$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa File: 945DB376E34711EE87868164C4F9AE02.roa (raw, json) Hash identifier: NAFJJXNP6W1IL/8p5XX1DsTHhpW+KT2jLZylfntYa8I= Subject key identifier: EE:F3:AF:82:0C:07:FA:C0:37:9C:A4:54:E4:FE:F3:EF:E0:CB:11:9A Certificate issuer: /CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Certificate serial: 1D02 Authority key identifier: 09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa Signing time: Mon 16 Sep 2024 16:23:38 +0000 ROA not before: Mon 16 Sep 2024 16:23:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45204 IP address blocks: 180.149.64.0/18 maxlen: 21 180.149.90.0/24 maxlen: 24 180.149.91.0/24 maxlen: 24 180.149.93.0/24 maxlen: 24 180.149.94.0/24 maxlen: 24 180.149.95.0/24 maxlen: 24 180.149.96.0/24 maxlen: 24 180.149.97.0/24 maxlen: 24 180.149.98.0/24 maxlen: 24 180.149.99.0/24 maxlen: 24 180.149.100.0/22 maxlen: 24 180.149.112.0/24 maxlen: 24 180.149.117.0/24 maxlen: 24 180.149.118.0/24 maxlen: 24 2401:d600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7426 (0x1d02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098/serialNumber=099714A70E6F401289108209D6A7F4859F9800CC Validity Not Before: Sep 16 16:23:38 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e85b8a-6abd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fa:b1:67:88:b2:42:62:9d:87:43:54:24:80: a8:8a:86:c5:dc:86:1c:76:46:88:c0:9a:9b:4e:23: fa:f0:2f:b3:71:2e:b4:b6:4f:47:dc:4d:9a:e8:d1: 10:76:93:e5:47:88:d4:fd:36:7b:96:3f:fb:59:7a: 6c:a6:d6:e2:66:85:d3:af:22:bd:38:af:1d:80:4f: 49:65:d3:8d:8b:3e:d4:7f:16:70:c8:20:ed:18:3e: 49:75:96:5b:93:b0:20:b8:cb:35:1c:90:67:41:57: 17:81:14:fb:41:db:d0:91:db:37:b0:cb:25:c5:d8: 86:28:fb:c0:bd:38:26:d4:22:67:d8:b6:5a:e1:a2: 26:8f:8d:f6:d4:55:e5:d9:c5:d7:8d:33:13:75:5c: eb:10:0b:98:80:0e:25:fe:31:ad:54:eb:95:fd:21: d5:0c:71:21:95:bd:bb:bd:79:d9:74:13:cf:ef:60: d6:b5:4b:95:4c:1b:54:ae:09:31:11:fe:ed:71:30: 10:55:06:c4:16:53:10:d4:fe:d5:57:39:c7:84:d4: cf:2d:82:0c:8a:31:b8:6b:95:9d:e6:59:4a:a8:1c: 38:e6:13:33:79:92:36:b7:a3:1a:c2:46:45:d6:9b: c6:4c:8b:0d:9b:9a:94:fb:25:12:ee:b7:a7:4b:1f: 8d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F3:AF:82:0C:07:FA:C0:37:9C:A4:54:E4:FE:F3:EF:E0:CB:11:9A X509v3 Authority Key Identifier: keyid:09:97:14:A7:0E:6F:40:12:89:10:82:09:D6:A7:F4:85:9F:98:00:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZcUpw5vQBKJEIIJ1qf0hZ-YAMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/C6809196AC9711E6A491DC17C4F9AE02/945DB376E34711EE87868164C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.149.64.0/18 