$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/4E6E940C612211EB8166284BC4F9AE02.roa File: 4E6E940C612211EB8166284BC4F9AE02.roa (raw, json) Hash identifier: SMU4xFi1+BMgC34BsBqVGrlL7Nhi/uMYFKO8+xvL4gc= Subject key identifier: 92:1D:43:ED:D4:A8:DB:13:89:2A:CA:85:07:EE:D9:89:38:D3:D5:93 Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Certificate serial: 09AC Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/4E6E940C612211EB8166284BC4F9AE02.roa Signing time: Sat 02 Nov 2024 20:49:16 +0000 ROA not before: Sat 02 Nov 2024 20:49:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17829 IP address blocks: 119.15.72.0/24 maxlen: 24 119.15.73.0/24 maxlen: 24 119.15.74.0/24 maxlen: 24 119.15.75.0/24 maxlen: 24 119.15.76.0/24 maxlen: 24 119.15.77.0/24 maxlen: 24 119.15.78.0/24 maxlen: 24 119.15.79.0/24 maxlen: 24 125.253.52.0/23 maxlen: 23 203.32.82.0/24 maxlen: 24 203.33.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2476 (0x9ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Validity Not Before: Nov 2 20:49:16 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726904b-7520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:2a:90:38:61:60:a3:03:b0:65:03:b1:79: da:b7:9b:48:b2:a8:a3:af:b2:96:4e:7c:0a:a3:db: 7d:4e:7d:a7:e1:d7:26:1b:15:d5:c7:88:6a:69:c8: af:f2:6a:0d:c0:d7:e6:d9:e0:d4:49:7a:be:6a:a4: 01:e1:03:18:2f:ea:17:fd:64:11:bd:c0:1a:9f:88: 0d:d2:71:13:42:d4:43:47:a6:04:70:86:2d:18:b6: 59:9f:58:f0:5d:56:61:6a:ac:d3:b0:c9:da:6e:02: a1:fc:3d:a1:24:b5:28:24:90:fb:ae:bc:05:c3:51: 00:9c:c2:38:3e:d9:b5:cc:34:59:ad:44:56:8d:61: 0f:30:b7:2e:e5:a6:3d:bb:14:05:34:a7:1e:ab:67: 6d:4a:72:4c:64:58:82:0e:ea:43:fd:6d:c8:2c:07: e4:85:22:1c:64:4c:c6:6f:f3:33:48:5b:5c:ba:cb: 55:1a:83:40:8e:df:0f:df:ae:b9:88:40:8c:7c:06: 60:50:10:aa:7f:8c:13:64:22:92:78:fe:c2:83:9a: b7:6c:3d:f1:67:80:50:99:8f:ba:fb:5e:08:42:56: 54:56:0b:48:11:b1:3c:eb:18:0b:d4:81:44:9b:e6: 84:c8:53:ea:91:74:b3:3e:5e:2b:a7:f2:dd:72:61: cd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1D:43:ED:D4:A8:DB:13:89:2A:CA:85:07:EE:D9:89:38:D3:D5:93 X509v3 Authority Key Identifier: keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/4E6E940C612211EB8166284BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.72.0/21 125.253.52.0/23 203.32.82.0/24 203.33.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:e8:53:d9:4a:f5:c0:eb:69:94:0a:d0:f2:cf:a0:c7:bf:34: 4d:54:a9:cb:e0:82:2e:b5:d7:76:50:97:9d:76:ff:ab:c7:be: cf:d0:8c:1e:6e:56:6b:c0:cf:30:42:38:1c:f0:b8:76:7d:71: fb:13:27:de:3e:8e:58:07:1f:e7:b1:81:78:a4:4d:a2:f0:c2: 8e:16:51:4d:43:8f:d1:d7:f3:8b:2d:60:2b:d3:7d:17:70:bf: c3:07:de:12:82:5d:e4:26:9a:f5:e8:b0:6f:78:ec:5d:39:50: 25:f3:47:14:43:2a:6d:ef:7f:d1:1b:84:a9:d0:2c:00:87:83: 64:b3:06:d4:82:6e:94:00:8a:cd:5f:77:c8:56:09:d8:d9:2f: b4:a4:3b:e3:07:07:87:13:65:fb:84:5c:40:a5:1a:e9:9d:4a: 8e:14:18:f7:de:71:a8:05:2d:8a:47:01:41:a0:e6:66:c4:46: f6:2d:bd:6f:75:ef:4e:fb:61:dd:29:e8:19:a9:f1:0e:c2:59: d6:e4:18:cf:26:25:3a:cd:7e:7c:ce:75:33:c7:2d:2f:53:9e: 7e:6e:ed:5f:0b:82:97:f4:5a:59:08:d9:7a:70:6b:66:b1:87: 3a:52:50:f5:ca:fc:5e:19:1c:35:06:46:2a:ea:29:94:6d:e8: 2e:1f:aa:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0NzUxMTAvBgNVBAUTKDc0NUZGNEYwNjNBQjVEMTcxRTA1MjUxQjMxRTI5NEE0 QkM3OTczQjEwHhcNMjQxMTAyMjA0OTE2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2OTA0Yi03NTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcQqkDhhYKMDsGUDsXnat5tIsqijr7KWTnwKo9t9Tn2n4dcmGxXVx4hqaciv 8moNwNfm2eDUSXq+aqQB4QMYL+oX/WQRvcAan4gN0nETQtRDR6YEcIYtGLZZn1jw XVZhaqzTsMnabgKh/D2hJLUoJJD7rrwFw1EAnMI4Ptm1zDRZrURWjWEPMLcu5aY9 uxQFNKceq2dtSnJMZFiCDupD/W3ILAfkhSIcZEzGb/MzSFtcustVGoNAjt8P3665 iECMfAZgUBCqf4wTZCKSeP7Cg5q3bD3xZ4BQmY+6+14IQlZUVgtIEbE86xgL1IFE m+aEyFPqkXSzPl4rp/LdcmHNaQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJIdQ+3U qNsTiSrKhQfu2Yk409WTMB8GA1UdIwQYMBaAFHRf9PBjq10XHgUlGzHilKS8eXOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3NS9EQTgzQUE3QUNB MTExMUVBQTQ3OUM3MzRDNEY5QUUwMi9kRl8wOEdPclhSY2VCU1ViTWVLVXBMeDVj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RGXzA4R09yWFJjZUJTVWJNZUtVcEx4NWM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0NzUvREE4M0FBN0FDQTExMTFFQUE0NzlDNzM0QzRGOUFFMDIvNEU2RTk0MEM2 MTIyMTFFQjgxNjYyODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAN3D0gDBAF9/TQDBADLIFIDBADLIf4wDQYJKoZIhvcNAQEL BQADggEBAC/oU9lK9cDraZQK0PLPoMe/NE1Uqcvggi6113ZQl512/6vHvs/QjB5u VmvAzzBCOBzwuHZ9cfsTJ94+jlgHH+exgXikTaLwwo4WUU1Dj9HX84stYCvTfRdw v8MH3hKCXeQmmvXosG947F05UCXzRxRDKm3vf9EbhKnQLACHg2SzBtSCbpQAis1f d8hWCdjZL7SkO+MHB4cTZfuEXEClGumdSo4UGPfecagFLYpHAUGg5mbERvYtvW91 7077Yd0p6Bmp8Q7CWdbkGM8mJTrNfnzOdTPHLS9Tnn5u7V8Lgpf0WlkI2Xpwa2ax hzpSUPXK/F4ZHDUGRirqKZRt6C4fqp0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:28 2024 by rpki-client on console-ams.rpki-client.org