$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa File: 51FE6D48D27011ECB30F1F0DC4F9AE02.roa (raw, json) Hash identifier: wgX+EMzgoKfrAVdDz/48mCSLSDU8m2MWUYcABpMkNSU= Subject key identifier: CF:8D:70:53:86:69:CA:80:27:3E:E5:59:81:98:D0:F7:8A:17:44:AC Certificate issuer: /CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Certificate serial: 034B Authority key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa Signing time: Wed 05 Jun 2024 03:39:44 +0000 ROA not before: Wed 05 Jun 2024 03:39:44 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38067 IP address blocks: 43.231.20.0/22 maxlen: 24 103.14.128.0/22 maxlen: 23 103.14.128.0/24 maxlen: 24 103.14.129.0/24 maxlen: 24 103.14.130.0/24 maxlen: 24 103.14.131.0/24 maxlen: 24 103.29.124.0/22 maxlen: 24 103.240.44.0/22 maxlen: 24 116.12.32.0/21 maxlen: 22 116.12.32.0/22 maxlen: 24 116.12.36.0/23 maxlen: 24 116.12.38.0/24 maxlen: 24 116.12.39.0/24 maxlen: 24 120.50.176.0/21 maxlen: 24 122.102.32.0/21 maxlen: 24 210.1.240.0/20 maxlen: 24 210.1.255.128/26 maxlen: 26 2405:6900::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Validity Not Before: Jun 5 03:39:44 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665fde00-4ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4a:50:1a:87:c2:d7:65:76:42:55:78:ed:41: 2f:68:86:a9:a4:07:cd:9f:7a:c1:56:28:33:6a:9c: 8b:ab:6a:d5:7d:21:02:63:a5:dc:85:13:f5:d7:9a: bf:3a:18:a3:73:39:ce:04:4e:47:35:67:41:10:4f: 36:2d:42:bb:a0:9d:5c:69:fa:44:6c:36:4a:37:12: 16:a2:0f:70:33:b9:83:d2:1b:7f:1d:da:2c:68:14: 57:1d:87:08:f1:e6:7e:ce:82:1a:79:ac:72:80:d5: 9f:4d:6f:99:55:37:14:e3:f2:30:91:77:b1:9f:30: 4c:10:29:9b:b5:d0:7f:c5:13:8e:b2:64:1c:56:c0: 7c:a8:00:91:fc:c6:d1:fc:3a:ff:7f:f0:fe:33:dd: 94:b8:a8:78:a8:20:f4:49:e5:46:53:ee:0a:5f:b6: 1c:65:a7:d4:d2:38:ec:33:f6:35:28:1e:c9:69:f5: 6e:4b:05:f4:75:7b:dc:57:d6:ad:11:a2:a1:db:c1: f7:00:dc:16:21:a4:53:07:0d:e5:8c:e5:67:9e:9f: 83:37:5f:96:3c:53:1e:4f:c5:e1:a2:0c:c8:10:3e: 56:24:08:ba:e8:88:84:45:e0:90:3e:e3:10:28:e7: 5f:08:0f:c1:a4:21:a5:9a:42:32:37:82:03:6c:1f: e5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:8D:70:53:86:69:CA:80:27:3E:E5:59:81:98:D0:F7:8A:17:44:AC X509v3 Authority Key Identifier: keyid:C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/51FE6D48D27011ECB30F1F0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.20.0/22 103.14.128.0/22 103.29.124.0/22 103.240.44.0/22 116.12.32.0/21 120.50.176.0/21 122.102.32.0/21 210.1.240.0/20 IPv6: 2405:6900::/36 Signature