$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa File: B55EC19EAC2B11E996F6E511C4F9AE02.roa (raw, json) Hash identifier: tkTXTVKUd8aNAELhiE6CqioYyd2lpCDkfnkCm1fkHpw= Subject key identifier: 9D:EF:8F:C8:81:61:EE:22:68:6C:54:59:0E:3B:1C:57:23:76:D4:9E Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0D64 Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa Signing time: Wed 26 Jun 2024 18:29:27 +0000 ROA not before: Wed 26 Jun 2024 18:29:27 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45668 IP address blocks: 103.232.48.0/22 maxlen: 24 110.74.128.0/19 maxlen: 24 110.74.160.0/19 maxlen: 24 2403:bc00::/32 maxlen: 32 2403:bc00:1::/48 maxlen: 48 2403:bc00:adc::/48 maxlen: 48 2403:bc00:7fff::/48 maxlen: 48 2403:bc00:8000::/48 maxlen: 48 2403:bc00:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Jun 26 18:29:27 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=667c5e07-4737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:20:36:b2:a8:33:96:24:ea:41:07:7a:ad: 89:45:c5:30:f6:df:9f:69:7a:92:b7:d2:5f:85:a8: 80:0b:a0:f7:a9:d2:56:9e:75:06:8e:48:2e:ed:df: b2:c1:59:8e:27:44:40:a9:66:bc:2f:16:ff:42:49: 41:45:39:8a:f2:2b:c0:c2:5d:e6:83:b6:83:5f:43: d0:6a:71:06:1a:11:a4:d1:09:2b:e0:8f:13:ef:ee: ee:13:e4:0e:94:fb:83:41:9f:7b:b0:98:3a:83:67: 76:e8:ba:25:36:48:48:40:72:bb:a3:4b:c9:51:ca: 3b:6d:81:ce:e0:9d:26:40:91:6e:af:e0:54:66:c6: d8:8e:62:fe:a2:95:a5:6f:f0:9b:dd:af:ff:e7:bf: 7a:ae:82:26:17:ac:0f:12:04:18:b4:8a:63:3e:6d: 95:6d:c8:63:b9:40:f3:2f:51:34:86:df:81:65:44: 6a:82:1f:b8:3e:5e:e7:9e:f7:b6:eb:9d:e9:57:8c: 7c:63:9b:47:59:da:c2:0b:34:cb:4e:f7:2a:c1:3a: 18:90:a8:4e:76:94:e9:e2:01:16:37:d9:dd:1e:54: c8:87:9b:38:9e:08:de:c2:9a:7d:bd:67:b9:63:5d: f2:89:2f:ee:1b:84:4d:69:10:6d:2c:aa:09:5e:a6: 65:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EF:8F:C8:81:61:EE:22:68:6C:54:59:0E:3B:1C:57:23:76:D4:9E X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.48.0/22 110.74.128.0/18 IPv6: 2403:bc00::/32 Signature Algorithm: sha256WithRSAEncryption 7b:d3:a7:8c:c7:ae:9a:7b:44:c1:e9:7f:bb:f3:3b:79:32:f3: 63:2b:c9:e1:51:21:8d:6b:5b:22:ec:a3:18:77:52:59:d6:2a: ee:b4:bf:a2:49:8f:86:50:03:0d:bd:f1:99:a1:85:81:8c:0b: 28:69:9b:8f:bd:64:13:cd:5a:3e:3a:b1:32:a7:7b:03:fe:61: 19:3c:88:f7:58:51:47:2a:e4:f1:77:af:cd:5f:fc:93:f3:2a: 38:f1:05:5a:1a:5d:19:bd:17:bd:56:f6:3e:c2:df:b8:35:30: 7d:78:cf:d4:6b:2d:b3:a9:dc:cf:bd:98:24:9c:ca:d9:34:77: d9:07:39:3a:b4:e4:ec:4b:3c:7c:82:9a:f3:5f:42:72:7b:99: 81:bf:86:d8:93:28:c8:1d:38:2e:60:9f:d2:a8:d7:c6:51:ba: e8:50:e6:88:37:9c:7c:0c:cc:e4:7b:ea:dc:83:83:3d:e0:da: ef:23:3d:28:c6:ac:2a:37:54:8e:0d:ea:a1:f6:12:c6:e7:74: 76:88:02:8e:86:b3:b6:c1:da:b0:f5:8f:5d:93:fc:57:9e:73: f8:3b:f7:86:91:d9:ea:a4:65:07:cc:51:7d:41:20:b0:79:63: d6:7c:aa:19:51:c5:67:79:80:09:4e:ee:eb:f4:2b:1e:0a:af: f0:29:23:18 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjQwNjI2MTgyOTI3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjNWUwNy00NzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzckgNrKoM5Yk6kEHeq2JRcUw9t+faXqSt9JfhaiAC6D3qdJWnnUGjkgu7d+y wVmOJ0RAqWa8Lxb/QklBRTmK8ivAwl3mg7aDX0PQanEGGhGk0Qkr4I8T7+7uE+QO lPuDQZ97sJg6g2d26LolNkhIQHK7o0vJUco7bYHO4J0mQJFur+BUZsbYjmL+opWl b/Cb3a//5796roImF6wPEgQYtIpjPm2VbchjuUDzL1E0ht+BZURqgh+4Pl7nnve2 653pV4x8Y5tHWdrCCzTLTvcqwToYkKhOdpTp4gEWN9ndHlTIh5s4ngjewpp9vWe5 Y13yiS/uG4RNaRBtLKoJXqZlCwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJ3vj8iB Ye4iaGxUWQ47HFcjdtSeMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU3QzkvQzM1OUU3NUVBQzE5MTFFOTgzRjJGQzYyQzRGOUFFMDIvQjU1RUMxOUVB QzJCMTFFOTk2RjZFNTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn6DADBAZuSoAwDQQCAAIwBwMFACQDvAAwDQYJKoZIhvcN AQELBQADggEBAHvTp4zHrpp7RMHpf7vzO3ky82MryeFRIY1rWyLsoxh3UlnWKu60 v6JJj4ZQAw298ZmhhYGMCyhpm4+9ZBPNWj46sTKnewP+YRk8iPdYUUcq5PF3r81f /JPzKjjxBVoaXRm9F71W9j7C37g1MH14z9RrLbOp3M+9mCScytk0d9kHOTq05OxL PHyCmvNfQnJ7mYG/htiTKMgdOC5gn9Ko18ZRuuhQ5og3nHwMzOR76tyDgz3g2u8j PSjGrCo3VI4N6qH2EsbndHaIAo6Gs7bB2rD1j12T/Feec/g794aR2eqkZQfMUX1B ILB5Y9Z8qhlRxWd5gAlO7uv0Kx4Kr/ApIxg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org