$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/5B7F22440AF811ECB423A671C4F9AE02.roa File: 5B7F22440AF811ECB423A671C4F9AE02.roa (raw, json) Hash identifier: vYdfjmd5sFOJKajtsdhJQ4lUaW6XPw2R+eSDMIJefQ8= Subject key identifier: 8C:A3:16:8E:C4:47:1A:8C:30:90:EA:1C:E7:4B:91:97:49:A8:51:84 Certificate issuer: /CN=A9174A6B/serialNumber=BE12D2EEF42A1C9DC2A5720446C70316C7C20650 Certificate serial: 26C1 Authority key identifier: BE:12:D2:EE:F4:2A:1C:9D:C2:A5:72:04:46:C7:03:16:C7:C2:06:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vhLS7vQqHJ3CpXIERscDFsfCBlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/5B7F22440AF811ECB423A671C4F9AE02.roa Signing time: Sat 28 Oct 2023 16:02:27 +0000 ROA not before: Sat 28 Oct 2023 16:02:27 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 17470 IP address blocks: 43.252.12.0/22 maxlen: 22 43.252.12.0/24 maxlen: 24 43.252.13.0/24 maxlen: 24 43.252.14.0/24 maxlen: 24 43.252.15.0/24 maxlen: 24 103.247.48.0/22 maxlen: 22 103.247.48.0/24 maxlen: 24 103.247.49.0/24 maxlen: 24 103.247.50.0/24 maxlen: 24 103.247.51.0/24 maxlen: 24 203.189.184.0/21 maxlen: 21 203.189.184.0/24 maxlen: 24 203.189.185.0/24 maxlen: 24 203.189.186.0/24 maxlen: 24 203.189.188.0/24 maxlen: 24 203.189.189.0/24 maxlen: 24 203.189.190.0/24 maxlen: 24 2404:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/vhLS7vQqHJ3CpXIERscDFsfCBlA.crl rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/vhLS7vQqHJ3CpXIERscDFsfCBlA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vhLS7vQqHJ3CpXIERscDFsfCBlA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 15:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9921 (0x26c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A6B/serialNumber=BE12D2EEF42A1C9DC2A5720446C70316C7C20650 Validity Not Before: Oct 28 16:02:27 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d3093-d9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:99:33:77:da:6b:15:86:ae:6d:65:6d:47: ef:e6:3d:d0:94:48:40:5f:c0:ea:11:46:f7:67:ee: 36:a1:71:57:db:2a:bd:77:87:73:0a:20:8b:dc:d6: 75:d0:1f:44:d2:05:80:75:0e:2a:37:b3:e7:d4:07: ed:c9:5d:32:1e:42:a5:f9:3b:c0:c6:66:d9:8e:ff: 43:2b:42:e0:a2:fe:5c:32:23:ae:d0:af:f3:37:80: e0:2b:1f:2d:5f:23:be:5d:08:8f:16:05:22:43:63: 88:0f:47:b7:1a:91:b5:f5:40:c2:ff:3d:c5:50:ed: 60:f4:67:d2:59:67:63:40:df:35:4e:89:eb:1c:b1: 20:d3:65:2d:6c:c0:98:c5:13:67:ff:ea:53:5a:bf: 5d:83:5c:b6:ad:ff:b8:0f:c9:c3:60:d8:e7:1d:32: 03:97:2a:42:de:df:f0:bd:bb:b3:c9:73:2e:cb:03: 12:fb:32:3f:ce:22:a8:82:26:47:15:70:d0:3e:80: 30:15:84:26:9b:e8:80:27:ef:a7:14:fd:1f:4f:7c: 0c:fa:8a:af:8e:29:f4:f0:08:14:68:40:62:07:da: aa:34:6b:29:c9:b8:5d:22:8c:71:80:cc:b1:e0:ed: a4:bc:4b:ab:de:bd:03:72:b3:15:51:b3:20:dc:2a: c7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A3:16:8E:C4:47:1A:8C:30:90:EA:1C:E7:4B:91:97:49:A8:51:84 X509v3 Authority Key Identifier: