$ rpki-client -vvf rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/9AE9EDA80C8511ED84E8033BC4F9AE02.roa File: 9AE9EDA80C8511ED84E8033BC4F9AE02.roa (raw, json) Hash identifier: ftOJ78LkZwN0jBa3uD0IuWstrwm6/OGoDA7ca2HEaoc= Subject key identifier: DC:D4:11:0B:43:6D:4E:7A:BF:D2:37:C1:55:6F:04:7A:51:7C:F7:59 Certificate issuer: /CN=A917F247/serialNumber=904A235CB4747E08600FC1D26B93F51C4674EBAA Certificate serial: 02BF Authority key identifier: 90:4A:23:5C:B4:74:7E:08:60:0F:C1:D2:6B:93:F5:1C:46:74:EB:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/9AE9EDA80C8511ED84E8033BC4F9AE02.roa Signing time: Thu 07 Dec 2023 02:54:04 +0000 ROA not before: Thu 07 Dec 2023 02:54:04 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135409 IP address blocks: 14.137.32.0/19 maxlen: 24 103.70.64.0/22 maxlen: 24 103.103.60.0/22 maxlen: 24 182.54.144.0/22 maxlen: 24 182.255.28.0/22 maxlen: 24 202.5.112.0/20 maxlen: 24 203.2.130.0/23 maxlen: 24 203.8.206.0/23 maxlen: 24 203.21.140.0/22 maxlen: 24 203.24.104.0/22 maxlen: 24 203.27.96.0/23 maxlen: 24 2001:df2:2600::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.crl rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F247/serialNumber=904A235CB4747E08600FC1D26B93F51C4674EBAA Validity Not Before: Dec 7 02:54:04 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657133cc-14c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fc:04:bf:43:b4:14:0a:dd:26:a6:cf:5e:1c: a8:a9:6f:8c:0d:7e:a4:2d:15:cf:8c:36:c5:a3:be: d9:ea:dd:47:42:ab:7a:99:d4:d4:65:ef:be:4c:f0: a5:19:14:a5:dd:c9:ef:76:5a:5b:c4:6d:61:5f:e4: ab:59:ef:10:03:9b:d9:ec:9d:ef:51:a8:65:72:23: ca:ed:55:f5:aa:df:43:e6:82:9e:af:8d:0c:71:c9: a2:85:28:38:72:54:67:7b:39:02:a3:34:22:6e:fb: e5:09:9d:b6:8e:d9:64:09:c7:aa:7d:3e:83:15:09: 8e:47:e9:db:57:a3:b1:75:cd:72:cf:2f:a7:fe:44: 69:23:b0:6e:71:4a:d8:a8:c4:86:b2:12:b0:3f:39: c2:8b:d8:85:19:b5:59:c9:ba:36:5e:86:36:ba:c1: 7e:5b:08:35:14:a6:54:01:89:96:ba:f6:13:98:41: ae:fa:ab:ec:65:c6:bb:45:99:3b:5c:ad:76:f4:ea: fd:5b:d8:49:98:a0:a9:ed:a5:13:03:58:0b:c9:a7: c3:2b:a9:41:0a:3b:15:cf:81:8a:53:cc:77:c6:0d: 41:bc:9d:54:16:32:41:eb:81:9a:90:b9:dc:57:da: f2:65:1d:55:84:f7:f4:94:05:ec:71:4b:da:4d:61: 5b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D4:11:0B:43:6D:4E:7A:BF:D2:37:C1:55:6F:04:7A:51:7C:F7:59 X509v3 Authority Key Identifier: keyid:90:4A:23:5C:B4:74:7E:08:60:0F:C1:D2:6B:93:F5:1C:46:74:EB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/9AE9EDA80C8511ED84E8033BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.137.32.0/19 103.70.64.0/22 103.103.60.0/22 182.54.144.0/22 182.255.28.0/22 202.5.112.0/20 203.2.130.0/23 203.8.206.0/23 203.21.140.0/22 