$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa File: D64176D81B9911ECAB0E1678C4F9AE02.roa (raw, json) Hash identifier: SCnihDYbmc4GiaIEvX2j7M8vuw8f64Zz9GgFXob0XUI= Subject key identifier: BE:BA:A4:36:C8:EF:A6:AE:02:A7:24:79:90:C1:84:4E:34:3B:40:EC Certificate issuer: /CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Certificate serial: 0735 Authority key identifier: 08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa Signing time: Thu 04 Jul 2024 04:30:07 +0000 ROA not before: Thu 04 Jul 2024 04:30:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4758 IP address blocks: 164.100.0.0/16 maxlen: 16 164.100.0.0/17 maxlen: 17 164.100.0.0/18 maxlen: 24 164.100.64.0/19 maxlen: 24 164.100.96.0/19 maxlen: 19 164.100.96.0/20 maxlen: 20 164.100.96.0/23 maxlen: 24 164.100.98.0/24 maxlen: 24 164.100.99.0/24 maxlen: 24 164.100.100.0/22 maxlen: 24 164.100.104.0/21 maxlen: 24 164.100.112.0/20 maxlen: 24 164.100.128.0/17 maxlen: 23 164.100.128.0/19 maxlen: 24 164.100.160.0/20 maxlen: 24 164.100.176.0/21 maxlen: 24 164.100.184.0/22 maxlen: 24 164.100.188.0/24 maxlen: 24 164.100.190.0/23 maxlen: 24 164.100.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Validity Not Before: Jul 4 04:30:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6686254f-eba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b5:c9:e6:b0:95:be:23:eb:9a:d5:53:7e:e3: 46:32:41:9b:61:70:c5:fc:95:27:bb:4a:06:61:c9: 1b:ea:af:76:fd:8d:9c:bf:c9:25:f3:98:9f:b5:9d: 3e:23:ba:b2:e5:d8:42:19:41:60:5c:5f:08:04:f2: f6:ee:07:ac:ee:5b:8d:1f:74:fd:d8:44:41:91:48: 68:61:d4:52:72:00:65:37:7c:3d:b1:d1:e5:ad:9b: f7:39:61:66:83:c4:0a:c1:85:0e:d1:38:be:8b:f5: ed:e4:30:ec:c1:07:cd:28:3e:14:a9:1f:45:83:17: 23:12:bc:9c:42:64:31:3b:dc:bc:d0:1a:8f:79:9c: 2a:dc:a3:91:49:85:fd:e2:94:7c:ec:5d:cd:64:bc: d0:b4:0f:e9:4d:27:cd:0e:42:9b:5d:5b:86:15:51: 42:b9:e5:67:cd:ab:7c:ab:06:bb:6f:13:7e:7e:f8: 3d:0e:28:1a:ce:40:cd:e3:54:54:ab:0a:b7:2a:f3: 36:50:42:c0:87:b0:f5:91:40:7f:67:47:bf:03:5f: 86:d0:6c:12:41:00:91:3d:d9:1b:aa:c4:86:de:bf: 2c:5a:87:26:49:f3:24:4e:58:ab:75:63:0c:76:f3: 89:7f:83:9e:cc:96:b5:04:f5:e3:39:2b:d0:cf:d7: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BA:A4:36:C8:EF:A6:AE:02:A7:24:79:90:C1:84:4E:34:3B:40:EC X509v3 Authority Key Identifier: keyid:08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:1b:62:45:de:b8:51:13:31:94:47:d8:29:f0:e3:d1:dd:91: 40:d0:0b:95:a0:ce:19:40:16:7f:5e:cc:2e:07:79:d8:34:4a: 12:47:d0:2f:78:b7:af:6b:2c:93:45:1c:5e:93:34:63:19:5d: cc:61:00:87:4d:c7:da:a3:a6:e6:26:b8:5e:0e:dd:4e:cf:e5: 2f:55:72:de:11:df:4d:74:26:30:df:bd:c3:76:10:08:5f:f9: 8e:a4:cd:49:56:d3:a2:d7:dc:34:a9:14:ae:9b:4d:a9:ad:b5: aa:bc:3f:76:d5:a0:35:3f:8e:2a:ba:02:52:c9:7b:1c:75:c8: e2:da:52:da:61:a3:e0:7c:f8:6f:b9:d9:60:97:47:1f:8e:76: f6:00:96:45:71:61:e9:4b:ba:10:10:43:34:2b:77:a8:55:68: 46:f2:97:a7:55:65:1e:7c:7b:58:20:75:d4:ad:7a:05:c9:e7: f5:5e:32:f1:61:a3:61:76:35:72:27:91:0c:cd:cd:53:f0:59: bc:7a:63:de:27:4b:8e:21:bb:5a:0b:fc:92:dc:5a:94:3f:e1: 11:f2:71:b0:5d:a9:b6:57:bc:1e:ef:85:71:cb:a4:a4:6a:bb: 66:78:9d:1e:a3:e8:6f:35:0c:f6:a5:3a:42:2a:8e:f2:89:c0: 0a:2b:f7:3c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDA4MkYxRUU5MkZFQTYzNzNGREExRDVBRUM0NkUyRjJE OEFFOEFDODcwHhcNMjQwNzA0MDQzMDA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg2MjU0Zi1lYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rXJ5rCVviPrmtVTfuNGMkGbYXDF/JUnu0oGYckb6q92/Y2cv8kl85iftZ0+ I7qy5dhCGUFgXF8IBPL27ges7luNH3T92ERBkUhoYdRScgBlN3w9sdHlrZv3OWFm g8QKwYUO0Ti+i/Xt5DDswQfNKD4UqR9FgxcjErycQmQxO9y80BqPeZwq3KORSYX9 4pR87F3NZLzQtA/pTSfNDkKbXVuGFVFCueVnzat8qwa7bxN+fvg9DigazkDN41RU qwq3KvM2UELAh7D1kUB/Z0e/A1+G0GwSQQCRPdkbqsSG3r8sWocmSfMkTlirdWMM dvOJf4OezJa1BPXjOSvQz9fCJQIDAQABo4IClDCCApAwHQYDVR0OBBYEFL66pDbI 76auAqckeZDBhE40O0DsMB8GA1UdIwQYMBaAFAgvHukv6mNz/aHVrsRuLy2K6KyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9DQzhlNlNfcVkzUDlvZFd1eEc0dkxZcm9y SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NDOGU2U19xWTNQOW9kV3V4RzR2TFlyb3JJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwREEvRkM2MUUwMDgxRDY3MTFFMjhDMTgyOEE0MDhCMDJDRDIvRDY0MTc2RDgx Qjk5MTFFQ0FCMEUxNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCkZDANBgkqhkiG9w0BAQsFAAOCAQEAExtiRd64URMxlEfY KfDj0d2RQNALlaDOGUAWf17MLgd52DRKEkfQL3i3r2ssk0UcXpM0YxldzGEAh03H 2qOm5ia4Xg7dTs/lL1Vy3hHfTXQmMN+9w3YQCF/5jqTNSVbTotfcNKkUrptNqa21 qrw/dtWgNT+OKroCUsl7HHXI4tpS2mGj4Hz4b7nZYJdHH4529gCWRXFh6Uu6EBBD NCt3qFVoRvKXp1VlHnx7WCB11K16Bcnn9V4y8WGjYXY1cieRDM3NU/BZvHpj3idL jiG7Wgv8ktxalD/hEfJxsF2ptle8Hu+FccukpGq7ZnidHqPobzUM9qU6QiqO8onA Civ3PA== -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:00 2024 by rpki-client on console-fra.rpki-client.org