$ rpki-client -vvf rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa File: C4F05AA6144911EF85E2DC26C4F9AE02.roa (raw, json) Hash identifier: mqhxizEIYr8qmqCoAWD4ByVuj0CV9gKDyE2EqO59XEo= Subject key identifier: 7F:59:5F:10:C8:38:0D:A3:74:29:B1:34:80:70:9C:B7:53:95:F1:63 Certificate issuer: /CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Certificate serial: 2123 Authority key identifier: 13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa Signing time: Fri 17 May 2024 12:34:14 +0000 ROA not before: Fri 17 May 2024 12:34:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132296 IP address blocks: 103.255.115.0/24 maxlen: 24 202.134.144.0/24 maxlen: 24 202.134.145.0/24 maxlen: 24 202.134.146.0/24 maxlen: 24 202.134.147.0/24 maxlen: 24 202.134.148.0/24 maxlen: 24 202.134.149.0/24 maxlen: 24 202.134.150.0/24 maxlen: 24 202.134.151.0/24 maxlen: 24 202.134.152.0/24 maxlen: 24 202.134.153.0/24 maxlen: 24 202.134.157.0/24 maxlen: 24 202.134.158.0/24 maxlen: 24 202.134.159.0/24 maxlen: 24 202.134.162.0/24 maxlen: 24 202.134.167.0/24 maxlen: 24 202.134.168.0/24 maxlen: 24 202.134.173.0/24 maxlen: 24 202.134.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8483 (0x2123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Validity Not Before: May 17 12:34:14 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66474ec6-69bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:ed:d8:fe:3f:a3:64:b6:91:4d:7b:39:69: ff:de:a5:de:ef:1c:7c:1f:94:14:bd:03:69:a0:11: 96:95:33:04:d9:c6:e0:53:c4:61:5c:e6:1e:63:86: e0:ca:dc:02:13:94:20:41:00:c0:72:5d:24:52:cc: d5:71:59:6a:19:8b:33:ee:86:f2:4f:d7:61:6a:bc: 11:26:14:e0:99:de:de:b2:6a:6f:dd:79:0e:82:b3: 67:46:b4:60:1a:da:65:6b:c2:c7:bb:1d:e9:1e:fa: af:ba:f4:d9:14:47:d5:a3:65:f8:b9:7c:9d:c1:db: c8:c2:69:bf:ec:35:8e:40:f3:b4:f0:8f:87:e1:3c: 52:30:2d:0c:10:e3:e2:64:38:10:a2:04:0e:3e:ba: 05:25:b1:0c:e6:90:83:d6:b5:e7:5b:41:50:da:6f: 25:de:44:ce:19:21:05:e1:6d:da:d9:67:fd:e5:06: 7d:20:67:eb:98:d9:d3:55:db:b6:f3:71:ed:62:b1: 49:5c:7a:31:51:c4:68:4b:24:ef:d0:0e:99:30:85: ba:a1:27:15:86:40:ba:a4:8c:a9:d8:65:f9:95:8d: 93:76:28:e3:82:e0:e2:d3:6d:2e:72:50:59:56:7f: 81:40:ca:a2:3c:ee:55:0b:6c:57:35:2b:b8:2d:0d: 6b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:59:5F:10:C8:38:0D:A3:74:29:B1:34:80:70:9C:B7:53:95:F1:63 X509v3 Authority Key Identifier: keyid:13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.115.0/24 202.134.144.0-202.134.153.255 202.134.157.0-202.134.159.255 202.134.162.0/24 202.134.167.0-202.134.168.255 202.134.173.0-202.134.174.255 Signature Algorithm: