$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/8A574D9AB8AB11EEA866EB27C4F9AE02.roa File: 8A574D9AB8AB11EEA866EB27C4F9AE02.roa (raw, json) Hash identifier: B74l8KAcZzTJjTG0Mnc+WUicHwzuFyRpUWB92X31DmU= Subject key identifier: F9:9F:0A:2D:6B:96:08:B3:31:9F:6A:C5:1F:39:D0:C6:83:A2:26:54 Certificate issuer: /CN=A9188F45/serialNumber=46EF04BF1198BE0E2A313AA7AD0AB0FC7E081C45 Certificate serial: 8A Authority key identifier: 46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/8A574D9AB8AB11EEA866EB27C4F9AE02.roa Signing time: Tue 01 Oct 2024 05:48:52 +0000 ROA not before: Tue 01 Oct 2024 05:48:52 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23735 IP address blocks: 103.233.60.0/22 maxlen: 22 103.233.60.0/24 maxlen: 24 103.233.61.0/24 maxlen: 24 103.233.62.0/24 maxlen: 24 103.233.63.0/24 maxlen: 24 116.206.172.0/22 maxlen: 22 116.206.172.0/24 maxlen: 24 116.206.173.0/24 maxlen: 24 116.206.174.0/24 maxlen: 24 116.206.175.0/24 maxlen: 24 202.49.164.0/24 maxlen: 24 202.49.165.0/24 maxlen: 24 202.49.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.crl rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F45/serialNumber=46EF04BF1198BE0E2A313AA7AD0AB0FC7E081C45 Validity Not Before: Oct 1 05:48:52 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb8d44-d095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0c:e4:c5:5b:2e:17:24:79:68:31:e7:78:b4: 3e:bd:c9:b7:17:96:0d:b8:52:3c:0a:c9:0a:0a:f3: 68:05:b4:87:b4:7f:ec:3d:a6:43:5c:56:82:e5:f0: 87:a8:5b:12:12:c3:64:9e:2c:eb:2e:bc:7b:bb:fa: 2a:9d:b2:a7:c3:f5:1a:1e:0d:f1:51:f1:46:bb:e2: 75:2e:fa:e6:27:00:c2:40:12:2d:9c:e5:ba:ac:95: bc:ef:73:e4:96:2d:b1:f1:31:d0:a5:b5:f5:65:e9: e3:a7:33:f6:c4:e8:a4:b2:c7:07:8a:a5:0b:ff:84: b5:79:5b:56:56:73:1f:c9:7e:f6:4b:0b:08:bd:21: e3:47:1a:b2:2a:ac:3e:e8:d7:50:04:55:6c:44:67: a9:37:58:75:75:12:a0:92:c6:f0:3f:41:00:7d:56: 0f:51:72:46:5b:19:13:aa:70:7a:c9:bb:98:30:c3: 6c:14:3a:4b:be:78:7c:52:2a:9c:d0:01:c8:00:ed: 1a:1a:0c:a3:6d:8a:0d:53:c7:46:1f:16:f9:59:d8: f0:cd:2e:43:1b:c6:8e:0f:3d:b2:fb:26:e3:43:ec: a6:c0:77:92:06:56:79:f3:8d:eb:d4:bb:14:33:52: 45:17:bd:62:80:d3:bd:11:2d:66:5b:7a:63:4b:9b: 6f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9F:0A:2D:6B:96:08:B3:31:9F:6A:C5:1F:39:D0:C6:83:A2:26:54 X509v3 Authority Key Identifier: keyid:46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/8A574D9AB8AB11EEA866EB27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.60.0/22 116.206.172.0/22 202.49.164.0/23 