$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/190AC86A33FF11EDB747A054C4F9AE02.roa File: 190AC86A33FF11EDB747A054C4F9AE02.roa (raw, json) Hash identifier: yTZANzjfsTRDW4TWvk7jnlYG+mHu3NNnkszMyxSn7bY= Subject key identifier: E4:A6:38:78:18:09:2D:87:F8:2D:6D:20:FC:4B:DD:36:49:F2:56:1C Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3467 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/190AC86A33FF11EDB747A054C4F9AE02.roa Signing time: Wed 31 Jul 2024 14:31:01 +0000 ROA not before: Wed 31 Jul 2024 14:31:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 18222 IP address blocks: 45.117.152.0/23 maxlen: 24 103.250.132.0/23 maxlen: 24 202.51.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:25:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13415 (0x3467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Jul 31 14:31:01 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66aa4aa5-5364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c1:ce:d3:a7:d5:97:da:bb:76:4b:73:df:2e: 94:3d:63:93:67:ea:76:bc:2b:48:8a:1c:6e:d9:19: 93:62:38:45:16:b9:6d:ef:a2:8f:b0:99:db:32:01: 5a:81:f5:9b:8a:09:d4:7d:56:c0:78:89:f1:0b:b5: 3a:40:47:36:56:7f:e5:3f:e9:98:ae:b8:b2:3b:d9: df:30:fb:0d:04:07:e7:3f:a5:66:e7:a5:27:c3:8b: dd:62:bd:47:37:eb:ef:a8:35:e2:26:84:c5:29:34: 78:80:5a:be:79:80:b7:dd:8e:f3:da:71:cf:ea:42: e8:e0:14:c6:55:1f:b1:6c:a0:e3:e1:5a:cc:14:e1: e0:80:89:00:cb:9e:75:02:89:f0:e6:ca:ed:87:4c: 23:2c:5f:04:43:ec:e3:ae:d9:87:08:51:a3:b3:26: 29:fb:19:b6:99:76:11:cf:cf:6e:ad:b4:58:1d:6b: 02:83:8b:62:7f:d0:1d:7c:8a:88:b5:68:83:13:94: 3f:94:29:72:68:79:bb:00:6b:c3:5f:aa:f4:17:9c: 95:76:87:ad:cf:a4:81:c4:3a:2e:c3:2d:d1:ae:61: 30:a7:51:30:69:ad:6b:ea:ce:25:46:9c:03:d7:d2: b4:15:69:9e:d1:8b:42:a7:c6:00:1e:9f:7f:dd:e6: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A6:38:78:18:09:2D:87:F8:2D:6D:20:FC:4B:DD:36:49:F2:56:1C X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/190AC86A33FF11EDB747A054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.152.0/23 103.250.132.0/23 202.51.82.0/23 Signature Algorithm: sha256WithRSAEncryption 20:b1:40:f1:ef:05:87:69:32:66:97:e3:91:b1:80:37:90:a8: eb:f7:12:6d:08:44:d4:89:31:67:2e:db:4f:ba:bd:23:1d:7a: d0:90:dd:b7:51:7d:68:0c:38:6b:c4:a0:1d:2e:51:6b:18:9f: 16:21:33:27:dc:88:0f:ff:2c:45:fc:3f:0e:4b:d8:a9:a3:6a: a0:9c:7b:24:24:06:45:13:24:6b:db:04:eb:48:16:1a:06:68: 68:16:7a:17:9c:a8:79:fa:60:24:75:c1:24:b7:bb:51:a3:36: 51:e1:17:1d:9e:ac:8f:ee:be:71:27:0d:25:4b:be:6b:c3:7b: 36:f0:c4:39:95:b6:f7:41:6e:c7:ed:c8:80:90:d1:25:30:44: 6c:f3:83:74:58:c0:2d:cb:db:5c:73:00:f0:9b:5d:b5:0e:de: e0:32:f3:b4:03:4e:9e:d3:11:d6:48:ce:b5:72:37:5a:30:dc: 5e:60:63:48:48:d1:ba:7f:42:83:10:6a:56:44:29:dd:6b:e6: 55:f8:2b:e5:11:b6:53:bd:73:43:40:81:16:8a:1a:fc:a9:58: 53:27:8b:c7:13:87:a7:9d:7f:13:9c:34:15:75:9e:f7:d5:de: 18:24:bd:2a:c3:f0:3d:4b:5a:b7:df:37:e4:a7:0f:3e:52:7b: 38:0c:df:12 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjQwNzMxMTQzMTAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFhNGFhNS01MzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08HO06fVl9q7dktz3y6UPWOTZ+p2vCtIihxu2RmTYjhFFrlt76KPsJnbMgFa gfWbignUfVbAeInxC7U6QEc2Vn/lP+mYrriyO9nfMPsNBAfnP6Vm56Unw4vdYr1H N+vvqDXiJoTFKTR4gFq+eYC33Y7z2nHP6kLo4BTGVR+xbKDj4VrMFOHggIkAy551 Aonw5srth0wjLF8EQ+zjrtmHCFGjsyYp+xm2mXYRz89urbRYHWsCg4tif9AdfIqI tWiDE5Q/lClyaHm7AGvDX6r0F5yVdoetz6SBxDouwy3RrmEwp1Ewaa1r6s4lRpwD 19K0FWme0YtCp8YAHp9/3eYAXQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOSmOHgY CS2H+C1tIPxL3TZJ8lYcMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvMTkwQUM4NkEz M0ZGMTFFREI3NDdBMDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEtdZgDBAFn+oQDBAHKM1IwDQYJKoZIhvcNAQELBQADggEB ACCxQPHvBYdpMmaX45GxgDeQqOv3Em0IRNSJMWcu20+6vSMdetCQ3bdRfWgMOGvE oB0uUWsYnxYhMyfciA//LEX8Pw5L2KmjaqCceyQkBkUTJGvbBOtIFhoGaGgWehec qHn6YCR1wSS3u1GjNlHhFx2erI/uvnEnDSVLvmvDezbwxDmVtvdBbsftyICQ0SUw RGzzg3RYwC3L21xzAPCbXbUO3uAy87QDTp7TEdZIzrVyN1ow3F5gY0hI0bp/QoMQ alZEKd1r5lX4K+URtlO9c0NAgRaKGvypWFMni8cTh6edfxOcNBV1nvfV3hgkvSrD 8D1LWrffN+SnDz5SezgM3xI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org