e6:4e:18:4e:c9:fd:0f:df:55:46:f1:cb:ae:a0:16: 0e:96:91:2b:a3:1f:36:d8:c9:82:78:1e:44:d5:d4:23:27:e2: 9c:f3:8b:72:30:46:1a:b9:74:d4:56:55:19:c8:ac:83:4d:d8: 81:1c:15:85 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEyODUxMTAvBgNVBAUTKDYyMjhBQjY4QTI0NjBCREM1NjY4OEI2RTU1ODkxNzkw REQ4MDRCMTAwHhcNMjQwODAzMDUxNTQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkYmNmZS1kZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArebknt7L6tzFha2JJ+DM+XCgk+PXs6lR4bh7YklpxFxPrYOhbdrp+QhNPQtl GKoPqQ4fkY4oerBJpt1DWTtqWj5nH3awU+LYNODIVJUgDzJ4Ff5FhouX/sUHRUkv yKnsU4oKIqZ65ILX5w9cyFXPZDzo8/Ww9SNjYcxulBjN2de7fNPRQvknxXIqJyU/ PTzTLqXPIf1elHAfqBaFeFgAd6Q4ZGLHqu3YCiDP3OLnEHwvWoPTzhsVibea6uAG c/MfUBBm6Qz76oc2Aqq9XBrfEM1jGnhT5MFTMa9eqJ8tUxpIkhMPHKfVhAYTxie0 n8uF85v3mvmm81P5f5BPSzcQbwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI2ZKYOF +CEEvC7uMSUPgGxEduv+MB8GA1UdIwQYMBaAFGIoq2iiRgvcVmiLblWJF5DdgEsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTI4NS9FODE5MjAzOEI5 N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5eFdhSXR1VllrWGtOMkFT eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpaXJhS0pHQzl4V2FJdHVWWWtYa04yQVN4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEyODUvRTgxOTIwMzhCOTdBMTFFREEyODVBNTU0QzRGOUFFMDIvQ0NBODAxQTJC OTdGMTFFRDk4RUQzQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr9rADBAJnDJgwDQYJKoZIhvcNAQELBQADggEBALnt+2FI 7LG0Wkaa8UEu+pIj/LCu16VKp8wjqgyaChk8n6zXaYOpHMrOz+B2m3McT4T5qys3 74pUdFBDRkZZBQqkUM7ReIuvY+QSX1x/EdwL/MJAXJH2afnaK8n3xdKDjsE7vxQu 2mzx2lWk360JnPwBtb72+Ngzad0FvraoHDKYznz5dM5FKb7Mh61arFnTb+M6RXGr mKxDDG3GYCR0J5p/H6bn7382Ey4k7WfpELZxwS1yVAqUY55yBdlOpLwmRUPGCoAC 1+OnV+ZOGE7J/Q/fVUbxy66gFg6WkSujHzbYyYJ4HkTV1CMn4pzzi3IwRhq5dNRW VRnIrINN2IEcFYU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org