203.24.104.0/22 203.27.96.0/23 IPv6: 2001:df2:2600::/48 Signature Algorithm: sha256WithRSAEncryption 78:ab:7e:d5:20:da:5c:98:c2:ee:8e:e0:b7:5a:e1:0d:d2:65: 55:92:19:30:d2:cb:77:ba:df:eb:ae:73:e1:aa:17:c5:ce:5a: ba:a0:c7:b5:18:78:94:6a:bd:3c:8d:c2:1f:bb:5e:d4:07:54: d2:8e:81:59:b4:a8:7a:e9:46:3e:1b:ad:d4:81:22:c4:e3:15: 82:b9:fc:1e:ad:2e:44:8d:88:e1:1c:ff:ed:97:1b:de:dc:e9: f2:c9:21:4a:53:81:67:c4:f9:a5:c1:ff:eb:45:cb:04:5e:2b: b1:91:77:69:80:2d:e8:8a:69:9a:9f:46:43:f8:2a:89:af:bb: 72:7d:c8:b1:f2:e6:78:d7:df:cc:07:2a:89:d7:a3:1c:5d:08: 0a:26:5c:e9:17:1d:ac:fb:ca:b5:1f:3a:1e:f8:16:33:bc:e8: 83:b5:b2:06:64:fd:28:d8:d9:51:e8:91:2c:62:60:c4:c9:e1: 4f:19:bf:90:c5:15:ea:47:5e:c3:32:7d:3c:b2:8d:04:c0:6f: ab:8d:d9:83:35:c4:86:1c:8b:7c:0e:61:52:a3:45:b2:80:85: c6:e6:dd:e0:a0:d3:a0:80:03:00:2a:31:14:66:20:60:e1:93: b6:e9:df:3f:cc:a0:55:f3:1c:72:86:9f:69:1b:55:c5:6e:19: 1f:09:4a:a8 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNDcxMTAvBgNVBAUTKDkwNEEyMzVDQjQ3NDdFMDg2MDBGQzFEMjZCOTNGNTFD NDY3NEVCQUEwHhcNMjMxMjA3MDI1NDA0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxMzNjYy0xNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPwEv0O0FArdJqbPXhyoqW+MDX6kLRXPjDbFo77Z6t1HQqt6mdTUZe++TPCl GRSl3cnvdlpbxG1hX+SrWe8QA5vZ7J3vUahlciPK7VX1qt9D5oKer40MccmihSg4 clRnezkCozQibvvlCZ22jtlkCceqfT6DFQmOR+nbV6Oxdc1yzy+n/kRpI7BucUrY qMSGshKwPznCi9iFGbVZybo2XoY2usF+Wwg1FKZUAYmWuvYTmEGu+qvsZca7RZk7 XK129Or9W9hJmKCp7aUTA1gLyafDK6lBCjsVz4GKU8x3xg1BvJ1UFjJB64GakLnc V9ryZR1VhPf0lAXscUvaTWFbaQIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFNzUEQtD bU56v9I3wVVvBHpRfPdZMB8GA1UdIwQYMBaAFJBKI1y0dH4IYA/B0muT9RxGdOuq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI0Ny82RDIyRUFGMDhG MDMxMUVDQTVDOUZFMTJDNEY5QUUwMi9rRW9qWExSMGZnaGdEOEhTYTVQMUhFWjA2 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tFb2pYTFIwZmdoZ0Q4SFNhNVAxSEVaMDY2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0YyNDcvNkQyMkVBRjA4RjAzMTFFQ0E1QzlGRTEyQzRGOUFFMDIvOUFFOUVEQTgw Qzg1MTFFRDg0RTgwMzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMEgEAgABMEIDBAUOiSADBAJnRkADBAJnZzwDBAK2NpADBAK2/xwDBATKBXAD BAHLAoIDBAHLCM4DBALLFYwDBALLGGgDBAHLG2AwDwQCAAIwCQMHACABDfImADAN BgkqhkiG9w0BAQsFAAOCAQEAeKt+1SDaXJjC7o7gt1rhDdJlVZIZMNLLd7rf665z 4aoXxc5auqDHtRh4lGq9PI3CH7te1AdU0o6BWbSoeulGPhut1IEixOMVgrn8Hq0u RI2I4Rz/7Zcb3tzp8skhSlOBZ8T5pcH/60XLBF4rsZF3aYAt6Ippmp9GQ/gqia+7 cn3IsfLmeNffzAcqidejHF0ICiZc6RcdrPvKtR86HvgWM7zog7WyBmT9KNjZUeiR LGJgxMnhTxm/kMUV6kdewzJ9PLKNBMBvq43ZgzXEhhyLfA5hUqNFsoCFxubd4KDT oIADACoxFGYgYOGTtunfP8ygVfMccoafaRtVxW4ZHwlKqA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:01 2024 by rpki-client on console-ams.rpki-client.org