$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa File: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (raw, json) Hash identifier: Bdwc8QswyKEgheRUIFpGKVEVqvl2AD4iR5m0y3NHcjU= Subject key identifier: B3:4F:26:F8:A1:02:AA:36:D5:0E:5B:86:97:67:93:2F:EA:4D:7F:0A Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 058F Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa Signing time: Sat 15 Jun 2024 01:45:46 +0000 ROA not before: Sat 15 Jun 2024 01:45:46 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38296 IP address blocks: 203.185.129.0/24 maxlen: 24 203.185.130.0/23 maxlen: 23 203.185.130.0/24 maxlen: 24 203.185.131.0/24 maxlen: 24 203.185.132.0/22 maxlen: 22 203.185.132.0/23 maxlen: 23 203.185.132.0/24 maxlen: 24 203.185.133.0/24 maxlen: 24 203.185.134.0/23 maxlen: 23 203.185.134.0/24 maxlen: 24 203.185.135.0/24 maxlen: 24 203.185.136.0/24 maxlen: 24 203.185.137.0/24 maxlen: 24 203.185.138.0/24 maxlen: 24 203.185.139.0/24 maxlen: 24 203.185.140.0/24 maxlen: 24 203.185.141.0/24 maxlen: 24 203.185.142.0/24 maxlen: 24 203.185.143.0/24 maxlen: 24 203.185.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 22:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Jun 15 01:45:46 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666cf24a-4838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:87:d5:5f:0c:58:4c:09:6d:e5:d9:e1:8b:d0: 56:99:c8:e9:68:f7:9a:68:7a:c7:39:a1:d5:2a:a3: 4f:96:25:eb:32:3e:ac:6a:e4:51:c8:14:7b:ab:a6: e1:c3:3e:e0:83:ed:42:2a:dc:42:9f:06:a1:2b:f8: 39:88:eb:93:a0:eb:76:c4:ee:44:c0:ba:67:41:c5: 16:59:41:7f:87:cc:4e:b7:ee:ec:af:ba:a4:2a:d3: 76:80:46:48:de:4f:9a:44:52:ac:14:4b:55:96:7d: 06:4a:bd:c4:40:b0:66:b9:a2:43:36:be:25:46:72: c1:85:7b:ca:3f:a9:de:3d:48:9e:5f:ce:cc:fa:7d: c0:0b:84:91:48:9a:d0:02:b6:82:93:13:f6:49:bb: 81:8d:4c:f1:35:d3:7a:d5:61:8c:2a:4e:be:a7:3a: 5d:64:41:93:f7:5e:03:b3:4e:fb:58:4b:d2:a8:e3: 34:86:6f:50:c9:13:7a:1a:f6:3b:55:7d:72:cd:b5: 95:7c:45:1c:e4:13:47:47:60:9a:37:bc:df:fa:b2: 5d:ac:db:4b:1b:54:27:56:24:93:5b:72:46:96:d4: ca:8a:7e:b7:cd:76:1b:82:d1:55:aa:59:4f:41:2f: 9e:21:a1:0a:4e:b2:7f:a6:ec:3a:7a:9b:74:5c:14: bf:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4F:26:F8:A1:02:AA:36:D5:0E:5B:86:97:67:93:2F:EA:4D:7F:0A X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.185.129.0-203.185.145.255 Signature Algorithm: sha256WithRSAEncryption 22:b0:8f:63:39:3a:82:b6:80:3f:fd:91:dc:4b:e2:69:b4:d4: cb:fe:bd:c5:da:c2:66:57:08:13:c5:1c:e0:82:e0:46:91:26: fe:0e:9a:15:fa:c9:1c:e0:46:a3:4a:ba:0d:3d:83:05:98:ce: d0:15:c5:fb:55:68:11:60:d1:66:64:fd:bb:93:cc:b2:a1:04: a9:38:b3:40:a9:e8:af:a1:89:a0:f7:68:12:cc:a3:8d:cd:5d: f1:d6:44:b4:04:31:38:af:6c:5a:57:10:5c:9d:c4:29:89:fb: 17:a0:fb:42:8b:0c:07:74:74:10:27:2f:17:91:18:ef:62:5c: 5e:e0:c9:b0:d4:82:2c:fe:2c:2f:1e:63:6c:da:06:44:59:4a: d6:b6:80:57:66:a2:d2:31:a6:b5:cb:9e:ab:b5:c7:d4:2b:07: 38:f0:c0:e9:43:d2:03:eb:0a:78:0d:6d:9f:ed:73:bb:a1:7b: f9:56:a3:68:b8:7b:4a:0d:ff:92:07:42:3d:fa:68:62:44:26: d1:99:1e:1d:02:ec:77:43:fc:57:59:0b:c7:18:51:59:20:ae: 17:92:00:25:a2:a0:9d:29:e1:63:76:a3:b2:2d:b0:dc:de:f2: 48:b2:a0:ea:07:12:34:1a:0c:d4:84:58:83:7a:0a:7e:b9:f1: ce:b6:05:8a -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjQwNjE1MDE0NTQ2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjZjI0YS00ODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7YfVXwxYTAlt5dnhi9BWmcjpaPeaaHrHOaHVKqNPliXrMj6sauRRyBR7q6bh wz7gg+1CKtxCnwahK/g5iOuToOt2xO5EwLpnQcUWWUF/h8xOt+7sr7qkKtN2gEZI 3k+aRFKsFEtVln0GSr3EQLBmuaJDNr4lRnLBhXvKP6nePUieX87M+n3AC4SRSJrQ AraCkxP2SbuBjUzxNdN61WGMKk6+pzpdZEGT914Ds077WEvSqOM0hm9QyRN6GvY7 VX1yzbWVfEUc5BNHR2CaN7zf+rJdrNtLG1QnViSTW3JGltTKin63zXYbgtFVqllP QS+eIaEKTrJ/puw6ept0XBS/cQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLNPJvih Aqo21Q5bhpdnky/qTX8KMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwQTgvNzBDMkVCN0FBMTk2MTFFQjgyMDBDRjA5QzRGOUFFMDIvREQ3Q0E1OEVB MjNGMTFFREJDREI2RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMu5gQMEAcu5kDANBgkqhkiG9w0BAQsFAAOCAQEAIrCP Yzk6graAP/2R3EviabTUy/69xdrCZlcIE8Uc4ILgRpEm/g6aFfrJHOBGo0q6DT2D BZjO0BXF+1VoEWDRZmT9u5PMsqEEqTizQKnor6GJoPdoEsyjjc1d8dZEtAQxOK9s WlcQXJ3EKYn7F6D7QosMB3R0ECcvF5EY72JcXuDJsNSCLP4sLx5jbNoGRFlK1raA V2ai0jGmtcueq7XH1CsHOPDA6UPSA+sKeA1tn+1zu6F7+VajaLh7Sg3/kgdCPfpo YkQm0ZkeHQLsd0P8V1kLxxhRWSCuF5IAJaKgnSnhY3ajsi2w3N7ySLKg6gcSNBoM 1IRYg3oKfrnxzrYFig== -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:29 2024 by rpki-client on console-ams.rpki-client.org