$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/5C236C16552611EFA2BEAC53C4F9AE02.roa File: 5C236C16552611EFA2BEAC53C4F9AE02.roa (raw, json) Hash identifier: iZ6c16QJfgq60QRYgFglwDZaB7UfKpWeC5/RltitIB8= Subject key identifier: AF:D0:1D:14:BF:E8:1D:DE:F9:72:D1:73:4E:0B:CE:23:26:EE:1D:43 Certificate issuer: /CN=A912BE25/serialNumber=A760ADE0C9D05EE679EC304122BC3350C8D2A439 Certificate serial: 0273 Authority key identifier: A7:60:AD:E0:C9:D0:5E:E6:79:EC:30:41:22:BC:33:50:C8:D2:A4:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/5C236C16552611EFA2BEAC53C4F9AE02.roa Signing time: Tue 17 Sep 2024 01:34:44 +0000 ROA not before: Tue 17 Sep 2024 01:34:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23887 IP address blocks: 119.63.0.0/23 maxlen: 23 119.63.2.0/24 maxlen: 24 202.71.176.0/23 maxlen: 23 202.71.179.0/24 maxlen: 24 202.71.186.0/24 maxlen: 24 202.71.191.0/24 maxlen: 24 2406:2a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.crl rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE25/serialNumber=A760ADE0C9D05EE679EC304122BC3350C8D2A439 Validity Not Before: Sep 17 01:34:44 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e8dcb4-7283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:58:77:4e:30:09:f2:ae:93:7c:ee:1a:e8:80: ec:7b:b9:db:3d:99:f2:66:9c:78:67:12:c5:50:5f: 42:58:df:35:75:df:36:7b:08:1c:24:a5:8d:61:ec: 55:8f:39:b5:d3:1f:de:72:c1:22:aa:83:11:1f:94: 01:90:75:71:77:49:29:74:57:3b:50:f6:4c:52:10: 7c:0c:ac:f1:41:8d:19:99:95:18:dc:64:1d:fd:8f: 14:88:9b:e4:5d:7c:22:da:f8:f0:fd:e3:96:db:76: 07:73:5b:ab:fb:28:5e:f7:07:9d:1c:30:57:fe:2b: 68:f6:c5:8b:07:72:17:fb:2e:07:7d:f0:5e:ed:a7: 88:12:b3:f3:c5:34:04:c7:e5:8b:e2:7a:20:10:8c: 93:57:cd:38:fd:a8:83:92:95:e1:a5:0d:16:0a:ac: 42:ba:96:b6:d1:1e:4f:43:80:2c:f2:3e:d3:30:78: e2:4e:30:b1:e5:fe:dc:98:04:c9:c3:b0:29:f8:ff: 79:99:c8:71:38:48:fa:a2:a6:0b:f7:4d:97:cf:8f: 25:46:d4:ae:a8:70:dd:d0:5d:42:7a:c3:ea:1f:4f: 63:f1:bc:06:29:58:a3:ec:4d:95:59:2b:0e:e1:f2: 1f:a3:ea:ee:5c:22:77:2d:6d:48:fa:20:65:ff:d0: 95:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D0:1D:14:BF:E8:1D:DE:F9:72:D1:73:4E:0B:CE:23:26:EE:1D:43 X509v3 Authority Key Identifier: keyid:A7:60:AD:E0:C9:D0:5E:E6:79:EC:30:41:22:BC:33:50:C8:D2:A4:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/5C236C16552611EFA2BEAC53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.63.0.0-119.63.2.255 202.71.176.0/23 202.71.179.0/24 202.71.186.0/24 202.71.191.0/24 IPv6: 2406:2a00::/32 Signature Algorithm: sha256WithRSAEncryption