$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/15875DC27B5E11EFAB71253BC4F9AE02.roa File: 15875DC27B5E11EFAB71253BC4F9AE02.roa (raw, json) Hash identifier: Po2BM3la9bQp8SxvolgWBVl3dKAKoE5yaonqoVw5jxw= Subject key identifier: C3:51:51:6F:A3:4A:11:50:E6:C5:01:A0:8A:1F:7F:7F:6C:53:D5:17 Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 12 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/15875DC27B5E11EFAB71253BC4F9AE02.roa Signing time: Wed 09 Oct 2024 20:15:05 +0000 ROA not before: Wed 09 Oct 2024 20:15:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 26380 IP address blocks: 45.115.128.0/23 maxlen: 24 45.115.130.0/23 maxlen: 24 103.55.148.0/23 maxlen: 24 103.55.150.0/23 maxlen: 24 180.92.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Oct 9 20:15:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6706e448-b279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4e:b1:80:ee:f6:bd:b8:af:35:c7:85:31:a8: 57:e9:2e:e4:57:61:25:33:f2:96:4c:42:24:66:08: 28:d8:84:b9:73:ae:3c:c4:9f:b1:78:67:bb:f9:d3: 16:41:7e:7e:f6:ee:e5:c5:34:bb:30:c9:63:0f:70: 15:5b:1f:6d:27:75:7b:ed:2d:51:6d:de:75:6e:72: 75:7e:97:b5:c4:b2:0e:f6:9e:7d:da:6d:c5:6c:43: de:ac:58:b0:5f:72:77:34:4c:d4:b7:0e:82:0d:09: 32:7c:e9:33:b0:f6:b4:c1:8d:2c:c0:13:7c:77:80: 54:c8:ae:b3:17:bd:75:42:8e:ef:f2:1f:04:bf:cd: 8a:8d:1b:db:d5:2a:c3:00:de:de:ca:73:5e:ec:c6: 45:30:f4:74:52:e6:e0:63:ef:77:7a:9d:e9:f5:9f: 1f:a3:da:e3:fe:94:54:a6:bc:36:82:2b:8a:0b:3b: f6:28:a5:96:59:22:cc:62:29:3c:3a:7c:2e:99:d9: c7:90:bc:20:bd:9b:71:8c:02:e0:2c:58:c4:c6:7e: 68:80:9e:ac:9a:6b:c8:08:13:ae:c0:66:34:86:f4: d6:4f:9f:ba:93:05:97:ae:54:ce:7b:f3:37:0a:b6: f8:88:ba:61:ef:1f:22:ae:6d:01:da:74:a1:df:3a: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:51:51:6F:A3:4A:11:50:E6:C5:01:A0:8A:1F:7F:7F:6C:53:D5:17 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/15875DC27B5E11EFAB71253BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.128.0/22 103.55.148.0/22 180.92.176.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:77:24:65:34:18:88:88:2a:63:3d:61:48:5a:5f:d2:ec:c2: 4a:1e:e7:18:8c:c4:ec:27:0c:a2:39:f2:78:8c:47:ed:c3:97: 93:d2:a2:80:5f:3d:c8:51:98:09:42:0a:a0:77:c0:6b:2d:d2: f9:3a:60:99:cc:7d:22:c5:c8:2f:b9:50:1c:4c:ac:57:69:7f: b0:34:32:36:91:83:13:1e:70:63:fc:e6:2b:5f:3a:37:15:87: 2f:f1:87:00:bf:23:75:35:50:b9:0d:a7:3e:fd:39:c7:a1:27: 48:85:82:9b:1c:a4:92:66:e2:a7:32:b7:e0:77:0c:3c:ab:0a: 9e:94:17:8d:e2:27:00:3c:a2:b0:f7:34:55:d2:53:85:ce:48: a0:21:ba:78:56:21:35:5f:6f:1e:99:ac:71:16:24:31:39:fd: 43:be:64:58:de:bc:c6:97:6a:b6:03:d2:ef:77:01:1e:05:97: 18:a3:59:0a:47:0b:7c:04:9a:2b:00:25:19:a1:8f:f5:ce:70: 6a:ff:5e:d7:39:ea:5b:bf:f7:90:b6:bb:17:4d:e1:e4:0d:ad: ee:50:b3:f9:87:3c:98:24:c9:16:62:cb:4a:06:62:85:14:96: d3:40:fd:39:1a:1c:ef:02:df:c1:16:c8:04:29:6c:85:26:77: 0b:8a:7d:72 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzlCRjExMC8GA1UEBRMoNUNBQ0U1QkY2NTVBQUNGN0NCQzYyNzJDNUM2OTdGMzc3 QTA2Q0U4QzAeFw0yNDEwMDkyMDE1MDVaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDZlNDQ4LWIyNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfTrGA7va9uK81x4UxqFfpLuRXYSUz8pZMQiRmCCjYhLlzrjzEn7F4Z7v50xZB fn727uXFNLswyWMPcBVbH20ndXvtLVFt3nVucnV+l7XEsg72nn3abcVsQ96sWLBf cnc0TNS3DoINCTJ86TOw9rTBjSzAE3x3gFTIrrMXvXVCju/yHwS/zYqNG9vVKsMA 3t7Kc17sxkUw9HRS5uBj73d6nen1nx+j2uP+lFSmvDaCK4oLO/YopZZZIsxiKTw6 fC6Z2ceQvCC9m3GMAuAsWMTGfmiAnqyaa8gIE67AZjSG9NZPn7qTBZeuVM578zcK tviIumHvHyKubQHadKHfOklnAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUw1FRb6NK EVDmxQGgih9/f2xT1RcwHwYDVR0jBBgwFoAUXKzlv2VarPfLxicsXGl/N3oGzoww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDOUJGL0JFMUQ0QTM0N0I0 RDExRUZCMDIzNkM3OEM0RjlBRTAyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pv dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEt6bHYyVmFyUGZMeGljc1hHbF9OM29Hem93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi8xNTg3NURDMjdC NUUxMUVGQUI3MTI1M0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAi1zgAMEAmc3lAMEAbRcsDANBgkqhkiG9w0BAQsFAAOCAQEA T3ckZTQYiIgqYz1hSFpf0uzCSh7nGIzE7CcMojnyeIxH7cOXk9KigF89yFGYCUIK oHfAay3S+Tpgmcx9IsXIL7lQHEysV2l/sDQyNpGDEx5wY/zmK186NxWHL/GHAL8j dTVQuQ2nPv05x6EnSIWCmxykkmbipzK34HcMPKsKnpQXjeInADyisPc0VdJThc5I oCG6eFYhNV9vHpmscRYkMTn9Q75kWN68xpdqtgPS73cBHgWXGKNZCkcLfASaKwAl GaGP9c5wav9e1znqW7/3kLa7F03h5A2t7lCz+Yc8mCTJFmLLSgZihRSW00D9ORoc 7wLfwRbIBClshSZ3C4p9cg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org