$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7CF1675CB8F711E9B9C8D587C4F9AE02.roa File: 7CF1675CB8F711E9B9C8D587C4F9AE02.roa (raw, json) Hash identifier: zu913a3/fNGlGdi4M/wotTYQwPRl/cBSPVpZ4FlfBoo= Subject key identifier: A1:85:7E:C9:F6:E6:A1:92:01:B0:CA:B4:2B:2B:87:34:46:FA:1F:F0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 884A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7CF1675CB8F711E9B9C8D587C4F9AE02.roa Signing time: Thu 30 May 2024 15:53:52 +0000 ROA not before: Thu 30 May 2024 15:53:52 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 131262 IP address blocks: 202.191.64.0/22 maxlen: 22 202.191.64.0/24 maxlen: 24 202.191.65.0/24 maxlen: 24 202.191.66.0/24 maxlen: 24 202.191.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34890 (0x884a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:53:52 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a110-5c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2a:22:12:5f:da:62:e1:7c:ad:b3:2e:83:d8: a7:df:1d:ac:46:2c:7a:53:c5:88:80:34:26:ae:df: 0e:03:15:23:eb:f6:ce:a6:5e:99:3e:c4:b6:98:5a: 03:c1:8b:04:c6:03:bc:a9:fe:86:6b:a3:17:2a:9c: 3c:9c:08:98:8f:5c:3f:ca:c5:68:a2:41:e9:68:19: 02:27:6a:41:df:30:a0:ec:90:5e:b1:a8:50:e1:80: 2c:87:12:4d:66:5a:7c:92:ac:c4:de:97:0a:ae:c6: 0a:09:52:00:b6:76:dc:7e:21:f3:74:57:c7:4b:5e: 08:a5:df:00:69:4f:c4:d7:5d:9f:11:6e:f8:5e:2d: ea:a4:df:a0:bc:00:dd:15:7e:45:bb:60:2c:33:24: bb:37:ff:4e:dc:5e:53:cf:81:86:ff:da:82:14:2b: 6f:6c:87:b0:bc:0c:de:05:d1:95:27:61:16:5e:c7: 0c:99:f2:b9:11:b3:bd:c9:fa:ea:08:29:21:d0:5f: 41:b0:0b:83:96:16:02:dd:c4:28:0c:91:69:99:3d: 01:20:1b:94:11:d8:4a:3a:f1:47:a4:74:7d:74:b1: 55:df:77:ad:0a:75:0f:d8:30:19:1e:0f:bb:85:3f: 5a:b8:ab:e8:79:2e:8b:f4:48:07:07:da:40:54:79: 08:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:85:7E:C9:F6:E6:A1:92:01:B0:CA:B4:2B:2B:87:34:46:FA:1F:F0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7CF1675CB8F711E9B9C8D587C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.191.64.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:d7:da:f1:d0:38:30:b7:95:5f:ec:12:e3:54:77:a6:e3:a5: 75:32:a3:c4:c5:60:3b:5c:d1:e1:fd:a0:0f:08:84:0f:57:8c: d1:03:70:8a:aa:16:40:d3:9e:08:ba:c6:2d:b3:fe:95:73:98: 83:93:c7:9a:67:35:8a:38:57:6f:78:64:73:95:24:ed:eb:c3: 95:e0:9f:6d:ef:6c:51:ea:42:8a:0b:93:c6:9e:df:69:42:53: 83:d1:69:af:bf:89:c9:8c:a9:11:ec:bb:0f:ca:6f:98:aa:24: 32:e6:31:e2:2d:07:59:fa:21:d9:50:5c:a2:88:ea:6b:dd:81: aa:bd:55:bc:da:40:e8:a6:bd:5d:d4:f0:a8:04:36:98:08:81: c7:6d:6c:9d:34:9a:e1:8f:82:31:69:6f:e8:58:ae:cd:89:ad: 8d:26:80:ad:a6:06:ac:cc:7c:03:cb:f9:7e:4a:29:ca:55:c5: 91:19:e5:98:75:5f:9a:a4:8a:6b:e1:1c:aa:58:6f:33:6d:10: 49:cd:af:c4:c0:3b:2e:b4:36:30:69:23:4a:6d:d8:69:97:ba: 74:89:66:46:27:bf:f7:5d:d5:e8:18:dc:b0:ac:be:c9:65:5d: a2:6e:d4:e6:d7:a2:54:6c:7c:c8:8d:fd:87:3b:07:8c:09:e7: 3a:ef:24:d7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAIhKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTM1MloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExMTAtNWM4ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIqIhJf2mLhfK2zLoPYp98drEYselPFiIA0Jq7fDgMVI+v2zqZemT7Etpha A8GLBMYDvKn+hmujFyqcPJwImI9cP8rFaKJB6WgZAidqQd8woOyQXrGoUOGALIcS TWZafJKsxN6XCq7GCglSALZ23H4h83RXx0teCKXfAGlPxNddnxFu+F4t6qTfoLwA 3RV+RbtgLDMkuzf/TtxeU8+Bhv/aghQrb2yHsLwM3gXRlSdhFl7HDJnyuRGzvcn6 6ggpIdBfQbALg5YWAt3EKAyRaZk9ASAblBHYSjrxR6R0fXSxVd93rQp1D9gwGR4P u4U/Wrir6Hkui/RIBwfaQFR5CLsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBShhX7J 9uahkgGwyrQrK4c0Rvof8DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzdDRjE2NzVD QjhGNzExRTlCOUM4RDU4N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCyr9AMA0GCSqGSIb3DQEBCwUAA4IBAQAf19rx0Dgwt5Vf 7BLjVHem46V1MqPExWA7XNHh/aAPCIQPV4zRA3CKqhZA054IusYts/6Vc5iDk8ea ZzWKOFdveGRzlSTt68OV4J9t72xR6kKKC5PGnt9pQlOD0Wmvv4nJjKkR7LsPym+Y qiQy5jHiLQdZ+iHZUFyiiOpr3YGqvVW82kDopr1d1PCoBDaYCIHHbWydNJrhj4Ix aW/oWK7Nia2NJoCtpgaszHwDy/l+SinKVcWRGeWYdV+apIpr4RyqWG8zbRBJza/E wDsutDYwaSNKbdhpl7p0iWZGJ7/3XdXoGNywrL7JZV2ibtTm16JUbHzIjf2HOweM Cec67yTX -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:51 2024 by rpki-client on console-ams.rpki-client.org