$ rpki-client -vvf rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/F1F8A98442D811ED854B9670C4F9AE02.roa File: F1F8A98442D811ED854B9670C4F9AE02.roa (raw, json) Hash identifier: 77+2jyZbjFuOwQaQ18eSMUiIbLupIdmVr2AiPrnK1EI= Subject key identifier: 4D:56:37:7D:A8:E9:18:A5:39:CC:B0:DD:1F:4A:8C:FB:C9:1E:B0:2F Certificate issuer: /CN=A916C3CC/serialNumber=1B3A411A075A5DB1A2C642F8D4A1BC3CB5BCBB1C Certificate serial: 0198 Authority key identifier: 1B:3A:41:1A:07:5A:5D:B1:A2:C6:42:F8:D4:A1:BC:3C:B5:BC:BB:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GzpBGgdaXbGixkL41KG8PLW8uxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/F1F8A98442D811ED854B9670C4F9AE02.roa Signing time: Thu 21 Nov 2024 01:55:32 +0000 ROA not before: Thu 21 Nov 2024 01:55:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 9253 IP address blocks: 45.115.196.0/22 maxlen: 24 103.84.220.0/22 maxlen: 24 202.126.48.0/20 maxlen: 24 2406:9400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/GzpBGgdaXbGixkL41KG8PLW8uxw.crl rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/GzpBGgdaXbGixkL41KG8PLW8uxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GzpBGgdaXbGixkL41KG8PLW8uxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C3CC/serialNumber=1B3A411A075A5DB1A2C642F8D4A1BC3CB5BCBB1C Validity Not Before: Nov 21 01:55:32 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673e9314-22dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:f0:7c:b5:c0:8a:bd:52:3f:1b:f4:7c:a0: 22:2e:66:c0:72:73:73:07:1c:70:db:b1:ec:ca:09: 1f:fc:2a:dc:f9:d8:c3:d6:43:37:b0:71:fd:49:6a: ac:7b:03:20:68:e8:ea:0d:58:ac:5f:17:81:ae:a9: 9c:9f:e0:04:3e:1e:4a:6a:4b:40:33:ce:fe:0b:cc: fc:bf:f6:57:17:50:dd:9e:10:83:59:2b:f8:c0:74: ec:d9:1e:85:c5:aa:63:e9:e2:5c:db:f4:de:be:a7: bf:c8:4e:e3:43:b3:4e:6a:bc:fb:8a:d6:e8:b3:80: a1:51:5b:7b:b6:ef:c2:99:42:e4:52:3b:10:d2:23: 75:63:b2:ae:44:21:6a:cd:b1:6f:60:a9:80:bc:53: 77:ce:13:f7:42:45:35:a6:30:dc:9a:f6:8f:dd:d0: 36:a6:d9:e3:ca:b4:8f:37:2b:84:dd:67:e6:11:a5: 01:e2:db:f6:0a:34:3b:bb:55:e3:8b:2f:76:a6:c1: 3f:2e:ae:b6:d7:73:ff:97:0c:1f:00:a3:41:80:74: 85:5e:11:34:e6:37:a0:0e:8e:8a:0d:9b:d4:d9:e7: 2f:a6:be:44:8b:e8:5b:31:6b:d1:99:1c:6b:97:41: 6a:f3:fb:13:37:a1:87:bc:15:ce:fd:90:df:02:6f: 75:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:56:37:7D:A8:E9:18:A5:39:CC:B0:DD:1F:4A:8C:FB:C9:1E:B0:2F X509v3 Authority Key Identifier: keyid:1B:3A:41:1A:07:5A:5D:B1:A2:C6:42:F8:D4:A1:BC:3C:B5:BC:BB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/GzpBGgdaXbGixkL41KG8PLW8uxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GzpBGgdaXbGixkL41KG8PLW8uxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C3CC/4A14740442D411EDA1260E6AC4F9AE02/F1F8A98442D811ED854B9670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.196.0/22 