Algorithm: sha256WithRSAEncryption 10:94:f0:c3:d7:66:7b:58:4e:28:de:f0:71:3c:f1:60:0d:26: 3d:c5:f5:a1:64:60:c6:81:80:31:1a:d4:79:96:69:c3:39:f9: 01:71:5d:ff:87:06:d0:2e:80:d5:0e:68:b4:9d:d9:ac:bd:f6: a0:9c:89:b7:3a:64:8d:e9:01:1f:8b:5d:b9:80:f7:52:b5:cf: 9a:de:a2:c1:45:b8:da:7e:f8:79:0c:fa:cf:c8:1b:9d:d5:4f: 1c:58:cd:2f:d6:74:f7:33:6f:0b:58:43:51:99:04:3e:23:cf: 44:ef:00:df:b5:9e:49:7d:a3:51:3a:65:b8:bf:6a:89:bc:ad: 78:38:d4:aa:ba:9f:21:20:03:02:ed:72:32:45:4c:52:fd:c0: a4:06:d7:3c:53:ed:1f:03:0c:e0:fc:8a:8f:b8:4d:4e:20:cf: 35:63:71:91:89:9a:20:21:73:9a:46:65:80:b4:3e:41:66:6e: 22:d3:cf:9b:27:15:96:61:9b:27:0b:88:57:cb:07:cb:fc:52: b3:7b:eb:b8:dd:50:a9:a9:23:2d:82:cf:5a:78:0a:1a:9d:b0: 85:44:7f:38:9b:00:03:68:07:6b:c7:c5:2b:69:43:48:69:45: d2:55:df:60:44:de:3b:b4:ad:10:0a:11:31:f9:d1:57:88:b0: 0b:e4:2f:db -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTQxMTAvBgNVBAUTKEM0RDRGQjBGRjAyNzc5NkU5REFBMTdCNzU1NTFGRDBC NzdGMTk4MkYwHhcNMjQwNjA1MDMzOTQ0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZGUwMC00YWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UpQGofC12V2QlV47UEvaIappAfNn3rBVigzapyLq2rVfSECY6XchRP115q/ OhijcznOBE5HNWdBEE82LUK7oJ1cafpEbDZKNxIWog9wM7mD0ht/HdosaBRXHYcI 8eZ+zoIaeaxygNWfTW+ZVTcU4/IwkXexnzBMECmbtdB/xROOsmQcVsB8qACR/MbR /Dr/f/D+M92UuKh4qCD0SeVGU+4KX7YcZafU0jjsM/Y1KB7JafVuSwX0dXvcV9at EaKh28H3ANwWIaRTBw3ljOVnnp+DN1+WPFMeT8XhogzIED5WJAi66IiEReCQPuMQ KOdfCA/BpCGlmkIyN4IDbB/l/wIDAQABo4ICzzCCAsswHQYDVR0OBBYEFM+NcFOG acqAJz7lWYGY0PeKF0SsMB8GA1UdIwQYMBaAFMTU+w/wJ3lunaoXt1VR/Qt38Zgv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5NC9FM0NDMjVEODgx MUUxMUVDOTIwMjU1NTFDNEY5QUUwMi94TlQ3RF9BbmVXNmRxaGUzVlZIOUMzZnht QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOVDdEX0FuZVc2ZHFoZTNWVkg5QzNmeG1DOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVCOTQvRTNDQzI1RDg4MTFFMTFFQzkyMDI1NTUxQzRGOUFFMDIvNTFGRTZENDhE MjcwMTFFQ0IzMEYxRjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMDYEAgABMDADBAIr5xQDBAJnDoADBAJnHXwDBAJn8CwDBAN0DCADBAN4MrAD BAN6ZiADBATSAfAwDgQCAAIwCAMGBCQFaQAAMA0GCSqGSIb3DQEBCwUAA4IBAQAQ lPDD12Z7WE4o3vBxPPFgDSY9xfWhZGDGgYAxGtR5lmnDOfkBcV3/hwbQLoDVDmi0 ndmsvfagnIm3OmSN6QEfi125gPdStc+a3qLBRbjafvh5DPrPyBud1U8cWM0v1nT3 M28LWENRmQQ+I89E7wDftZ5JfaNROmW4v2qJvK14ONSqup8hIAMC7XIyRUxS/cCk Btc8U+0fAwzg/IqPuE1OIM81Y3GRiZogIXOaRmWAtD5BZm4i08+bJxWWYZsnC4hX ywfL/FKze+u43VCpqSMtgs9aeAoanbCFRH84mwADaAdrx8UraUNIaUXSVd9gRN47 tK0QChEx+dFXiLAL5C/b -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org