$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/0964A56EF35511E8AC1ECA17C4F9AE02.roa File: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (raw, json) Hash identifier: buurxI1h6Fr4d4JUIhu/ZCJ7rztPfsYg3AAKPhpuU8I= Subject key identifier: 4E:E3:5A:A2:93:E6:10:66:38:6E:93:6A:78:AA:A2:8E:69:2D:29:8E Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1388 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/0964A56EF35511E8AC1ECA17C4F9AE02.roa Signing time: Wed 26 Jul 2023 17:14:34 +0000 ROA not before: Wed 26 Jul 2023 17:14:34 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 2635 IP address blocks: 45.121.180.0/24 maxlen: 24 45.121.181.0/24 maxlen: 24 45.121.182.0/24 maxlen: 24 45.121.183.0/24 maxlen: 24 103.62.32.0/24 maxlen: 24 103.62.33.0/24 maxlen: 24 103.62.34.0/24 maxlen: 24 103.62.35.0/24 maxlen: 24 2403:6b80::/40 maxlen: 48 2403:6b80:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 17:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5000 (0x1388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Jul 26 17:14:34 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1547a-92a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:ea:b9:96:92:ae:5a:d0:28:3d:33:20:2f: 3f:2a:86:c7:cc:bd:ee:ea:b3:3a:69:b0:11:7b:a6: ba:b6:5c:04:13:30:3e:82:4c:c1:a1:1c:7f:ba:84: 89:52:f0:d8:05:de:4a:04:20:51:a6:d6:31:80:81: 19:60:2b:e3:49:b0:10:c2:ee:ac:08:b4:8f:24:11: 4b:75:19:ad:e3:82:35:21:ac:2c:80:ca:da:3b:b3: 4a:fd:ab:fa:ed:2a:69:41:af:7d:ed:be:ad:05:87: 60:8f:cd:64:00:3d:f8:b4:5b:65:e7:4f:54:14:20: 3e:ec:78:72:f7:40:d8:72:39:1c:5a:62:87:c7:d2: 49:7c:10:20:e1:1c:9d:c2:4e:88:ec:db:58:4d:8d: e5:d9:b7:49:64:30:17:b5:c6:bf:39:71:cd:29:f6: 8e:e5:ff:79:f4:49:09:0f:d3:35:51:5a:5a:c7:1c: 1f:b5:17:fe:f5:c3:7a:9c:3e:2f:ac:94:2c:5a:f3: 61:a9:21:6d:22:bc:52:58:fd:10:a9:91:62:c8:e1: d6:98:29:13:51:b9:97:05:de:cb:8a:9d:79:85:a5: 6b:46:fa:60:0c:c0:78:a1:7f:1d:fa:4a:6e:15:50: c7:c8:b7:1f:0c:0a:4d:50:36:1f:40:97:ce:e3:d6: 83:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E3:5A:A2:93:E6:10:66:38:6E:93:6A:78:AA:A2:8E:69:2D:29:8E X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/0964A56EF35511E8AC1ECA17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.180.0/22 103.62.32.0/22 IPv6: 2403:6b80::/40 2403:6b80:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 82:6e:6a:70:b4:b5:42:b4:d2:02:b7:8f:d0:5a:51:bb:52:36: 8c:50:43:ce:a3:c4:41:c2:e8:72:09:30:3a:a8:6f:42:81:ed: 42:7f:2e:24:b0:3c:00:32:2d:9c:10:c1:a1:8c:b4:f8:d3:b5: dc:9c:3a:70:99:96:7d:32:a9:d7:28:69:d3:ef:3a:97:50:a8: 13:6b:9f:d4:20:20:49:ba:47:27:b7:9a:99:df:10:65:1b:ea: 92:4a:13:60:81:9b:6d:e5:5a:dc:35:92:53:cb:af:e4:8f:3a: 20:12:bf:32:53:b4:cb:ae:94:34:55:02:89:37:91:19:24:28: a6:3d:56:8d:96:42:59:08:96:ab:44:41:7e:32:10:40:99:a8: 8e:9b:cc:a9:74:29:8c:c1:bc:68:be:e7:94:0a:2f:d0:95:c5: 03:a8:c5:fa:69:a8:ce:38:db:5d:28:71:bb:e4:d6:a5:77:8d: ab:87:6f:80:bf:8d:9c:15:18:9a:9f:e8:b4:e1:8e:63:d5:b1: 9e:cf:6e:f3:5b:6e:38:9c:7e:09:b0:27:db:73:f5:88:03:4d: 7e:24:99:b4:e8:58:1f:0b:0a:2d:82:33:c1:85:4e:f7:f6:51: a1:b4:ff:36:82:9e:b2:13:c6:52:f9:5b:a9:f7:44:e0:60:54: 6b:34:b7:cd -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICE4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjMwNzI2MTcxNDM0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxNTQ3YS05MmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5zquZaSrlrQKD0zIC8/KobHzL3u6rM6abARe6a6tlwEEzA+gkzBoRx/uoSJ UvDYBd5KBCBRptYxgIEZYCvjSbAQwu6sCLSPJBFLdRmt44I1IawsgMraO7NK/av6 7SppQa997b6tBYdgj81kAD34tFtl509UFCA+7Hhy90DYcjkcWmKHx9JJfBAg4Ryd wk6I7NtYTY3l2bdJZDAXtca/OXHNKfaO5f959EkJD9M1UVpaxxwftRf+9cN6nD4v rJQsWvNhqSFtIrxSWP0QqZFiyOHWmCkTUbmXBd7Lip15haVrRvpgDMB4oX8d+kpu FVDHyLcfDApNUDYfQJfO49aDFwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFE7jWqKT 5hBmOG6Taniqoo5pLSmOMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I4M0YvM0RCM0RCRUE1NTRGMTFFODlCQzJFODU3QzRGOUFFMDIvMDk2NEE1NkVG MzU1MTFFOEFDMUVDQTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBAItebQDBAJnPiAwFgQCAAIwEAMGACQDa4AAAwYAJANrgP8w DQYJKoZIhvcNAQELBQADggEBAIJuanC0tUK00gK3j9BaUbtSNoxQQ86jxEHC6HIJ MDqob0KB7UJ/LiSwPAAyLZwQwaGMtPjTtdycOnCZln0yqdcoadPvOpdQqBNrn9Qg IEm6Rye3mpnfEGUb6pJKE2CBm23lWtw1klPLr+SPOiASvzJTtMuulDRVAok3kRkk KKY9Vo2WQlkIlqtEQX4yEECZqI6bzKl0KYzBvGi+55QKL9CVxQOoxfppqM44210o cbvk1qV3jauHb4C/jZwVGJqf6LThjmPVsZ7PbvNbbjicfgmwJ9tz9YgDTX4kmbTo WB8LCi2CM8GFTvf2UaG0/zaCnrITxlL5W6n3ROBgVGs0t80= -----END CERTIFICATE-----Generated at Tue Apr 16 18:27:57 2024 by rpki-client on console-fra.rpki-client.org