$ rpki-client -vvf rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/A8306EA22D6911EC9F557316C4F9AE02.roa File: A8306EA22D6911EC9F557316C4F9AE02.roa (raw, json) Hash identifier: nmxJ3jp13iRGBz5tI+EJH3Az2FHAACozz2zaxi/P4K4= Subject key identifier: 2C:C1:E5:F1:9A:C9:AB:02:08:73:73:4C:37:8C:28:F1:51:10:CA:FE Certificate issuer: /CN=A9180323/serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Certificate serial: 3404 Authority key identifier: D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/A8306EA22D6911EC9F557316C4F9AE02.roa Signing time: Fri 06 Sep 2024 15:01:06 +0000 ROA not before: Fri 06 Sep 2024 15:01:06 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38325 IP address blocks: 113.20.144.0/21 maxlen: 22 113.20.144.0/24 maxlen: 24 113.20.145.0/24 maxlen: 24 113.20.146.0/24 maxlen: 24 113.20.147.0/24 maxlen: 24 113.20.148.0/24 maxlen: 24 113.20.149.0/24 maxlen: 24 113.20.150.0/24 maxlen: 24 113.20.151.0/24 maxlen: 24 122.252.24.0/21 maxlen: 22 122.252.24.0/24 maxlen: 24 122.252.25.0/24 maxlen: 24 122.252.26.0/24 maxlen: 24 122.252.27.0/24 maxlen: 24 122.252.28.0/24 maxlen: 24 122.252.29.0/24 maxlen: 24 122.252.30.0/24 maxlen: 24 122.252.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13316 (0x3404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180323/serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Validity Not Before: Sep 6 15:01:06 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db1932-5798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:2d:aa:cc:74:91:af:24:c5:13:d6:79:1b: 61:6f:89:08:f0:59:31:c6:21:c1:d9:f7:c1:ff:c1: 27:24:23:7d:19:51:9e:f3:54:12:4a:2c:52:5a:8a: 20:69:86:74:62:36:11:78:c3:fa:01:20:19:95:09: 5f:2c:ab:3f:5e:64:80:20:a1:7a:3c:d3:11:a8:50: 35:0f:10:a9:56:71:cc:38:d2:27:9b:1f:dc:9c:b5: 27:c6:5a:11:58:39:8e:90:23:aa:1a:f3:39:43:aa: f5:bd:0a:78:0f:2a:56:21:6a:27:01:84:06:40:ca: 5c:16:b7:f7:b9:60:b5:97:38:54:2e:90:e0:83:f7: ab:d2:6a:44:3a:a6:e0:15:07:39:2d:73:10:b9:82: 54:7d:48:d6:99:16:be:3a:35:99:74:b9:7d:38:17: 83:6d:9b:85:47:80:bd:69:95:89:3b:00:6b:37:af: 40:49:a0:d8:90:67:ee:ad:a1:98:c8:8f:c0:e9:4e: 9c:e3:54:c8:5d:b5:4d:28:26:82:64:fa:23:7c:2e: fb:3a:6b:5e:96:bf:5c:58:12:a2:00:62:73:e9:a8: 24:83:eb:f6:e9:fe:f6:27:b2:cc:57:b0:e6:0c:3c: ca:89:fb:6d:ee:8f:18:17:01:5d:4b:08:8a:e7:01: 6f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C1:E5:F1:9A:C9:AB:02:08:73:73:4C:37:8C:28:F1:51:10:CA:FE X509v3 Authority Key Identifier: keyid:D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/A8306EA22D6911EC9F557316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.144.0/21 122.252.24.