ae:21:9d:8c:7c:34:2d:4d:dd:61:fe:c1:2f:33:4f:1c:72:e3: 51:82:6e:1c:b5:90:3a:b5:a5:51:07:e9:68:f7:5e:b6:b1:ec: fd:7f:22:d6:de:86:fc:62:d3:ee:a2:1e:5e:51:ea:8d:62:ed: 6a:1f:87:63:f3:d5:6f:d0:60:49:a1:75:21:c0:9d:ff:2b:9b: 20:68:dd:de:b8:9f:35:aa:fb:70:7c:28:cb:c9:82:8f:5d:75: 74:7e:aa:8f:20:3c:1a:8e:af:f7:a6:ef:89:98:93:f8:ef:cf: 68:69:7b:70:58:33:53:d7:7b:9c:e0:18:dc:44:ad:03:18:81: bd:26:1f:48:a2:ab:ef:73:76:36:b3:d1:d1:b1:45:ab:20:22: 86:62:10:68:af:bd:f3:4b:1a:48:66:fc:95:14:a7:8a:42:ec: d5:10:b5:c1:9f:20:42:de:1c:04:f8:5f:53:1e:11:90:fa:d4: 28:2e:44:60:1b:d0:a7:dc:87:92:60:10:2b:2c:9e:68:5c:cc: 2c:81:97:7d:b0:02:cc:9c:a0:2b:19:5b:9e:e0:4b:bf:f7:56: ea:5b:fc:6d:81:ae:f8:c7:39:f8:a2:96:41:99:6b:9c:40:0f: 73:6d:87:eb:34:d8:0b:9c:09:80:06:82:18:ef:55:9b:e3:55: 73:1a:44:eb -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFMjUxMTAvBgNVBAUTKEE3NjBBREUwQzlEMDVFRTY3OUVDMzA0MTIyQkMzMzUw QzhEMkE0MzkwHhcNMjQwOTE3MDEzNDQ0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4ZGNiNC03MjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1h3TjAJ8q6TfO4a6IDse7nbPZnyZpx4ZxLFUF9CWN81dd82ewgcJKWNYexV jzm10x/ecsEiqoMRH5QBkHVxd0kpdFc7UPZMUhB8DKzxQY0ZmZUY3GQd/Y8UiJvk XXwi2vjw/eOW23YHc1ur+yhe9wedHDBX/ito9sWLB3IX+y4HffBe7aeIErPzxTQE x+WL4nogEIyTV804/aiDkpXhpQ0WCqxCupa20R5PQ4As8j7TMHjiTjCx5f7cmATJ w7Ap+P95mchxOEj6oqYL902Xz48lRtSuqHDd0F1CesPqH09j8bwGKVij7E2VWSsO 4fIfo+ruXCJ3LW1I+iBl/9CVEwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFK/QHRS/ 6B3e+XLRc04LziMm7h1DMB8GA1UdIwQYMBaAFKdgreDJ0F7meewwQSK8M1DI0qQ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkUyNS9EOTA1MjZFNEVF MTExMUVDOTUyOTk5ODJDNEY5QUUwMi9wMkN0NE1uUVh1WjU3REJCSXJ3elVNalNw RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AyQ3Q0TW5RWHVaNTdEQkJJcnd6VU1qU3BEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFMjUvRDkwNTI2RTRFRTExMTFFQzk1Mjk5OTgyQzRGOUFFMDIvNUMyMzZDMTY1 NTI2MTFFRkEyQkVBQzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MCsEAgABMCUwCwMDAHc/AwQAdz8CAwQBykewAwQAykezAwQAyke6AwQAyke/ MA0EAgACMAcDBQAkBioAMA0GCSqGSIb3DQEBCwUAA4IBAQCuIZ2MfDQtTd1h/sEv M08ccuNRgm4ctZA6taVRB+lo9162sez9fyLW3ob8YtPuoh5eUeqNYu1qH4dj89Vv 0GBJoXUhwJ3/K5sgaN3euJ81qvtwfCjLyYKPXXV0fqqPIDwajq/3pu+JmJP4789o aXtwWDNT13uc4BjcRK0DGIG9Jh9Ioqvvc3Y2s9HRsUWrICKGYhBor73zSxpIZvyV FKeKQuzVELXBnyBC3hwE+F9THhGQ+tQoLkRgG9Cn3IeSYBArLJ5oXMwsgZd9sALM nKArGVue4Eu/91bqW/xtga74xzn4opZBmWucQA9zbYfrNNgLnAmABoIY71Wb41Vz GkTr -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:36 2024 by rpki-client on console-ams.rpki-client.org