$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa File: 688029EE184B11EA85906435C4F9AE02.roa (raw, json) Hash identifier: Ue2DWY3vlt6mbw6ETB1qQ+hJjxZhtzYVXCNlUWmoUzI= Subject key identifier: FE:D9:A6:4E:45:60:5B:73:2A:F2:8F:7C:DC:D0:1E:FE:B3:4A:AD:46 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34B8 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:17 +0000 ROA not before: Fri 24 Jan 2025 16:02:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133823 IP address blocks: 45.116.156.0/24 maxlen: 24 45.116.157.0/24 maxlen: 24 45.116.158.0/24 maxlen: 24 45.116.159.0/24 maxlen: 24 103.54.93.0/24 maxlen: 24 103.54.94.0/24 maxlen: 24 103.54.95.0/24 maxlen: 24 103.104.132.0/24 maxlen: 24 103.104.133.0/24 maxlen: 24 103.104.134.0/24 maxlen: 24 103.104.135.0/24 maxlen: 24 103.111.196.0/24 maxlen: 24 103.111.197.0/24 maxlen: 24 103.111.198.0/24 maxlen: 24 103.111.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13496 (0x34b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:17 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b989-1ef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:49:3d:24:8c:5a:94:0a:2f:c0:f5:e2:b8:ad: f3:fb:65:c5:1a:c1:5f:cf:02:4c:e4:df:da:7e:b2: 70:79:fb:bd:80:81:b7:6a:cb:17:d8:06:e8:0b:ab: d9:d3:a3:cd:84:ab:80:21:a1:26:0d:a3:e9:17:c0: ac:28:b7:72:5c:3a:0f:76:9f:fa:32:fc:a1:07:24: 9e:c1:41:bc:8e:18:07:d6:c5:ef:1f:86:ab:6a:47: 23:4b:c0:e9:b2:67:75:b5:ed:58:ec:93:c5:7b:b1: e5:f0:4a:42:36:82:60:c0:5e:26:a2:82:7b:9f:50: ba:ab:29:fd:75:cb:5a:b7:23:43:f0:21:26:41:45: be:49:77:93:f1:2b:e0:10:d4:40:98:91:56:48:1d: fc:0d:75:0b:12:ec:17:b7:56:b2:06:2e:aa:ac:6f: 4d:12:b5:b6:4a:81:7e:3c:54:bc:e1:b0:40:4b:3d: 55:1e:c5:39:e7:c3:57:e1:a2:3c:49:c3:2f:82:a6: 7b:37:8b:ba:67:f4:91:e6:00:22:1b:8f:7e:33:68: ab:b0:bd:1e:57:eb:38:37:54:7f:c9:c2:6e:99:f9: 02:df:82:dd:35:f6:e9:c5:24:5b:d3:02:a7:85:7b: f8:5c:a6:38:20:b1:b7:55:66:9c:56:e2:af:bc:b7: c1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D9:A6:4E:45:60:5B:73:2A:F2:8F:7C:DC:D0:1E:FE:B3:4A:AD:46 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.156.0/22 103.54.93.0-103.54.95.255 103.104.132.0/22 103.111.196.0/22 Signature Algorithm: sha256WithRSAEncryption 95:01:3d:a3:05:09:e4:65:b5:6b:03:67:38:76:e2:dd:e9:92: d5:c5:4a:f2:7e:2e:14:5f:ef:dd:6a:1e:7d:b8:8f:f6:68:19: a7:7f:a9:aa:96:3f:a9:41:a4:ee:04:20:17:13:b7:73:c4:94: 9c:23:60:96:b2:c3:e0:96:a9:a3:6f:ef:65:26:c0:ac:ad:2f: 1f:e5:0b:30:0d:76:37:71:f4:17:67:c9:9f:1c:50:96:24:e4: cd:44:75:37:40:05:57:39:f3:31:99:ff:81:1a:54:6b:80:aa: d2:11:f6:70:90:36:2c:a6:ba:21:5f:77:83:a6:a2:d3:54:dd: be:c6:b8:5c:44:83:58:92:75:b5:5b:07:72:27:d5:68:60:43: ea:27:3b:8f:b2:eb:02:a0:6a:ea:f3:95:f5:d7:7f:cd:0c:5d: 89:9c:4e:cf:57:fb:2b:eb:63:ae:69:07:3b:eb:b0:e3:95:93: de:6a:a8:1c:17:39:e1:ed:82:5f:00:a9:82:22:ed:d3:26:fc: 09:9b:22:46:64:a1:37:dc:28:f2:8a:d1:04:00:88:3d:a3:e4: e4:a9:84:6b:f7:eb:dc:0f:d2:e8:58:42:95:32:b6:54:53:e2: fa:e3:50:1b:ac:2e:55:b3:98:a3:d6:c0:c1:c6:aa:de:0b:2e: 38:50:b5:c1 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk4OS0xZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0k9JIxalAovwPXiuK3z+2XFGsFfzwJM5N/afrJwefu9gIG3assX2AboC6vZ 06PNhKuAIaEmDaPpF8CsKLdyXDoPdp/6MvyhBySewUG8jhgH1sXvH4arakcjS8Dp smd1te1Y7JPFe7Hl8EpCNoJgwF4mooJ7n1C6qyn9dctatyND8CEmQUW+SXeT8Svg ENRAmJFWSB38DXULEuwXt1ayBi6qrG9NErW2SoF+PFS84bBASz1VHsU558NX4aI8 ScMvgqZ7N4u6Z/SR5gAiG49+M2irsL0eV+s4N1R/ycJumfkC34LdNfbpxSRb0wKn hXv4XKY4ILG3VWacVuKvvLfBiQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFP7Zpk5F YFtzKvKPfNzQHv6zSq1GMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNjg4MDI5RUUx ODRCMTFFQTg1OTA2NDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAItdJwwDAMEAGc2XQMEBWc2QAMEAmdohAMEAmdvxDANBgkq hkiG9w0BAQsFAAOCAQEAlQE9owUJ5GW1awNnOHbi3emS1cVK8n4uFF/v3WoefbiP 9mgZp3+pqpY/qUGk7gQgFxO3c8SUnCNglrLD4Japo2/vZSbArK0vH+ULMA12N3H0 F2fJnxxQliTkzUR1N0AFVznzMZn/gRpUa4Cq0hH2cJA2LKa6IV93g6ai01Tdvsa4 XESDWJJ1tVsHcifVaGBD6ic7j7LrAqBq6vOV9dd/zQxdiZxOz1f7K+tjrmkHO+uw 45WT3mqoHBc54e2CXwCpgiLt0yb8CZsiRmShN9wo8orRBACIPaPk5KmEa/fr3A/S 6FhClTK2VFPi+uNQG6wuVbOYo9bAwcaq3gsuOFC1wQ== -----END CERTIFICATE-----Generated at Sun Feb 16 21:51:38 2025 by rpki-client