$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/A55C1282ACA311EFBA427354C4F9AE02.roa File: A55C1282ACA311EFBA427354C4F9AE02.roa (raw, json) Hash identifier: OPUUUSp5hb82PWfJ3qDCUj2m9VDIT8DwMp28XglHALE= Subject key identifier: 51:CD:C4:E1:C5:0E:37:4A:94:13:64:E1:51:52:54:4B:E9:D1:8C:80 Certificate issuer: /CN=A91BD000/serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Certificate serial: 0BC3 Authority key identifier: 40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/A55C1282ACA311EFBA427354C4F9AE02.roa Signing time: Wed 27 Nov 2024 09:46:28 +0000 ROA not before: Wed 27 Nov 2024 09:46:28 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58912 IP address blocks: 45.124.12.0/22 maxlen: 24 103.25.80.0/22 maxlen: 24 2407:9ac0::/32 maxlen: 32 2407:9ac0::/36 maxlen: 36 2407:9ac0:1000::/36 maxlen: 36 2407:9ac0:2000::/36 maxlen: 36 2407:9ac0:3000::/36 maxlen: 36 2407:9ac0:4000::/36 maxlen: 36 2407:9ac0:5000::/36 maxlen: 36 2407:9ac0:6000::/36 maxlen: 36 2407:9ac0:7000::/36 maxlen: 36 2407:9ac0:8000::/36 maxlen: 36 2407:9ac0:9000::/36 maxlen: 36 2407:9ac0:a000::/36 maxlen: 36 2407:9ac0:b000::/36 maxlen: 36 2407:9ac0:c000::/36 maxlen: 36 2407:9ac0:d000::/36 maxlen: 36 2407:9ac0:e000::/36 maxlen: 36 2407:9ac0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD000, serialNumber=40E96CAEB19D41E0DAD652F435AD08E7AE809EF9 Validity Not Before: Nov 27 09:46:28 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6746ea74-ad4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f8:90:72:13:1b:d1:18:1b:9a:95:b6:8f:70: 8e:38:0b:b4:07:e5:96:17:6f:de:c7:50:21:9d:76: 7f:f9:74:5a:bf:32:4e:40:f0:a7:2c:f6:69:e3:63: 21:e9:49:27:4a:63:f3:e4:df:e0:c3:f4:70:55:66: ac:d0:ee:f4:20:f1:03:91:1d:aa:1c:8c:c2:52:f4: 5b:26:b1:a3:e2:0d:28:67:52:92:83:05:0b:b8:4a: 74:9c:b6:8c:fe:9c:67:91:36:05:64:39:ad:d1:01: fc:de:79:2e:d0:89:78:60:74:ef:92:54:a0:53:a0: 23:a2:2f:13:4e:84:0a:c7:2f:63:90:df:cb:83:e1: 5d:65:4c:43:08:df:f2:9a:11:0a:85:18:9e:b5:63: a6:ab:62:44:18:1a:8d:bb:da:9c:22:17:00:72:3c: f8:c9:07:32:e4:40:ae:a6:08:97:de:e7:b8:af:7b: f6:01:de:20:47:8b:e7:1b:a9:4d:d3:6a:cb:12:9e: a1:90:51:e4:b0:15:02:c5:21:78:20:5f:f2:1e:9b: 97:2a:20:99:16:8b:b6:3a:f3:60:1e:85:3c:b7:af: 5d:72:04:b1:d7:99:75:0f:b2:c0:86:08:3d:3e:97: 1f:85:e5:2a:b4:1b:54:19:29:60:ba:fb:9c:8a:3a: 5a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CD:C4:E1:C5:0E:37:4A:94:13:64:E1:51:52:54:4B:E9:D1:8C:80 X509v3 Authority Key Identifier: keyid:40:E9:6C:AE:B1:9D:41:E0:DA:D6:52:F4:35:AD:08:E7:AE:80:9E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/QOlsrrGdQeDa1lL0Na0I566Anvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlsrrGdQeDa1lL0Na0I566Anvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD000/E6602ED20DB411EABA5C1D7FC4F9AE02/A55C1282ACA311EFBA427354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.12.0/22 