$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/754A1888490D11ED95C7C86EC4F9AE02.roa File: 754A1888490D11ED95C7C86EC4F9AE02.roa (raw, json) Hash identifier: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ= Subject key identifier: FB:64:5C:DB:2B:29:4A:68:AE:A5:84:DC:14:C3:34:F3:E6:A0:6F:85 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 0172 Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/754A1888490D11ED95C7C86EC4F9AE02.roa Signing time: Fri 27 Sep 2024 02:56:41 +0000 ROA not before: Fri 27 Sep 2024 02:56:41 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55923 IP address blocks: 175.45.144.0/22 maxlen: 22 175.45.144.0/24 maxlen: 24 175.45.145.0/24 maxlen: 24 175.45.146.0/24 maxlen: 24 175.45.147.0/24 maxlen: 24 175.45.152.0/22 maxlen: 22 175.45.152.0/24 maxlen: 24 175.45.154.0/24 maxlen: 24 175.45.155.0/24 maxlen: 24 175.45.156.0/22 maxlen: 22 175.45.156.0/24 maxlen: 24 175.45.157.0/24 maxlen: 24 175.45.158.0/24 maxlen: 24 175.45.159.0/24 maxlen: 24 180.178.64.0/22 maxlen: 22 180.178.64.0/24 maxlen: 24 180.178.65.0/24 maxlen: 24 180.178.66.0/24 maxlen: 24 180.178.67.0/24 maxlen: 24 202.8.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Sep 27 02:56:41 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66f61ee9-0dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:69:d6:5f:d4:fc:67:86:01:3c:d3:17:b2: a7:b3:14:3b:4d:07:c4:05:d5:73:07:81:66:2c:db: bb:0d:1a:20:c6:80:a1:bc:7e:39:43:63:cd:15:e2: 46:3c:a3:e3:4e:cd:60:7c:0a:f0:8e:5a:f1:c2:9f: 5d:cf:41:4a:e8:e0:6b:34:dc:9f:79:6d:bd:fc:87: 78:59:59:92:09:bb:af:3b:5f:87:50:17:1e:2b:08: 38:73:22:2a:d8:4e:c1:b7:1b:82:a3:f5:16:d9:4b: 16:63:22:13:37:38:66:20:27:f7:06:4c:d2:fe:87: a2:d9:07:24:38:59:54:97:1e:b3:71:03:b4:66:57: ce:c8:1d:97:a2:11:6e:49:9a:b4:1e:b0:2e:dc:fd: 1f:7b:dc:95:41:c5:3c:33:8b:16:ce:0e:df:74:d4: 78:82:1d:ca:6c:88:e0:27:93:81:b0:b6:f9:1b:5b: 0d:e4:72:59:5f:72:2d:49:55:43:44:a3:a0:32:18: 5e:b7:eb:f8:e8:2d:8a:4b:c3:b2:d7:fa:37:08:4d: d7:ca:d4:ea:b5:aa:f4:3c:5d:47:1c:b2:3b:63:a1: a9:4c:db:b8:71:5a:04:f3:12:c0:95:32:33:bb:d3: 45:59:b9:60:ad:a0:6f:59:d6:a0:14:33:ec:f6:85: 74:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:64:5C:DB:2B:29:4A:68:AE:A5:84:DC:14:C3:34:F3:E6:A0:6F:85 X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/754A1888490D11ED95C7C86EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.45.144.0/22 175.45.152.0/21 180.178.64.0/22 202.8.76.0/24 Signature Algorithm: sha256WithRSAEncryption 76:48:d9:85:79:ea:c4:53:9a:ac:48:08:69:12:27:0a:20:55: a6:1f:20:87:24:28:49:57:61:bc:d1:45:85:eb:dd:0a:f2:1f: 3f:b1:b5:30:a3:03:88:c5:5a:00:1c:b9:7e:25:27:1a:a5:c1: e9:59:4a:ac:f1:94:27:dd:59:e9:7f:03:d5:dd:59:e3:80:ef: e5:ab:d8:06:2f:3e:f1:33:2e:0c:13:0c:3a:44:25:6d:d3:bf: de:a3:f9:1c:83:36:d8:65:4c:89:73:47:d3:f4:f9:5a:68:63: 13:5d:d9:c1:62:06:7a:fb:7e:a3:58:bb:60:e5:f5:33:14:51: bb:dd:59:ea:97:02:99:51:12:0f:39:dd:1f:e6:ec:6e:45:f5: 67:6c:9d:60:53:d9:b2:00:ad:9d:dd:ba:5d:7d:b3:88:1a:ca: b5:b2:4c:42:bd:59:22:73:68:36:f5:55:e3:05:25:8c:ac:d5: bf:8f:3b:80:b0:54:e0:ba:a5:3b:b3:5a:fd:4e:8f:b9:b0:8b: 76:22:b4:57:94:7d:bc:d0:08:48:7c:7d:da:af:25:e8:28:52: 5c:d6:4a:f1:39:db:89:74:b3:74:15:c4:35:61:eb:15:3a:1c: de:f2:65:eb:e5:38:2b:27:05:a2:2c:47:67:82:f9:fa:f0:c3: 34:93:c8:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjQwOTI3MDI1NjQxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MWVlOS0wZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i1p1l/U/GeGATzTF7KnsxQ7TQfEBdVzB4FmLNu7DRogxoChvH45Q2PNFeJG PKPjTs1gfArwjlrxwp9dz0FK6OBrNNyfeW29/Id4WVmSCbuvO1+HUBceKwg4cyIq 2E7BtxuCo/UW2UsWYyITNzhmICf3BkzS/oei2QckOFlUlx6zcQO0ZlfOyB2XohFu SZq0HrAu3P0fe9yVQcU8M4sWzg7fdNR4gh3KbIjgJ5OBsLb5G1sN5HJZX3ItSVVD RKOgMhhet+v46C2KS8Oy1/o3CE3XytTqtar0PF1HHLI7Y6GpTNu4cVoE8xLAlTIz u9NFWblgraBvWdagFDPs9oV0IQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPtkXNsr KUporqWE3BTDNPPmoG+FMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwMDkvOTU5REI4NUU0OTBBMTFFREJCNzY3ODQ4QzRGOUFFMDIvNzU0QTE4ODg0 OTBEMTFFRDk1QzdDODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAKvLZADBAOvLZgDBAK0skADBADKCEwwDQYJKoZIhvcNAQEL BQADggEBAHZI2YV56sRTmqxICGkSJwogVaYfIIckKElXYbzRRYXr3QryHz+xtTCj A4jFWgAcuX4lJxqlwelZSqzxlCfdWel/A9XdWeOA7+Wr2AYvPvEzLgwTDDpEJW3T v96j+RyDNthlTIlzR9P0+VpoYxNd2cFiBnr7fqNYu2Dl9TMUUbvdWeqXAplREg85 3R/m7G5F9WdsnWBT2bIArZ3dul19s4gayrWyTEK9WSJzaDb1VeMFJYys1b+PO4Cw VOC6pTuzWv1Oj7mwi3YitFeUfbzQCEh8fdqvJegoUlzWSvE524l0s3QVxDVh6xU6 HN7yZevlOCsnBaIsR2eC+frwwzSTyGk= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:53 2024 by rpki-client on console-ams.rpki-client.org