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:20:f2:3b:ee:ad:36:63:29:8b:05:6c:d8:46:90:91:85:d3: a0:4e:c2:09:6a:54:70:d3:96:64:b4:b0:dc:0d:a9:fb:e7:0e: 43:ab:68:22:ae:bb:04:9c:c2:af:d9:82:5e:fa:b4:c0:be:1d: 94:bd:56:32:0b:d6:a9:7b:d9:a0:85:d7:6d:28:39:3b:92:29: 40:f9:23:e7:0a:94:79:a8:da:ba:a9:92:38:e6:83:23:5e:4f: e5:c3:a3:1a:1f:74:67:2a:c2:c7:fa:4f:35:e4:51:3d:0c:ef: 2f:52:99:1d:08:9d:1f:7e:77:e5:05:3b:f2:ee:39:b4:37:6d: 50:35:a4:15:68:c6:dc:ac:c2:9c:95:0e:dc:b5:d1:3a:8f:e5: 47:f2:95:d0:fb:74:5c:6b:33:73:ab:28:77:d6:ce:28:2b:3d: 39:b1:9f:c8:b6:23:93:22:72:33:6c:0c:7c:f7:a5:3a:dd:f6: 24:e9:d0:02:c4:b6:56:be:8a:d5:55:32:0f:f0:be:32:6a:d2: e5:82:ba:04:79:5b:a7:f6:48:e6:91:ae:dc:37:4e:93:ff:59: 8a:aa:38:23:f1:eb:be:ea:9e:ce:6a:73:94:5d:de:df:ec:bb: a7:d9:a5:8a:05:0d:6e:82:b2:40:15:0c:a2:7e:dd:fc:b1:92: 05:69:fd:86 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMjMxMTAvBgNVBAUTKEQ3MEU4RUY4MEYzNTg3RUY5MDI4OTZEOEIzMERDQjBC NkVCMzM5QUYwHhcNMjQwOTA2MTUwMTA2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiMTkzMi01Nzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBItqsx0ka8kxRPWeRthb4kI8FkxxiHB2ffB/8EnJCN9GVGe81QSSixSWoog aYZ0YjYReMP6ASAZlQlfLKs/XmSAIKF6PNMRqFA1DxCpVnHMONInmx/cnLUnxloR WDmOkCOqGvM5Q6r1vQp4DypWIWonAYQGQMpcFrf3uWC1lzhULpDgg/er0mpEOqbg FQc5LXMQuYJUfUjWmRa+OjWZdLl9OBeDbZuFR4C9aZWJOwBrN69ASaDYkGfuraGY yI/A6U6c41TIXbVNKCaCZPojfC77Omtelr9cWBKiAGJz6agkg+v26f72J7LMV7Dm DDzKiftt7o8YFwFdSwiK5wFv/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCzB5fGa yasCCHNzTDeMKPFREMr+MB8GA1UdIwQYMBaAFNcOjvgPNYfvkCiW2LMNywtuszmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMyMy80RUI5NDI2QzFE OTMxMUUyQkY3OEQ4RjYwOEIwMkNEMi8xdzZPLUE4MWgtLVFLSmJZc3czTEMyNnpP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3Nk8tQTgxaC0tUUtKYllzdzNMQzI2ek9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzMjMvNEVCOTQyNkMxRDkzMTFFMkJGNzhEOEY2MDhCMDJDRDIvQTgzMDZFQTIy RDY5MTFFQzlGNTU3MzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANxFJADBAN6/BgwDQYJKoZIhvcNAQELBQADggEBAJog8jvu rTZjKYsFbNhGkJGF06BOwglqVHDTlmS0sNwNqfvnDkOraCKuuwScwq/Zgl76tMC+ HZS9VjIL1ql72aCF120oOTuSKUD5I+cKlHmo2rqpkjjmgyNeT+XDoxofdGcqwsf6 TzXkUT0M7y9SmR0InR9+d+UFO/LuObQ3bVA1pBVoxtyswpyVDty10TqP5UfyldD7 dFxrM3OrKHfWzigrPTmxn8i2I5MicjNsDHz3pTrd9iTp0ALEtla+itVVMg/wvjJq 0uWCugR5W6f2SOaRrtw3TpP/WYqqOCPx677qns5qc5Rd3t/su6fZpYoFDW6CskAV DKJ+3fyxkgVp/YY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org