$ rpki-client -vvf rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa File: 0D0118A89A4C11EEB7AE8812C4F9AE02.roa (raw, json) Hash identifier: dBxphccrDtHWBtP4mox7vNoz0R+Ag/oTU8vRZmA2QGw= Subject key identifier: FD:7A:71:49:1B:93:42:BC:91:A0:31:4B:46:F1:FF:E4:48:2F:D7:EC Certificate issuer: /CN=A919A9C8/serialNumber=7838FFF971DBA42BCDD8D8F37455F0B2849B79D7 Certificate serial: 04 Authority key identifier: 78:38:FF:F9:71:DB:A4:2B:CD:D8:D8:F3:74:55:F0:B2:84:9B:79:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa Signing time: Thu 14 Dec 2023 06:43:25 +0000 ROA not before: Thu 14 Dec 2023 06:43:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152152 IP address blocks: 210.79.170.0/24 maxlen: 24 210.79.171.0/24 maxlen: 24 2001:df3:38c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.crl rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A9C8/serialNumber=7838FFF971DBA42BCDD8D8F37455F0B2849B79D7 Validity Not Before: Dec 14 06:43:25 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657aa40d-957b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e3:69:d5:dc:b1:46:22:ea:b3:a5:43:9c:f3: d7:fe:1a:1f:30:12:f5:58:7a:72:b3:a9:06:58:f6: aa:83:7e:02:2b:c8:ad:13:b3:53:df:8c:ab:90:d9: 44:cc:18:08:b5:7a:c7:95:df:fa:b3:ef:cc:4b:02: ce:53:da:94:09:6e:8e:f6:47:3e:56:e2:8e:7a:5d: 13:5a:6d:80:22:dd:07:41:60:b2:e1:33:82:36:ba: d1:56:4a:1e:8b:0d:85:e2:32:14:9d:bd:d4:4b:c1: 5e:bb:9f:25:d7:ce:32:13:19:33:3e:14:c1:cd:e7: 8e:6b:2d:54:2a:a2:82:07:ab:7d:d5:bd:f5:df:e8: ad:9d:1c:a9:69:16:bd:f2:ce:f0:0b:d6:ca:37:2f: 02:67:86:6f:07:ce:cf:56:b7:e6:2b:0c:9b:75:92: 65:15:5c:e4:76:f0:52:6f:f7:25:af:a8:f2:d9:95: 3c:12:89:21:ea:1b:12:9b:4c:ba:b4:20:df:b4:b6: f3:77:6d:54:82:20:bc:99:13:c7:ed:ea:ef:aa:31: d2:96:dd:85:8c:e5:24:86:c8:7d:9e:28:43:d3:91: e9:ac:f2:0f:aa:f9:5f:40:7c:ee:23:53:a2:68:0b: 2d:9a:6a:ac:c1:cf:13:53:ef:7b:cd:2c:53:1b:1e: fc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7A:71:49:1B:93:42:BC:91:A0:31:4B:46:F1:FF:E4:48:2F:D7:EC X509v3 Authority Key Identifier: keyid:78:38:FF:F9:71:DB:A4:2B:CD:D8:D8:F3:74:55:F0:B2:84:9B:79:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/eDj_-XHbpCvN2NjzdFXwsoSbedc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eDj_-XHbpCvN2NjzdFXwsoSbedc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A9C8/DBBB09FE9A3A11EEA675897CC4F9AE02/0D0118A89A4C11EEB7AE8812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.170.0/23 IPv6: 