$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa File: 75522B0A002B11EA855CA925C4F9AE02.roa (raw, json) Hash identifier: dlzvcYSMpJJECDfUD2ttn05KUyNlgHjyRd5FKOecZPA= Subject key identifier: 1D:8D:5A:6F:17:3E:7F:AD:DF:EB:E0:1A:98:19:CB:7B:1A:ED:1A:F6 Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 1279 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa Signing time: Wed 24 Jul 2024 17:35:17 +0000 ROA not before: Wed 24 Jul 2024 17:35:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 4637 IP address blocks: 101.167.176.0/22 maxlen: 24 101.167.180.0/22 maxlen: 24 101.167.184.0/22 maxlen: 24 101.167.188.0/22 maxlen: 24 101.167.192.0/21 maxlen: 24 101.167.200.0/21 maxlen: 24 101.167.208.0/22 maxlen: 24 101.167.212.0/22 maxlen: 24 101.167.216.0/21 maxlen: 24 203.36.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4729 (0x1279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Jul 24 17:35:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a13b55-c74f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:49:a8:bc:74:93:fa:ec:26:5f:6d:89:e5: a4:f1:d8:3b:e5:9c:78:6b:5d:f2:f6:2f:d3:b5:82: b1:d0:b2:b9:4f:10:b7:07:da:f4:af:46:33:a0:82: 1d:2c:8e:3a:61:62:5f:f3:af:52:d5:cc:7c:fb:a1: 36:5f:ec:07:8b:46:e2:33:38:4f:67:d2:a4:de:52: fa:4e:39:9d:f9:fb:ab:55:8f:61:9c:90:4f:eb:b9: a8:06:64:8c:a4:c8:44:50:f9:87:b5:de:7a:bd:5b: 78:6f:0a:35:7b:39:e5:9b:20:8f:89:9d:57:e9:3c: 2c:4c:a3:db:e1:50:35:94:ef:97:30:b7:5c:09:cd: 34:db:32:07:d3:ca:29:e8:f4:51:ad:a9:07:1b:f8: 91:17:20:a2:a0:fd:69:07:f5:ee:75:3c:d0:45:a7: b0:ec:2f:8b:cf:22:cd:9d:b5:7e:07:93:10:fc:48: 6d:83:4b:e8:14:d9:60:8f:2d:d0:2b:21:89:b2:7e: 5c:3d:d3:78:ef:84:7e:c7:11:a6:2b:32:e2:41:c9: c2:70:1a:be:ee:b7:07:b9:2a:7b:e2:e3:d9:a2:b6: fa:2d:20:1f:da:f6:60:a2:2c:1e:e9:fa:31:29:cb: d5:10:3b:17:46:06:dd:1f:ae:e8:0a:9b:d5:d4:6a: e4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8D:5A:6F:17:3E:7F:AD:DF:EB:E0:1A:98:19:CB:7B:1A:ED:1A:F6 X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.167.176.0-101.167.223.255 203.36.128.0/24 Signature Algorithm: sha256WithRSAEncryption 85:92:22:ef:ae:1a:92:3c:19:a6:6c:0d:ac:cf:64:a4:be:48: 58:cd:45:5a:c1:bc:18:f6:0d:c9:d1:c9:df:0b:95:4c:86:02: 2d:12:6f:7e:8d:e3:7b:92:6a:e2:8f:6c:71:f4:b4:36:3f:e4: 88:20:90:22:42:f3:51:9f:9d:4a:d3:e3:a0:9d:f9:2e:ef:47: d4:b3:60:19:3f:c9:85:7c:1f:c3:8d:6d:40:ff:83:46:a7:db: c5:56:e3:6a:9d:27:16:46:e3:f2:4f:4b:e0:f2:64:ae:ae:a3: 40:0e:87:a8:e8:71:14:e3:3e:b9:7a:7f:eb:eb:51:48:18:74: a6:50:9e:50:2b:d7:1f:bb:11:6c:dc:f8:1c:03:9b:4b:ef:67: 41:cd:9d:69:d2:ab:f7:59:18:95:82:f1:87:12:cf:c7:0f:6b: 96:77:d9:57:d2:ca:75:25:71:5d:5e:95:6d:62:15:e3:07:2d: 19:59:37:31:43:e9:f0:43:e4:49:d8:36:ed:88:32:fa:4a:20: 58:b0:2c:56:18:fc:16:7b:67:50:f5:30:48:ec:ff:4b:42:73: 16:df:f8:4c:ad:39:be:23:52:40:38:97:58:0b:11:f8:fd:24: b5:98:c1:e4:7b:79:c1:3c:05:43:ea:9c:f7:5c:96:2e:cc:23: e8:ed:14:49 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICEnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjQwNzI0MTczNTE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExM2I1NS1jNzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvdJqLx0k/rsJl9tieWk8dg75Zx4a13y9i/TtYKx0LK5TxC3B9r0r0YzoIId LI46YWJf869S1cx8+6E2X+wHi0biMzhPZ9Kk3lL6Tjmd+furVY9hnJBP67moBmSM pMhEUPmHtd56vVt4bwo1eznlmyCPiZ1X6TwsTKPb4VA1lO+XMLdcCc002zIH08op 6PRRrakHG/iRFyCioP1pB/XudTzQRaew7C+LzyLNnbV+B5MQ/Ehtg0voFNlgjy3Q KyGJsn5cPdN474R+xxGmKzLiQcnCcBq+7rcHuSp74uPZorb6LSAf2vZgoiwe6fox KcvVEDsXRgbdH67oCpvV1GrkaQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFB2NWm8X Pn+t3+vgGpgZy3sa7Rr2MB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvNzU1MjJCMEEw MDJCMTFFQTg1NUNBOTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEBGWnsAMEBWWnwAMEAMskgDANBgkqhkiG9w0BAQsFAAOC AQEAhZIi764akjwZpmwNrM9kpL5IWM1FWsG8GPYNydHJ3wuVTIYCLRJvfo3je5Jq 4o9scfS0Nj/kiCCQIkLzUZ+dStPjoJ35Lu9H1LNgGT/JhXwfw41tQP+DRqfbxVbj ap0nFkbj8k9L4PJkrq6jQA6HqOhxFOM+uXp/6+tRSBh0plCeUCvXH7sRbNz4HAOb S+9nQc2dadKr91kYlYLxhxLPxw9rlnfZV9LKdSVxXV6VbWIV4wctGVk3MUPp8EPk Sdg27Ygy+kogWLAsVhj8FntnUPUwSOz/S0JzFt/4TK05viNSQDiXWAsR+P0ktZjB 5Ht5wTwFQ+qc91yWLswj6O0USQ== -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:20 2024 by rpki-client on console-ams.rpki-client.org