103.25.80.0/22 IPv6: 2407:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 78:6b:a7:28:7e:64:b0:9c:71:29:43:cf:6a:8f:3c:1d:d5:ca: 99:8d:23:48:2f:51:bb:20:9d:42:7f:c7:d6:15:93:c5:6e:53: 45:77:8b:c2:cc:6e:d1:c6:b9:7e:02:8f:86:88:48:1d:11:26: 37:09:b6:71:c6:96:c2:31:96:42:99:71:52:04:f2:7a:10:60: 5a:9c:4e:e5:7c:20:09:c9:c0:e8:6d:bb:34:bc:18:f2:c9:07: 3a:22:b2:5a:91:9e:aa:5e:51:6e:8d:c1:99:5c:9f:05:cf:60: 2d:9e:f7:35:47:b9:da:20:01:1d:2e:fa:9e:89:6f:9a:9e:08: 36:fd:f4:5e:40:18:9b:0b:0d:b9:bb:39:92:32:b6:5a:e1:c6: f8:b3:e5:fa:46:12:cc:35:1f:c1:26:4a:fe:97:29:cf:d8:3b: 56:ab:34:f7:65:03:6c:b9:08:86:b6:82:b5:ad:cf:7e:fa:fe: 7e:90:73:15:fa:28:ac:fd:f8:60:39:ad:c0:de:76:7b:65:47: 39:8c:08:09:0b:ef:78:ce:11:18:2e:0a:f7:b4:4d:db:6c:21: 32:42:ff:da:8e:16:e9:4e:7e:a2:1f:b9:33:be:00:5a:d6:10: 6a:32:67:74:83:83:76:9d:71:9d:26:a3:e6:4c:33:44:28:45: 5d:de:3a:6b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwMDAxMTAvBgNVBAUTKDQwRTk2Q0FFQjE5RDQxRTBEQUQ2NTJGNDM1QUQwOEU3 QUU4MDlFRjkwHhcNMjQxMTI3MDk0NjI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2ZWE3NC1hZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/iQchMb0RgbmpW2j3COOAu0B+WWF2/ex1AhnXZ/+XRavzJOQPCnLPZp42Mh 6UknSmPz5N/gw/RwVWas0O70IPEDkR2qHIzCUvRbJrGj4g0oZ1KSgwULuEp0nLaM /pxnkTYFZDmt0QH83nku0Il4YHTvklSgU6Ajoi8TToQKxy9jkN/Lg+FdZUxDCN/y mhEKhRietWOmq2JEGBqNu9qcIhcAcjz4yQcy5ECupgiX3ue4r3v2Ad4gR4vnG6lN 02rLEp6hkFHksBUCxSF4IF/yHpuXKiCZFou2OvNgHoU8t69dcgSx15l1D7LAhgg9 PpcfheUqtBtUGSlguvucijpaLwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFHNxOHF DjdKlBNk4VFSVEvp0YyAMB8GA1UdIwQYMBaAFEDpbK6xnUHg2tZS9DWtCOeugJ75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDAwMC9FNjYwMkVEMjBE QjQxMUVBQkE1QzFEN0ZDNEY5QUUwMi9RT2xzcnJHZFFlRGExbEwwTmEwSTU2NkFu dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPbHNyckdkUWVEYTFsTDBOYTBJNTY2QW52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQwMDAvRTY2MDJFRDIwREI0MTFFQUJBNUMxRDdGQzRGOUFFMDIvQTU1QzEyODJB Q0EzMTFFRkJBNDI3MzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItfAwDBAJnGVAwDQQCAAIwBwMFACQHmsAwDQYJKoZIhvcN AQELBQADggEBAHhrpyh+ZLCccSlDz2qPPB3VypmNI0gvUbsgnUJ/x9YVk8VuU0V3 i8LMbtHGuX4Cj4aISB0RJjcJtnHGlsIxlkKZcVIE8noQYFqcTuV8IAnJwOhtuzS8 GPLJBzoislqRnqpeUW6NwZlcnwXPYC2e9zVHudogAR0u+p6Jb5qeCDb99F5AGJsL Dbm7OZIytlrhxviz5fpGEsw1H8EmSv6XKc/YO1arNPdlA2y5CIa2grWtz376/n6Q cxX6KKz9+GA5rcDedntlRzmMCAkL73jOERguCve0TdtsITJC/9qOFulOfqIfuTO+ AFrWEGoyZ3SDg3adcZ0mo+ZMM0QoRV3eOms= -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:46 2025 by rpki-client