$ rpki-client -vvf rpki.apnic.net/member_repository/A91E78E8/B89EB6903E1C11ECB8B0A24AC4F9AE02/32E40EFC6D6D11ED879E8878C4F9AE02.roa File: 32E40EFC6D6D11ED879E8878C4F9AE02.roa (raw, json) Hash identifier: 1u/YihTpZBD48C04Bkhp0KnNLv39w8b5ndCsUiPxGys= Subject key identifier: 7F:5D:66:0B:0B:5B:25:67:D2:78:DC:52:B2:51:11:30:E3:19:16:0F Certificate issuer: /CN=A91E78E8/serialNumber=F192D4AD86CE10FC96827FC93480F3FBDEF5EA61 Certificate serial: 03E6 Authority key identifier: F1:92:D4:AD:86:CE:10:FC:96:82:7F:C9:34:80:F3:FB:DE:F5:EA:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZLUrYbOEPyWgn_JNIDz-9716mE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E78E8/B89EB6903E1C11ECB8B0A24AC4F9AE02/32E40EFC6D6D11ED879E8878C4F9AE02.roa Signing time: Mon 17 Jun 2024 02:57:48 +0000 ROA not before: Mon 17 Jun 2024 02:57:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38623 IP address blocks: 36.37.128.0/17 maxlen: 24 45.64.124.0/22 maxlen: 23 45.64.125.0/24 maxlen: 24 45.64.126.0/23 maxlen: 24 45.115.180.0/22 maxlen: 24 45.119.132.0/22 maxlen: 24 103.68.44.0/22 maxlen: 24 103.253.180.0/22 maxlen: 24 111.118.128.0/19 maxlen: 24 117.120.24.0/21 maxlen: 24 119.13.56.0/21 maxlen: 24 119.13.152.0/21 maxlen: 24 175.100.0.0/17 maxlen: 24 202.150.0.0/22 maxlen: 24 220.158.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E78E8/B89EB6903E1C11ECB8B0A24AC4F9AE02/8ZLUrYbOEPyWgn_JNIDz-9716mE.crl rsync://rpki.apnic.net/member_repository/A91E78E8/B89EB6903E1C11ECB8B0A24AC4F9AE02/8ZLUrYbOEPyWgn_JNIDz-9716mE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZLUrYbOEPyWgn_JNIDz-9716mE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E78E8/serialNumber=F192D4AD86CE10FC96827FC93480F3FBDEF5EA61 Validity Not Before: Jun 17 02:57:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666fa62c-e857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:cc:c0:b5:ab:06:5d:3d:c0:15:3d:62:ba: 1f:54:b4:0d:d4:ef:ff:3b:d2:bb:b1:41:41:32:18: a7:cd:67:65:fb:9f:1c:51:1e:f7:9c:86:8e:67:80: 11:db:bf:90:25:2b:7c:94:99:d3:24:e4:0e:09:82: 97:7e:63:c5:50:d1:46:af:d5:25:ae:67:37:04:c4: b2:29:af:c1:31:71:6e:a4:18:3c:0e:d3:0a:62:30: e1:93:67:f3:e2:26:36:a5:c9:78:ec:b6:2f:6a:8b: ac:10:f2:98:5f:ab:42:7d:70:64:35:2b:5d:59:77: 80:94:7a:e7:4a:e6:96:e5:0f:62:2c:b2:74:96:70: ed:2d:f0:23:16:ee:ca:7f:e3:f5:6f:32:3c:6a:4c: 0f:2e:1a:25:e7:74:54:7c:5f:48:c4:c8:b1:f4:fe: c6:fc:6b:c5:75:af:5a:8b:61:86:2e:29:23:e4:1d: 4f:4e:ae:25:c4:23:42:d9:52:e9:33:e3:0a:6c:48: c8:89:fd:05:91:75:fb:80:5e:88:12:99:79:fb:0d: ba:3c:bf:50:e6:8c:16:85:26:d2:ed:33:c8:af:b6: 19:8b:d2:57:c6:4e:b3:92:c6:e2:4f:c9:6d:65:bd: b5:3f:f2:e8:fc:e3:f9:8d:a1:b5:db:a8:b5:62:19: 52:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5D:66:0B:0B:5B:25:67:D2:78:DC:52:B2:51:11:30:E3:19:16:0F X509v3 Authority Key Identifier: keyid:F1:92:D4:AD:86:CE:10:FC:96:82:7F:C9:34:80:F3:FB:DE:F5:EA:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E78E8/B89EB6903E1C11ECB8B0A24AC4F9AE02/8ZLUrYbOEPyWgn_JNIDz-9716mE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZLUrYbOEPyWgn_JNIDz-9716mE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E78E8/B89EB6903E1C11ECB8B0A24AC4F9AE02/32E40EFC6D6D11ED879E8878C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.37.128.0/17 45.64.124.0/22 45.115.180.0/22 45.119.132.0/22 103.68.44.0/22 103.253.180.0/22 111.118.128.0/19 117.120.24.0/21 119.13.56.0/21 119.13.152.0/21 175.100.0.0/17 202.150.0.0/22 220.158.232.