$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/0DCBAC3863C111EE9A8AA77AC4F9AE02.roa File: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (raw, json) Hash identifier: TaGnF98BSKn6QXC57BHo5QlGsVwee0qtXdY8j19NGO0= Subject key identifier: 2D:EF:3F:37:22:31:E7:0D:7D:22:92:C1:4E:A2:A0:72:96:6B:DF:C9 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: CA Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/0DCBAC3863C111EE9A8AA77AC4F9AE02.roa Signing time: Tue 05 Dec 2023 04:55:14 +0000 ROA not before: Tue 05 Dec 2023 04:55:14 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 8075 IP address blocks: 128.94.0.0/16 maxlen: 16 135.149.0.0/16 maxlen: 16 138.239.0.0/16 maxlen: 16 147.145.0.0/16 maxlen: 16 148.7.0.0/16 maxlen: 16 155.62.0.0/16 maxlen: 16 158.23.0.0/16 maxlen: 16 158.158.0.0/16 maxlen: 16 167.105.0.0/16 maxlen: 16 167.220.240.0/22 maxlen: 24 169.138.0.0/16 maxlen: 16 170.165.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Dec 5 04:55:14 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656ead31-980c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1e:b8:78:d3:75:d1:71:50:54:af:fa:c3:b3: 74:95:1d:a6:cd:1d:e9:b1:7d:57:5a:32:2b:91:77: 80:70:02:11:33:0a:e9:8c:de:80:8f:e4:58:2a:56: 34:21:e1:ab:fd:c0:e5:ea:89:98:7e:fa:81:45:32: 57:5e:50:1e:4e:96:02:8f:1f:d9:ab:f6:0a:3e:1b: 28:f4:0c:a8:8d:63:71:98:6a:c7:e3:dc:1c:f4:ff: e2:a3:49:91:fd:45:d1:63:e9:66:32:a1:c3:f1:22: db:c6:e3:2d:9d:e8:0d:09:84:20:e2:2e:9c:49:f1: c9:85:f5:78:df:aa:43:10:71:5c:26:08:c4:2f:b2: 68:be:5a:48:c5:5b:e6:4e:b5:63:64:c7:fb:32:3c: 3e:92:ee:87:f0:9e:13:fc:a8:dc:c0:ac:69:18:42: 89:98:73:1f:7e:6d:09:04:53:97:c3:e8:0b:01:88: ef:33:56:9b:d3:45:35:ae:a4:ff:ae:27:b6:57:b0: ae:6b:63:97:42:1a:19:2e:8a:b2:f7:a7:e4:e4:46: 5c:ad:cb:4f:2c:30:51:3b:37:63:d4:ba:31:76:d2: 13:fd:85:0b:b5:1b:4e:03:e8:fa:85:03:21:34:57: f7:30:94:d4:6b:69:fd:51:d8:08:02:bd:d1:b8:2d: 78:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EF:3F:37:22:31:E7:0D:7D:22:92:C1:4E:A2:A0:72:96:6B:DF:C9 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/0DCBAC3863C111EE9A8AA77AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.94.0.0/16 135.149.0.0/16 138.239.0.0/16 147.145.0.0/16 148.7.0.0/16 155.62.0.0/16 158.23.0.0/16 158.158.0.0/16 167.105.0.0/16 167.220.240.0/22 169.138.0.0/16 170.165.0.0/16 Signature Algorithm: sha256WithRSAEncryption 14:62:56:b1:5f:90:c4:92:3a:06:86:de:20:61:50:36:83:6c: 35:e9:33:35:34:a0:75:e3:0e:f4:18:60:e7:ce:55:02:2f:bc: ed:63:ac:6c:a0:9a:15:e3:f7:4f:59:4b:9e:09:eb:7f:2e:6e: c4:b0:b7:bc:b8:a9:6d:ea:d4:ec:5e:b2:c4:1a:fc:27:76:98: cf:da:77:60:d6:44:28:5d:db:a7:8e:ef:10:5c:c8:97:c7:cd: 72:d0:74:53:24:72:b0:1f:ff:4c:98:cf:31:1f:23:6c:53:fc: 29:f8:8c:6d:ab:4f:e3:b7:21:d1:d6:d0:f4:4c:f8:79:53:06: 2a:1b:39:97:06:88:c5:33:44:76:69:71:96:ce:b9:5c:9a:5f: 5f:09:b7:92:a6:69:b1:bb:00:55:3f:3d:30:a4:7e:d4:33:4b: 21:51:36:bc:21:22:c1:a2:8e:cb:50:bb:04:8a:31:b7:f6:62: 68:af:ec:1b:32:35:6d:f7:ab:9c:f9:5a:80:90:97:5e:bb:3c: 8e:db:8b:8c:b6:1c:15:c8:02:0c:b0:07:4c:ee:94:c1:bc:8e: 27:96:de:9b:df:d3:da:c3:41:a4:53:fc:86:27:bb:40:5d:b5: a4:52:33:88:2e:11:69:7b:bf:53:05:78:98:8b:a6:83:6d:fa: e3:fb:08:62 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjMxMjA1MDQ1NTE0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlYWQzMS05ODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1x64eNN10XFQVK/6w7N0lR2mzR3psX1XWjIrkXeAcAIRMwrpjN6Aj+RYKlY0 IeGr/cDl6omYfvqBRTJXXlAeTpYCjx/Zq/YKPhso9AyojWNxmGrH49wc9P/io0mR /UXRY+lmMqHD8SLbxuMtnegNCYQg4i6cSfHJhfV436pDEHFcJgjEL7JovlpIxVvm TrVjZMf7Mjw+ku6H8J4T/KjcwKxpGEKJmHMffm0JBFOXw+gLAYjvM1ab00U1rqT/ rie2V7Cua2OXQhoZLoqy96fk5EZcrctPLDBROzdj1LoxdtIT/YULtRtOA+j6hQMh NFf3MJTUa2n9UdgIAr3RuC14xQIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFC3vPzci MecNfSKSwU6ioHKWa9/JMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvMERDQkFDMzg2 M0MxMTFFRTlBOEFBNzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMEMEAgABMD0DAwCAXgMDAIeVAwMAiu8DAwCTkQMDAJQHAwMAmz4DAwCeFwMD AJ6eAwMAp2kDBAKn3PADAwCpigMDAKqlMA0GCSqGSIb3DQEBCwUAA4IBAQAUYlax X5DEkjoGht4gYVA2g2w16TM1NKB14w70GGDnzlUCL7ztY6xsoJoV4/dPWUueCet/ Lm7EsLe8uKlt6tTsXrLEGvwndpjP2ndg1kQoXdunju8QXMiXx81y0HRTJHKwH/9M mM8xHyNsU/wp+Ixtq0/jtyHR1tD0TPh5UwYqGzmXBojFM0R2aXGWzrlcml9fCbeS pmmxuwBVPz0wpH7UM0shUTa8ISLBoo7LULsEijG39mJor+wbMjVt96uc+VqAkJde uzyO24uMthwVyAIMsAdM7pTBvI4nlt6b39Paw0GkU/yGJ7tAXbWkUjOILhFpe79T BXiYi6aDbfrj+whi -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:02 2024 by rpki-client on console-fra.rpki-client.org