103.84.220.0/22 202.126.48.0/20 IPv6: 2406:9400::/32 Signature Algorithm: sha256WithRSAEncryption 7b:b8:46:11:e9:ad:4e:c9:1d:02:18:da:db:01:5e:62:72:65: 8d:1d:fe:63:84:2b:c2:33:82:19:b8:6a:b9:72:3f:a9:20:fe: 82:bf:67:42:18:f9:bb:50:2d:5e:5b:d9:db:1f:20:ab:bc:ac: 4c:3f:b2:d4:d4:ed:17:b4:89:9f:f2:e6:de:ff:32:6b:c3:57: d5:0c:ee:76:99:81:d1:8b:a4:8d:46:61:3c:7a:85:fb:69:79: f6:92:c2:26:d8:ac:e2:60:51:59:22:a4:f6:70:cb:ef:0e:20: ca:f9:77:38:3e:8c:8f:11:98:d7:0e:cf:2a:82:a6:14:64:ef: 27:7d:cd:a2:ae:db:6e:ba:75:db:61:f5:09:c3:9f:30:43:5d: 0a:32:5e:77:b7:8c:a9:23:eb:df:82:f4:07:af:30:78:b7:cf: bd:30:65:e6:92:55:5e:96:af:92:92:3a:9b:22:fa:bd:d0:b7: 77:d9:08:24:24:52:9a:d1:0a:c5:1e:0c:73:5d:59:ff:4b:88: d6:fa:b4:18:84:55:63:ba:5f:39:78:e4:cb:81:6b:ff:12:9f: c2:56:94:e7:1e:c5:0e:ba:4a:cd:64:c5:b7:d6:f4:39:63:35: 3d:2d:ec:53:1a:16:e1:5c:ef:02:c9:e0:d6:1e:be:89:69:26: 12:84:45:a4 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMzQ0MxMTAvBgNVBAUTKDFCM0E0MTFBMDc1QTVEQjFBMkM2NDJGOEQ0QTFCQzND QjVCQ0JCMUMwHhcNMjQxMTIxMDE1NTMyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlOTMxNC0yMmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTnwfLXAir1SPxv0fKAiLmbAcnNzBxxw27Hsygkf/Crc+djD1kM3sHH9SWqs ewMgaOjqDVisXxeBrqmcn+AEPh5KaktAM87+C8z8v/ZXF1DdnhCDWSv4wHTs2R6F xapj6eJc2/Tevqe/yE7jQ7NOarz7itbos4ChUVt7tu/CmULkUjsQ0iN1Y7KuRCFq zbFvYKmAvFN3zhP3QkU1pjDcmvaP3dA2ptnjyrSPNyuE3WfmEaUB4tv2CjQ7u1Xj iy92psE/Lq6213P/lwwfAKNBgHSFXhE05jegDo6KDZvU2ecvpr5Ei+hbMWvRmRxr l0Fq8/sTN6GHvBXO/ZDfAm91jwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFE1WN32o 6RilOcyw3R9KjPvJHrAvMB8GA1UdIwQYMBaAFBs6QRoHWl2xosZC+NShvDy1vLsc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzNDQy80QTE0NzQwNDQy RDQxMUVEQTEyNjBFNkFDNEY5QUUwMi9HenBCR2dkYVhiR2l4a0w0MUtHOFBMVzh1 eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d6cEJHZ2RhWGJHaXhrTDQxS0c4UExXOHV4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMzQ0MvNEExNDc0MDQ0MkQ0MTFFREExMjYwRTZBQzRGOUFFMDIvRjFGOEE5ODQ0 MkQ4MTFFRDg1NEI5NjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItc8QDBAJnVNwDBATKfjAwDQQCAAIwBwMFACQGlAAwDQYJ KoZIhvcNAQELBQADggEBAHu4RhHprU7JHQIY2tsBXmJyZY0d/mOEK8Izghm4arly P6kg/oK/Z0IY+btQLV5b2dsfIKu8rEw/stTU7Re0iZ/y5t7/MmvDV9UM7naZgdGL pI1GYTx6hftpefaSwibYrOJgUVkipPZwy+8OIMr5dzg+jI8RmNcOzyqCphRk7yd9 zaKu2266ddth9QnDnzBDXQoyXne3jKkj69+C9AevMHi3z70wZeaSVV6Wr5KSOpsi +r3Qt3fZCCQkUprRCsUeDHNdWf9LiNb6tBiEVWO6Xzl45MuBa/8Sn8JWlOcexQ66 Ss1kxbfW9DljNT0t7FMaFuFc7wLJ4NYevolpJhKERaQ= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:38 2024 by rpki-client on console-fra.rpki-client.org