$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/888B6FC2C84011EBA145055BC4F9AE02.roa File: 888B6FC2C84011EBA145055BC4F9AE02.roa (raw, json) Hash identifier: fGZtb1aq/FfaKYYwf4NqJLKbuw6K+iSRFkXVkiP43TM= Subject key identifier: 79:2B:48:BB:2E:D1:D0:66:34:6E:19:BB:EC:84:66:05:89:61:31:13 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A22 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/888B6FC2C84011EBA145055BC4F9AE02.roa Signing time: Wed 10 May 2023 16:13:16 +0000 ROA not before: Wed 10 May 2023 16:13:15 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132931 IP address blocks: 45.65.36.0/24 maxlen: 24 45.65.37.0/24 maxlen: 24 45.65.38.0/24 maxlen: 24 45.65.39.0/24 maxlen: 24 45.119.128.0/22 maxlen: 24 103.52.52.0/22 maxlen: 24 103.59.184.0/24 maxlen: 24 103.59.185.0/24 maxlen: 24 103.59.186.0/24 maxlen: 24 103.59.187.0/24 maxlen: 24 2403:7b40:1::/48 maxlen: 48 2403:7b40:2::/48 maxlen: 48 2403:7b40:3::/48 maxlen: 48 2403:7b40:4::/48 maxlen: 48 2403:7b40:5::/48 maxlen: 48 2403:7b40:6::/48 maxlen: 48 2403:7b40:7::/48 maxlen: 48 2403:7b40:8::/48 maxlen: 48 2403:7b40:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27170 (0x6a22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:13:15 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc29b-ea62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2a:91:cf:2a:87:c9:31:70:ee:35:83:39:76: 59:4a:8f:52:e3:b3:af:95:bb:35:f0:bc:47:fd:ba: fa:0d:ae:6a:68:2a:63:a0:6e:fc:92:f5:93:58:88: ab:6b:f0:e7:74:ac:ce:75:12:12:c7:ba:95:ff:d2: 73:85:29:c5:89:78:59:4e:80:06:46:9d:73:8f:74: 11:9d:da:dc:6b:61:58:05:df:c8:31:f9:0d:7f:35: 84:2c:ff:26:ac:83:4b:88:b8:8a:97:2b:01:85:d7: 60:b9:ae:86:05:d2:56:58:d1:f7:a0:b9:6c:fd:98: 55:62:a9:c6:72:f2:3b:03:a5:e0:90:89:ea:49:24: d5:32:97:94:e5:22:c7:fa:65:8f:ac:0f:7d:4b:1b: 10:47:5b:25:cb:7e:ce:fb:73:48:ce:95:a9:b2:d7: 7f:a7:a1:90:fb:b9:94:e7:c2:10:63:ca:1e:4b:6c: 1d:c2:ed:46:80:2e:dd:56:9b:d8:c7:6d:98:92:64: f6:9f:fd:39:80:82:43:b0:51:fa:7f:15:b9:49:af: a9:87:29:97:19:37:c3:65:6f:5a:62:53:1b:f2:55: 68:78:65:8f:c0:b4:90:6c:8e:2e:19:66:33:b9:c7: 57:78:3e:6f:50:02:48:af:ee:78:bc:99:d2:39:fb: 83:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2B:48:BB:2E:D1:D0:66:34:6E:19:BB:EC:84:66:05:89:61:31:13 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/888B6FC2C84011EBA145055BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.65.36.0/22 45.119.128.0/22 103.52.52.0/22 103.59.184.0/22 IPv6: 2403:7b40:1::-2403:7b40:9:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 4f:51:72:87:7f:34:59:65:05:fc:66:57:cf:e3:f3:a5:05:80: e7:88:0b:20:b9:60:5e:f9:b4:58:0f:6b:fa:73:8d:c2:53:a4: df:47:86:56:d1:48:fa:c8:c4:6b:3c:a7:ec:fd:98:33:bd:ea: ff:c0:40:42:19:a1:08:44:f5:c8:23:ed:b4:f0:64:d0:4d:ca: f7:1c:63:36:37:36:b1:44:29:5d:e6:56:5d:97:30:75:b8:82: fb:bf:8d:ab:55:c2:de:4c:8b:79:b0:e6:6c:a7:b2:91:34:07: cb:2b:91:e4:ba:b7:65:53:49:9d:19:ab:17:5b:fe:0a:08:80: c8:fd:aa:27:91:30:fa:2a:d4:43:49:78:cf:d5:43:61:f6:09: 1f:ec:2f:00:dd:fe:8a:a4:db:49:b6:0f:1e:e4:fa:c0:41:8f: c4:c1:7b:90:1f:2f:ee:c7:df:73:fd:1e:f1:40:5a:a0:8a:fa: 62:40:45:48:2f:a4:05:65:d7:4a:86:8a:a2:e1:bc:6c:55:2f: c0:71:4b:11:4d:1a:af:0b:cd:56:7d:d5:03:92:08:80:df:c8: 28:53:3d:fa:68:e1:0a:bf:49:40:a7:a7:28:c3:18:8d:60:06: c0:5e:f0:26:e1:03:56:f5:04:df:82:a0:85:8c:23:cd:7e:6c: 34:f9:d6:a4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICaiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMzE1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI5Yi1lYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCqRzyqHyTFw7jWDOXZZSo9S47Ovlbs18LxH/br6Da5qaCpjoG78kvWTWIir a/DndKzOdRISx7qV/9JzhSnFiXhZToAGRp1zj3QRndrca2FYBd/IMfkNfzWELP8m rINLiLiKlysBhddgua6GBdJWWNH3oLls/ZhVYqnGcvI7A6XgkInqSSTVMpeU5SLH +mWPrA99SxsQR1sly37O+3NIzpWpstd/p6GQ+7mU58IQY8oeS2wdwu1GgC7dVpvY x22YkmT2n/05gIJDsFH6fxW5Sa+phymXGTfDZW9aYlMb8lVoeGWPwLSQbI4uGWYz ucdXeD5vUAJIr+54vJnSOfuD0wIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFHkrSLsu 0dBmNG4Zu+yEZgWJYTETMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODg4QjZGQzJD ODQwMTFFQkExNDUwNTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MB4EAgABMBgDBAItQSQDBAItd4ADBAJnNDQDBAJnO7gwGgQCAAIwFDASAwcA JAN7QAABAwcBJAN7QAAIMA0GCSqGSIb3DQEBCwUAA4IBAQBPUXKHfzRZZQX8ZlfP 4/OlBYDniAsguWBe+bRYD2v6c43CU6TfR4ZW0Uj6yMRrPKfs/Zgzver/wEBCGaEI RPXII+208GTQTcr3HGM2NzaxRCld5lZdlzB1uIL7v42rVcLeTIt5sOZsp7KRNAfL K5HkurdlU0mdGasXW/4KCIDI/aonkTD6KtRDSXjP1UNh9gkf7C8A3f6KpNtJtg8e 5PrAQY/EwXuQHy/ux99z/R7xQFqgivpiQEVIL6QFZddKhoqi4bxsVS/AcUsRTRqv C81WfdUDkgiA38goUz36aOEKv0lAp6cowxiNYAbAXvAm4QNW9QTfgqCFjCPNfmw0 +dak -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org