$ rpki-client -vvf rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/9718BA74EA9E11EB8575F62AC4F9AE02.roa File: 9718BA74EA9E11EB8575F62AC4F9AE02.roa (raw, json) Hash identifier: h42qy5TQroXCH9xLmGazsIgcWrGIwp/6nGKvDVykOx0= Subject key identifier: FE:35:DE:77:65:57:33:87:A7:4C:44:51:D8:B5:76:A1:16:F2:0F:A2 Certificate issuer: /CN=A916A6D2/serialNumber=8098A1A4A657A770AFBD66A58DADE0193F5A1E88 Certificate serial: 0463 Authority key identifier: 80:98:A1:A4:A6:57:A7:70:AF:BD:66:A5:8D:AD:E0:19:3F:5A:1E:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJihpKZXp3CvvWalja3gGT9aHog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/9718BA74EA9E11EB8575F62AC4F9AE02.roa Signing time: Sun 21 Jan 2024 01:13:47 +0000 ROA not before: Sun 21 Jan 2024 01:13:47 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 10098 IP address blocks: 203.78.64.0/19 maxlen: 19 203.78.66.0/24 maxlen: 24 203.78.72.0/23 maxlen: 23 203.78.85.0/24 maxlen: 24 203.78.94.0/23 maxlen: 23 203.78.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/gJihpKZXp3CvvWalja3gGT9aHog.crl rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/gJihpKZXp3CvvWalja3gGT9aHog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJihpKZXp3CvvWalja3gGT9aHog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A6D2/serialNumber=8098A1A4A657A770AFBD66A58DADE0193F5A1E88 Validity Not Before: Jan 21 01:13:47 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65ac6fcb-9f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:5c:7b:b5:55:83:70:b3:ee:e3:7c:8a:d8: ef:9f:c7:35:d2:20:04:55:a0:e0:ba:90:bf:42:5c: ae:8d:a6:3c:c8:dc:1b:ae:15:9f:11:9d:ad:92:64: 1e:a9:27:a4:e8:67:9f:1b:f1:79:39:f5:ad:5c:da: 54:15:8c:98:01:8a:70:3d:8f:74:36:b1:65:0a:ef: e9:45:33:55:75:90:54:ba:89:8f:fd:0b:4f:71:47: 97:39:46:55:cc:05:f6:4b:05:b2:08:f7:b6:bf:ee: f4:b5:f5:f0:4c:e8:26:32:be:e5:58:60:b9:0f:3d: f2:d4:54:79:d1:e8:a4:ac:aa:00:4d:50:95:26:bd: 75:e2:cf:e1:ed:03:4d:3c:6f:51:c6:3a:0d:ab:01: 5a:64:d8:07:e7:e5:ca:ce:30:50:85:6d:68:0b:f5: 15:01:5a:13:e6:f0:80:42:c2:9b:0a:9b:85:88:17: f2:65:7f:af:14:2f:13:fe:6d:de:63:bb:7e:e2:e6: c7:ff:4c:d1:83:ef:27:cf:e5:9a:f3:a1:65:f4:fa: c4:9e:4c:75:8e:09:10:66:dd:36:52:d8:53:73:b3: 59:6f:25:a5:53:02:4a:a3:ec:c8:f9:a6:b2:f2:e3: 9c:e0:f2:9c:57:a2:f9:08:7e:57:17:1a:3b:33:f9: 16:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:35:DE:77:65:57:33:87:A7:4C:44:51:D8:B5:76:A1:16:F2:0F:A2 X509v3 Authority Key Identifier: keyid:80:98:A1:A4:A6:57:A7:70:AF:BD:66:A5:8D:AD:E0:19:3F:5A:1E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/gJihpKZXp3CvvWalja3gGT9aHog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJihpKZXp3CvvWalja3gGT9aHog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A6D2/7D57AEEEEA9C11EBA312A926C4F9AE02/9718BA74EA9E11EB8575F62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.64.0/19 Signature Algorithm: sha256WithRSAEncryption ab:02:3c:6c:54:e8:f5:40:69:d0:e7:65:2f:fe:60:7e:0b:1e: f3:b0:6c:3f:16:27:3b:ec:fc:1b:7c:8a:f0:e0:3f:34:33:0d: 32:a2:77:27:84:03:15:89:5e:eb:49:3a:9a:c0:96:69:9f:79: 21:b0:63:98:88:82:2c:1d:c7:43:5e:af:24:01:5d:d2:da:11: 91:ac:f8:56:dd:b6:d9:46:ee:06:c4:60:a0:81:a4:b9:ed:da: e6:f1:c9:e1:44:37:44:7f:a5:4f:f0:5d:d3:04:45:5c:ec:67: c0:42:d0:bd:d5:01:b7:9d:d5:8e:46:84:ee:3e:96:c6:43:94: 02:86:9f:7d:d2:97:9e:93:cd:2a:ae:8a:1b:ec:4c:98:d4:73: 35:2b:17:b7:18:74:9d:a2:4b:82:b6:e7:16:81:4d:b3:07:3e: 86:60:da:c8:d5:8b:fc:04:09:60:7e:9f:7d:23:be:40:5f:3c: 8b:67:ad:54:e1:a4:a2:96:3d:3f:a1:3c:c3:ad:63:d3:62:95: 62:cb:44:43:55:a8:4b:53:f7:0e:11:a3:2a:a4:b3:d9:00:44: 7a:be:ca:5f:da:09:6d:e5:74:f3:45:78:a6:dc:70:44:56:fb: be:33:e7:04:8f:e2:e5:66:68:7c:d3:49:9d:1e:6d:39:81:67: be:63:b2:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE2RDIxMTAvBgNVBAUTKDgwOThBMUE0QTY1N0E3NzBBRkJENjZBNThEQURFMDE5 M0Y1QTFFODgwHhcNMjQwMTIxMDExMzQ3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjNmZjYi05ZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0alce7VVg3Cz7uN8itjvn8c10iAEVaDgupC/QlyujaY8yNwbrhWfEZ2tkmQe qSek6GefG/F5OfWtXNpUFYyYAYpwPY90NrFlCu/pRTNVdZBUuomP/QtPcUeXOUZV zAX2SwWyCPe2v+70tfXwTOgmMr7lWGC5Dz3y1FR50eikrKoATVCVJr114s/h7QNN PG9RxjoNqwFaZNgH5+XKzjBQhW1oC/UVAVoT5vCAQsKbCpuFiBfyZX+vFC8T/m3e Y7t+4ubH/0zRg+8nz+Wa86Fl9PrEnkx1jgkQZt02UthTc7NZbyWlUwJKo+zI+aay 8uOc4PKcV6L5CH5XFxo7M/kWHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP413ndl VzOHp0xEUdi1dqEW8g+iMB8GA1UdIwQYMBaAFICYoaSmV6dwr71mpY2t4Bk/Wh6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTZEMi83RDU3QUVFRUVB OUMxMUVCQTMxMkE5MjZDNEY5QUUwMi9nSmlocEtaWHAzQ3Z2V2FsamEzZ0dUOWFI b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKaWhwS1pYcDNDdnZXYWxqYTNnR1Q5YUhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE2RDIvN0Q1N0FFRUVFQTlDMTFFQkEzMTJBOTI2QzRGOUFFMDIvOTcxOEJBNzRF QTlFMTFFQjg1NzVGNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXLTkAwDQYJKoZIhvcNAQELBQADggEBAKsCPGxU6PVAadDn ZS/+YH4LHvOwbD8WJzvs/Bt8ivDgPzQzDTKidyeEAxWJXutJOprAlmmfeSGwY5iI giwdx0NeryQBXdLaEZGs+FbdttlG7gbEYKCBpLnt2ubxyeFEN0R/pU/wXdMERVzs Z8BC0L3VAbed1Y5GhO4+lsZDlAKGn33Sl56TzSquihvsTJjUczUrF7cYdJ2iS4K2 5xaBTbMHPoZg2sjVi/wECWB+n30jvkBfPItnrVThpKKWPT+hPMOtY9NilWLLRENV qEtT9w4Royqks9kARHq+yl/aCW3ldPNFeKbccERW+74z5wSP4uVmaHzTSZ0ebTmB Z75jsvU= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org