$ rpki-client -vvf rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/24108E38125C11EFA53AA21EC4F9AE02.roa File: 24108E38125C11EFA53AA21EC4F9AE02.roa (raw, json) Hash identifier: lefqYWSDvopmWwber+4Rd9zEDMnrm9vOBRZ/1NLOrz0= Subject key identifier: E9:1B:73:A7:60:D8:7F:8C:03:4D:80:5C:C9:8B:4F:73:89:4A:49:D9 Certificate issuer: /CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Certificate serial: 3499 Authority key identifier: 80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/24108E38125C11EFA53AA21EC4F9AE02.roa Signing time: Wed 15 May 2024 01:40:42 +0000 ROA not before: Wed 15 May 2024 01:40:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38022 IP address blocks: 163.7.128.0/19 maxlen: 19 163.7.128.0/24 maxlen: 24 163.7.144.0/21 maxlen: 21 210.7.32.0/20 maxlen: 20 2404:138::/32 maxlen: 32 2404:138:204::/48 maxlen: 48 2404:138:205::/48 maxlen: 48 2404:138:206::/48 maxlen: 48 2404:138:207::/48 maxlen: 48 2404:138:1306::/48 maxlen: 48 2404:139::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13465 (0x3499) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Validity Not Before: May 15 01:40:42 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6644129a-9ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4f:bc:4c:4e:bd:c8:df:a5:d7:c6:c5:54:65: fb:fc:7f:1f:6c:b1:35:b7:79:3c:44:51:d5:5e:85: 4d:41:a1:94:f6:28:44:a2:cf:66:ad:a7:d8:b1:a6: c5:7b:c6:67:6b:a5:38:6d:d9:c4:84:b6:2a:d2:84: 41:f5:7c:3a:d7:ea:ec:30:5e:a4:9c:8d:50:ce:e9: e7:98:c7:b0:72:8e:e3:1e:9b:52:cc:3f:ce:b1:fe: 76:0b:3a:8a:a8:f2:46:28:a3:e7:37:99:30:e1:8a: e1:0f:be:4a:b9:de:cb:49:e1:c5:21:17:94:e1:58: 6d:9c:fb:29:30:d9:42:0e:af:ab:87:6b:bb:34:11: ea:bb:94:c4:eb:27:d5:e3:1a:c2:0d:f3:99:09:d3: ad:1f:4e:db:e3:ad:28:f7:2d:cc:1f:11:a9:cd:a4: f8:2c:42:24:1d:ed:42:44:c0:6b:23:eb:9d:b8:de: 44:b4:0c:52:bc:2d:10:b7:88:42:a9:8a:ca:85:e1: 84:a1:db:5e:1f:41:31:56:35:75:97:c0:1c:3c:4f: 96:3e:5c:00:ee:99:eb:b8:2f:1c:4b:7a:da:ba:f9: 49:ff:c4:c7:9a:9b:dd:fc:98:5c:78:5b:77:cf:56: 6b:54:63:24:94:23:a5:c7:0e:e5:9a:80:16:12:09: ea:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1B:73:A7:60:D8:7F:8C:03:4D:80:5C:C9:8B:4F:73:89:4A:49:D9 X509v3 Authority Key Identifier: keyid:80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/24108E38125C11EFA53AA21EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.7.128.0/19 210.7.32.0/20 IPv6: 2404:138::/31 Signature Algorithm: sha256WithRSAEncryption 17:3d:5b:00:46:94:2e:a4:ed:53:98:23:07:78:92:90:2f:ff: 