$ rpki-client -vvf rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa File: DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa (raw, json) Hash identifier: 6T0bGam9Fz3MuC3/hi4HGnadBCMddUZ6zt+H3AVBHfo= Subject key identifier: BC:BD:E7:05:76:37:0F:FE:16:5F:3E:DF:92:C0:8D:DE:ED:7A:4D:BA Certificate issuer: /CN=A9110009/serialNumber=787D29540E588237E85D1607960008291189FA22 Certificate serial: 0574 Authority key identifier: 78:7D:29:54:0E:58:82:37:E8:5D:16:07:96:00:08:29:11:89:FA:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa Signing time: Sat 07 Sep 2024 00:15:25 +0000 ROA not before: Sat 07 Sep 2024 00:15:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4764 IP address blocks: 203.30.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.crl rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110009/serialNumber=787D29540E588237E85D1607960008291189FA22 Validity Not Before: Sep 7 00:15:25 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db9b1d-a2e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:62:27:f5:ac:e7:b7:88:6a:06:fa:12:2c:c2: ff:e2:2a:a4:c8:63:5a:ef:41:27:e3:1a:ca:b0:79: 28:b5:9b:d6:a9:66:ec:3e:3f:6e:51:fc:98:c2:85: d7:03:31:f0:09:81:8e:ad:fe:01:1d:8d:bb:9a:91: fb:90:a1:44:b8:bb:07:d7:ab:57:e5:15:b5:78:99: 3b:1a:76:94:71:b5:13:b1:3a:ae:a3:8b:2e:2b:52: df:6f:03:79:56:bd:df:67:5d:6a:cd:da:63:28:f0: b4:85:58:be:c9:e3:ce:1c:d5:ca:13:b6:bc:30:b9: e8:e9:cb:f1:cc:8e:9f:30:8e:ce:ce:21:db:da:23: 22:01:77:de:18:0a:b6:60:60:85:5c:07:bb:6f:bd: 7a:6a:a7:b3:43:5a:77:9e:39:ba:17:b5:7c:63:c1: 9a:ef:56:c9:df:b3:a6:f8:cd:22:77:ad:13:9f:92: 9c:89:f6:56:2a:26:0f:b4:b4:b9:83:87:09:36:c8: d0:1a:41:33:01:95:1c:5d:f8:7e:3c:1a:4a:ac:d5: ac:96:e1:41:0e:91:4d:98:56:9f:60:fe:c4:73:a1: cd:99:2c:13:d0:d6:50:e6:60:ef:bd:d3:a8:49:01: e4:5b:0c:cc:df:29:cf:a4:61:c5:05:dc:99:ad:7b: 9e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BD:E7:05:76:37:0F:FE:16:5F:3E:DF:92:C0:8D:DE:ED:7A:4D:BA X509v3 Authority Key Identifier: keyid:78:7D:29:54:0E:58:82:37:E8:5D:16:07:96:00:08:29:11:89:FA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.30.24.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:c5:e4:02:50:91:f9:04:13:00:71:a4:82:0b:dc:ae:9c:e6: ce:4b:92:05:74:40:0c:cc:e0:1b:0c:88:1f:a0:a7:d2:80:25: 4d:ea:8e:a7:2a:d2:43:59:b2:78:ca:08:ae:e1:15:3d:10:97: 18:ec:54:94:ab:b3:e3:d6:c5:eb:19:c8:41:b2:38:88:3c:9d: ea:63:15:38:25:c8:f4:5a:26:79:6d:cc:ba:db:88:c8:74:31: 5d:1e:0e:58:5d:3b:48:c2:28:2d:fb:35:a7:91:a7:81:0a:ab: c8:ff:c0:2c:2d:57:83:58:bc:64:b8:e2:3c:bc:10:63:17:fb: 71:49:30:9c:a6:7b:e0:5a:40:80:e9:a2:9e:ce:af:7b:e2:5c: 94:eb:1c:59:c8:17:02:6c:c0:44:75:ca:6d:bb:9e:cf:53:b5: 40:03:fc:b0:e2:6b:08:c1:40:22:49:32:c1:03:36:ba:80:7f: 85:6f:b0:ce:7a:5d:f7:99:a0:64:63:92:13:94:80:c1:a4:fb: 9b:9e:6e:d6:08:01:69:74:24:20:de:cd:aa:26:28:21:a4:a6: 90:6a:cd:a3:0a:f1:55:9b:10:06:16:70:55:e3:02:55:30:f4: ab:c9:6d:2e:21:40:ba:66:ad:2c:c4:49:e6:93:2d:a3:d0:0c: 88:07:b7:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAwMDkxMTAvBgNVBAUTKDc4N0QyOTU0MEU1ODgyMzdFODVEMTYwNzk2MDAwODI5 MTE4OUZBMjIwHhcNMjQwOTA3MDAxNTI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiOWIxZC1hMmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymIn9aznt4hqBvoSLML/4iqkyGNa70En4xrKsHkotZvWqWbsPj9uUfyYwoXX AzHwCYGOrf4BHY27mpH7kKFEuLsH16tX5RW1eJk7GnaUcbUTsTquo4suK1LfbwN5 Vr3fZ11qzdpjKPC0hVi+yePOHNXKE7a8MLno6cvxzI6fMI7OziHb2iMiAXfeGAq2 YGCFXAe7b716aqezQ1p3njm6F7V8Y8Ga71bJ37Om+M0id60Tn5KcifZWKiYPtLS5 g4cJNsjQGkEzAZUcXfh+PBpKrNWsluFBDpFNmFafYP7Ec6HNmSwT0NZQ5mDvvdOo SQHkWwzM3ynPpGHFBdyZrXue8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLy95wV2 Nw/+Fl8+35LAjd7tek26MB8GA1UdIwQYMBaAFHh9KVQOWII36F0WB5YACCkRifoi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDAwOS9DQzgxMDEyMEFD NkExMUVCQTU0QUY4N0FDNEY5QUUwMi9lSDBwVkE1WWdqZm9YUllIbGdBSUtSR0ot aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIMHBWQTVZZ2pmb1hSWUhsZ0FJS1JHSi1pSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAwMDkvQ0M4MTAxMjBBQzZBMTFFQkE1NEFGODdBQzRGOUFFMDIvRERFRjc1MzRB QzZDMTFFQkI2QjFFMTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHhgwDQYJKoZIhvcNAQELBQADggEBAHzF5AJQkfkEEwBx pIIL3K6c5s5LkgV0QAzM4BsMiB+gp9KAJU3qjqcq0kNZsnjKCK7hFT0QlxjsVJSr s+PWxesZyEGyOIg8nepjFTglyPRaJnltzLrbiMh0MV0eDlhdO0jCKC37NaeRp4EK q8j/wCwtV4NYvGS44jy8EGMX+3FJMJyme+BaQIDpop7Or3viXJTrHFnIFwJswER1 ym27ns9TtUAD/LDiawjBQCJJMsEDNrqAf4VvsM56XfeZoGRjkhOUgMGk+5uebtYI AWl0JCDezaomKCGkppBqzaMK8VWbEAYWcFXjAlUw9KvJbS4hQLpmrSzESeaTLaPQ DIgHt9Q= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:35 2024 by rpki-client on console-ams.rpki-client.org