$ rpki-client -vvf rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa File: D737BB744B4111ECACAF3B6FC4F9AE02.roa (raw, json) Hash identifier: 78UGN0+7orQTcucSGGqLKKQdBZ/eBwdHdIbrun6HmgE= Subject key identifier: DA:0B:4C:EE:69:A5:34:37:41:77:B5:A6:45:A4:2A:3A:78:EC:25:29 Certificate issuer: /CN=A9186684/serialNumber=34A1232EA718469EADB7ADBC4CD9E00DF6A85206 Certificate serial: 0505 Authority key identifier: 34:A1:23:2E:A7:18:46:9E:AD:B7:AD:BC:4C:D9:E0:0D:F6:A8:52:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa Signing time: Wed 21 Aug 2024 00:14:16 +0000 ROA not before: Wed 21 Aug 2024 00:14:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55521 IP address blocks: 180.92.216.0/21 maxlen: 21 180.92.216.0/24 maxlen: 24 180.92.217.0/24 maxlen: 24 180.92.218.0/24 maxlen: 24 180.92.219.0/24 maxlen: 24 180.92.220.0/24 maxlen: 24 180.92.221.0/24 maxlen: 24 180.92.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.crl rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186684/serialNumber=34A1232EA718469EADB7ADBC4CD9E00DF6A85206 Validity Not Before: Aug 21 00:14:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c53158-372b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:6e:ad:20:24:bf:a4:46:af:aa:74:96:27: f9:e5:00:2b:73:22:10:e8:83:88:6e:ae:c2:c0:92: c6:54:b8:a3:77:0c:ca:eb:a6:f9:52:9d:ab:ad:05: f4:cf:34:6a:2c:56:31:7c:29:7b:38:72:19:74:4d: 3e:b3:c8:e3:0d:ca:3e:8b:a1:32:c3:e3:c5:7a:5d: 70:0d:8d:ff:f8:01:c7:91:7c:64:e2:97:ec:ce:a6: 07:dd:49:e1:6f:9f:a9:cb:17:ee:12:02:89:a8:c5: 7b:17:dc:ff:3b:dd:d0:03:8c:9d:d1:4f:fb:93:1f: 6f:eb:6a:da:f9:f2:7b:dc:7b:60:f4:4e:ea:10:7d: 10:21:bb:71:88:c0:53:5e:63:bc:ee:c2:cf:f9:8d: 00:0a:14:8d:e6:e7:59:d6:88:f7:d4:49:9d:99:40: 9a:3f:af:c6:aa:60:58:03:49:33:58:b1:43:41:01: fd:49:db:82:e1:90:06:06:fc:37:ef:be:19:dc:38: b8:94:d1:8a:bb:35:de:40:b3:14:45:1f:dc:9d:18: d0:83:9c:7d:35:55:bd:02:92:4a:bc:5d:5b:39:f0: 7d:bd:f6:a0:5c:15:c4:ec:c5:14:38:af:82:52:f2: a2:37:f9:bb:4a:86:ff:59:51:dc:2c:d4:4c:d0:1c: 75:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0B:4C:EE:69:A5:34:37:41:77:B5:A6:45:A4:2A:3A:78:EC:25:29 X509v3 Authority Key Identifier: keyid:34:A1:23:2E:A7:18:46:9E:AD:B7:AD:BC:4C:D9:E0:0D:F6:A8:52:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/NKEjLqcYRp6tt628TNngDfaoUgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKEjLqcYRp6tt628TNngDfaoUgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186684/36B86ADCD89F11EBAB98C55AC4F9AE02/D737BB744B4111ECACAF3B6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.92.216.0/21 