sha256WithRSAEncryption 8d:c8:c3:26:fe:5e:aa:1a:05:66:d6:23:60:48:d8:66:dc:55: 9f:a4:96:7b:ad:da:58:fd:a0:49:87:f6:34:51:0b:13:ee:6e: f4:09:a0:e0:fd:5e:1e:6f:8b:c7:4b:e3:ba:f6:07:13:54:2b: 20:c3:8e:a1:02:16:53:a2:90:f1:20:d8:b5:7e:51:22:c6:73: 9d:33:99:52:a4:b8:9b:85:9e:fb:ed:2d:15:90:69:87:9e:01: 5f:80:2b:80:ac:1f:67:d3:c9:bd:fe:4f:63:ce:b9:79:d0:c0: e7:e2:e5:46:78:aa:8d:a9:fe:91:82:bf:7d:c8:8d:d3:1c:40: 71:41:c3:8d:85:92:43:75:5b:64:42:d0:f5:3d:a5:eb:6f:fd: 67:30:47:6e:dc:d9:14:98:f6:d7:dd:e2:2d:26:ff:7a:c4:35: ca:e7:9b:7c:a8:f0:8a:2a:7d:df:3f:06:81:a1:8e:84:ba:9b: 60:a6:ad:eb:11:cf:3b:ce:2e:00:9e:b2:b7:cc:5c:3b:a6:a7: 07:18:5c:c2:07:bd:86:7c:07:c6:86:b3:56:ed:f4:bb:4b:b4: 61:5d:50:b0:1a:d9:9d:83:79:67:01:ae:ab:de:22:82:0c:1d: e0:74:6d:95:c7:1c:ac:4e:4e:cb:e8:fe:32:de:22:8e:c9:d1: 96:37:7b:3b -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICISMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBRjIxMTAvBgNVBAUTKDEzOUNDMURCNkI5RDI0QjkzQjE0OTI4QTc1MThEMDRF QjNCMjZBM0EwHhcNMjQwNTE3MTIzNDE0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ3NGVjNi02OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ynt2P4/o2S2kU17OWn/3qXe7xx8H5QUvQNpoBGWlTME2cbgU8RhXOYeY4bg ytwCE5QgQQDAcl0kUszVcVlqGYsz7obyT9dharwRJhTgmd7esmpv3XkOgrNnRrRg Gtpla8LHux3pHvqvuvTZFEfVo2X4uXydwdvIwmm/7DWOQPO08I+H4TxSMC0MEOPi ZDgQogQOProFJbEM5pCD1rXnW0FQ2m8l3kTOGSEF4W3a2Wf95QZ9IGfrmNnTVdu2 83HtYrFJXHoxUcRoSyTv0A6ZMIW6oScVhkC6pIyp2GX5lY2TdijjguDi020uclBZ Vn+BQMqiPO5VC2xXNSu4LQ1rWwIDAQABo4IC0zCCAs8wHQYDVR0OBBYEFH9ZXxDI OA2jdCmxNIBwnLdTlfFjMB8GA1UdIwQYMBaAFBOcwdtrnSS5OxSSinUY0E6zsmo6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REFGMi8yNkVDNkREQUQz REExMUU1OEM1Q0Q0MEZDNEY5QUUwMi9FNXpCMjJ1ZEpMazdGSktLZFJqUVRyT3lh am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1ekIyMnVkSkxrN0ZKS0tkUmpRVHJPeWFqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBRjIvMjZFQzZEREFEM0RBMTFFNThDNUNENDBGQzRGOUFFMDIvQzRGMDVBQTYx NDQ5MTFFRjg1RTJEQzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXQYIKwYBBQUHAQcBAf8E TjBMMEoEAgABMEQDBABn/3MwDAMEBMqGkAMEAcqGmDAMAwQAyoadAwQFyoaAAwQA yoaiMAwDBADKhqcDBADKhqgwDAMEAMqGrQMEAMqGrjANBgkqhkiG9w0BAQsFAAOC AQEAjcjDJv5eqhoFZtYjYEjYZtxVn6SWe63aWP2gSYf2NFELE+5u9Amg4P1eHm+L x0vjuvYHE1QrIMOOoQIWU6KQ8SDYtX5RIsZznTOZUqS4m4We++0tFZBph54BX4Ar gKwfZ9PJvf5PY865edDA5+LlRniqjan+kYK/fciN0xxAcUHDjYWSQ3VbZELQ9T2l 62/9ZzBHbtzZFJj2193iLSb/esQ1yuebfKjwiip93z8GgaGOhLqbYKat6xHPO84u AJ6yt8xcO6anBxhcwge9hnwHxoazVu30u0u0YV1QsBrZnYN5ZwGuq94iggwd4HRt lcccrE5Oy+j+Mt4ijsnRljd7Ow== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org