$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/146B772C82DC11EA9B13000CC4F9AE02.roa File: 146B772C82DC11EA9B13000CC4F9AE02.roa (raw, json) Hash identifier: 22LIWUXosTT/OY7Jf14A0mShYYmd8KbB6SWbnrDhxl0= Subject key identifier: B7:E9:01:67:09:0E:9E:33:D0:68:6B:A1:BD:05:04:62:11:BF:99:14 Certificate issuer: /CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC Certificate serial: 09FE Authority key identifier: B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/146B772C82DC11EA9B13000CC4F9AE02.roa Signing time: Thu 14 Nov 2024 19:59:03 +0000 ROA not before: Thu 14 Nov 2024 19:59:03 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4134 IP address blocks: 183.91.32.0/21 maxlen: 21 183.91.32.0/24 maxlen: 24 183.91.33.0/24 maxlen: 24 183.91.34.0/24 maxlen: 24 183.91.35.0/24 maxlen: 24 183.91.36.0/24 maxlen: 24 183.91.37.0/24 maxlen: 24 183.91.38.0/24 maxlen: 24 183.91.39.0/24 maxlen: 24 183.91.40.0/21 maxlen: 21 183.91.40.0/24 maxlen: 24 183.91.41.0/24 maxlen: 24 183.91.42.0/24 maxlen: 24 183.91.43.0/24 maxlen: 24 183.91.44.0/24 maxlen: 24 183.91.45.0/24 maxlen: 24 183.91.46.0/24 maxlen: 24 183.91.47.0/24 maxlen: 24 183.91.56.0/24 maxlen: 24 2400:9380:8000::/40 maxlen: 48 2400:9380:8100::/40 maxlen: 48 2400:9380:8200::/40 maxlen: 48 2400:9380:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2558 (0x9fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D/serialNumber=B1E84FACFACBC0B7838561EF21E28F2FACF5DFEC Validity Not Before: Nov 14 19:59:03 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67365687-f1a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:69:98:16:1f:b2:fc:63:1c:b1:d4:22:5a:4a: 2d:b4:e8:53:da:b7:8f:1f:05:84:47:34:95:a0:b3: 0b:a7:40:80:dc:02:f6:0d:17:f6:56:7b:c8:da:8a: b8:1e:2a:a7:13:fc:a3:7f:8f:2d:3b:e7:64:fb:16: 99:d0:ed:19:58:e5:f0:07:8a:f4:20:38:4d:85:2b: b4:78:ab:6d:84:f1:4a:d9:71:4a:2a:07:d4:11:8d: 2d:bf:c1:17:50:24:59:cb:dd:b2:d1:09:13:62:f5: c1:0f:a4:28:6e:60:44:56:d8:47:c6:5b:3b:23:94: 3e:f6:52:94:b4:0d:dc:41:aa:70:38:5a:74:90:7c: 4c:4c:c6:5c:a1:45:6d:62:7a:56:14:a7:c3:1d:7f: c6:ff:f3:19:81:f7:f9:dd:6b:d6:62:3a:1b:fe:76: c4:a2:58:ae:34:67:a7:7b:66:55:44:25:bd:40:7e: c1:7c:1d:c8:0c:f1:44:bf:d0:91:64:90:78:01:d4: 1e:56:d3:8d:db:65:3c:a7:e7:e4:06:34:5a:37:db: a2:28:3b:5b:95:a4:ab:07:44:5f:d4:42:6d:10:6e: 2a:35:7b:31:a7:8b:10:bf:04:64:cb:c5:83:76:a1: 51:54:87:18:5a:f9:62:f3:7b:5e:df:32:2f:5d:20: f7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E9:01:67:09:0E:9E:33:D0:68:6B:A1:BD:05:04:62:11:BF:99:14 X509v3 Authority Key Identifier: keyid:B1:E8:4F:AC:FA:CB:C0:B7:83:85:61:EF:21:E2:8F:2F:AC:F5:DF:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/sehPrPrLwLeDhWHvIeKPL6z13-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sehPrPrLwLeDhWHvIeKPL6z13-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/36872A5E82CD11EA895C7B5CC4F9AE02/146B772C82DC11EA9B13000CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.91.32.0/20 