$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E397AB78866F11EBA76EED3EC4F9AE02.roa File: E397AB78866F11EBA76EED3EC4F9AE02.roa (raw, json) Hash identifier: dMeU+VWkNLHSsE/YjflyFx6fuE/Tkj6eZEDgHPwyvpw= Subject key identifier: 75:04:50:FF:DA:A4:2B:54:F2:BB:1D:53:06:EB:C3:78:D6:BB:42:4A Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0BA8 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E397AB78866F11EBA76EED3EC4F9AE02.roa Signing time: Tue 06 Feb 2024 19:37:24 +0000 ROA not before: Tue 06 Feb 2024 19:37:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138571 IP address blocks: 45.119.4.0/23 maxlen: 23 45.119.4.0/24 maxlen: 24 103.133.92.0/23 maxlen: 24 103.133.94.0/23 maxlen: 24 203.23.176.0/24 maxlen: 24 203.23.177.0/24 maxlen: 24 203.34.110.0/24 maxlen: 24 2404:4a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 6 19:37:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c28a74-3488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:09:19:d8:d9:88:e4:c4:e0:b1:75:f1:66:83: a6:e1:74:fb:3e:4c:20:10:57:10:d9:0e:aa:ed:19: 4a:ee:cb:9d:87:89:77:6a:0d:67:c8:f8:57:92:94: be:ad:ae:fd:44:0a:65:7f:63:45:c2:5a:49:26:4c: 09:9e:15:77:63:d0:ce:5d:71:25:48:57:80:24:e2: 57:9d:10:4d:c7:0a:14:f0:69:b9:82:ce:f7:17:dd: a2:4b:27:90:e6:2f:70:9d:1b:b2:a9:57:e5:7c:c7: fb:67:9b:4b:86:6e:8f:2c:d1:f3:3c:f3:e5:82:09: 57:0c:68:4d:c0:b1:1d:d5:f6:de:dd:ae:d0:be:d5: c3:ce:73:d6:5a:e4:e6:c4:09:0b:c7:ae:2d:8a:f7: 79:53:a7:fc:c0:49:e4:f4:13:b8:61:48:15:9f:1d: 74:d1:b0:67:e9:be:5f:18:88:04:30:d0:97:be:a2: 54:cb:37:66:5f:23:de:43:04:43:d6:b9:64:42:b9: 4c:5b:ff:f0:7e:38:41:bd:ab:6b:58:0c:ea:bd:1f: ec:69:ce:d7:a1:0a:97:46:75:56:0a:0b:28:fd:f2: 19:f3:62:5d:c0:7c:35:85:d2:32:3b:0a:d8:d7:ff: 20:51:6a:d7:0c:69:ea:fe:65:72:69:df:14:7a:e3: 1e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:04:50:FF:DA:A4:2B:54:F2:BB:1D:53:06:EB:C3:78:D6:BB:42:4A X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E397AB78866F11EBA76EED3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.4.0/23 103.133.92.0/22 203.23.176.0/23 203.34.110.0/24 IPv6: 2404:4a40::/32 Signature Algorithm: sha256WithRSAEncryption 25:01:52:d3:dc:12:d1:0b:15:62:87:cc:42:d2:b6:3f:91:db: 26:7d:a0:ec:a5:2f:70:08:01:77:49:ce:b9:6b:6f:d9:a0:97: b5:49:cf:1a:9f:84:95:b4:48:5a:cb:d6:e2:6f:d9:9f:73:c3: 9e:e4:65:dd:14:24:75:fb:29:15:93:73:c6:59:6b:89:32:07: 6b:65:8b:62:58:d9:5e:45:63:cf:f3:b7:dc:a3:ce:58:b0:67: 5a:74:d5:a7:a9:a4:82:ef:ea:0d:9b:c8:5f:04:e8:fa:6a:b0: 58:29:fc:74:fa:6b:95:98:fb:c8:6b:62:06:e9:b6:52:d6:f5: 47:fc:a1:0f:21:14:06:c0:dd:09:fc:a9:c8:ff:b7:d2:a8:7e: b3:03:44:7f:28:e2:4b:1d:63:48:85:04:68:f8:5b:af:9a:41: 30:ed:96:f8:3e:6e:89:7e:01:72:63:f3:cb:1e:63:7e:02:73: 7c:32:5a:af:bc:72:7f:6f:7b:64:55:be:94:4a:bf:f7:f3:52: 7e:74:e6:c8:d6:f8:ec:22:30:63:f9:78:61:dc:00:a4:de:2c: f5:1e:10:4f:15:e9:ad:79:9a:3e:aa:e1:dd:97:49:3b:5c:fe: 7d:b7:b7:db:17:bc:cb:c6:f0:80:40:e1:a8:7f:37:9f:c0:b5: 7f:e3:76:cf -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjQwMjA2MTkzNzI0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOGE3NC0zNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgkZ2NmI5MTgsXXxZoOm4XT7PkwgEFcQ2Q6q7RlK7sudh4l3ag1nyPhXkpS+ ra79RAplf2NFwlpJJkwJnhV3Y9DOXXElSFeAJOJXnRBNxwoU8Gm5gs73F92iSyeQ 5i9wnRuyqVflfMf7Z5tLhm6PLNHzPPPlgglXDGhNwLEd1fbe3a7QvtXDznPWWuTm xAkLx64tivd5U6f8wEnk9BO4YUgVnx100bBn6b5fGIgEMNCXvqJUyzdmXyPeQwRD 1rlkQrlMW//wfjhBvatrWAzqvR/sac7XoQqXRnVWCgso/fIZ82JdwHw1hdIyOwrY 1/8gUWrXDGnq/mVyad8UeuMeNwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHUEUP/a pCtU8rsdUwbrw3jWu0JKMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvRTM5N0FCNzg4 NjZGMTFFQkE3NkVFRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAEtdwQDBAJnhVwDBAHLF7ADBADLIm4wDQQCAAIwBwMFACQE SkAwDQYJKoZIhvcNAQELBQADggEBACUBUtPcEtELFWKHzELStj+R2yZ9oOylL3AI AXdJzrlrb9mgl7VJzxqfhJW0SFrL1uJv2Z9zw57kZd0UJHX7KRWTc8ZZa4kyB2tl i2JY2V5FY8/zt9yjzliwZ1p01aeppILv6g2byF8E6PpqsFgp/HT6a5WY+8hrYgbp tlLW9Uf8oQ8hFAbA3Qn8qcj/t9KofrMDRH8o4ksdY0iFBGj4W6+aQTDtlvg+bol+ AXJj88seY34Cc3wyWq+8cn9ve2RVvpRKv/fzUn505sjW+OwiMGP5eGHcAKTeLPUe EE8V6a15mj6q4d2XSTtc/n23t9sXvMvG8IBA4ah/N5/AtX/jds8= -----END CERTIFICATE-----Generated at Thu May 2 22:28:51 2024 by rpki-client on console-ams.rpki-client.org