$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa File: 5A87E8B01A7E11EAB32DB717C4F9AE02.roa (raw, json) Hash identifier: hyFceqcwFl1cEe4/lMk2Ujn+4gATE5YnaPPLYDmrERw= Subject key identifier: 14:26:83:A9:ED:4F:48:37:36:A2:01:81:44:01:16:C1:A6:D9:3A:EE Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3413 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:02:38 +0000 ROA not before: Tue 30 Jul 2024 16:02:38 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24206 IP address blocks: 110.44.168.0/22 maxlen: 22 110.44.168.0/23 maxlen: 23 110.44.168.0/24 maxlen: 24 110.44.169.0/24 maxlen: 24 110.44.170.0/23 maxlen: 23 110.44.170.0/24 maxlen: 24 110.44.171.0/24 maxlen: 24 110.44.173.0/24 maxlen: 24 110.44.174.0/24 maxlen: 24 203.84.136.0/21 maxlen: 21 203.84.136.0/22 maxlen: 22 203.84.136.0/23 maxlen: 23 203.84.136.0/24 maxlen: 24 203.84.137.0/24 maxlen: 24 203.84.138.0/23 maxlen: 23 203.84.138.0/24 maxlen: 24 203.84.139.0/24 maxlen: 24 203.84.140.0/22 maxlen: 22 203.84.140.0/23 maxlen: 23 203.84.140.0/24 maxlen: 24 203.84.141.0/24 maxlen: 24 203.84.142.0/23 maxlen: 23 203.84.142.0/24 maxlen: 24 203.84.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13331 (0x3413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jul 30 16:02:38 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a90e9e-89d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4f:39:aa:1b:6f:f9:50:ee:88:e5:71:8e:36: d0:2e:47:be:2e:14:ca:c7:38:91:7b:b1:1a:f8:d5: 31:25:b2:dc:7a:5c:4e:45:b0:cc:89:b2:51:de:ae: 7b:da:a9:3c:07:b8:30:4c:46:89:2d:9e:bb:07:c0: 12:c8:cd:68:d7:79:74:cb:69:ef:bb:d0:77:50:85: ac:05:22:79:59:75:8d:80:4e:bd:52:60:58:9c:9c: c5:ff:0d:f3:9e:46:29:57:3e:09:81:c1:03:9d:62: 25:d9:8d:3c:71:3b:10:48:7b:34:6a:a9:b3:69:3e: 2b:f0:c5:ea:b6:8f:3f:7d:62:83:fd:99:7c:bd:9b: 0e:b2:e4:b9:5f:52:c1:8a:cc:61:e3:01:2a:fa:84: c6:58:f0:f9:91:29:8c:73:bd:bf:48:c6:6c:80:70: 14:6b:0c:5e:4c:a5:a8:85:c9:95:d4:1f:5d:76:63: fd:8b:99:fe:b6:6e:f6:cd:74:16:a7:dd:a3:74:c5: 12:93:84:e0:32:7d:66:aa:c5:1b:24:07:d5:98:57: 8b:d6:c4:1b:4b:ee:1b:51:ed:1b:15:d3:f7:d7:f0: 72:0a:4d:79:8f:28:41:cb:2c:4f:1e:d7:5b:49:0d: bf:e6:9f:82:0c:13:18:8a:f0:d1:4e:7d:ca:e2:f9: dc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:26:83:A9:ED:4F:48:37:36:A2:01:81:44:01:16:C1:A6:D9:3A:EE X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.44.168.0/22 110.44.173.0-110.44.174.255 203.84.136.0/21 Signature Algorithm: sha256WithRSAEncryption 76:b2:18:9b:52:70:a3:ce:0b:1c:b4:37:57:62:33:ea:61:2a: 6d:60:74:c2:17:42:f8:04:b7:57:df:9c:df:73:29:bf:a2:b5: 6c:9b:1d:ec:7c:ac:20:4b:cc:a8:a4:97:87:b2:e5:2e:82:4e: 90:3e:83:42:02:bc:9c:a3:da:31:ef:9e:d0:a4:34:c1:70:e7: 53:52:6f:84:42:53:df:1d:0b:43:f6:f5:ed:b3:90:75:ba:6b: 32:9e:c4:1e:24:24:42:2d:02:d4:89:93:7f:6a:72:90:5b:ef: 37:0c:4f:48:6d:21:91:1d:c5:ad:fe:e7:64:8f:bf:fc:22:50: a9:ba:f2:ae:b1:88:64:e2:8a:8d:27:21:1e:ba:38:0e:2c:9b: c3:1b:6d:17:31:a4:4a:93:ec:29:62:54:d7:42:75:43:e9:67: c0:87:50:9c:ff:69:11:88:05:48:ef:42:f2:bc:74:80:bb:d0: 92:4b:f7:31:5c:50:d8:e2:56:a8:72:4a:62:3f:fb:23:a9:09: a6:c6:ea:80:17:55:c6:81:ba:b0:9b:9a:81:fc:b4:b4:46:57: 66:a6:22:75:73:6d:d0:6e:3b:2e:6b:e8:e4:39:d4:b1:e3:36: 4a:4f:0b:34:b7:dc:bd:1e:15:bb:7a:32:c3:82:55:41:68:3a: bc:e6:03:64 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICNBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwNzMwMTYwMjM4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGU5ZS04OWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0k85qhtv+VDuiOVxjjbQLke+LhTKxziRe7Ea+NUxJbLcelxORbDMibJR3q57 2qk8B7gwTEaJLZ67B8ASyM1o13l0y2nvu9B3UIWsBSJ5WXWNgE69UmBYnJzF/w3z nkYpVz4JgcEDnWIl2Y08cTsQSHs0aqmzaT4r8MXqto8/fWKD/Zl8vZsOsuS5X1LB isxh4wEq+oTGWPD5kSmMc72/SMZsgHAUawxeTKWohcmV1B9ddmP9i5n+tm72zXQW p92jdMUSk4TgMn1mqsUbJAfVmFeL1sQbS+4bUe0bFdP31/ByCk15jyhByyxPHtdb SQ2/5p+CDBMYivDRTn3K4vncqwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBQmg6nt T0g3NqIBgUQBFsGm2TruMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNUE4N0U4QjAx QTdFMTFFQUIzMkRCNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAJuLKgwDAMEAG4srQMEAG4srgMEA8tUiDANBgkqhkiG9w0B AQsFAAOCAQEAdrIYm1Jwo84LHLQ3V2Iz6mEqbWB0whdC+AS3V9+c33Mpv6K1bJsd 7HysIEvMqKSXh7LlLoJOkD6DQgK8nKPaMe+e0KQ0wXDnU1JvhEJT3x0LQ/b17bOQ dbprMp7EHiQkQi0C1ImTf2pykFvvNwxPSG0hkR3Frf7nZI+//CJQqbryrrGIZOKK jSchHro4DiybwxttFzGkSpPsKWJU10J1Q+lnwIdQnP9pEYgFSO9C8rx0gLvQkkv3 MVxQ2OJWqHJKYj/7I6kJpsbqgBdVxoG6sJuagfy0tEZXZqYidXNt0G47Lmvo5DnU seM2Sk8LNLfcvR4Vu3oyw4JVQWg6vOYDZA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:10:21 2024 by rpki-client on console-fra.rpki-client.org