$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/865B3F7C467C11EEBDE3D43CC4F9AE02.roa File: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (raw, json) Hash identifier: MTq717nmucrc35Yd/8a9v/UNjUpnghaYXRqZ7x8/L7U= Subject key identifier: D6:B5:49:FD:F5:FE:C5:AF:BC:BE:55:D7:54:D6:CB:97:62:AE:1C:E3 Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: B2 Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/865B3F7C467C11EEBDE3D43CC4F9AE02.roa Signing time: Sat 03 Aug 2024 06:16:53 +0000 ROA not before: Sat 03 Aug 2024 06:16:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135372 IP address blocks: 203.142.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: Aug 3 06:16:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66adcb55-fffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fb:7d:22:c8:16:ab:b9:31:cc:38:25:21:5b: 89:52:89:4a:d5:56:e3:ee:3f:ff:42:b1:51:22:f8: f9:22:fa:ee:1d:c4:e0:1f:25:45:5f:97:f5:85:27: bf:33:71:fe:5b:26:3f:49:49:f9:8b:8b:71:23:c3: 11:81:61:e4:97:aa:22:84:75:46:ba:56:0f:fc:82: 0a:a2:39:2a:c3:03:ac:19:a6:77:be:99:59:f0:2f: 25:13:79:ac:2b:f9:8a:17:b9:8f:4d:f3:69:a4:ac: ea:c8:f3:0f:64:91:d6:0b:12:f8:37:39:e8:6d:c3: 63:98:14:51:96:72:15:ff:d9:a7:f6:70:f2:6e:7c: a0:a5:71:37:3a:70:32:3a:9f:c3:3a:a5:f1:9c:4b: 30:2d:b1:04:1e:39:ec:29:9e:1c:23:ed:b8:a4:c1: 62:d4:de:d6:19:a2:74:21:0b:d4:c3:ec:4a:d2:b3: ac:9f:5b:55:f6:a9:0b:c4:5d:78:d1:f6:e5:d1:10: ee:5a:82:5c:c8:bc:35:3b:77:aa:60:26:53:f8:77: 82:8e:8e:95:53:fc:72:2e:e8:41:f1:5a:1c:24:93: d2:66:6a:b9:34:d1:b2:ff:9d:aa:bc:86:b6:5f:f7: dd:68:c2:76:18:9f:65:52:e4:04:4b:17:f2:45:cc: c6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B5:49:FD:F5:FE:C5:AF:BC:BE:55:D7:54:D6:CB:97:62:AE:1C:E3 X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/865B3F7C467C11EEBDE3D43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.142.10.0/24 Signature Algorithm: sha256WithRSAEncryption c1:8a:cf:ea:91:b9:3f:99:71:5f:e0:85:55:2d:01:4d:97:b3: f4:4e:02:f8:aa:a3:28:d2:28:75:b4:25:43:fa:21:f6:2a:11: d0:b1:34:33:9a:fb:d9:5c:59:a4:fe:50:07:78:8a:42:e7:0c: 19:15:e2:87:74:22:60:02:00:a8:8f:36:19:38:4e:d7:07:da: 09:dc:17:fc:50:ab:de:d6:93:ee:6e:03:32:7c:2c:06:02:1d: 98:ed:e6:9b:e1:d3:a6:9b:96:20:82:0c:5e:74:18:a7:98:b9: 60:a5:df:a0:bf:4d:2e:90:cf:67:39:10:c2:5a:71:9c:fb:66: bc:6c:75:67:14:c9:5e:b0:eb:e1:00:0a:c0:f0:a9:c8:cf:6a: 24:0f:e8:c2:0b:47:4e:95:d2:14:08:d5:49:46:70:c0:17:8b: 9d:a1:1d:78:b7:66:e8:4e:58:fc:2d:4d:e3:83:fa:a7:f2:79: 77:4f:13:c6:63:59:8a:96:b4:ea:79:60:88:9a:ab:f3:0f:28: de:2e:42:01:32:05:ae:0d:1a:8b:ed:ef:63:21:27:2b:e7:a0: 90:4f:54:46:b2:85:b1:34:d6:94:20:0c:97:bd:9f:82:e0:03: 69:97:65:20:15:dc:07:78:e2:56:b3:95:e6:ca:b4:f3:d1:5c: c7:0b:73:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2NEQxMTAvBgNVBAUTKDBDMzdBMDFDQjYzMzYyMzQ0RkI3Mzk2NzYwRkQ5NEQ5 QzlCOTdDN0EwHhcNMjQwODAzMDYxNjUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkY2I1NS1mZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/t9IsgWq7kxzDglIVuJUolK1Vbj7j//QrFRIvj5IvruHcTgHyVFX5f1hSe/ M3H+WyY/SUn5i4txI8MRgWHkl6oihHVGulYP/IIKojkqwwOsGaZ3vplZ8C8lE3ms K/mKF7mPTfNppKzqyPMPZJHWCxL4NznobcNjmBRRlnIV/9mn9nDybnygpXE3OnAy Op/DOqXxnEswLbEEHjnsKZ4cI+24pMFi1N7WGaJ0IQvUw+xK0rOsn1tV9qkLxF14 0fbl0RDuWoJcyLw1O3eqYCZT+HeCjo6VU/xyLuhB8VocJJPSZmq5NNGy/52qvIa2 X/fdaMJ2GJ9lUuQESxfyRczGYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNa1Sf31 /sWvvL5V11TWy5dirhzjMB8GA1UdIwQYMBaAFAw3oBy2M2I0T7c5Z2D9lNnJuXx6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjY0RC8yQkJFNDAxNDQ2 N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellqUlB0emxuWVAyVTJjbTVm SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI2NEQvMkJCRTQwMTQ0NjdDMTFFRTkyRDY0NjNDQzRGOUFFMDIvODY1QjNGN0M0 NjdDMTFFRUJERTNENDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLjgowDQYJKoZIhvcNAQELBQADggEBAMGKz+qRuT+ZcV/g hVUtAU2Xs/ROAviqoyjSKHW0JUP6IfYqEdCxNDOa+9lcWaT+UAd4ikLnDBkV4od0 ImACAKiPNhk4TtcH2gncF/xQq97Wk+5uAzJ8LAYCHZjt5pvh06abliCCDF50GKeY uWCl36C/TS6Qz2c5EMJacZz7ZrxsdWcUyV6w6+EACsDwqcjPaiQP6MILR06V0hQI 1UlGcMAXi52hHXi3ZuhOWPwtTeOD+qfyeXdPE8ZjWYqWtOp5YIiaq/MPKN4uQgEy Ba4NGovt72MhJyvnoJBPVEayhbE01pQgDJe9n4LgA2mXZSAV3Ad44lazlebKtPPR XMcLc4w= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org