$ rpki-client -vvf rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/23CFDCD244BE11EF8FA8A37FC4F9AE02.roa File: 23CFDCD244BE11EF8FA8A37FC4F9AE02.roa (raw, json) Hash identifier: m4oglPoB38SyEKwPfAbQcyjAIp/BCnugPm3RoOXoqoc= Subject key identifier: BC:47:C1:1E:D1:98:0C:F8:F4:48:09:3A:46:D4:75:62:B5:F8:8D:07 Certificate issuer: /CN=A912F190/serialNumber=D6BF3DE16441ED7D87506DE09E4DD5D638E0BA69 Certificate serial: 68 Authority key identifier: D6:BF:3D:E1:64:41:ED:7D:87:50:6D:E0:9E:4D:D5:D6:38:E0:BA:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1r894WRB7X2HUG3gnk3V1jjgumk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/23CFDCD244BE11EF8FA8A37FC4F9AE02.roa Signing time: Thu 24 Oct 2024 06:28:23 +0000 ROA not before: Thu 24 Oct 2024 06:28:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24007 IP address blocks: 180.188.204.0/22 maxlen: 22 180.188.205.0/24 maxlen: 24 180.188.206.0/24 maxlen: 24 180.188.207.0/24 maxlen: 24 202.12.24.0/23 maxlen: 23 202.12.24.0/24 maxlen: 24 202.12.25.0/24 maxlen: 24 203.3.130.0/24 maxlen: 24 203.4.232.0/24 maxlen: 24 203.4.233.0/24 maxlen: 24 203.4.234.0/24 maxlen: 24 203.4.235.0/24 maxlen: 24 203.4.236.0/24 maxlen: 24 203.4.237.0/24 maxlen: 24 203.4.238.0/24 maxlen: 24 203.4.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/1r894WRB7X2HUG3gnk3V1jjgumk.crl rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/1r894WRB7X2HUG3gnk3V1jjgumk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1r894WRB7X2HUG3gnk3V1jjgumk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F190/serialNumber=D6BF3DE16441ED7D87506DE09E4DD5D638E0BA69 Validity Not Before: Oct 24 06:28:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6719e907-e9c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bc:ab:f6:8d:f5:65:80:de:98:f5:b1:20:ae: 0d:a7:db:18:77:18:5a:b9:a2:82:07:9f:6e:bb:ef: 76:88:6f:e6:4a:f1:14:13:10:0b:99:38:93:a4:79: 86:31:38:ac:6f:3b:0e:a9:d1:d9:a3:6e:26:6d:75: 66:b1:ef:7e:c6:ea:91:20:9f:c7:95:1a:70:c0:82: a2:a5:00:9b:01:81:9d:96:dd:b2:7c:ef:1f:86:ca: f6:62:ff:07:39:bd:c9:6a:f7:1e:a5:af:27:93:c4: 7e:28:cd:a6:61:c6:dc:47:99:f7:f7:d4:4b:f1:bc: 8c:8d:d0:22:31:2e:55:c8:41:18:c9:6f:9a:69:b0: 34:0d:9c:ac:c3:4c:8f:8c:cd:28:e9:c7:97:8d:a7: 71:ac:ff:04:4d:f7:03:0a:12:9d:7d:66:5d:ce:75: 58:60:69:45:ca:74:b3:c8:33:d2:e8:98:7d:4f:b9: a0:fe:c5:0d:d8:0c:0b:91:59:f9:2e:55:9b:be:ed: dc:91:b6:bf:a4:26:ae:6b:d4:a9:c9:14:67:39:c3: ce:e3:3d:88:b7:62:e6:12:11:f7:20:49:65:cc:da: 28:6b:e6:59:e7:8d:04:4d:75:a1:8f:5d:f9:81:5c: aa:8a:49:cc:3f:41:d5:30:a2:a8:d7:4d:9b:ce:2c: a9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:47:C1:1E:D1:98:0C:F8:F4:48:09:3A:46:D4:75:62:B5:F8:8D:07 X509v3 Authority Key Identifier: keyid:D6:BF:3D:E1:64:41:ED:7D:87:50:6D:E0:9E:4D:D5:D6:38:E0:BA:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/1r894WRB7X2HUG3gnk3V1jjgumk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1r894WRB7X2HUG3gnk3V1jjgumk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F190/57B405943A8411EFA5731584C4F9AE02/23CFDCD244BE11EF8FA8A37FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.188.204.0/22 202.12.24.0/23 203.3.130.0/24 203.4.232.0/21 Signature Algorithm: sha256WithRSAEncryption b7:f7:e0:91:e2:85:62:9e:b1:29:2a:85:d9:ff:8b:9f:d1:88: b5:11:eb:1b:ba:7f:5b:40:c5:44:8d:28:84:15:9d:26:ca:1d: 75:9a:89:d2:c8:5c:02:89:e4:36:4f:86:d5:df:45:28:ab:1a: 42:59:73:6c:01:96:fe:c0:b5:85:51:07:9a:bd:30:36:7b:aa: 84:33:25:a7:32:f2:73:93:1e:97:cd:5b:be:9c:97:6c:23:37: 89:78:18:43:d6:4a:1a:2f:a0:5c:60:d0:af:a7:e3:c7:be:cf: f0:50:6f:79:5c:d7:21:0a:f5:a2:e0:c2:09:35:48:22:39:73: 6e:52:49:9c:ba:25:e9:91:c9:91:19:b0:dd:af:74:1e:51:a9: 9e:52:92:51:af:ac:a3:83:ca:e1:b2:77:0b:ea:ec:2c:1e:78: ca:84:29:a7:79:e4:fa:ed:01:f7:4d:89:f8:8d:38:d2:43:77: b4:b0:d4:b9:1d:cd:8f:be:a2:ba:eb:aa:05:79:c7:a4:55:3e: fb:f2:1a:fa:41:78:46:3b:19:66:d2:59:c3:5c:d6:df:b7:23: 7a:8f:96:d4:cf:8c:f0:64:51:ea:e5:cb:ed:b5:70:48:3c:e0: d1:43:ad:b3:84:06:bb:d3:5a:44:7a:f5:01:5a:17:bc:f7:80: 3e:db:05:61 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjE5MDExMC8GA1UEBRMoRDZCRjNERTE2NDQxRUQ3RDg3NTA2REUwOUU0REQ1RDYz OEUwQkE2OTAeFw0yNDEwMjQwNjI4MjNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTllOTA3LWU5YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpvKv2jfVlgN6Y9bEgrg2n2xh3GFq5ooIHn26773aIb+ZK8RQTEAuZOJOkeYYx OKxvOw6p0dmjbiZtdWax737G6pEgn8eVGnDAgqKlAJsBgZ2W3bJ87x+GyvZi/wc5 vclq9x6lryeTxH4ozaZhxtxHmff31EvxvIyN0CIxLlXIQRjJb5ppsDQNnKzDTI+M zSjpx5eNp3Gs/wRN9wMKEp19Zl3OdVhgaUXKdLPIM9LomH1PuaD+xQ3YDAuRWfku VZu+7dyRtr+kJq5r1KnJFGc5w87jPYi3YuYSEfcgSWXM2ihr5lnnjQRNdaGPXfmB XKqKScw/QdUwoqjXTZvOLKmBAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUvEfBHtGY DPj0SAk6RtR1YrX4jQcwHwYDVR0jBBgwFoAU1r894WRB7X2HUG3gnk3V1jjgumkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGMTkwLzU3QjQwNTk0M0E4 NDExRUZBNTczMTU4NEM0RjlBRTAyLzFyODk0V1JCN1gySFVHM2duazNWMWpqZ3Vt ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXI4OTRXUkI3WDJIVUczZ25rM1YxampndW1rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjE5MC81N0I0MDU5NDNBODQxMUVGQTU3MzE1ODRDNEY5QUUwMi8yM0NGRENEMjQ0 QkUxMUVGOEZBOEEzN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEArS8zAMEAcoMGAMEAMsDggMEA8sE6DANBgkqhkiG9w0BAQsF AAOCAQEAt/fgkeKFYp6xKSqF2f+Ln9GItRHrG7p/W0DFRI0ohBWdJsoddZqJ0shc AonkNk+G1d9FKKsaQllzbAGW/sC1hVEHmr0wNnuqhDMlpzLyc5Mel81bvpyXbCM3 iXgYQ9ZKGi+gXGDQr6fjx77P8FBveVzXIQr1ouDCCTVIIjlzblJJnLol6ZHJkRmw 3a90HlGpnlKSUa+so4PK4bJ3C+rsLB54yoQpp3nk+u0B902J+I040kN3tLDUuR3N j76iuuuqBXnHpFU++/Ia+kF4RjsZZtJZw1zW37cjeo+W1M+M8GRR6uXL7bVwSDzg 0UOts4QGu9NaRHr1AVoXvPeAPtsFYQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:04 2024 by rpki-client on console-ams.rpki-client.org