2001:df3:38c0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:8f:6f:a4:78:c1:2c:55:ae:50:f7:01:67:71:bd:19:81:b7: 8f:d4:3f:fc:dc:57:24:be:41:57:21:f2:0d:ac:a7:f9:0f:d8: 7e:7a:63:7a:de:1c:dc:9a:ce:5a:0d:9a:1c:fa:c2:6e:d9:6b: b4:34:3a:8e:61:60:77:57:98:4d:09:2e:88:48:4e:4a:23:3b: f1:ff:46:5a:d4:de:92:5d:db:64:ee:d9:6d:aa:22:b3:2f:40: b8:a1:b3:4e:2d:60:c0:ea:01:96:02:7b:6b:e8:53:12:37:80: 27:bc:1e:f7:ab:ad:a2:f4:63:01:9d:14:c3:a4:95:d6:38:fe: 88:f1:65:e1:12:82:e1:1b:aa:07:d4:f0:46:f0:03:66:4c:00: 97:7d:af:e9:a4:9e:9f:08:5d:65:aa:6c:1a:cd:81:ed:ae:9d: a2:71:7d:b9:2e:02:34:d8:aa:df:28:f0:e3:b4:5b:4e:83:f0: b7:ff:6f:5a:a6:82:98:3d:df:93:13:69:4a:f6:12:00:5d:85: 39:25:52:dc:0f:0e:dc:80:38:03:c7:24:b3:8d:0c:f0:27:74: f7:9c:2d:54:99:17:24:76:ed:1c:6b:76:63:8b:40:06:8f:f4: d4:70:97:17:18:14:dd:f9:ba:c1:9c:b9:4c:89:00:44:44:fc: df:b0:ce:3f -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTlDODExMC8GA1UEBRMoNzgzOEZGRjk3MURCQTQyQkNERDhEOEYzNzQ1NUYwQjI4 NDlCNzlENzAeFw0yMzEyMTQwNjQzMjVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1N2FhNDBkLTk1N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf42nV3LFGIuqzpUOc89f+Gh8wEvVYenKzqQZY9qqDfgIryK0Ts1PfjKuQ2UTM GAi1eseV3/qz78xLAs5T2pQJbo72Rz5W4o56XRNabYAi3QdBYLLhM4I2utFWSh6L DYXiMhSdvdRLwV67nyXXzjITGTM+FMHN545rLVQqooIHq33VvfXf6K2dHKlpFr3y zvAL1so3LwJnhm8Hzs9Wt+YrDJt1kmUVXOR28FJv9yWvqPLZlTwSiSHqGxKbTLq0 IN+0tvN3bVSCILyZE8ft6u+qMdKW3YWM5SSGyH2eKEPTkems8g+q+V9AfO4jU6Jo Cy2aaqzBzxNT73vNLFMbHvwXAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU/XpxSRuT QryRoDFLRvH/5Egv1+wwHwYDVR0jBBgwFoAUeDj/+XHbpCvN2NjzdFXwsoSbedcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBOUM4L0RCQkIwOUZFOUEz QTExRUVBNjc1ODk3Q0M0RjlBRTAyL2VEal8tWEhicEN2TjJOanpkRlh3c29TYmVk Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZURqXy1YSGJwQ3ZOMk5qemRGWHdzb1NiZWRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTlDOC9EQkJCMDlGRTlBM0ExMUVFQTY3NTg5N0NDNEY5QUUwMi8wRDAxMThBODlB NEMxMUVFQjdBRTg4MTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAdJPqjAPBAIAAjAJAwcAIAEN8zjAMA0GCSqGSIb3DQEBCwUA A4IBAQBOj2+keMEsVa5Q9wFncb0ZgbeP1D/83FckvkFXIfINrKf5D9h+emN63hzc ms5aDZoc+sJu2Wu0NDqOYWB3V5hNCS6ISE5KIzvx/0Za1N6SXdtk7tltqiKzL0C4 obNOLWDA6gGWAntr6FMSN4AnvB73q62i9GMBnRTDpJXWOP6I8WXhEoLhG6oH1PBG 8ANmTACXfa/ppJ6fCF1lqmwazYHtrp2icX25LgI02KrfKPDjtFtOg/C3/29apoKY Pd+TE2lK9hIAXYU5JVLcDw7cgDgDxySzjQzwJ3T3nC1UmRckdu0ca3Zji0AGj/TU cJcXGBTd+brBnLlMiQBERPzfsM4/ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org