2d:a3:5d:67:5c:05:85:41:9e:bd:3e:5c:e6:df:a6:e0:09:1e: f3:62:a7:0f:3e:6a:2e:54:f1:2c:c9:70:24:83:46:82:fd:3f: b6:8e:2c:71:ab:15:08:6d:8f:26:d0:ff:19:27:60:5d:44:dc: 76:ba:43:b2:20:d4:8a:e9:db:03:93:a1:c3:f4:7f:39:c8:83: cb:2a:b6:93:20:42:ad:ee:99:74:03:6f:1b:8e:cb:ca:d1:d3: bf:79:aa:4c:8b:00:e4:d5:86:0a:28:1d:0b:cc:75:27:ba:12: ac:7e:47:41:6a:a1:1a:2c:bd:4e:55:cf:84:5e:ce:57:33:13: a8:d2:6d:ec:0f:ed:bb:a6:f3:7d:43:5f:9d:10:f4:d3:6f:fa: af:94:e7:70:37:97:b1:b2:a4:5a:17:ca:dd:75:42:f5:01:ef: 10:dd:8b:bb:88:70:f9:c3:b6:5e:07:ac:f0:11:1c:da:57:21: 64:b9:4f:ab:3b:2f:cd:c1:f9:4a:e9:f5:a4:32:9d:b7:d7:25: 9d:53:c3:cc:dc:91:9f:22:40:7a:7e:6e:42:f3:7e:8c:f8:c7: 69:a3:e9:6a:6c:e6:e0:ce:b2:05:da:07:60:a3:64:b6:85:c7: c8:c7:76:95 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEzMTgxMTAvBgNVBAUTKDgwNkFCRkY0NjM1OTRDQUEzMERFNzBBMzExQUUyRjg0 OTE4OUJDNjQwHhcNMjQwNTE1MDE0MDQyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0MTI5YS05Y2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U+8TE69yN+l18bFVGX7/H8fbLE1t3k8RFHVXoVNQaGU9ihEos9mrafYsabF e8Zna6U4bdnEhLYq0oRB9Xw61+rsMF6knI1QzunnmMewco7jHptSzD/Osf52CzqK qPJGKKPnN5kw4YrhD75Kud7LSeHFIReU4VhtnPspMNlCDq+rh2u7NBHqu5TE6yfV 4xrCDfOZCdOtH07b460o9y3MHxGpzaT4LEIkHe1CRMBrI+uduN5EtAxSvC0Qt4hC qYrKheGEodteH0ExVjV1l8AcPE+WPlwA7pnruC8cS3rauvlJ/8THmpvd/JhceFt3 z1ZrVGMklCOlxw7lmoAWEgnqcwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOkbc6dg 2H+MA02AXMmLT3OJSknZMB8GA1UdIwQYMBaAFIBqv/RjWUyqMN5woxGuL4SRibxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTMxOC9EQzc0NTFGMjFE OTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRLb3czbkNqRWE0dmhKR0p2 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHcV85R05aVEtvdzNuQ2pFYTR2aEpHSnZHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEzMTgvREM3NDUxRjIxRDkxMTFFMjk4RTc0NkY0MDhCMDJDRDIvMjQxMDhFMzgx MjVDMTFFRkE1M0FBMjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAWjB4ADBATSByAwDQQCAAIwBwMFASQEATgwDQYJKoZIhvcN AQELBQADggEBABc9WwBGlC6k7VOYIwd4kpAv/y2jXWdcBYVBnr0+XObfpuAJHvNi pw8+ai5U8SzJcCSDRoL9P7aOLHGrFQhtjybQ/xknYF1E3Ha6Q7Ig1Irp2wOTocP0 fznIg8sqtpMgQq3umXQDbxuOy8rR0795qkyLAOTVhgooHQvMdSe6Eqx+R0FqoRos vU5Vz4RezlczE6jSbewP7bum831DX50Q9NNv+q+U53A3l7GypFoXyt11QvUB7xDd i7uIcPnDtl4HrPARHNpXIWS5T6s7L83B+Urp9aQynbfXJZ1Tw8zckZ8iQHp+bkLz foz4x2mj6Wps5uDOsgXaB2CjZLaFx8jHdpU= -----END CERTIFICATE-----Generated at Fri May 31 16:40:53 2024 by rpki-client on console-ams.rpki-client.org