$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa File: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (raw, json) Hash identifier: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac= Subject key identifier: A3:6F:90:EC:04:B2:8F:68:F5:19:3D:37:99:75:3E:DA:0A:9E:C6:00 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0997 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa Signing time: Thu 14 Nov 2024 19:58:57 +0000 ROA not before: Thu 14 Nov 2024 19:58:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4809 IP address blocks: 63.140.3.0/24 maxlen: 24 63.140.4.0/24 maxlen: 24 63.140.5.0/24 maxlen: 24 63.140.6.0/24 maxlen: 24 63.140.7.0/24 maxlen: 24 63.140.8.0/24 maxlen: 24 63.140.9.0/24 maxlen: 24 63.140.10.0/24 maxlen: 24 63.140.11.0/24 maxlen: 24 63.140.13.0/24 maxlen: 24 63.140.14.0/24 maxlen: 24 63.140.15.0/24 maxlen: 24 69.194.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2455 (0x997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Nov 14 19:58:57 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67365681-61ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b5:6a:2d:b6:8d:31:6e:e9:a5:db:39:ae:ac: cf:11:31:3b:c5:b0:64:a8:a8:9f:bf:f9:62:e6:7f: bf:bc:dd:4b:b6:d0:25:6f:cf:fc:df:76:5d:b2:d5: eb:7a:31:b5:fb:fd:c6:73:11:c4:b0:76:79:02:84: d0:fd:cf:74:7b:42:11:16:22:7b:cf:72:d4:3e:b0: 4c:8e:03:c8:db:a1:af:0f:42:ff:19:13:07:0d:85: 5a:48:eb:8a:2a:13:e6:cc:65:91:51:04:8a:9c:ad: 0f:91:34:9d:72:a7:2f:4d:7f:ba:7a:df:1e:32:c1: 8c:a4:0e:07:15:c6:3f:c5:b0:82:d7:87:0d:43:65: 5a:2d:54:df:c1:a4:0b:3f:ac:b2:71:1b:e0:28:27: 77:65:9c:f4:83:b3:bb:04:f9:8b:c7:61:31:80:96: 1a:9e:2e:bf:75:e7:4a:40:a2:4b:cf:58:2a:59:0f: f1:84:b5:d3:20:3b:13:6d:99:82:51:de:06:f6:01: 83:8f:7f:6d:b7:ae:e4:c9:97:31:8a:10:a2:7d:40: 05:12:62:20:f0:ea:9e:52:a7:4c:c2:f6:ff:c0:6d: bf:ec:e3:0d:32:e9:b4:8f:7a:b4:6d:75:e9:ae:15: 1f:43:8e:72:a7:af:b3:75:c4:5d:5e:dc:ab:51:af: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6F:90:EC:04:B2:8F:68:F5:19:3D:37:99:75:3E:DA:0A:9E:C6:00 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 63.140.3.0-63.140.11.255 63.140.13.0-63.140.15.255 69.194.171.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:08:07:46:aa:ac:70:a6:9b:34:84:b5:28:ad:5e:d9:a6:0e: 80:62:14:59:da:bd:9b:71:85:49:06:4d:aa:e9:72:85:ad:16: 58:69:a0:23:f9:31:b2:d2:80:19:4d:f7:eb:16:97:64:6a:ce: fd:0f:ab:48:9a:72:64:cc:4c:5c:1c:51:38:00:c4:6c:59:9c: f5:0f:99:c9:33:bf:e6:b6:10:9c:b8:b4:00:f8:e5:68:5b:06: c8:71:39:61:5e:6c:28:76:8d:33:a8:db:08:b6:33:18:05:8c: bd:6f:32:c4:d3:cb:78:96:5d:88:9d:14:53:da:89:ce:d5:f4: cd:b7:f6:89:4f:7b:16:78:9b:e3:c3:8e:10:e2:96:e9:91:11: 6d:e0:ab:47:f4:22:e2:d1:90:80:fd:c7:f8:9f:4c:d3:77:94: 7f:9f:a2:27:b0:01:2f:77:a4:ff:60:32:23:11:27:6a:95:de: 2a:24:b1:83:5d:1f:c5:e8:be:97:27:dd:96:c9:d0:5e:f5:68: b3:eb:6f:22:a6:1d:d6:e3:05:29:bb:a8:25:97:f3:32:fc:e3: bf:fb:bd:6a:5d:fb:a0:0a:2b:e4:e8:96:70:1b:80:93:af:fc: a6:a5:67:dc:6a:a1:cc:aa:4e:58:0c:4e:d9:87:4d:f3:25:c0: ff:53:1c:27 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICCZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjQxMTE0MTk1ODU3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NTY4MS02MWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LVqLbaNMW7ppds5rqzPETE7xbBkqKifv/li5n+/vN1LttAlb8/833ZdstXr ejG1+/3GcxHEsHZ5AoTQ/c90e0IRFiJ7z3LUPrBMjgPI26GvD0L/GRMHDYVaSOuK KhPmzGWRUQSKnK0PkTSdcqcvTX+6et8eMsGMpA4HFcY/xbCC14cNQ2VaLVTfwaQL P6yycRvgKCd3ZZz0g7O7BPmLx2ExgJYani6/dedKQKJLz1gqWQ/xhLXTIDsTbZmC Ud4G9gGDj39tt67kyZcxihCifUAFEmIg8OqeUqdMwvb/wG2/7OMNMum0j3q0bXXp rhUfQ45yp6+zdcRdXtyrUa9vCwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFKNvkOwE so9o9Rk9N5l1PtoKnsYAMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMkU3NjdFMzI4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvNEQzQ0E1RDA4 MkQyMTFFQUIyRjRGNjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAD+MAwMEAj+MCDAMAwQAP4wNAwQEP4wAAwQARcKrMA0G CSqGSIb3DQEBCwUAA4IBAQB8CAdGqqxwpps0hLUorV7Zpg6AYhRZ2r2bcYVJBk2q 6XKFrRZYaaAj+TGy0oAZTffrFpdkas79D6tImnJkzExcHFE4AMRsWZz1D5nJM7/m thCcuLQA+OVoWwbIcTlhXmwodo0zqNsItjMYBYy9bzLE08t4ll2InRRT2onO1fTN t/aJT3sWeJvjw44Q4pbpkRFt4KtH9CLi0ZCA/cf4n0zTd5R/n6InsAEvd6T/YDIj ESdqld4qJLGDXR/F6L6XJ92WydBe9Wiz628iph3W4wUpu6gll/My/OO/+71qXfug Civk6JZwG4CTr/ympWfcaqHMqk5YDE7Zh03zJcD/Uxwn -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org