$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/EE985C561CEA11EA8B382C0BC4F9AE02.roa File: EE985C561CEA11EA8B382C0BC4F9AE02.roa (raw, json) Hash identifier: Tj2VTOrTG521eWfpmsriO03fMas744CeHkfVcMr3bEA= Subject key identifier: A5:9A:22:70:25:35:47:A7:AD:12:6D:35:35:11:6A:21:25:49:F5:BD Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0AFF Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/EE985C561CEA11EA8B382C0BC4F9AE02.roa Signing time: Wed 24 Apr 2024 20:28:41 +0000 ROA not before: Wed 24 Apr 2024 20:28:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135412 IP address blocks: 203.119.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2815 (0xaff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: Apr 24 20:28:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66296b79-1e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:80:e4:b4:8c:6f:6e:aa:b2:76:a2:7e:e8:c2: b6:3b:bc:90:be:8c:e8:bc:7a:03:b6:9e:e3:a9:d1: 41:0d:e5:17:31:dd:dd:cc:d9:1f:63:55:c9:99:b9: 9d:99:86:5a:51:78:8d:ee:09:b8:40:d7:b1:08:ba: b2:c6:b8:7e:2e:9f:03:b8:47:af:58:7a:83:f7:9c: da:d0:f6:f9:0d:30:ee:b0:9c:ae:20:7b:8d:cc:92: 4c:6a:a5:4b:a9:05:55:99:d0:95:73:59:ce:77:1a: 04:eb:d0:74:5f:95:2e:e6:02:2d:f6:34:0a:40:02: 8d:d9:89:ef:ca:cf:77:48:1a:eb:da:23:cf:f6:83: 5f:2b:4b:43:5e:8b:ff:77:82:4b:94:8c:ac:06:6b: 70:d0:eb:cd:62:2d:d2:7e:ae:28:0d:3e:fb:14:45: 2d:47:7d:2b:0f:2e:09:3a:2b:6d:89:05:2f:c8:9d: 63:c3:bc:20:f8:de:cd:22:91:3e:0e:d4:ed:30:4c: fa:d4:24:46:4b:3f:9a:a1:26:45:56:ea:31:3b:32: 3a:ca:5c:af:95:14:ee:c2:a8:36:a7:8d:27:13:aa: 3c:8c:59:68:67:08:a5:dc:ae:09:fb:20:ab:81:50: 35:be:d0:d2:31:b1:a4:bf:87:e6:75:5d:5c:f3:76: c7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9A:22:70:25:35:47:A7:AD:12:6D:35:35:11:6A:21:25:49:F5:BD X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/EE985C561CEA11EA8B382C0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.119.78.0/24 Signature Algorithm: sha256WithRSAEncryption 96:df:16:53:60:ab:89:d9:ee:60:75:b5:d9:c8:3b:fe:31:a0: 91:b7:f3:15:16:a4:da:e5:a5:33:fa:3d:30:e9:21:09:ad:b9: f2:b8:d2:78:d1:a1:94:96:01:e2:4a:08:2e:e1:b4:11:0c:23: 34:f8:39:64:d7:5f:63:91:5d:a3:6c:6e:d1:16:4d:0e:77:0b: 43:df:44:dc:df:3d:35:9b:56:a9:7a:91:0b:a2:b9:72:42:5a: f4:0f:55:59:cf:0c:c9:4d:cc:61:de:cc:c9:7b:86:98:92:19: 6f:3b:48:5d:29:1c:f9:e8:fe:59:73:80:17:07:42:76:b3:58: 45:fb:68:97:aa:09:b7:0e:0d:94:87:8c:81:e2:61:4f:de:eb: c3:17:c5:ad:47:77:c4:d5:21:c3:06:89:eb:f7:ba:fc:5a:38: 52:11:2e:43:ba:61:30:23:5a:49:f8:77:0e:32:62:de:92:34: 3e:5d:4e:c8:87:11:5b:2b:ce:ee:60:db:24:cc:d0:4e:8e:7c: 02:71:ff:22:73:2e:93:3b:ae:d8:31:a7:31:88:30:ab:79:91: bd:d6:2c:c9:7c:7d:f3:02:10:84:76:12:66:fb:d0:84:cc:99: fd:d8:fd:b0:5c:ef:a2:2f:b5:0b:06:eb:be:47:53:f3:b4:20: e8:87:55:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjQwNDI0MjAyODQxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5NmI3OS0xZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oDktIxvbqqydqJ+6MK2O7yQvozovHoDtp7jqdFBDeUXMd3dzNkfY1XJmbmd mYZaUXiN7gm4QNexCLqyxrh+Lp8DuEevWHqD95za0Pb5DTDusJyuIHuNzJJMaqVL qQVVmdCVc1nOdxoE69B0X5Uu5gIt9jQKQAKN2Ynvys93SBrr2iPP9oNfK0tDXov/ d4JLlIysBmtw0OvNYi3Sfq4oDT77FEUtR30rDy4JOittiQUvyJ1jw7wg+N7NIpE+ DtTtMEz61CRGSz+aoSZFVuoxOzI6ylyvlRTuwqg2p40nE6o8jFloZwil3K4J+yCr gVA1vtDSMbGkv4fmdV1c83bHJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKWaInAl NUenrRJtNTURaiElSfW9MB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OThEMjAvM0Y3NzAzQzIxQ0U5MTFFQTk4ODk3NDg3QzRGOUFFMDIvRUU5ODVDNTYx Q0VBMTFFQThCMzgyQzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLd04wDQYJKoZIhvcNAQELBQADggEBAJbfFlNgq4nZ7mB1 tdnIO/4xoJG38xUWpNrlpTP6PTDpIQmtufK40njRoZSWAeJKCC7htBEMIzT4OWTX X2ORXaNsbtEWTQ53C0PfRNzfPTWbVql6kQuiuXJCWvQPVVnPDMlNzGHezMl7hpiS GW87SF0pHPno/llzgBcHQnazWEX7aJeqCbcODZSHjIHiYU/e68MXxa1Hd8TVIcMG iev3uvxaOFIRLkO6YTAjWkn4dw4yYt6SND5dTsiHEVsrzu5g2yTM0E6OfAJx/yJz LpM7rtgxpzGIMKt5kb3WLMl8ffMCEIR2Emb70ITMmf3Y/bBc76IvtQsG675HU/O0 IOiHVdA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org