$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/B80A9FF60B4111EF919B0B7DC4F9AE02.roa File: B80A9FF60B4111EF919B0B7DC4F9AE02.roa (raw, json) Hash identifier: 808jJ7dFgnwvbwRsKTU5jr+nJdVb6zUdp+50FtVbbEI= Subject key identifier: 3E:35:8A:26:40:D9:9B:41:F5:B5:56:2D:13:87:82:78:0B:FA:34:0F Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Certificate serial: 09B3 Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/B80A9FF60B4111EF919B0B7DC4F9AE02.roa Signing time: Sat 02 Nov 2024 20:49:22 +0000 ROA not before: Sat 02 Nov 2024 20:49:22 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 7631 IP address blocks: 123.176.114.0/23 maxlen: 23 123.176.115.0/24 maxlen: 24 123.176.116.0/22 maxlen: 22 123.176.116.0/23 maxlen: 23 123.176.116.0/24 maxlen: 24 125.253.36.0/23 maxlen: 23 203.189.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2483 (0x9b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Validity Not Before: Nov 2 20:49:22 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67269051-9267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e7:8f:49:00:e5:fe:ae:36:63:cc:2c:52:56: 2c:50:77:29:3a:77:ed:e1:13:aa:1b:2e:ac:b2:fc: 94:8f:bc:78:b1:43:c3:b3:7d:04:fb:c6:2e:3d:95: 4c:4d:23:eb:bb:67:ea:13:50:de:10:39:5f:3a:c3: ca:c2:d4:63:71:46:97:63:05:d1:0e:19:ee:c8:0b: 50:b3:a6:c1:b9:ab:75:39:a2:9e:7e:41:47:0a:81: d3:cf:22:2a:04:87:62:3b:05:22:07:cc:67:98:66: 41:88:53:19:62:5d:45:f0:a5:c5:0d:dd:d9:7c:1f: 7b:60:df:c0:18:3e:c8:74:5a:08:7f:dc:45:4d:2a: bc:57:cc:23:70:01:6f:72:81:46:e7:57:46:f7:46: 42:fb:02:58:27:ca:1b:c8:6a:24:0e:d4:8a:52:29: 26:b5:ea:32:e7:27:9c:50:3b:d8:3f:96:5c:16:de: f8:a3:5f:68:37:1e:b0:0a:dc:e0:85:f7:aa:9f:fa: a8:0d:8a:b1:2d:6a:39:5f:8b:71:d9:01:06:a4:8a: e3:f3:82:8e:48:01:87:e2:91:db:b0:9a:af:d9:84: 7e:02:b5:af:4c:88:de:6b:00:54:40:93:c4:6e:9a: c2:d6:8f:bf:80:7a:9f:61:98:96:73:fa:af:52:82: 21:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:35:8A:26:40:D9:9B:41:F5:B5:56:2D:13:87:82:78:0B:FA:34:0F X509v3 Authority Key Identifier: keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/B80A9FF60B4111EF919B0B7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.176.114.0-123.176.119.255 125.253.36.0/23 203.189.4.0/24 Signature Algorithm: sha256WithRSAEncryption 85:6e:39:a1:02:48:fe:13:ca:b4:2a:5f:4e:49:5c:f7:48:6d: 95:69:8c:bd:48:df:18:5b:43:f7:6b:a1:b3:4d:9d:56:7d:6c: 36:60:8b:e0:75:03:86:6f:b8:1f:57:54:f8:5a:51:7c:13:bf: f6:84:ed:0e:b2:10:7d:e9:24:da:a5:99:10:4d:92:92:ef:fe: 6c:11:4a:29:38:76:30:ce:65:d5:2f:38:fd:bd:c2:19:06:1a: d4:cf:96:47:86:34:97:b2:ae:bc:b2:d5:0f:11:60:f3:46:c3: 70:8a:b9:f1:94:c4:cc:7c:52:2e:1b:3b:97:c2:5d:11:dc:64: 07:86:93:ed:81:4c:69:5c:5b:16:b0:4d:77:cc:97:57:8e:90: cd:48:4d:44:b8:06:b1:a7:90:8a:69:83:d7:c6:f7:8a:6a:b4: 21:18:77:8f:7a:e6:b3:da:fa:fb:ae:6d:40:db:b0:2b:83:32: 2d:0b:f8:54:13:00:16:8e:40:89:57:c6:cf:f7:3b:21:aa:81: 34:73:37:1f:cb:1d:e8:4c:9f:c3:47:c9:d7:4f:b7:5c:77:25: ce:be:f2:57:fb:d9:b5:31:30:95:f9:78:6e:f4:0e:55:e3:e2: 8b:9e:e9:56:bd:64:ed:33:82:6b:41:22:fa:29:2c:9b:43:d5: c4:c4:62:db -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0NzUxMTAvBgNVBAUTKDc0NUZGNEYwNjNBQjVEMTcxRTA1MjUxQjMxRTI5NEE0 QkM3OTczQjEwHhcNMjQxMTAyMjA0OTIyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2OTA1MS05MjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOePSQDl/q42Y8wsUlYsUHcpOnft4ROqGy6ssvyUj7x4sUPDs30E+8YuPZVM TSPru2fqE1DeEDlfOsPKwtRjcUaXYwXRDhnuyAtQs6bBuat1OaKefkFHCoHTzyIq BIdiOwUiB8xnmGZBiFMZYl1F8KXFDd3ZfB97YN/AGD7IdFoIf9xFTSq8V8wjcAFv coFG51dG90ZC+wJYJ8obyGokDtSKUikmteoy5yecUDvYP5ZcFt74o19oNx6wCtzg hfeqn/qoDYqxLWo5X4tx2QEGpIrj84KOSAGH4pHbsJqv2YR+ArWvTIjeawBUQJPE bprC1o+/gHqfYZiWc/qvUoIhFwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFD41iiZA 2ZtB9bVWLROHgngL+jQPMB8GA1UdIwQYMBaAFHRf9PBjq10XHgUlGzHilKS8eXOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3NS9EQTgzQUE3QUNB MTExMUVBQTQ3OUM3MzRDNEY5QUUwMi9kRl8wOEdPclhSY2VCU1ViTWVLVXBMeDVj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RGXzA4R09yWFJjZUJTVWJNZUtVcEx4NWM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0NzUvREE4M0FBN0FDQTExMTFFQUE0NzlDNzM0QzRGOUFFMDIvQjgwQTlGRjYw QjQxMTFFRjkxOUIwQjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAXuwcgMEA3uwcAMEAX39JAMEAMu9BDANBgkqhkiG9w0B AQsFAAOCAQEAhW45oQJI/hPKtCpfTklc90htlWmMvUjfGFtD92uhs02dVn1sNmCL 4HUDhm+4H1dU+FpRfBO/9oTtDrIQfekk2qWZEE2Sku/+bBFKKTh2MM5l1S84/b3C GQYa1M+WR4Y0l7KuvLLVDxFg80bDcIq58ZTEzHxSLhs7l8JdEdxkB4aT7YFMaVxb FrBNd8yXV46QzUhNRLgGsaeQimmD18b3imq0IRh3j3rms9r6+65tQNuwK4MyLQv4 VBMAFo5AiVfGz/c7IaqBNHM3H8sd6Eyfw0fJ10+3XHclzr7yV/vZtTEwlfl4bvQO VePii57pVr1k7TOCa0Ei+iksm0PVxMRi2w== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org