Signature Algorithm: sha256WithRSAEncryption 33:3e:6a:9a:6d:31:0e:1a:38:ec:df:f6:2e:45:1f:6c:f4:05: 3e:52:9a:a5:96:12:7e:cf:23:2e:82:20:61:99:64:df:cf:e4: 92:48:00:eb:38:16:53:7c:3a:4f:e6:b6:d8:b4:7e:6b:b0:05: 9c:aa:fb:b6:1c:28:59:bd:d5:1a:3d:ab:f1:ef:ae:12:32:57: d0:a6:9a:e9:8d:ee:72:b9:3d:e2:97:15:f8:15:70:20:d4:b3: 96:3f:aa:af:34:b7:92:09:66:a6:f3:b9:e8:72:4e:89:4c:0c: 3c:89:70:32:46:7b:78:3c:bf:90:15:31:cd:26:7b:4c:93:6f: b5:ee:f0:37:78:31:b9:a5:25:c6:41:48:4e:0e:94:58:f6:e8: fc:a7:a8:04:e7:99:b1:4f:ee:3c:43:51:61:4b:d4:34:a7:fd: 96:e6:f4:e7:31:ae:1f:d5:1e:37:60:89:e1:59:b3:a0:1e:ec: 8e:5a:88:c8:c1:b6:4e:8c:f1:b7:56:15:5f:f9:ab:be:8b:ed: 6c:e5:5b:19:2e:42:ff:9d:88:75:bf:d8:91:86:cc:77:df:5c: b2:ca:48:e9:02:cb:6d:a5:43:eb:7e:87:10:e3:63:34:58:25: 3b:fc:a9:f4:0e:09:2d:65:de:6d:c2:e0:64:9a:2c:e1:9a:b6: ad:3a:94:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY2ODQxMTAvBgNVBAUTKDM0QTEyMzJFQTcxODQ2OUVBREI3QURCQzRDRDlFMDBE RjZBODUyMDYwHhcNMjQwODIxMDAxNDE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MzE1OC0zNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcFurSAkv6RGr6p0lif55QArcyIQ6IOIbq7CwJLGVLijdwzK66b5Up2rrQX0 zzRqLFYxfCl7OHIZdE0+s8jjDco+i6Eyw+PFel1wDY3/+AHHkXxk4pfszqYH3Unh b5+pyxfuEgKJqMV7F9z/O93QA4yd0U/7kx9v62ra+fJ73Htg9E7qEH0QIbtxiMBT XmO87sLP+Y0AChSN5udZ1oj31EmdmUCaP6/GqmBYA0kzWLFDQQH9SduC4ZAGBvw3 774Z3Di4lNGKuzXeQLMURR/cnRjQg5x9NVW9ApJKvF1bOfB9vfagXBXE7MUUOK+C UvKiN/m7Sob/WVHcLNRM0Bx1zQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNoLTO5p pTQ3QXe1pkWkKjp47CUpMB8GA1UdIwQYMBaAFDShIy6nGEaerbetvEzZ4A32qFIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjY4NC8zNkI4NkFEQ0Q4 OUYxMUVCQUI5OEM1NUFDNEY5QUUwMi9OS0VqTHFjWVJwNnR0NjI4VE5uZ0RmYW9V Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LRWpMcWNZUnA2dHQ2MjhUTm5nRGZhb1VnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY2ODQvMzZCODZBRENEODlGMTFFQkFCOThDNTVBQzRGOUFFMDIvRDczN0JCNzQ0 QjQxMTFFQ0FDQUYzQjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO0XNgwDQYJKoZIhvcNAQELBQADggEBADM+apptMQ4aOOzf 9i5FH2z0BT5SmqWWEn7PIy6CIGGZZN/P5JJIAOs4FlN8Ok/mtti0fmuwBZyq+7Yc KFm91Ro9q/HvrhIyV9CmmumN7nK5PeKXFfgVcCDUs5Y/qq80t5IJZqbzuehyTolM DDyJcDJGe3g8v5AVMc0me0yTb7Xu8Dd4MbmlJcZBSE4OlFj26PynqATnmbFP7jxD UWFL1DSn/Zbm9Ocxrh/VHjdgieFZs6Ae7I5aiMjBtk6M8bdWFV/5q76L7WzlWxku Qv+diHW/2JGGzHffXLLKSOkCy22lQ+t+hxDjYzRYJTv8qfQOCS1l3m3C4GSaLOGa tq06lKM= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:44 2024 by rpki-client on console-ams.rpki-client.org