$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa File: 651E60A6535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: A51ADBTd/sW5EtyDg8cMUuEf/0HgMBZMt2lvWCiXLTU= Subject key identifier: A7:A3:F2:DF:21:B9:9A:1D:1F:C1:91:5F:CB:4B:84:4E:72:B4:D9:23 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0AE7 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa Signing time: Mon 04 Dec 2023 20:08:04 +0000 ROA not before: Mon 04 Dec 2023 20:08:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4202202056 IP address blocks: 112.137.162.0/24 maxlen: 24 119.110.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Dec 4 20:08:04 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656e31a4-08ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:37:bf:8a:28:69:cc:b1:a7:09:6a:da:64: 6a:14:31:db:df:3e:2b:61:17:6f:cc:67:e7:c9:47: a7:78:28:ab:4c:27:37:40:35:b6:1b:12:b9:81:3c: db:ad:00:73:36:01:17:b6:d6:d7:c7:ec:c1:d5:5b: 53:49:80:b6:d2:4e:d3:03:a5:51:a8:2b:1e:9c:ab: ca:1e:be:31:54:90:a1:cd:01:72:ec:6e:e4:40:75: 2a:fd:03:4f:0c:8b:aa:0a:1a:72:17:1f:95:2b:e6: 67:71:f0:13:f9:0a:3d:56:ae:6e:c6:75:29:86:e4: ab:2e:45:83:44:df:ed:b6:46:aa:4d:29:64:3c:9d: cb:fa:be:06:f9:b7:ec:33:1c:9d:fd:bd:ca:c2:cd: dc:4d:62:59:d8:9f:2a:73:86:0a:1a:dd:a8:86:7c: 6f:83:90:04:2e:d1:c5:5e:97:2d:e4:0a:c6:db:f7: 30:07:04:06:df:c0:d5:07:a4:b4:d8:8c:74:9b:65: 25:a5:2f:4f:b9:68:eb:f7:96:73:fb:53:16:67:fb: 16:3a:40:2d:dc:74:96:4c:ef:af:b5:cc:eb:c7:77: cd:9b:28:3b:d9:e5:55:c6:37:e5:2a:6c:de:2c:77: 34:4e:7b:47:03:4c:39:fe:59:08:2f:c2:a9:24:dc: ce:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A3:F2:DF:21:B9:9A:1D:1F:C1:91:5F:CB:4B:84:4E:72:B4:D9:23 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.137.162.0/24 119.110.108.0/24 Signature Algorithm: sha256WithRSAEncryption 94:73:b4:09:d7:43:fa:de:08:80:9b:e5:c4:2a:73:fe:83:20: 29:ff:00:15:79:0a:ed:8b:e0:68:c6:28:04:c6:f2:53:7a:ef: 7b:77:c2:fa:64:a2:a7:33:46:7e:66:bf:8b:f9:3f:d0:d2:63: c1:77:92:ab:34:61:e2:39:74:d8:19:7a:fc:3c:7e:3e:c3:54: 77:fd:e2:41:3c:51:d6:b3:25:e9:d4:45:ee:c9:7a:92:cd:fa: 9a:2f:9c:73:63:8b:aa:ae:7d:a5:bc:66:43:a7:93:b9:d5:05: f9:6d:d8:51:8a:7a:72:9a:74:95:97:4d:6a:b7:45:2a:c7:3b: 84:73:69:b0:12:fe:a1:48:ac:fe:fc:6d:bd:fb:15:e4:02:e7: 20:fd:be:09:61:5d:64:a2:57:d0:f9:83:26:f0:27:2f:1a:47: 69:64:52:c7:47:06:14:1c:3d:d2:10:3b:1e:9a:6c:99:33:5f: bb:75:49:8c:75:87:06:98:49:73:18:49:ad:eb:d0:be:d1:39: b7:43:81:91:41:a5:a0:a7:6d:9a:59:fe:aa:d4:65:cf:33:7c: c0:10:b5:1e:d7:07:5b:6b:15:cc:7a:06:78:9d:e0:ae:61:e2: da:cb:4a:0a:c9:be:f0:5c:f0:0f:30:a9:1c:1f:b7:8f:13:f0: 2c:0d:fa:1a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjMxMjA0MjAwODA0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMzFhNC0wOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7U3v4ooacyxpwlq2mRqFDHb3z4rYRdvzGfnyUeneCirTCc3QDW2GxK5gTzb rQBzNgEXttbXx+zB1VtTSYC20k7TA6VRqCsenKvKHr4xVJChzQFy7G7kQHUq/QNP DIuqChpyFx+VK+ZncfAT+Qo9Vq5uxnUphuSrLkWDRN/ttkaqTSlkPJ3L+r4G+bfs Mxyd/b3Kws3cTWJZ2J8qc4YKGt2ohnxvg5AELtHFXpct5ArG2/cwBwQG38DVB6S0 2Ix0m2UlpS9PuWjr95Zz+1MWZ/sWOkAt3HSWTO+vtczrx3fNmyg72eVVxjflKmze LHc0TntHA0w5/lkIL8KpJNzOAwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKej8t8h uZodH8GRX8tLhE5ytNkjMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjUxRTYwQTY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABwiaIDBAB3bmwwDQYJKoZIhvcNAQELBQADggEBAJRztAnX Q/reCICb5cQqc/6DICn/ABV5Cu2L4GjGKATG8lN673t3wvpkoqczRn5mv4v5P9DS Y8F3kqs0YeI5dNgZevw8fj7DVHf94kE8UdazJenURe7JepLN+povnHNji6qufaW8 ZkOnk7nVBflt2FGKenKadJWXTWq3RSrHO4RzabAS/qFIrP78bb37FeQC5yD9vglh XWSiV9D5gybwJy8aR2lkUsdHBhQcPdIQOx6abJkzX7t1SYx1hwaYSXMYSa3r0L7R ObdDgZFBpaCnbZpZ/qrUZc8zfMAQtR7XB1trFcx6Bnid4K5h4trLSgrJvvBc8A8w qRwft48T8CwN+ho= -----END CERTIFICATE-----Generated at Fri May 31 22:13:02 2024 by rpki-client on console-fra.rpki-client.org