keyid:BE:12:D2:EE:F4:2A:1C:9D:C2:A5:72:04:46:C7:03:16:C7:C2:06:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/vhLS7vQqHJ3CpXIERscDFsfCBlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vhLS7vQqHJ3CpXIERscDFsfCBlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A6B/75244B62A16311E4B966DD0FC4F9AE02/5B7F22440AF811ECB423A671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.12.0/22 103.247.48.0/22 203.189.184.0/21 IPv6: 2404:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 1b:a7:2c:e3:77:85:b0:c0:3b:2d:2a:20:1f:16:22:ac:c9:f6: 76:19:7a:8c:9c:1b:e4:2a:d6:3d:f5:37:cf:be:c0:d7:e4:fa: 29:f9:5e:10:0e:95:de:4a:20:5e:4e:4d:17:4a:ab:00:00:77: 8e:3d:59:e2:ec:4c:b7:de:3c:28:9c:31:b9:c6:d5:9d:92:b8: f5:8d:a2:7f:c8:41:f8:f1:f9:61:16:c1:70:db:0c:d8:de:0e: bd:d4:8b:88:cc:49:24:5c:c7:59:87:b0:b3:79:79:e6:2b:ac: b8:14:d6:10:1b:10:63:00:86:57:47:13:6e:50:65:ff:60:a1: e1:da:73:5b:f1:1d:4f:ab:80:da:9b:20:75:9a:45:cb:55:f7: 4e:63:1a:dc:5d:3c:2f:cb:08:ae:ca:a4:39:d0:0e:2c:d1:6c: 1a:81:a7:61:93:33:f3:b4:7c:74:07:72:27:37:f5:e6:17:1a: e3:e7:48:99:06:51:bb:d6:fe:98:23:ca:e9:2e:5d:ea:b3:bc: e0:c3:8d:0a:78:66:b2:ce:5b:60:08:92:4c:f6:1c:fa:85:88: 55:3d:24:18:c0:e5:b0:ce:4a:23:f0:ee:35:07:56:32:cb:68: 75:a0:d3:17:34:83:39:e6:b2:06:9e:a2:2e:23:ac:4b:5d:ae: 4f:ed:e0:54 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICJsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNkIxMTAvBgNVBAUTKEJFMTJEMkVFRjQyQTFDOURDMkE1NzIwNDQ2QzcwMzE2 QzdDMjA2NTAwHhcNMjMxMDI4MTYwMjI3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkMzA5My1kOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9mZM3faaxWGrm1lbUfv5j3QlEhAX8DqEUb3Z+42oXFX2yq9d4dzCiCL3NZ1 0B9E0gWAdQ4qN7Pn1AftyV0yHkKl+TvAxmbZjv9DK0Lgov5cMiOu0K/zN4DgKx8t XyO+XQiPFgUiQ2OID0e3GpG19UDC/z3FUO1g9GfSWWdjQN81TonrHLEg02UtbMCY xRNn/+pTWr9dg1y2rf+4D8nDYNjnHTIDlypC3t/wvbuzyXMuywMS+zI/ziKogiZH FXDQPoAwFYQmm+iAJ++nFP0fT3wM+oqvjin08AgUaEBiB9qqNGspybhdIoxxgMyx 4O2kvEur3r0DcrMVUbMg3CrHzQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFIyjFo7E RxqMMJDqHOdLkZdJqFGEMB8GA1UdIwQYMBaAFL4S0u70KhydwqVyBEbHAxbHwgZQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE2Qi83NTI0NEI2MkEx NjMxMUU0Qjk2NkREMEZDNEY5QUUwMi92aExTN3ZRcUhKM0NwWElFUnNjREZzZkNC bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZoTFM3dlFxSEozQ3BYSUVSc2NERnNmQ0JsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRBNkIvNzUyNDRCNjJBMTYzMTFFNEI5NjZERDBGQzRGOUFFMDIvNUI3RjIyNDQw QUY4MTFFQ0I0MjNBNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAIr/AwDBAJn9zADBAPLvbgwDwQCAAIwCQMHACQEigAAADAN BgkqhkiG9w0BAQsFAAOCAQEAG6cs43eFsMA7LSogHxYirMn2dhl6jJwb5CrWPfU3 z77A1+T6KfleEA6V3kogXk5NF0qrAAB3jj1Z4uxMt948KJwxucbVnZK49Y2if8hB +PH5YRbBcNsM2N4OvdSLiMxJJFzHWYews3l55iusuBTWEBsQYwCGV0cTblBl/2Ch 4dpzW/EdT6uA2psgdZpFy1X3TmMa3F08L8sIrsqkOdAOLNFsGoGnYZMz87R8dAdy Jzf15hca4+dImQZRu9b+mCPK6S5d6rO84MONCnhmss5bYAiSTPYc+oWIVT0kGMDl sM5KI/DuNQdWMstodaDTFzSDOeayBp6iLiOsS12uT+3gVA== -----END CERTIFICATE-----Generated at Tue May 14 19:10:18 2024 by rpki-client on console-ams.rpki-client.org