$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/5B7F22440AF811ECB423A671C4F9AE02.roa File: 5B7F22440AF811ECB423A671C4F9AE02.roa (raw, json) Hash identifier: IqEsazWsEikd3PbwO1Zi4SKIR5/W/ukREa4rnvdDPhw= Subject key identifier: AE:F2:14:AE:97:04:58:7A:26:10:C8:44:9A:5A:5D:81:95:78:EC:C6 Certificate issuer: /CN=A9174A6B/serialNumber=BE12D2EEF42A1C9DC2A5720446C70316C7C20650 Certificate serial: 2783 Authority key identifier: BE:12:D2:EE:F4:2A:1C:9D:C2:A5:72:04:46:C7:03:16:C7:C2:06:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vhLS7vQqHJ3CpXIERscDFsfCBlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/5B7F22440AF811ECB423A671C4F9AE02.roa Signing time: Sat 02 Nov 2024 15:52:23 +0000 ROA not before: Sat 02 Nov 2024 15:52:23 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17470 IP address blocks: 43.252.12.0/22 maxlen: 22 43.252.12.0/24 maxlen: 24 43.252.13.0/24 maxlen: 24 43.252.14.0/24 maxlen: 24 43.252.15.0/24 maxlen: 24 103.247.48.0/22 maxlen: 22 103.247.48.0/24 maxlen: 24 103.247.49.0/24 maxlen: 24 103.247.50.0/24 maxlen: 24 103.247.51.0/24 maxlen: 24 203.189.184.0/21 maxlen: 21 203.189.184.0/24 maxlen: 24 203.189.185.0/24 maxlen: 24 203.189.186.0/24 maxlen: 24 203.189.188.0/24 maxlen: 24 203.189.189.0/24 maxlen: 24 203.189.190.0/24 maxlen: 24 2404:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/vhLS7vQqHJ3CpXIERscDFsfCBlA.crl rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/vhLS7vQqHJ3CpXIERscDFsfCBlA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vhLS7vQqHJ3CpXIERscDFsfCBlA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10115 (0x2783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A6B/serialNumber=BE12D2EEF42A1C9DC2A5720446C70316C7C20650 Validity Not Before: Nov 2 15:52:23 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67264ab7-b289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dd:e7:19:88:63:a2:e7:5c:34:ed:08:31:b7: c0:a8:1e:83:5f:42:75:48:e3:ba:f5:70:70:9b:08: 48:a9:a1:7b:2d:8e:9c:5e:e2:f8:31:45:0b:91:ab: f1:43:b2:9e:31:b8:a9:b2:24:e4:4e:1d:c0:4a:b1: 20:44:b4:02:ce:23:9e:78:b4:61:a2:5c:61:a5:f7: e1:f5:19:0a:5f:bf:07:11:11:9f:fd:84:8a:aa:a4: cf:1b:9d:f9:2d:8a:70:63:d1:18:fe:d3:82:4b:2f: 3a:82:ce:aa:6e:67:91:b9:b2:08:c8:64:4f:c8:a4: 5a:18:7a:61:53:8e:07:9f:8a:7a:0f:6a:36:6d:fe: 8f:cc:d7:cb:36:f5:a7:31:46:6b:8c:84:dc:d5:e5: e4:b2:0c:3a:a9:11:21:80:b8:70:44:b8:16:03:48: a8:50:e1:c9:02:29:37:10:b6:38:fd:97:48:26:6f: 0b:4d:8b:a1:b3:bf:96:de:05:9b:56:bf:29:ef:e1: 42:9c:c8:1e:fc:9b:8c:fb:5b:e4:e5:21:8c:98:9f: ef:66:68:a8:e9:ef:c6:85:f8:29:fc:76:67:77:35: c4:87:04:f1:fa:29:f8:01:f8:6d:5d:98:87:f1:6f: e4:0e:96:e8:c4:f6:93:f5:eb:90:d3:3a:35:c4:fe: 04:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F2:14:AE:97:04:58:7A:26:10:C8:44:9A:5A:5D:81:95:78:EC:C6 X509v3 Authority Key Identifier: keyid:BE:12:D2:EE:F4:2A:1C:9D:C2:A5:72:04:46:C7:03:16:C7:C2:06:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/vhLS7vQqHJ3CpXIERscDFsfCBlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vhLS7vQqHJ3CpXIERscDFsfCBlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/5B7F22440AF811ECB423A671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.12.0/22 103.247.48.0/22 203.189.184.0/21 IPv6: 2404:8a00::/48 Signature Algorithm: sha256WithRSAEncryption a0:ff:0c:c2:dc:d6:9f:2d:e9:c4:8d:f2:28:78:69:ee:83:6d: 7c:8a:66:f2:1c:e4:55:32:20:29:ae:46:e0:a1:a6:00:65:9d: b3:b9:1b:c4:12:22:ac:30:cf:cc:8f:4c:cd:4f:1a:49:8a:e4: dd:73:a2:7a:a1:5a:8b:1f:88:8c:22:33:e8:ee:9d:7b:95:38: f7:ee:ef:ac:29:41:24:00:fa:81:c4:14:ae:63:82:e8:0d:a4: 41:2b:07:8f:36:7e:87:4d:19:2f:d8:91:c3:b0:ec:39:94:ec: bd:42:b3:ce:d5:41:af:3d:10:a0:f4:00:09:1a:53:fe:a4:41: bf:2e:59:58:4e:ad:cc:ca:d6:ff:0f:1a:d9:62:d8:57:8b:a8: 3a:92:2a:84:32:97:3a:84:e3:7e:61:a6:23:2d:a5:8d:7b:5e: da:5b:33:6a:5e:bd:f5:57:24:9d:90:e3:01:4f:a5:12:2e:ba: b5:10:73:e2:de:53:b8:d1:65:a7:10:fd:a4:f7:43:a2:69:54: e9:42:10:ec:de:65:25:18:16:6d:52:29:35:04:b1:26:2f:cd: 9a:e5:52:27:af:aa:24:32:ac:a6:62:cc:ae:76:39:aa:87:e9: 59:69:42:ee:20:ff:67:5b:5f:54:fe:48:58:f8:8e:7c:f5:24: 1b:b5:33:39 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICJ4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNkIxMTAvBgNVBAUTKEJFMTJEMkVFRjQyQTFDOURDMkE1NzIwNDQ2QzcwMzE2 QzdDMjA2NTAwHhcNMjQxMTAyMTU1MjIzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NGFiNy1iMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N3nGYhjoudcNO0IMbfAqB6DX0J1SOO69XBwmwhIqaF7LY6cXuL4MUULkavx Q7KeMbipsiTkTh3ASrEgRLQCziOeeLRholxhpffh9RkKX78HERGf/YSKqqTPG535 LYpwY9EY/tOCSy86gs6qbmeRubIIyGRPyKRaGHphU44Hn4p6D2o2bf6PzNfLNvWn MUZrjITc1eXksgw6qREhgLhwRLgWA0ioUOHJAik3ELY4/ZdIJm8LTYuhs7+W3gWb Vr8p7+FCnMge/JuM+1vk5SGMmJ/vZmio6e/Ghfgp/HZndzXEhwTx+in4AfhtXZiH 8W/kDpboxPaT9euQ0zo1xP4EPwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFK7yFK6X BFh6JhDIRJpaXYGVeOzGMB8GA1UdIwQYMBaAFL4S0u70KhydwqVyBEbHAxbHwgZQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE2Qi83NTI0NEI2MkEx NjMxMUU0Qjk2NkREMEZDNEY5QUUwMi92aExTN3ZRcUhKM0NwWElFUnNjREZzZkNC bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZoTFM3dlFxSEozQ3BYSUVSc2NERnNmQ0JsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRBNkIvNzUyNDRCNjJBMTYzMTFFNEI5NjZERDBGQzRGOUFFMDIvNUI3RjIyNDQw QUY4MTFFQ0I0MjNBNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAIr/AwDBAJn9zADBAPLvbgwDwQCAAIwCQMHACQEigAAADAN BgkqhkiG9w0BAQsFAAOCAQEAoP8MwtzWny3pxI3yKHhp7oNtfIpm8hzkVTIgKa5G 4KGmAGWds7kbxBIirDDPzI9MzU8aSYrk3XOieqFaix+IjCIz6O6de5U49+7vrClB JAD6gcQUrmOC6A2kQSsHjzZ+h00ZL9iRw7DsOZTsvUKzztVBrz0QoPQACRpT/qRB vy5ZWE6tzMrW/w8a2WLYV4uoOpIqhDKXOoTjfmGmIy2ljXte2lszal699VcknZDj AU+lEi66tRBz4t5TuNFlpxD9pPdDomlU6UIQ7N5lJRgWbVIpNQSxJi/NmuVSJ6+q JDKspmLMrnY5qofpWWlC7iD/Z1tfVP5IWPiOfPUkG7UzOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:49 2024 by rpki-client on console-fra.rpki-client.org