183.91.56.0/24 IPv6: 2400:9380:8000::/38 Signature Algorithm: sha256WithRSAEncryption 25:2f:53:c3:6c:f7:a9:6e:9c:69:41:03:25:b5:7b:68:1b:e5: ea:e6:32:c9:2e:71:45:b0:ea:34:3a:62:ee:d4:1c:d4:7d:7e: 81:b4:f5:bf:84:3f:31:88:bb:d1:6b:da:f4:26:11:29:29:90: 53:bb:ea:c3:a8:0e:f2:b9:61:fd:24:95:2f:3b:06:97:c5:52: 97:94:ab:d4:ca:bc:70:2e:96:aa:d6:46:10:57:c0:8c:9d:81: 23:29:00:5d:12:ca:0f:05:71:1b:43:04:ba:a6:ed:e7:4d:96: 61:86:87:84:6d:fe:25:52:88:d7:bb:2f:d2:3e:2a:18:18:eb: ed:8d:95:a5:4a:26:2e:8d:73:e1:3c:aa:19:5d:b5:60:c0:1b: 59:08:d0:26:20:73:6f:05:01:57:2f:76:35:a1:f4:5c:f4:4f: f9:34:29:e5:bf:67:e9:4d:d3:4b:23:89:37:1f:e5:37:8a:61: b0:ad:b6:8f:7e:1e:3a:a9:cf:9e:46:c3:41:8e:56:8d:02:ca: f5:0c:1c:5a:34:b1:d4:72:3a:db:3b:d9:8e:80:b7:cc:39:f7: 4a:69:86:b6:8b:01:dd:19:9f:e6:b6:79:bc:e4:af:87:37:92: 85:8a:3b:05:50:06:90:22:14:5d:88:39:d9:c5:57:89:21:5c: ba:72:de:ac -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICCf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEIxRTg0RkFDRkFDQkMwQjc4Mzg1NjFFRjIxRTI4RjJG QUNGNURGRUMwHhcNMjQxMTE0MTk1OTAzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NTY4Ny1mMWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mmYFh+y/GMcsdQiWkottOhT2rePHwWERzSVoLMLp0CA3AL2DRf2VnvI2oq4 HiqnE/yjf48tO+dk+xaZ0O0ZWOXwB4r0IDhNhSu0eKtthPFK2XFKKgfUEY0tv8EX UCRZy92y0QkTYvXBD6QobmBEVthHxls7I5Q+9lKUtA3cQapwOFp0kHxMTMZcoUVt YnpWFKfDHX/G//MZgff53WvWYjob/nbEoliuNGene2ZVRCW9QH7BfB3IDPFEv9CR ZJB4AdQeVtON22U8p+fkBjRaN9uiKDtblaSrB0Rf1EJtEG4qNXsxp4sQvwRky8WD dqFRVIcYWvli83te3zIvXSD3KwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFLfpAWcJ Dp4z0Ghrob0FBGIRv5kUMB8GA1UdIwQYMBaAFLHoT6z6y8C3g4Vh7yHijy+s9d/s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8zNjg3MkE1RTgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi9zZWhQclByTHdMZURoV0h2SWVLUEw2ejEz LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlaFByUHJMd0xlRGhXSHZJZUtQTDZ6MTMtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMzY4NzJBNUU4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvMTQ2Qjc3MkM4 MkRDMTFFQTlCMTMwMDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAS3WyADBAC3WzgwDgQCAAIwCAMGAiQAk4CAMA0GCSqGSIb3 DQEBCwUAA4IBAQAlL1PDbPepbpxpQQMltXtoG+Xq5jLJLnFFsOo0OmLu1BzUfX6B tPW/hD8xiLvRa9r0JhEpKZBTu+rDqA7yuWH9JJUvOwaXxVKXlKvUyrxwLpaq1kYQ V8CMnYEjKQBdEsoPBXEbQwS6pu3nTZZhhoeEbf4lUojXuy/SPioYGOvtjZWlSiYu jXPhPKoZXbVgwBtZCNAmIHNvBQFXL3Y1ofRc9E/5NCnlv2fpTdNLI4k3H+U3imGw rbaPfh46qc+eRsNBjlaNAsr1DBxaNLHUcjrbO9mOgLfMOfdKaYa2iwHdGZ/mtnm8 5K+HN5KFijsFUAaQIhRdiDnZxVeJIVy6ct6s -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:04 2024 by rpki-client on console-ams.rpki-client.org