$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/7D2EA194B20711EA8B74F445C4F9AE02.roa File: 7D2EA194B20711EA8B74F445C4F9AE02.roa (raw, json) Hash identifier: slzLXwHdalwSZSG2cdS37Tf6mGAWnLHG4M+IywxJpUk= Subject key identifier: F7:41:53:4B:3C:48:01:2B:0D:05:AE:7C:01:BB:42:06:53:F3:26:25 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 15F9 Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/7D2EA194B20711EA8B74F445C4F9AE02.roa Signing time: Fri 18 Oct 2024 16:54:46 +0000 ROA not before: Fri 18 Oct 2024 16:54:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45102 IP address blocks: 43.242.168.0/22 maxlen: 24 103.38.56.0/22 maxlen: 24 2401:8680::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5625 (0x15f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: Oct 18 16:54:46 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671292d6-7054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6d:e9:67:25:2f:a4:83:e3:75:c3:9c:d9:87: a7:6b:4b:05:c5:af:5d:3a:85:4e:10:9c:71:4b:bc: f0:98:16:e4:5f:4b:e5:9a:a1:b0:73:56:e7:4a:83: 70:78:21:39:31:39:a1:f3:25:8f:05:e6:fd:a2:11: 87:d2:ab:fb:b8:b3:24:46:e2:5c:6b:9c:90:1b:cb: 04:29:34:b3:83:2e:ae:53:11:a9:bb:35:f4:b5:72: 78:7c:31:bd:5c:09:df:12:b5:0c:36:86:38:75:f6: 30:bd:c5:67:b0:84:5d:af:18:19:7c:ba:5d:fd:35: 71:f3:5f:6d:b9:d8:83:8a:c4:06:76:06:f1:fc:fe: 2f:7e:c0:b6:31:9b:d1:a2:95:90:92:8c:bf:5c:0d: da:79:83:de:73:75:b5:b7:b3:f6:b7:c4:a0:9b:b7: 73:9f:a0:23:e2:13:1d:3f:ee:a3:5e:85:d7:92:5e: 6d:9b:18:ed:3b:8a:12:1d:d9:0d:b3:4e:a7:c3:3c: e1:40:7a:a3:99:48:7b:52:07:6d:ac:22:db:f5:6e: a4:47:08:8c:8e:d1:79:c4:77:c6:a5:ca:30:4b:b6: 4f:97:87:c7:d5:a8:ed:3f:a1:a6:bc:8b:d3:a3:ca: df:35:ff:94:ad:b2:91:99:0d:fd:06:e4:f3:c2:31: d6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:41:53:4B:3C:48:01:2B:0D:05:AE:7C:01:BB:42:06:53:F3:26:25 X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/7D2EA194B20711EA8B74F445C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.168.0/22 103.38.56.0/22 IPv6: 2401:8680::/32 Signature Algorithm: sha256WithRSAEncryption 0f:12:7e:d0:a2:02:6f:0a:cd:5f:40:c6:e9:0e:89:8c:53:ec: 8f:41:f7:48:c0:5a:6e:b7:8d:3d:01:59:6b:44:db:7f:67:52: 44:88:fd:9c:ab:29:b3:1e:20:d6:11:65:9e:48:9f:e3:46:1b: ed:77:2e:6a:b2:c4:d3:1d:2f:e4:79:36:f3:f9:0f:3b:4d:42: e0:23:71:92:fe:c6:f2:2b:ad:ff:24:a9:3e:f5:91:7b:63:e3: 94:3f:29:05:fb:8f:d2:f6:ba:03:bb:b6:df:64:fa:ca:7b:a9: 7e:71:95:84:31:19:b2:3d:cc:a2:39:32:e6:4b:6f:bd:03:03: 51:ec:d0:53:10:ad:e6:1b:de:2e:d2:af:05:c9:4a:d2:fa:bf: 84:e4:ef:1e:20:8b:f2:a3:f9:aa:51:08:af:9b:00:d9:8a:05: 25:35:a8:14:75:1b:17:21:2d:e0:d8:64:af:07:b1:6a:2c:23: 54:2d:1c:9f:0e:72:9e:60:99:6f:df:9b:8e:62:ab:44:63:e5: b3:1c:71:dd:42:b4:ec:2e:e4:05:b0:09:3f:06:6b:b6:bb:81: d3:ca:4d:0e:77:81:c6:f0:92:8f:a9:08:2e:e9:f9:5b:42:ef: ce:97:87:0d:e3:38:be:09:17:69:27:16:77:be:bd:67:a0:5a: 37:fe:39:04 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjQxMDE4MTY1NDQ2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyOTJkNi03MDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW3pZyUvpIPjdcOc2Yena0sFxa9dOoVOEJxxS7zwmBbkX0vlmqGwc1bnSoNw eCE5MTmh8yWPBeb9ohGH0qv7uLMkRuJca5yQG8sEKTSzgy6uUxGpuzX0tXJ4fDG9 XAnfErUMNoY4dfYwvcVnsIRdrxgZfLpd/TVx819tudiDisQGdgbx/P4vfsC2MZvR opWQkoy/XA3aeYPec3W1t7P2t8Sgm7dzn6Aj4hMdP+6jXoXXkl5tmxjtO4oSHdkN s06nwzzhQHqjmUh7UgdtrCLb9W6kRwiMjtF5xHfGpcowS7ZPl4fH1ajtP6GmvIvT o8rfNf+UrbKRmQ39BuTzwjHWSwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPdBU0s8 SAErDQWufAG7QgZT8yYlMB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc0NjUvQjFBRkI2RkEwQTUzMTFFOEFDN0JFRTJFQzRGOUFFMDIvN0QyRUExOTRC MjA3MTFFQThCNzRGNDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr8qgDBAJnJjgwDQQCAAIwBwMFACQBhoAwDQYJKoZIhvcN AQELBQADggEBAA8SftCiAm8KzV9AxukOiYxT7I9B90jAWm63jT0BWWtE239nUkSI /ZyrKbMeINYRZZ5In+NGG+13LmqyxNMdL+R5NvP5DztNQuAjcZL+xvIrrf8kqT71 kXtj45Q/KQX7j9L2ugO7tt9k+sp7qX5xlYQxGbI9zKI5MuZLb70DA1Hs0FMQreYb 3i7SrwXJStL6v4Tk7x4gi/Kj+apRCK+bANmKBSU1qBR1GxchLeDYZK8HsWosI1Qt HJ8Ocp5gmW/fm45iq0Rj5bMccd1CtOwu5AWwCT8Ga7a7gdPKTQ53gcbwko+pCC7p +VtC786Xhw3jOL4JF2knFne+vWegWjf+OQQ= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:01 2024 by rpki-client on console-fra.rpki-client.org