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:57:54:40:52:5f:ee:fd:3f:0f:ae:b2:0a:08:56:d1:52:d5: 00:79:49:f9:0b:7e:62:28:84:95:4e:a3:93:fd:b9:24:6b:86: 9d:00:82:a6:34:27:23:a4:3e:52:d4:02:ab:8a:68:53:16:8a: 5c:a7:94:bb:84:de:ba:5a:5a:bf:4a:ac:bc:00:52:6e:41:63: ff:cb:76:cb:f8:5c:97:e5:6a:1b:6f:ec:40:3b:40:b4:44:08: e0:7f:5d:69:48:7a:19:ef:d3:b3:fe:3a:7f:c9:42:b6:b9:b3: e4:9d:a5:c5:0e:10:83:4c:d0:90:e6:a1:e6:f1:73:da:78:33: 68:0e:94:b9:87:db:50:24:0e:a1:34:84:7c:3d:2c:6c:27:cc: e2:a5:a3:ab:1e:35:9c:39:13:eb:55:35:7c:e9:14:a2:ba:1b: 43:7e:f7:f8:dc:04:2b:fb:c8:7a:9f:7d:49:4d:e3:95:67:7a: c3:b8:07:3c:aa:ee:5e:4d:b0:09:b2:b7:03:56:01:fa:98:df: 68:14:db:6a:22:54:b6:50:f6:8b:b3:9a:06:86:d9:b2:88:96: e4:ac:31:45:01:13:a3:36:d7:ec:d6:6f:31:c6:f4:c9:a6:8c: 4b:5e:5e:40:9b:77:e5:9e:aa:c4:9f:92:22:17:8f:8c:2b:a6: 22:46:d1:7c -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4RTgxMTAvBgNVBAUTKEYxOTJENEFEODZDRTEwRkM5NjgyN0ZDOTM0ODBGM0ZC REVGNUVBNjEwHhcNMjQwNjE3MDI1NzQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmYTYyYy1lODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b7MwLWrBl09wBU9YrofVLQN1O//O9K7sUFBMhinzWdl+58cUR73nIaOZ4AR 27+QJSt8lJnTJOQOCYKXfmPFUNFGr9Ulrmc3BMSyKa/BMXFupBg8DtMKYjDhk2fz 4iY2pcl47LYvaousEPKYX6tCfXBkNStdWXeAlHrnSuaW5Q9iLLJ0lnDtLfAjFu7K f+P1bzI8akwPLhol53RUfF9IxMix9P7G/GvFda9ai2GGLikj5B1PTq4lxCNC2VLp M+MKbEjIif0FkXX7gF6IEpl5+w26PL9Q5owWhSbS7TPIr7YZi9JXxk6zksbiT8lt Zb21P/Lo/OP5jaG126i1YhlS9wIDAQABo4IC3TCCAtkwHQYDVR0OBBYEFH9dZgsL WyVn0njcUrJRETDjGRYPMB8GA1UdIwQYMBaAFPGS1K2GzhD8loJ/yTSA8/ve9eph MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzhFOC9CODlFQjY5MDNF MUMxMUVDQjhCMEEyNEFDNEY5QUUwMi84WkxVclliT0VQeVdnbl9KTklEei05NzE2 bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhaTFVyWWJPRVB5V2duX0pOSUR6LTk3MTZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc4RTgvQjg5RUI2OTAzRTFDMTFFQ0I4QjBBMjRBQzRGOUFFMDIvMzJFNDBFRkM2 RDZEMTFFRDg3OUU4ODc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZwYIKwYBBQUHAQcBAf8E WDBWMFQEAgABME4DBAckJYADBAItQHwDBAItc7QDBAItd4QDBAJnRCwDBAJn/bQD BAVvdoADBAN1eBgDBAN3DTgDBAN3DZgDBAevZAADBALKlgADBALcnugwDQYJKoZI hvcNAQELBQADggEBAA5XVEBSX+79Pw+usgoIVtFS1QB5SfkLfmIohJVOo5P9uSRr hp0AgqY0JyOkPlLUAquKaFMWilynlLuE3rpaWr9KrLwAUm5BY//Ldsv4XJflahtv 7EA7QLRECOB/XWlIehnv07P+On/JQra5s+SdpcUOEINM0JDmoebxc9p4M2gOlLmH 21AkDqE0hHw9LGwnzOKlo6seNZw5E+tVNXzpFKK6G0N+9/jcBCv7yHqffUlN45Vn esO4Bzyq7l5NsAmytwNWAfqY32gU22oiVLZQ9ouzmgaG2bKIluSsMUUBE6M21+zW bzHG9MmmjEteXkCbd+WeqsSfkiIXj4wrpiJG0Xw= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:59 2024 by rpki-client on console-fra.rpki-client.org