$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/B9DEB77E654411EFACBF7956C4F9AE02.roa File: B9DEB77E654411EFACBF7956C4F9AE02.roa (raw, json) Hash identifier: xYaxgWyzwtexyE7NeRo7CnQ16cP15TpfRCg28S5nmVo= Subject key identifier: FF:34:CD:E9:FA:63:C2:67:B5:A1:5F:C5:2A:8E:7A:D4:7C:C6:75:5E Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 0481 Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/B9DEB77E654411EFACBF7956C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:16:08 +0000 ROA not before: Tue 03 Sep 2024 01:16:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 64022 IP address blocks: 45.126.124.0/24 maxlen: 24 45.126.125.0/24 maxlen: 24 45.126.126.0/24 maxlen: 24 45.126.127.0/24 maxlen: 24 103.102.44.0/24 maxlen: 24 103.102.45.0/24 maxlen: 24 103.102.47.0/24 maxlen: 24 103.195.4.0/24 maxlen: 24 103.195.5.0/24 maxlen: 24 103.195.6.0/24 maxlen: 24 103.195.7.0/24 maxlen: 24 103.252.116.0/24 maxlen: 24 103.252.117.0/24 maxlen: 24 103.252.118.0/24 maxlen: 24 103.252.119.0/24 maxlen: 24 114.29.236.0/24 maxlen: 24 114.29.237.0/24 maxlen: 24 114.29.238.0/24 maxlen: 24 114.29.239.0/24 maxlen: 24 2401:df40:1::/48 maxlen: 48 2402:da80:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Sep 3 01:16:08 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d66358-0215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:90:d1:3c:b2:bb:5d:87:3a:05:d9:85:e0:0a: 3e:5b:9c:55:53:d8:2d:bf:de:81:27:40:4d:02:6f: ec:6f:65:cb:6c:ba:2e:62:c3:3f:0c:fd:01:a3:14: 58:16:85:70:22:9e:75:2c:d1:7a:f7:8f:12:2f:e5: 98:3e:75:83:71:69:59:e1:99:57:23:95:b6:93:06: b6:a5:32:99:ac:68:db:17:94:74:fc:e4:9f:03:74: d3:82:d9:ef:8f:ee:41:5d:dd:92:29:9e:5f:df:66: e8:4f:60:83:90:bc:70:ef:08:b5:10:30:62:b2:a6: f1:e8:8b:75:b5:ae:cc:f4:0d:37:81:5a:c5:6c:e5: b4:1a:f9:24:fe:b7:dc:ba:d8:d7:ff:6b:d8:90:40: 84:de:28:03:58:40:b3:78:09:0a:9e:45:96:57:ab: ec:6e:a7:7d:39:88:fc:33:a8:ff:fd:2d:0b:68:d2: 2b:77:77:f5:dc:88:d3:a2:d0:71:ce:0e:d6:f8:97: 19:c1:6c:3c:62:80:75:2c:ad:07:e4:3e:d0:cb:9d: 36:03:37:16:d1:18:92:ae:35:04:a6:4b:a0:25:ec: a4:cc:e2:19:56:3f:f6:8f:eb:77:15:3e:3c:0e:0e: 07:76:a8:bd:79:e4:0c:f9:b7:95:46:3a:bc:cf:e6: 50:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:34:CD:E9:FA:63:C2:67:B5:A1:5F:C5:2A:8E:7A:D4:7C:C6:75:5E X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/B9DEB77E654411EFACBF7956C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.124.0/22 103.102.44.0/23 103.102.47.0/24 103.195.4.0/22 103.252.116.0/22 114.29.236.0/22 IPv6: 2401:df40:1::/48 2402:da80:100::/48 Signature Algorithm: sha256WithRSAEncryption 56:5a:db:8d:2f:83:10:c9:f9:a7:d7:07:66:54:c9:17:22:8c: a6:fd:17:9a:a5:9b:98:de:e8:98:f2:4a:08:2e:f1:c3:e7:19: dc:88:59:1c:5f:3f:e0:4f:46:0a:6c:6e:a5:92:11:be:5b:f8: e8:99:5a:45:b6:12:0a:77:61:be:6e:91:6b:dd:4a:1f:94:cc: e4:d1:98:ac:42:a0:f2:45:b2:61:51:78:43:73:ef:5d:cb:42: 75:53:b4:48:bc:6f:a7:a7:16:e1:c9:ed:9c:84:98:2c:07:c2: b7:68:c6:bf:f9:a6:32:72:74:7d:52:6d:44:ef:1d:f1:7c:9d: 00:05:06:59:c1:22:f1:6e:bf:85:5a:fe:18:cb:47:c1:0a:ab: dc:f7:69:26:11:a1:17:0a:b2:a8:65:24:6c:85:2f:8a:a6:cf: 8e:4b:2c:c5:a7:6a:15:31:89:79:c8:14:37:0c:b3:a0:c8:30: b5:c3:08:81:a0:9d:15:d9:1d:6b:d4:7b:b4:d3:0c:5b:c0:53: b0:af:da:cb:4c:4d:13:1a:98:26:83:25:e0:d3:6c:27:89:88: b5:a1:a1:1f:eb:95:ea:df:11:57:41:8c:2a:2b:84:05:8c:ae: 1d:4b:80:b6:c2:51:50:db:3e:da:fe:b5:76:f8:ee:27:81:12: 95:3a:71:17 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwOTAzMDExNjA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjM1OC0wMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZDRPLK7XYc6BdmF4Ao+W5xVU9gtv96BJ0BNAm/sb2XLbLouYsM/DP0BoxRY FoVwIp51LNF6948SL+WYPnWDcWlZ4ZlXI5W2kwa2pTKZrGjbF5R0/OSfA3TTgtnv j+5BXd2SKZ5f32boT2CDkLxw7wi1EDBisqbx6It1ta7M9A03gVrFbOW0Gvkk/rfc utjX/2vYkECE3igDWECzeAkKnkWWV6vsbqd9OYj8M6j//S0LaNIrd3f13IjTotBx zg7W+JcZwWw8YoB1LK0H5D7Qy502AzcW0RiSrjUEpkugJeykzOIZVj/2j+t3FT48 Dg4Hdqi9eeQM+beVRjq8z+ZQpQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFP80zen6 Y8JntaFfxSqOetR8xnVeMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvQjlERUI3N0U2 NTQ0MTFFRkFDQkY3OTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVwYIKwYBBQUHAQcBAf8E SDBGMCoEAgABMCQDBAItfnwDBAFnZiwDBABnZi8DBAJnwwQDBAJn/HQDBAJyHeww GAQCAAIwEgMHACQB30AAAQMHACQC2oABADANBgkqhkiG9w0BAQsFAAOCAQEAVlrb jS+DEMn5p9cHZlTJFyKMpv0XmqWbmN7omPJKCC7xw+cZ3IhZHF8/4E9GCmxupZIR vlv46JlaRbYSCndhvm6Ra91KH5TM5NGYrEKg8kWyYVF4Q3PvXctCdVO0SLxvp6cW 4cntnISYLAfCt2jGv/mmMnJ0fVJtRO8d8XydAAUGWcEi8W6/hVr+GMtHwQqr3Pdp JhGhFwqyqGUkbIUviqbPjkssxadqFTGJecgUNwyzoMgwtcMIgaCdFdkda9R7tNMM W8BTsK/ay0xNExqYJoMl4NNsJ4mItaGhH+uV6t8RV0GMKiuEBYyuHUuAtsJRUNs+ 2v61dvjuJ4ESlTpxFw== -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:30 2024 by rpki-client on console-fra.rpki-client.org