$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CF50CAEE7CC211EFA0514511C4F9AE02.roa File: CF50CAEE7CC211EFA0514511C4F9AE02.roa (raw, json) Hash identifier: lLOS6iIX9XnjW5mqGMyIzeegwe8mQOfFKlRYkQHEw4g= Subject key identifier: 26:02:B3:5F:66:F0:55:58:4E:C8:AA:8B:E6:1B:5B:78:56:6A:30:21 Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 34C1 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CF50CAEE7CC211EFA0514511C4F9AE02.roa Signing time: Thu 24 Oct 2024 07:03:51 +0000 ROA not before: Thu 24 Oct 2024 07:03:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45845 IP address blocks: 45.117.152.0/23 maxlen: 24 103.235.196.0/22 maxlen: 24 103.250.132.0/23 maxlen: 23 103.250.132.0/24 maxlen: 24 103.250.133.0/24 maxlen: 24 103.250.135.0/24 maxlen: 24 202.51.66.0/24 maxlen: 24 202.51.70.0/24 maxlen: 24 2405:6600::/32 maxlen: 32 2405:6600:201::/48 maxlen: 48 2405:6600:600::/48 maxlen: 48 2405:6600:701::/48 maxlen: 48 2405:6600:702::/48 maxlen: 48 2405:6600:703::/48 maxlen: 48 2405:6600:709::/48 maxlen: 48 2405:6600:c00::/48 maxlen: 48 2405:6600:c43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:25:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Oct 24 07:03:51 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6719f156-6974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:45:36:8b:07:c8:48:37:be:3e:11:94:04:e0: 2a:08:48:21:2e:f4:4c:b4:d2:84:88:a8:a8:cc:e8: 00:4b:71:c4:9e:84:ee:6a:0e:08:c3:df:d7:67:a0: 1a:8a:d6:6a:33:40:72:d3:bf:4c:b6:b5:3d:b5:23: b9:5a:b3:b3:c0:4e:73:8b:56:a0:33:10:20:3f:64: 7f:2a:2d:c4:21:65:8b:0d:c5:78:77:fb:b9:52:ad: 84:5b:d9:41:17:e7:57:06:4a:38:62:7c:db:44:80: 69:c5:e0:11:55:e6:b8:60:88:f4:62:f8:f6:84:02: 5e:0c:56:b3:86:93:5d:30:df:ba:2d:f5:0c:97:ed: c3:c3:30:3a:2f:e3:28:00:67:00:1e:9f:e0:5f:76: ee:c2:4d:01:08:a0:94:b3:80:a6:90:07:c5:21:89: 5c:46:aa:a6:d6:2d:02:bf:20:e5:9f:34:77:1e:a8: 29:e8:a3:ba:27:58:04:3e:8f:fc:b2:ca:24:da:21: c6:2c:5a:ae:e0:49:25:71:c2:a6:51:30:9f:ff:92: da:c5:fe:83:ec:9a:33:07:61:4c:86:43:95:d2:cc: f7:a7:8a:93:6c:2d:d7:e2:cb:44:d8:90:e6:34:17: 01:46:f4:0d:e1:1c:c8:2a:66:fb:3d:70:2f:58:d7: a6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:02:B3:5F:66:F0:55:58:4E:C8:AA:8B:E6:1B:5B:78:56:6A:30:21 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CF50CAEE7CC211EFA0514511C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.152.0/23 103.235.196.0/22 103.250.132.0/23 103.250.135.0/24 202.51.66.0/24 202.51.70.0/24 IPv6: 2405:6600::/32 Signature Algorithm: sha256WithRSAEncryption 35:6c:bd:2e:10:9a:1b:12:2a:c1:40:75:56:c1:ae:95:4b:5f: 60:62:fb:f8:7b:64:10:73:d7:bc:11:42:9c:e4:18:54:50:be: 5f:63:96:e1:10:d5:3b:e0:42:2e:dc:47:eb:3c:d2:be:bc:8f: 9a:60:49:95:ac:ed:0c:bc:fd:77:89:88:ba:83:03:d1:65:f7: de:2b:c3:5c:1d:0f:93:44:6c:71:13:e6:59:ce:42:e9:6e:13: 8a:5c:bb:65:17:5a:aa:91:bf:29:4d:48:29:dd:e6:c3:c0:18: 87:4e:fb:00:d6:02:6b:1b:58:ba:de:1e:94:5a:b4:08:b8:4b: cf:da:a3:48:7f:77:ee:41:f0:c0:14:d3:98:3c:f8:5b:27:82: 89:e4:a8:11:95:7e:d8:6a:15:14:87:99:fb:72:10:26:97:9a: 49:67:2d:fc:65:53:f2:d6:86:d3:1d:32:01:e8:21:d9:46:fa: 5d:ac:b0:13:aa:38:35:22:2c:94:de:28:7e:12:9d:6e:62:fb: a9:d3:f1:3e:9d:e3:7f:d7:50:69:fb:a1:30:c4:cc:50:db:74: 38:94:9b:4c:34:2f:7f:55:b0:82:89:5d:1d:29:89:6d:39:c0: 42:bd:95:cf:a4:10:4e:cb:f9:ef:28:fb:a6:61:2e:d6:05:91: 2d:01:58:0f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjQxMDI0MDcwMzUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE5ZjE1Ni02OTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkU2iwfISDe+PhGUBOAqCEghLvRMtNKEiKiozOgAS3HEnoTuag4Iw9/XZ6Aa itZqM0By079MtrU9tSO5WrOzwE5zi1agMxAgP2R/Ki3EIWWLDcV4d/u5Uq2EW9lB F+dXBko4YnzbRIBpxeARVea4YIj0Yvj2hAJeDFazhpNdMN+6LfUMl+3DwzA6L+Mo AGcAHp/gX3buwk0BCKCUs4CmkAfFIYlcRqqm1i0CvyDlnzR3Hqgp6KO6J1gEPo/8 ssok2iHGLFqu4EklccKmUTCf/5Laxf6D7JozB2FMhkOV0sz3p4qTbC3X4stE2JDm NBcBRvQN4RzIKmb7PXAvWNemVwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFCYCs19m 8FVYTsiqi+YbW3hWajAhMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvQ0Y1MENBRUU3 Q0MyMTFFRkEwNTE0NTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAEtdZgDBAJn68QDBAFn+oQDBABn+ocDBADKM0IDBADKM0Yw DQQCAAIwBwMFACQFZgAwDQYJKoZIhvcNAQELBQADggEBADVsvS4QmhsSKsFAdVbB rpVLX2Bi+/h7ZBBz17wRQpzkGFRQvl9jluEQ1TvgQi7cR+s80r68j5pgSZWs7Qy8 /XeJiLqDA9Fl994rw1wdD5NEbHET5lnOQuluE4pcu2UXWqqRvylNSCnd5sPAGIdO +wDWAmsbWLreHpRatAi4S8/ao0h/d+5B8MAU05g8+FsngonkqBGVfthqFRSHmfty ECaXmklnLfxlU/LWhtMdMgHoIdlG+l2ssBOqODUiLJTeKH4SnW5i+6nT8T6d43/X UGn7oTDEzFDbdDiUm0w0L39VsIKJXR0piW05wEK9lc+kEE7L+e8o+6ZhLtYFkS0B WA8= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org