$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/0964A56EF35511E8AC1ECA17C4F9AE02.roa File: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (raw, json) Hash identifier: ts6CuXT017m+Eo1tnvA5GQ371D5wqgoVWLN1l6w+WmY= Subject key identifier: 5A:03:09:94:F5:5E:CC:26:15:17:1C:B0:12:01:66:B1:32:E8:3E:65 Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1446 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/0964A56EF35511E8AC1ECA17C4F9AE02.roa Signing time: Wed 24 Jul 2024 17:14:43 +0000 ROA not before: Wed 24 Jul 2024 17:14:43 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 2635 IP address blocks: 45.121.180.0/24 maxlen: 24 45.121.181.0/24 maxlen: 24 45.121.182.0/24 maxlen: 24 45.121.183.0/24 maxlen: 24 103.62.32.0/24 maxlen: 24 103.62.33.0/24 maxlen: 24 103.62.34.0/24 maxlen: 24 103.62.35.0/24 maxlen: 24 2403:6b80::/40 maxlen: 48 2403:6b80:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5190 (0x1446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Jul 24 17:14:43 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a13683-7384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:e1:e8:bc:e1:50:a4:93:85:88:13:02:29: 22:7d:2e:48:82:a8:60:9f:8c:06:0d:ff:07:e3:9f: be:b7:80:b8:95:4b:45:e6:32:b2:4a:7e:cc:64:cc: 07:4b:5a:15:2b:39:b6:01:b8:37:a1:6f:b0:93:ed: 9c:e7:75:8c:f2:6f:23:f7:56:f7:01:c1:ab:c5:86: cd:59:3e:47:ce:86:59:81:f7:8c:eb:3c:de:7d:81: 84:7b:e9:6e:2e:1e:30:8f:18:d9:34:20:4a:13:8e: 35:0b:28:6e:84:f5:91:f5:44:08:d1:56:dd:cb:99: 7f:59:08:61:49:f7:01:46:eb:38:3a:81:b3:ca:d2: fa:7a:7e:b3:e8:15:a9:05:8a:f8:ba:07:46:fa:62: 24:fd:a6:03:85:d7:4e:8b:85:0c:b1:1e:0b:03:ca: 5d:3c:16:b0:0f:ce:78:dd:8d:dc:94:29:ce:3a:36: 76:aa:e0:28:4e:9b:8c:ac:bc:26:3e:4c:53:6f:e7: 0f:40:b5:c8:5d:2b:de:5c:d1:54:cd:39:2e:0d:59: 9c:bb:77:dd:05:9f:42:04:2a:ba:46:be:49:fe:b0: ce:49:d0:37:64:d3:67:e8:2d:f6:7e:85:9b:2b:89: e9:ad:62:7b:32:9a:2f:e9:b1:71:11:4e:4e:46:bc: 5b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:03:09:94:F5:5E:CC:26:15:17:1C:B0:12:01:66:B1:32:E8:3E:65 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/0964A56EF35511E8AC1ECA17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.180.0/22 103.62.32.0/22 IPv6: 2403:6b80::/40 2403:6b80:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 22:3e:3f:54:1d:da:4b:7f:b1:a4:d3:7d:b0:d6:b9:ca:e8:ec: b2:b7:b6:81:82:9f:9e:22:1a:bb:78:3e:f4:f6:07:50:82:c8: ab:2e:ea:e4:b3:1c:5a:d9:5b:95:b3:03:96:48:d1:18:fb:f0: fc:71:f8:e5:a3:79:07:35:8e:37:36:c8:52:d4:63:95:2d:a0: 21:a1:58:a0:eb:a0:99:53:d1:3b:24:01:8b:3a:4a:30:db:d3: 44:0d:78:cb:2d:32:ce:3a:ee:7b:f4:f3:80:a1:3e:98:38:24: 63:fd:2b:9c:ec:7f:e3:e4:bf:98:49:f1:d2:5a:f4:a6:a9:e1: a1:aa:02:ee:a5:2a:dc:c9:e8:3e:54:5a:b8:11:77:60:35:d7: da:a4:b3:41:b3:ee:e0:1e:e9:99:7a:6f:cd:1d:18:06:56:11: 07:09:cb:4a:f5:07:e0:92:ad:fb:4c:7c:d8:04:7a:25:f8:b5: c2:6e:f8:1b:04:7c:d6:a2:dc:af:db:70:33:27:a5:f4:01:00: c5:65:aa:b1:f9:79:1e:7f:92:71:08:ce:de:63:9b:1d:2d:e9: e6:81:e7:52:50:7c:b7:e3:ab:bf:ea:4b:43:34:a9:89:b0:ab: e7:ef:e8:ae:32:b8:c6:92:65:da:17:ff:da:40:46:75:55:64: 5e:73:25:4c -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICFEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjQwNzI0MTcxNDQzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExMzY4My03Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApALh6LzhUKSThYgTAikifS5Igqhgn4wGDf8H45++t4C4lUtF5jKySn7MZMwH S1oVKzm2Abg3oW+wk+2c53WM8m8j91b3AcGrxYbNWT5HzoZZgfeM6zzefYGEe+lu Lh4wjxjZNCBKE441CyhuhPWR9UQI0Vbdy5l/WQhhSfcBRus4OoGzytL6en6z6BWp BYr4ugdG+mIk/aYDhddOi4UMsR4LA8pdPBawD8543Y3clCnOOjZ2quAoTpuMrLwm PkxTb+cPQLXIXSveXNFUzTkuDVmcu3fdBZ9CBCq6Rr5J/rDOSdA3ZNNn6C32foWb K4nprWJ7Mpov6bFxEU5ORrxbKwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFFoDCZT1 XswmFRccsBIBZrEy6D5lMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I4M0YvM0RCM0RCRUE1NTRGMTFFODlCQzJFODU3QzRGOUFFMDIvMDk2NEE1NkVG MzU1MTFFOEFDMUVDQTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBAItebQDBAJnPiAwFgQCAAIwEAMGACQDa4AAAwYAJANrgP8w DQYJKoZIhvcNAQELBQADggEBACI+P1Qd2kt/saTTfbDWucro7LK3toGCn54iGrt4 PvT2B1CCyKsu6uSzHFrZW5WzA5ZI0Rj78Pxx+OWjeQc1jjc2yFLUY5UtoCGhWKDr oJlT0TskAYs6SjDb00QNeMstMs467nv084ChPpg4JGP9K5zsf+Pkv5hJ8dJa9Kap 4aGqAu6lKtzJ6D5UWrgRd2A119qks0Gz7uAe6Zl6b80dGAZWEQcJy0r1B+CSrftM fNgEeiX4tcJu+BsEfNai3K/bcDMnpfQBAMVlqrH5eR5/knEIzt5jmx0t6eaB51JQ fLfjq7/qS0M0qYmwq+fv6K4yuMaSZdoX/9pARnVVZF5zJUw= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:00 2024 by rpki-client on console-fra.rpki-client.org