IPv6: 2401:d600::/32 Signature Algorithm: sha256WithRSAEncryption 49:72:9e:80:91:2f:50:00:61:9b:6f:97:b7:3d:e4:19:e9:55: 43:5a:2c:b9:f1:0f:c8:70:42:f0:22:7e:7a:bf:51:d9:06:cf: f8:e6:3a:f6:45:e0:50:e2:77:61:4f:7d:b6:6e:5c:30:6c:53: 5c:0b:62:7f:fd:07:41:95:5b:63:08:88:82:68:a4:30:1c:7f: ff:65:f0:27:f7:a2:f3:fb:99:c7:70:f6:a5:23:5c:77:3c:6d: 34:23:2f:e6:d6:83:b4:75:86:70:4b:4b:cc:53:f9:75:86:e6: 45:3d:41:ef:89:87:25:e1:29:72:ad:02:e8:fb:b7:84:d0:f7: 70:2c:f0:75:d4:15:79:f3:be:2b:cc:74:b9:9e:6d:d6:a3:9b: 6b:0f:d4:39:83:7b:b6:75:83:ea:16:87:d8:68:c3:8a:9d:8b: 5d:23:5b:27:e0:47:7b:40:fd:97:75:05:a8:50:73:af:87:34: 63:6e:78:23:36:14:5d:f7:83:0e:6d:22:cd:f3:63:ee:a2:f3: 3b:af:59:51:dc:4a:23:26:3c:b0:3a:12:2e:97:8b:42:f6:b1: b9:74:eb:91:b8:58:21:82:b5:f1:b2:16:97:5b:18:60:5e:8b: a1:45:fb:6c:76:98:b5:0f:c5:a4:a2:5e:58:29:97:4c:9c:95: b9:51:21:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwOTgxMTAvBgNVBAUTKDA5OTcxNEE3MEU2RjQwMTI4OTEwODIwOUQ2QTdGNDg1 OUY5ODAwQ0MwHhcNMjQwOTE2MTYyMzM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NWI4YS02YWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvqxZ4iyQmKdh0NUJICoiobF3IYcdkaIwJqbTiP68C+zcS60tk9H3E2a6NEQ dpPlR4jU/TZ7lj/7WXpsptbiZoXTryK9OK8dgE9JZdONiz7UfxZwyCDtGD5JdZZb k7AguMs1HJBnQVcXgRT7QdvQkds3sMslxdiGKPvAvTgm1CJn2LZa4aImj4321FXl 2cXXjTMTdVzrEAuYgA4l/jGtVOuV/SHVDHEhlb27vXnZdBPP72DWtUuVTBtUrgkx Ef7tcTAQVQbEFlMQ1P7VVznHhNTPLYIMijG4a5Wd5llKqBw45hMzeZI2t6MawkZF 1pvGTIsNm5qU+yUS7renSx+NhQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFO7zr4IM B/rAN5ykVOT+8+/gyxGaMB8GA1UdIwQYMBaAFAmXFKcOb0ASiRCCCdan9IWfmADM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTA5OC9DNjgwOTE5NkFD OTcxMUU2QTQ5MURDMTdDNEY5QUUwMi9DWmNVcHc1dlFCS0pFSUlKMXFmMGhaLVlB TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaY1VwdzV2UUJLSkVJSUoxcWYwaFotWUFNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUwOTgvQzY4MDkxOTZBQzk3MTFFNkE0OTFEQzE3QzRGOUFFMDIvOTQ1REIzNzZF MzQ3MTFFRTg3ODY4MTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAa0lUAwDQQCAAIwBwMFACQB1gAwDQYJKoZIhvcNAQELBQAD ggEBAElynoCRL1AAYZtvl7c95BnpVUNaLLnxD8hwQvAifnq/UdkGz/jmOvZF4FDi d2FPfbZuXDBsU1wLYn/9B0GVW2MIiIJopDAcf/9l8Cf3ovP7mcdw9qUjXHc8bTQj L+bWg7R1hnBLS8xT+XWG5kU9Qe+JhyXhKXKtAuj7t4TQ93As8HXUFXnzvivMdLme bdajm2sP1DmDe7Z1g+oWh9how4qdi10jWyfgR3tA/Zd1BahQc6+HNGNueCM2FF33 gw5tIs3zY+6i8zuvWVHcSiMmPLA6Ei6Xi0L2sbl065G4WCGCtfGyFpdbGGBei6FF +2x2mLUPxaSiXlgpl0yclblRIcw= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org