$ rpki-client -vvf rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa File: 5A530D08ADE611EDB7013F5DC4F9AE02.roa (raw, json) Hash identifier: MAmo9EtxRMTsDG6CZhTswgPlPQKn60eyJp9uuW8la+Q= Subject key identifier: 3A:28:8B:18:CC:84:AD:AF:35:8D:50:16:61:41:85:0A:2D:F9:E0:88 Certificate issuer: /CN=A912879A/serialNumber=D55604E1CDB095B1AC0AD4317B6557062304B1D0 Certificate serial: 340C Authority key identifier: D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa Signing time: Thu 26 Sep 2024 13:36:08 +0000 ROA not before: Thu 26 Sep 2024 13:36:08 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38310 IP address blocks: 122.200.16.0/24 maxlen: 24 122.200.17.0/24 maxlen: 24 122.200.18.0/24 maxlen: 24 122.200.19.0/24 maxlen: 24 122.200.20.0/24 maxlen: 24 122.200.21.0/24 maxlen: 24 122.200.22.0/24 maxlen: 24 122.200.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.crl rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13324 (0x340c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912879A/serialNumber=D55604E1CDB095B1AC0AD4317B6557062304B1D0 Validity Not Before: Sep 26 13:36:08 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66f56348-ce25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:69:48:36:a9:8d:97:2a:0c:ea:63:6a:ec:cb: 54:9f:f7:62:04:c8:f0:44:a4:4e:e9:34:a8:7e:f5: bb:79:8b:fb:57:31:22:89:12:fa:e0:cf:c4:cb:85: 55:67:af:c0:dd:35:74:8b:51:8f:32:28:3e:75:a2: 25:c5:0b:57:4a:ac:e0:2a:e4:cc:e9:45:d9:52:4b: f9:e4:59:6d:8d:ce:48:57:60:9d:59:41:c7:f3:aa: e6:cd:27:72:5b:54:eb:78:61:d9:58:1f:9b:ad:d9: d6:cd:f2:10:ea:a3:ce:a3:bf:e4:4b:e9:e8:97:74: ad:1f:e0:60:48:38:e6:c0:f6:93:38:ba:53:13:99: 07:37:dc:bb:7f:75:12:af:33:13:ad:2d:5e:43:e4: 57:0e:94:6d:d1:34:6e:4c:8c:7f:95:10:3a:51:ff: ff:fe:75:89:91:9c:55:65:df:1b:bf:7c:b6:5a:10: 2c:92:99:e7:d8:b0:77:af:cf:f7:0b:53:2f:bf:5d: 5a:2e:2f:2c:7a:45:67:ab:59:d4:b3:59:38:2e:c2: cd:1a:14:ad:f1:e1:a3:e9:8c:21:23:9f:d4:b2:a8: f5:55:54:c1:a4:83:96:38:ca:d8:9d:ac:a3:d1:5b: 40:5e:ab:2b:2c:6e:f6:5b:47:10:7b:0d:8d:5c:7b: f5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:28:8B:18:CC:84:AD:AF:35:8D:50:16:61:41:85:0A:2D:F9:E0:88 X509v3 Authority Key Identifier: keyid:D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.200.16.0/21 Signature Algorithm: sha256WithRSAEncryption 93:ed:d1:09:1d:a3:55:97:cd:ca:dd:12:f5:d8:e1:d3:13:ce: b5:b8:08:b9:68:53:a8:ae:44:a5:01:e4:c0:be:ae:4f:37:70: 07:85:23:e1:fc:aa:fd:65:97:98:cd:87:b0:51:08:26:9e:12: 12:5e:04:e8:a0:fa:46:a2:da:fd:0b:4d:3a:82:97:69:3c:b1: 2e:a0:1d:c7:cd:41:4c:ca:8b:ab:b7:62:f9:73:e1:43:18:b8: e9:2a:c6:89:84:85:b1:60:25:04:50:de:44:3e:26:1d:e1:ee: fe:af:df:23:a2:ed:3e:f0:30:6c:60:ec:0e:e4:ad:6b:71:3a: bb:88:57:d6:76:59:0a:a6:81:78:87:91:ab:b2:e2:c9:93:5c: a7:e2:16:02:80:f1:fa:cf:50:77:58:e0:c0:a9:5b:8d:63:dc: 6b:e3:80:69:53:f0:53:3e:7e:dd:7d:6d:5b:0b:3c:b3:fe:0d: bb:73:69:bb:41:80:2e:f1:f4:05:0f:17:07:9b:c5:77:b7:cf: 83:44:38:60:ab:b3:69:5d:b1:bc:5d:fe:5a:5b:16:0a:85:fb: 17:ca:fc:02:da:63:f4:f4:ad:18:f3:32:ab:f4:82:c5:df:92: 55:c3:c8:c1:e5:a3:9a:dc:19:91:a1:2d:25:b3:e5:49:ea:a7: e9:ad:8e:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3OUExMTAvBgNVBAUTKEQ1NTYwNEUxQ0RCMDk1QjFBQzBBRDQzMTdCNjU1NzA2 MjMwNEIxRDAwHhcNMjQwOTI2MTMzNjA4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1NjM0OC1jZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GlINqmNlyoM6mNq7MtUn/diBMjwRKRO6TSofvW7eYv7VzEiiRL64M/Ey4VV Z6/A3TV0i1GPMig+daIlxQtXSqzgKuTM6UXZUkv55Fltjc5IV2CdWUHH86rmzSdy W1TreGHZWB+brdnWzfIQ6qPOo7/kS+nol3StH+BgSDjmwPaTOLpTE5kHN9y7f3US rzMTrS1eQ+RXDpRt0TRuTIx/lRA6Uf///nWJkZxVZd8bv3y2WhAskpnn2LB3r8/3 C1Mvv11aLi8sekVnq1nUs1k4LsLNGhSt8eGj6YwhI5/Usqj1VVTBpIOWOMrYnayj 0VtAXqsrLG72W0cQew2NXHv1bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDooixjM hK2vNY1QFmFBhQot+eCIMB8GA1UdIwQYMBaAFNVWBOHNsJWxrArUMXtlVwYjBLHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODc5QS8wQzUzNjQyNjFE OTIxMUUyODE2NkI1RjQwOEIwMkNEMi8xVllFNGMyd2xiR3NDdFF4ZTJWWEJpTUVz ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFWWUU0YzJ3bGJHc0N0UXhlMlZYQmlNRXNkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3OUEvMEM1MzY0MjYxRDkyMTFFMjgxNjZCNUY0MDhCMDJDRDIvNUE1MzBEMDhB REU2MTFFREI3MDEzRjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN6yBAwDQYJKoZIhvcNAQELBQADggEBAJPt0Qkdo1WXzcrd EvXY4dMTzrW4CLloU6iuRKUB5MC+rk83cAeFI+H8qv1ll5jNh7BRCCaeEhJeBOig +kai2v0LTTqCl2k8sS6gHcfNQUzKi6u3Yvlz4UMYuOkqxomEhbFgJQRQ3kQ+Jh3h 7v6v3yOi7T7wMGxg7A7krWtxOruIV9Z2WQqmgXiHkauy4smTXKfiFgKA8frPUHdY 4MCpW41j3GvjgGlT8FM+ft19bVsLPLP+DbtzabtBgC7x9AUPFwebxXe3z4NEOGCr s2ldsbxd/lpbFgqF+xfK/ALaY/T0rRjzMqv0gsXfklXDyMHlo5rcGZGhLSWz5Unq p+mtjrA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org