$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa File: CC99502E382F11EEAB87A63EC4F9AE02.roa (raw, json) Hash identifier: H75rCk5vM8kD4h9GxneHBI+FagArNRGg0zjNp/brQWY= Subject key identifier: A8:72:4C:20:B5:FE:C8:16:44:D4:25:D9:64:1F:7C:7E:33:BF:AE:EF Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 0EEA Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa Signing time: Sat 02 Nov 2024 17:56:00 +0000 ROA not before: Sat 02 Nov 2024 17:56:00 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134739 IP address blocks: 103.200.132.0/22 maxlen: 22 103.200.132.0/24 maxlen: 24 103.200.133.0/24 maxlen: 24 103.200.134.0/24 maxlen: 24 103.200.135.0/24 maxlen: 24 121.54.164.0/22 maxlen: 22 121.54.164.0/24 maxlen: 24 121.54.165.0/24 maxlen: 24 121.54.166.0/24 maxlen: 24 121.54.167.0/24 maxlen: 24 2403:8e80::/32 maxlen: 32 2403:8e80:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 17:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: Nov 2 17:56:00 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672667b0-d463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:22:8f:df:2b:1d:4d:f3:c3:ca:9a:76:b3: 20:55:7a:da:fa:88:69:90:f5:c6:eb:d7:ec:dd:e8: ee:8e:37:84:86:3f:44:0e:c3:b8:e3:22:2b:39:16: 8d:a4:a9:0f:d9:68:38:b6:26:da:f8:2d:a2:e9:a5: 2f:65:8a:1c:b8:6a:73:70:88:99:ba:da:1b:b8:ec: 9a:89:98:54:30:93:35:05:71:9e:b3:70:db:d4:a7: 0d:41:99:c0:94:09:90:48:c1:7a:da:b9:8b:1f:f5: 07:1b:c0:86:48:8a:d2:bb:77:f5:9e:da:5f:0a:a2: 5d:b7:d5:f9:b8:dd:b1:4b:03:25:a2:05:f1:48:cf: fc:5b:1e:76:92:5c:8a:b0:36:f3:6a:85:68:18:0c: 03:0f:58:9e:f7:b9:37:3a:53:9b:e0:7b:36:8b:f4: 98:db:f9:d9:87:81:37:e6:d7:2c:b1:9a:2a:e9:70: f3:91:5b:32:51:97:6f:f5:cf:15:7c:2a:77:4f:1f: 60:05:83:a2:52:a3:6d:71:76:10:6d:c1:cd:79:92: 72:bb:58:08:ae:9d:c8:34:68:58:75:b9:f5:b0:3b: f1:69:e0:f1:18:18:5c:a2:04:66:50:3b:18:b2:ba: a2:19:9e:60:c9:97:20:86:8a:8e:08:e7:24:e1:58: f7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:72:4C:20:B5:FE:C8:16:44:D4:25:D9:64:1F:7C:7E:33:BF:AE:EF X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.132.0/22 121.54.164.0/22 IPv6: 2403:8e80::/32 Signature Algorithm: sha256WithRSAEncryption 2d:ae:80:b2:9f:eb:15:08:25:5e:26:93:f7:eb:16:d8:89:c7: a3:95:c2:60:01:d0:5d:9a:a1:34:67:a3:cf:ff:4a:b4:95:c1: c7:bc:ae:c2:94:ed:0b:ac:d8:21:37:c9:e1:69:05:ca:30:da: ea:0a:11:d4:22:f8:a1:c5:23:f5:50:d2:29:7f:94:0c:4e:49: 9f:8a:2b:51:0b:f3:a9:8d:99:4f:00:04:54:b3:18:2c:74:d1: b6:74:97:0d:51:91:ce:17:f2:e7:3c:5b:01:9c:52:d8:b4:d8: 28:b4:fa:92:ad:4a:19:fd:0e:db:5e:d4:a9:7c:e7:e8:32:86: 87:54:02:94:50:99:c2:35:c7:99:db:dd:df:0a:84:f7:9d:c1: 02:85:44:0a:e0:40:7b:9c:74:99:5d:d0:47:1d:4e:f9:2d:0d: 97:89:32:7f:f6:0c:8c:26:84:5b:27:88:94:bf:42:cf:f0:31: 94:63:c4:48:e1:a7:37:df:a0:96:9f:b1:b7:e0:7e:72:e9:51: d2:ec:0f:a6:ae:75:15:8c:b0:dd:cf:5a:40:e4:27:8d:63:e2: 6b:73:31:e3:50:4b:a9:70:a6:d4:fd:a6:64:7f:b5:fb:fe:f7: cb:98:57:c8:01:d4:dc:5d:d6:95:d7:a5:48:07:c0:50:48:05: 99:c2:7b:7e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjQxMTAyMTc1NjAwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjdiMC1kNDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTUij98rHU3zw8qadrMgVXra+ohpkPXG69fs3ejujjeEhj9EDsO44yIrORaN pKkP2Wg4tiba+C2i6aUvZYocuGpzcIiZutobuOyaiZhUMJM1BXGes3Db1KcNQZnA lAmQSMF62rmLH/UHG8CGSIrSu3f1ntpfCqJdt9X5uN2xSwMlogXxSM/8Wx52klyK sDbzaoVoGAwDD1ie97k3OlOb4Hs2i/SY2/nZh4E35tcssZoq6XDzkVsyUZdv9c8V fCp3Tx9gBYOiUqNtcXYQbcHNeZJyu1gIrp3INGhYdbn1sDvxaeDxGBhcogRmUDsY srqiGZ5gyZcghoqOCOck4Vj3ewIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKhyTCC1 /sgWRNQl2WQffH4zv67vMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvRkE3OEIwNDQ2RkNFMTFFOTg4QzQ0QjNFQzRGOUFFMDIvQ0M5OTUwMkUz ODJGMTFFRUFCODdBNjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnyIQDBAJ5NqQwDQQCAAIwBwMFACQDjoAwDQYJKoZIhvcN AQELBQADggEBAC2ugLKf6xUIJV4mk/frFtiJx6OVwmAB0F2aoTRno8//SrSVwce8 rsKU7Qus2CE3yeFpBcow2uoKEdQi+KHFI/VQ0il/lAxOSZ+KK1EL86mNmU8ABFSz GCx00bZ0lw1Rkc4X8uc8WwGcUti02Ci0+pKtShn9Dtte1Kl85+gyhodUApRQmcI1 x5nb3d8KhPedwQKFRArgQHucdJld0EcdTvktDZeJMn/2DIwmhFsniJS/Qs/wMZRj xEjhpzffoJafsbfgfnLpUdLsD6audRWMsN3PWkDkJ41j4mtzMeNQS6lwptT9pmR/ tfv+98uYV8gB1Nxd1pXXpUgHwFBIBZnCe34= -----END CERTIFICATE-----Generated at Tue Nov 26 19:07:13 2024 by rpki-client on console-fra.rpki-client.org