$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/8DEC4450338B11EF9934223AC4F9AE02.roa File: 8DEC4450338B11EF9934223AC4F9AE02.roa (raw, json) Hash identifier: vlck3Qx/3ELx0yn6v3SnWYVZ2b7bJMuxymqC6UIURzA= Subject key identifier: A7:50:25:B0:F3:8C:B6:6A:6E:71:E0:0A:F4:A0:9F:02:4C:31:12:74 Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 03A8 Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/8DEC4450338B11EF9934223AC4F9AE02.roa Signing time: Sun 07 Jul 2024 08:02:43 +0000 ROA not before: Sun 07 Jul 2024 08:02:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 153038 IP address blocks: 116.204.140.0/24 maxlen: 24 116.204.141.0/24 maxlen: 24 116.204.142.0/24 maxlen: 24 2400:c7c0::/48 maxlen: 48 2400:c7c0:4000::/34 maxlen: 34 2400:c7c0:4000::/40 maxlen: 40 2400:c7c0:4000::/48 maxlen: 48 2400:c7c0:43c0::/43 maxlen: 43 2400:c7c0:43c0::/48 maxlen: 48 2400:c7c0:43e0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: Jul 7 08:02:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=668a4ba2-90f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:df:7f:59:52:81:f0:a8:8f:1e:ef:7b:24:af: c7:4b:12:bc:6b:26:64:c3:31:9b:41:a0:de:ab:45: 87:3f:fa:5e:aa:a3:12:d7:00:de:b2:37:18:c5:7a: 9f:fc:3a:6f:a0:62:58:06:ca:ea:25:d0:59:ea:1a: 2e:e1:77:8d:21:85:4b:a3:85:9a:6b:6f:9c:be:72: c9:7a:64:02:39:38:da:a6:a9:b1:9b:d9:c3:f7:e6: 30:29:e8:60:d9:72:62:d4:34:54:6e:b1:e9:ab:ee: a8:76:de:5d:a3:b3:8c:92:fd:8e:4e:42:80:9b:61: dd:f8:e1:fd:ad:8e:e2:4d:ec:8b:32:11:29:a8:a7: 2d:0c:a4:84:ed:f2:5b:38:09:3c:08:bd:96:17:b9: f0:6d:2f:b0:ab:a2:8f:88:23:59:45:47:2c:4e:df: af:2c:6b:af:c0:bf:69:05:2b:0c:f3:88:2c:67:3f: 19:d9:58:ff:0c:b4:1e:d8:7c:95:d1:37:1c:23:75: 64:ee:d9:e2:8d:1c:0a:36:29:0d:e8:13:6e:44:8d: 06:b9:ba:06:b3:ff:ef:9d:2d:70:2f:c1:83:2a:3a: 96:c0:0a:31:9d:ee:09:66:8b:5a:5a:70:50:40:27: d2:97:ff:59:7a:3e:92:3d:a0:0c:d9:11:8b:cb:45: cb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:50:25:B0:F3:8C:B6:6A:6E:71:E0:0A:F4:A0:9F:02:4C:31:12:74 X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/8DEC4450338B11EF9934223AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.140.0-116.204.142.255 IPv6: 2400:c7c0::/48 2400:c7c0:4000::/34 Signature Algorithm: sha256WithRSAEncryption 45:ad:7e:23:25:4d:8b:21:ab:95:e9:52:68:82:01:12:05:7c: d6:44:6e:9c:15:43:ef:7b:4a:78:36:26:54:7a:1a:74:a4:41: 26:60:40:b9:ac:e5:cb:a5:7c:10:a4:e2:dd:8f:00:59:34:73: 86:c4:16:6c:aa:df:10:b3:12:1e:93:c9:e5:9e:27:f2:70:91: 6d:d3:8d:f2:47:8e:0d:97:d6:33:b3:8e:18:12:61:d3:a8:ee: 24:e8:dc:6b:e5:c2:bf:3f:f6:e9:38:86:d2:07:ff:44:0b:09: 7c:51:0d:b8:fe:13:ac:02:86:25:96:8a:e0:c2:6f:c3:40:88: fb:e0:3c:90:a2:49:65:64:14:20:0c:9b:51:d6:60:10:3b:18: cd:1a:a6:37:04:a6:9c:eb:9a:52:8f:aa:f0:49:27:03:0b:e7: 9f:08:ef:36:3d:fe:47:be:82:aa:43:99:1e:79:be:d9:e0:2f: 3a:60:ae:16:91:e8:48:f6:f6:5c:b7:50:06:a7:4c:cc:8d:c5: ef:4c:cd:fb:d7:80:51:cd:36:1c:54:e9:23:e6:e0:02:35:8f: 9e:6a:70:a6:86:ce:94:2d:3f:07:83:59:3f:71:e7:4e:03:50: ba:4d:4c:06:df:a9:ec:bf:b0:50:64:ce:fc:4b:3a:0d:0f:0d: 9b:0a:8d:4d -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjQwNzA3MDgwMjQzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhhNGJhMi05MGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N9/WVKB8KiPHu97JK/HSxK8ayZkwzGbQaDeq0WHP/peqqMS1wDesjcYxXqf /DpvoGJYBsrqJdBZ6hou4XeNIYVLo4Waa2+cvnLJemQCOTjapqmxm9nD9+YwKehg 2XJi1DRUbrHpq+6odt5do7OMkv2OTkKAm2Hd+OH9rY7iTeyLMhEpqKctDKSE7fJb OAk8CL2WF7nwbS+wq6KPiCNZRUcsTt+vLGuvwL9pBSsM84gsZz8Z2Vj/DLQe2HyV 0TccI3Vk7tnijRwKNikN6BNuRI0GuboGs//vnS1wL8GDKjqWwAoxne4JZotaWnBQ QCfSl/9Zej6SPaAM2RGLy0XL8QIDAQABo4ICtjCCArIwHQYDVR0OBBYEFKdQJbDz jLZqbnHgCvSgnwJMMRJ0MB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM2MUIvNTFFRkZBMzA4MjY5MTFFQ0FEMkU5NTI0QzRGOUFFMDIvOERFQzQ0NTAz MzhCMTFFRjk5MzQyMjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMBQEAgABMA4wDAMEAnTMjAMEAHTMjjAXBAIAAjARAwcAJADHwAAAAwYGJADH wEAwDQYJKoZIhvcNAQELBQADggEBAEWtfiMlTYshq5XpUmiCARIFfNZEbpwVQ+97 Sng2JlR6GnSkQSZgQLms5culfBCk4t2PAFk0c4bEFmyq3xCzEh6TyeWeJ/JwkW3T jfJHjg2X1jOzjhgSYdOo7iTo3Gvlwr8/9uk4htIH/0QLCXxRDbj+E6wChiWWiuDC b8NAiPvgPJCiSWVkFCAMm1HWYBA7GM0apjcEppzrmlKPqvBJJwML558I7zY9/ke+ gqpDmR55vtngLzpgrhaR6Ej29ly3UAanTMyNxe9MzfvXgFHNNhxU6SPm4AI1j55q cKaGzpQtPweDWT9x504DULpNTAbfqey/sFBkzvxLOg0PDZsKjU0= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:38 2024 by rpki-client on console-fra.rpki-client.org