$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/4D169ADAA58111EF9B0F614CC4F9AE02.roa File: 4D169ADAA58111EF9B0F614CC4F9AE02.roa (raw, json) Hash identifier: 2fAw8FtnXPCUc3QNO8li3mfIw/5G9pkOZ2hB6eNEPeo= Subject key identifier: FE:32:43:08:5E:4E:B4:82:39:91:29:20:95:0D:DC:AB:EE:12:49:F6 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 0216 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/4D169ADAA58111EF9B0F614CC4F9AE02.roa Signing time: Mon 18 Nov 2024 07:47:04 +0000 ROA not before: Mon 18 Nov 2024 07:47:04 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 13335 IP address blocks: 123.108.74.0/24 maxlen: 24 123.108.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Nov 18 07:47:04 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673af0f7-2f8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c8:8e:ac:99:d0:fe:63:1f:68:ff:8e:3b:28: be:36:1b:63:bd:a7:da:5f:98:8c:99:2f:7d:5e:b1: c6:e0:ca:ee:e3:12:01:b6:75:c1:23:8a:51:01:90: bd:f1:bb:ac:d3:1a:c9:33:ba:1f:c3:42:fe:c2:47: 3c:43:a1:83:b1:fd:b7:98:cd:75:2a:0d:bc:9a:bd: 30:f7:d7:64:5f:bf:b6:85:4c:23:a9:1b:62:20:59: fe:d0:3f:4b:4d:63:f4:bb:8d:72:8d:0f:e1:58:05: 78:60:77:6e:5a:d6:82:b2:a1:0f:17:c2:c3:a3:4e: 1d:6e:31:c3:d0:60:27:12:9f:42:a8:75:54:3c:b1: d7:cc:54:9f:09:45:70:31:ec:7a:4f:dd:99:1c:d2: 86:1b:e7:6d:4e:34:39:52:46:68:fb:90:2a:78:d7: 12:c3:63:07:f0:4a:c3:40:1a:be:a2:dc:0d:97:20: ad:54:1e:cf:00:3a:86:71:65:b0:1f:25:2a:5d:51: f5:ac:7f:18:33:cb:82:f0:05:39:7d:d3:e7:c4:2e: 2f:1e:5d:7e:59:f7:93:57:4e:9d:80:d1:9d:f0:f9: ee:e8:7a:bd:97:3b:44:68:b1:91:3c:70:85:f7:0b: 71:8c:3e:02:9d:2f:2e:e1:c3:0f:fe:85:f0:b6:ee: 52:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:32:43:08:5E:4E:B4:82:39:91:29:20:95:0D:DC:AB:EE:12:49:F6 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/4D169ADAA58111EF9B0F614CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.108.74.0/23 Signature Algorithm: sha256WithRSAEncryption 38:29:ca:b4:ea:20:07:70:53:15:e6:94:51:4a:8c:7a:ea:6c: 59:11:e1:47:21:69:eb:7b:55:50:ba:ff:cc:c6:83:e8:a4:41: 14:60:1e:8c:96:63:ba:da:38:a3:e4:94:a4:e8:1e:e2:fe:b1: 10:cb:c0:9d:87:20:45:3b:eb:9c:94:a5:68:32:37:23:0b:b5: 8d:1c:e1:9a:85:82:ad:13:a2:67:65:65:e9:53:55:32:89:fa: 7c:71:df:bb:ea:06:3a:3b:92:7d:4d:18:15:7f:2f:44:a5:9c: 80:d6:5f:f5:16:cb:1e:44:90:e8:57:13:03:d9:cc:82:e3:58: a0:f3:8e:0f:aa:21:96:85:9d:58:32:c1:f5:59:55:6a:1a:ea: fb:4b:f9:75:3f:49:86:5a:d2:7e:65:c7:6a:09:51:f1:9d:86: 5a:ac:06:97:f3:61:15:d9:cd:30:3a:50:11:23:14:b8:f2:87: 76:08:71:0c:51:93:fe:91:b2:56:13:6f:09:43:79:17:83:7d: a3:b2:e2:b4:b9:9e:18:f0:5f:35:6a:6d:9c:c7:36:ca:7c:49: 24:6d:0b:eb:4b:c5:bf:c1:d7:28:99:a4:b1:f2:28:f5:08:e0: a7:f5:04:3f:34:97:0f:4f:c8:15:7f:bd:9d:d7:74:85:10:7f: 3c:2f:75:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjQxMTE4MDc0NzA0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNhZjBmNy0yZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18iOrJnQ/mMfaP+OOyi+NhtjvafaX5iMmS99XrHG4Mru4xIBtnXBI4pRAZC9 8bus0xrJM7ofw0L+wkc8Q6GDsf23mM11Kg28mr0w99dkX7+2hUwjqRtiIFn+0D9L TWP0u41yjQ/hWAV4YHduWtaCsqEPF8LDo04dbjHD0GAnEp9CqHVUPLHXzFSfCUVw Mex6T92ZHNKGG+dtTjQ5UkZo+5AqeNcSw2MH8ErDQBq+otwNlyCtVB7PADqGcWWw HyUqXVH1rH8YM8uC8AU5fdPnxC4vHl1+WfeTV06dgNGd8Pnu6Hq9lztEaLGRPHCF 9wtxjD4CnS8u4cMP/oXwtu5SaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP4yQwhe TrSCOZEpIJUN3KvuEkn2MB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvNEQxNjlBREFB NTgxMTFFRjlCMEY2MTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF7bEowDQYJKoZIhvcNAQELBQADggEBADgpyrTqIAdwUxXm lFFKjHrqbFkR4Uchaet7VVC6/8zGg+ikQRRgHoyWY7raOKPklKToHuL+sRDLwJ2H IEU765yUpWgyNyMLtY0c4ZqFgq0TomdlZelTVTKJ+nxx37vqBjo7kn1NGBV/L0Sl nIDWX/UWyx5EkOhXEwPZzILjWKDzjg+qIZaFnVgywfVZVWoa6vtL+XU/SYZa0n5l x2oJUfGdhlqsBpfzYRXZzTA6UBEjFLjyh3YIcQxRk/6RslYTbwlDeReDfaOy4rS5 nhjwXzVqbZzHNsp8SSRtC+tLxb/B1yiZpLHyKPUI4Kf1BD80lw9PyBV/vZ3XdIUQ fzwvddM= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:49 2024 by rpki-client on console-fra.rpki-client.org