$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa File: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (raw, json) Hash identifier: LieNCtRR/x1UtodGGxeoi/zTfGlL9IAhjTnk2NT6pkU= Subject key identifier: 09:74:FB:DF:59:2A:3E:20:9D:1B:F6:A1:00:56:D1:F2:40:85:8D:00 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 04CC Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa Signing time: Thu 15 Jun 2023 00:58:27 +0000 ROA not before: Thu 15 Jun 2023 00:58:27 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38296 IP address blocks: 203.185.129.0/24 maxlen: 24 203.185.130.0/23 maxlen: 23 203.185.130.0/24 maxlen: 24 203.185.131.0/24 maxlen: 24 203.185.132.0/22 maxlen: 22 203.185.132.0/23 maxlen: 23 203.185.132.0/24 maxlen: 24 203.185.133.0/24 maxlen: 24 203.185.134.0/23 maxlen: 23 203.185.134.0/24 maxlen: 24 203.185.135.0/24 maxlen: 24 203.185.136.0/24 maxlen: 24 203.185.137.0/24 maxlen: 24 203.185.138.0/24 maxlen: 24 203.185.139.0/24 maxlen: 24 203.185.140.0/24 maxlen: 24 203.185.141.0/24 maxlen: 24 203.185.142.0/24 maxlen: 24 203.185.143.0/24 maxlen: 24 203.185.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Jun 15 00:58:27 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648a6232-f517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:12:5f:ea:d3:b3:a1:b2:ba:77:c4:d5:67: 01:f4:39:2e:0c:bc:5f:d0:a9:71:f6:2c:ab:8f:f9: 61:55:b6:cd:8c:de:dd:6d:de:ae:87:bc:8d:66:f2: 02:37:46:79:d6:89:1c:11:fa:83:63:f6:c3:34:39: 87:79:3a:e2:ef:6c:4f:e8:b4:2b:fe:4c:93:10:01: 4b:c2:e1:75:77:bc:10:22:48:32:a1:26:11:ab:40: 39:02:7d:96:7b:d6:b2:f0:76:cf:40:94:db:e0:d3: 10:33:76:21:b4:09:c0:95:48:15:5f:f2:9c:ed:85: 4f:9b:41:0c:a5:67:45:dc:39:b1:af:d2:96:d9:85: 0c:37:27:53:02:98:f3:79:df:b0:ab:09:58:52:d1: 64:ca:e4:dd:1e:eb:47:8c:3e:84:4d:32:7e:1f:26: 88:e3:a4:98:a4:c1:0d:c9:e1:3c:4d:8a:c4:3a:71: 9b:ce:56:28:28:97:32:cc:7d:0d:05:58:25:3b:4f: af:15:54:dd:dc:1e:5d:36:ab:59:d6:6d:9b:68:39: 3e:ce:01:09:0b:30:40:56:f0:ca:40:26:28:2b:a2: e8:35:78:fc:d5:27:3a:aa:c7:2b:eb:82:9a:6c:9d: 1f:c3:93:6f:08:8e:5b:0a:85:3e:a6:4a:f4:71:45: c7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:74:FB:DF:59:2A:3E:20:9D:1B:F6:A1:00:56:D1:F2:40:85:8D:00 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.185.129.0-203.185.145.255 Signature Algorithm: sha256WithRSAEncryption 62:c9:14:c1:d7:e0:90:06:d8:b0:44:48:b9:b1:37:d7:8e:63: e0:83:c2:c3:25:9f:dd:15:7f:68:56:12:07:f5:5d:30:3e:46: 6d:b3:1e:62:5f:13:c6:03:6d:11:40:36:fb:14:ae:61:a9:0d: 6a:16:66:77:e2:ab:f7:22:7a:cd:20:af:74:ca:48:af:15:63: b3:b4:a5:ee:bc:30:98:30:84:03:d1:93:d4:e0:25:ed:08:ba: 44:f7:cb:4b:24:e5:20:9f:c6:fd:8e:e0:a3:3f:ee:72:7b:d4: 83:c2:51:cf:25:54:63:5f:5f:9f:5b:ec:70:4d:a5:4c:e5:15: 7c:56:ac:6a:2f:fd:4f:13:70:8a:7b:85:5f:94:bf:59:ff:db: ed:f3:36:1d:ab:13:73:08:20:5e:ad:18:5a:73:c6:b0:bc:65: 89:0a:7b:d2:c3:11:dc:f3:fc:97:f7:da:04:01:06:a2:e4:71: e6:6e:8f:17:c1:18:ba:7a:65:7c:f1:a6:52:e6:d6:22:a8:c4: 87:b4:70:4f:8e:50:e8:a9:62:9b:d9:c2:59:55:cb:83:a7:fb: 17:94:f5:65:12:72:ee:1e:dd:f6:24:50:4f:64:7f:5f:e8:c5: e8:da:15:fd:e8:89:4f:8f:66:89:0c:5d:0d:b0:d8:3d:bc:22: c7:a3:49:1e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjMwNjE1MDA1ODI3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhhNjIzMi1mNTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWESX+rTs6GyunfE1WcB9DkuDLxf0Klx9iyrj/lhVbbNjN7dbd6uh7yNZvIC N0Z51okcEfqDY/bDNDmHeTri72xP6LQr/kyTEAFLwuF1d7wQIkgyoSYRq0A5An2W e9ay8HbPQJTb4NMQM3YhtAnAlUgVX/Kc7YVPm0EMpWdF3Dmxr9KW2YUMNydTApjz ed+wqwlYUtFkyuTdHutHjD6ETTJ+HyaI46SYpMENyeE8TYrEOnGbzlYoKJcyzH0N BVglO0+vFVTd3B5dNqtZ1m2baDk+zgEJCzBAVvDKQCYoK6LoNXj81Sc6qscr64Ka bJ0fw5NvCI5bCoU+pkr0cUXHzQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAl0+99Z Kj4gnRv2oQBW0fJAhY0AMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwQTgvNzBDMkVCN0FBMTk2MTFFQjgyMDBDRjA5QzRGOUFFMDIvREQ3Q0E1OEVB MjNGMTFFREJDREI2RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMu5gQMEAcu5kDANBgkqhkiG9w0BAQsFAAOCAQEAYskU wdfgkAbYsERIubE3145j4IPCwyWf3RV/aFYSB/VdMD5GbbMeYl8TxgNtEUA2+xSu YakNahZmd+Kr9yJ6zSCvdMpIrxVjs7Sl7rwwmDCEA9GT1OAl7Qi6RPfLSyTlIJ/G /Y7goz/ucnvUg8JRzyVUY19fn1vscE2lTOUVfFasai/9TxNwinuFX5S/Wf/b7fM2 HasTcwggXq0YWnPGsLxliQp70sMR3PP8l/faBAEGouRx5m6PF8EYunplfPGmUubW IqjEh7RwT45Q6Klim9nCWVXLg6f7F5T1ZRJy7h7d9iRQT2R/X+jF6NoV/eiJT49m iQxdDbDYPbwix6NJHg== -----END CERTIFICATE-----Generated at Tue May 7 01:58:23 2024 by rpki-client on console-fra.rpki-client.org