202.49.168.0/24 Signature Algorithm: sha256WithRSAEncryption 52:3c:ba:d3:61:26:0d:e0:af:b3:8f:b0:94:01:75:65:e4:63: 3a:66:0c:c5:d5:61:c6:25:fa:eb:f1:8e:5f:64:cd:f6:a1:a8: e7:b2:af:ee:bc:fd:98:8e:2f:5b:78:6e:da:39:7a:9d:9f:77: 2d:4d:4d:3e:cd:3b:3c:3d:fe:3d:d2:a7:69:53:42:84:94:44: 49:23:cd:71:46:a5:c1:51:ad:0b:0b:fe:fa:3d:e0:7e:0c:2c: e0:8e:6b:02:4e:7b:e9:d1:4d:a2:26:60:ab:9b:4b:ad:3a:e2: 10:29:ed:ba:7b:17:68:45:67:fd:f3:59:f5:af:8d:3f:9d:e7: e2:7d:45:d0:4f:80:5c:70:50:8a:b6:98:f8:cf:e0:88:a3:e9: f4:44:0c:53:ba:67:78:97:10:e4:8f:e0:4a:6e:3c:d4:ad:5c: 19:1d:c6:cb:1b:98:dc:3c:3b:8a:39:b8:3d:b2:20:b2:de:ae: ba:b3:01:29:83:9e:e3:29:8c:20:8b:e4:98:16:e9:81:b8:ba: 5a:ea:6c:2e:3b:b3:32:b9:2e:13:23:2e:08:4b:02:76:c4:f1: ee:d3:d9:7a:00:f9:d5:4d:8c:67:da:90:c3:f5:b4:4f:7d:2b: 88:14:30:fc:54:c0:e9:f7:74:ae:f8:64:1f:27:be:78:e9:a8: 32:66:9a:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNDUxMTAvBgNVBAUTKDQ2RUYwNEJGMTE5OEJFMEUyQTMxM0FBN0FEMEFCMEZD N0UwODFDNDUwHhcNMjQxMDAxMDU0ODUyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiOGQ0NC1kMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwzkxVsuFyR5aDHneLQ+vcm3F5YNuFI8CskKCvNoBbSHtH/sPaZDXFaC5fCH qFsSEsNknizrLrx7u/oqnbKnw/UaHg3xUfFGu+J1LvrmJwDCQBItnOW6rJW873Pk li2x8THQpbX1ZenjpzP2xOiksscHiqUL/4S1eVtWVnMfyX72SwsIvSHjRxqyKqw+ 6NdQBFVsRGepN1h1dRKgksbwP0EAfVYPUXJGWxkTqnB6ybuYMMNsFDpLvnh8Uiqc 0AHIAO0aGgyjbYoNU8dGHxb5WdjwzS5DG8aODz2y+ybjQ+ymwHeSBlZ5843r1LsU M1JFF71igNO9ES1mW3pjS5tvPwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPmfCi1r lgizMZ9qxR850MaDoiZUMB8GA1UdIwQYMBaAFEbvBL8RmL4OKjE6p60KsPx+CBxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY0NS9GRDk5NjUxNEI4 QUExMUVFOTlENkM4MUJDNEY5QUUwMi9SdThFdnhHWXZnNHFNVHFuclFxd19INElI RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J1OEV2eEdZdmc0cU1UcW5yUXF3X0g0SUhFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNDUvRkQ5OTY1MTRCOEFBMTFFRTk5RDZDODFCQzRGOUFFMDIvOEE1NzREOUFC OEFCMTFFRUE4NjZFQjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJn6TwDBAJ0zqwDBAHKMaQDBADKMagwDQYJKoZIhvcNAQEL BQADggEBAFI8utNhJg3gr7OPsJQBdWXkYzpmDMXVYcYl+uvxjl9kzfahqOeyr+68 /ZiOL1t4bto5ep2fdy1NTT7NOzw9/j3Sp2lTQoSUREkjzXFGpcFRrQsL/vo94H4M LOCOawJOe+nRTaImYKubS6064hAp7bp7F2hFZ/3zWfWvjT+d5+J9RdBPgFxwUIq2 mPjP4Iij6fREDFO6Z3iXEOSP4EpuPNStXBkdxssbmNw8O4o5uD2yILLerrqzASmD nuMpjCCL5JgW6YG4ulrqbC47szK5LhMjLghLAnbE8e7T2XoA+dVNjGfakMP1tE99 K4gUMPxUwOn3dK74ZB8nvnjpqDJmmrQ= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org