$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11521A5EBDD911EABE157337C4F9AE02.roa File: 11521A5EBDD911EABE157337C4F9AE02.roa (raw, json) Hash identifier: sDmwTyl4CxxILgSP/jzCpg3hr6UtqENjgXTe55QrXIU= Subject key identifier: C5:CA:AE:25:54:8F:8B:02:87:BD:31:BC:5F:3E:C1:E4:2B:94:F7:72 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9118 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11521A5EBDD911EABE157337C4F9AE02.roa Signing time: Thu 30 May 2024 16:30:43 +0000 ROA not before: Thu 30 May 2024 16:30:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58714 IP address blocks: 124.30.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37144 (0x9118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:30:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a9b3-913f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3a:77:ce:ed:9a:11:f0:b9:b3:86:c6:70:af: 85:75:49:54:05:6f:bc:9c:3d:54:0e:0a:e1:f9:d2: 45:38:76:e5:06:f8:ba:fa:dc:4d:25:32:85:ab:c5: 36:31:6c:80:c4:dd:78:70:83:7e:ec:f2:20:56:56: ab:02:2d:e5:ac:89:09:6b:b4:29:cf:69:7f:c4:5d: a2:68:81:be:c1:0d:6e:8c:24:30:1d:e7:57:0b:d8: c2:45:71:fb:3f:54:fe:36:c2:49:64:0e:a8:39:f5: 4e:ee:cf:64:b3:f4:2c:43:80:43:be:ad:94:80:de: 57:fc:e6:ca:74:8b:e5:f4:af:98:be:67:e6:ca:53: 42:e8:fb:43:1a:a0:91:62:a0:bd:10:33:db:26:73: 52:4d:d6:42:15:f2:60:6c:b7:20:c1:67:f3:fd:41: d9:2b:8e:b6:3f:7a:69:f3:29:ca:19:5f:04:8f:0c: 51:1e:f8:c5:69:69:56:20:da:04:e0:fb:fb:fd:e6: f0:4b:29:51:4d:16:50:d8:b7:84:39:79:5b:9c:ca: 0f:cc:6f:0a:64:49:e1:55:d3:bc:c5:cf:85:33:1e: f8:3d:d8:4c:3c:7c:33:e7:25:f1:bf:3e:3c:63:bb: d2:57:d1:15:3c:b9:ff:7d:f3:6c:ee:ff:78:5f:77: da:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CA:AE:25:54:8F:8B:02:87:BD:31:BC:5F:3E:C1:E4:2B:94:F7:72 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/11521A5EBDD911EABE157337C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.30.31.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:5e:4a:1e:9a:54:1c:1b:b1:03:2d:a7:6f:bd:8f:dd:b9:d7: 40:cd:f1:42:1a:bc:1e:48:2a:da:58:d4:cd:38:54:f3:7b:c8: 14:5d:ad:ba:01:7f:56:71:a3:d6:19:25:45:1f:c1:cf:46:1b: 27:0b:e8:8e:50:ba:60:c2:e6:de:b9:73:1f:f2:2e:73:13:32: 4c:86:8f:ad:ca:33:60:f1:04:3d:43:93:4f:25:28:03:df:75: ea:65:d9:16:42:3d:90:0f:76:c3:0a:35:6e:bf:1f:3a:23:ea: 0e:6f:64:dd:0a:4c:45:21:aa:b0:58:7b:48:cd:4f:d2:37:18: 3f:36:3f:a0:b6:da:4c:90:81:ff:f6:ee:be:9e:f0:84:fb:59: 05:2c:87:87:f1:85:18:54:04:ee:d2:1b:b3:7a:2d:29:d5:c8: 5c:75:13:71:39:f9:3d:04:7a:87:5f:dc:89:69:54:11:cd:2c: c4:1b:0e:2d:d5:86:26:91:26:a9:93:87:8f:10:9e:d6:11:80: 74:e1:92:ac:dc:81:82:bd:ea:75:05:b7:5a:a5:6e:82:25:5f: fa:56:a5:9d:ca:e6:27:f2:52:da:a1:6e:ba:b7:de:a2:8f:63: 00:8d:e0:2d:bd:a7:c8:af:fc:97:d9:ef:a5:1d:18:f0:56:97: a7:85:6a:b4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAJEYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MzA0M1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE5YjMtOTEzZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL86d87tmhHwubOGxnCvhXVJVAVvvJw9VA4K4fnSRTh25Qb4uvrcTSUyhavF NjFsgMTdeHCDfuzyIFZWqwIt5ayJCWu0Kc9pf8RdomiBvsENbowkMB3nVwvYwkVx +z9U/jbCSWQOqDn1Tu7PZLP0LEOAQ76tlIDeV/zmynSL5fSvmL5n5spTQuj7Qxqg kWKgvRAz2yZzUk3WQhXyYGy3IMFn8/1B2SuOtj96afMpyhlfBI8MUR74xWlpViDa BOD7+/3m8EspUU0WUNi3hDl5W5zKD8xvCmRJ4VXTvMXPhTMe+D3YTDx8M+cl8b8+ PGO70lfRFTy5/33zbO7/eF932h0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBTFyq4l VI+LAoe9MbxfPsHkK5T3cjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzExNTIxQTVF QkREOTExRUFCRTE1NzMzN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAfB4fMA0GCSqGSIb3DQEBCwUAA4IBAQBdXkoemlQcG7ED LadvvY/duddAzfFCGrweSCraWNTNOFTze8gUXa26AX9WcaPWGSVFH8HPRhsnC+iO ULpgwubeuXMf8i5zEzJMho+tyjNg8QQ9Q5NPJSgD33XqZdkWQj2QD3bDCjVuvx86 I+oOb2TdCkxFIaqwWHtIzU/SNxg/Nj+gttpMkIH/9u6+nvCE+1kFLIeH8YUYVATu 0huzei0p1chcdRNxOfk9BHqHX9yJaVQRzSzEGw4t1YYmkSapk4ePEJ7WEYB04ZKs 3IGCvep1BbdapW6CJV/6VqWdyuYn8lLaoW66t96ij2MAjeAtvafIr/yX2e+lHRjw VpenhWq0 -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:33 2024 by rpki-client on console-ams.rpki-client.org