$ rpki-client -vvf rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/12C3947A66F611EE82864875C4F9AE02.roa File: 12C3947A66F611EE82864875C4F9AE02.roa (raw, json) Hash identifier: 9fewhte7FG+d2VuRFA5Cc4zNjoexhBMgBSrFkyFPOWU= Subject key identifier: 3E:1C:3E:22:1B:91:3D:CB:F6:7F:80:C8:FF:CC:30:AB:1C:63:25:AA Certificate issuer: /CN=A911069A/serialNumber=5B82E88C014132823D020D5C30A6BFB6D5B50221 Certificate serial: AE Authority key identifier: 5B:82:E8:8C:01:41:32:82:3D:02:0D:5C:30:A6:BF:B6:D5:B5:02:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/12C3947A66F611EE82864875C4F9AE02.roa Signing time: Tue 03 Sep 2024 06:19:42 +0000 ROA not before: Tue 03 Sep 2024 06:19:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4768 IP address blocks: 117.120.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.crl rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911069A/serialNumber=5B82E88C014132823D020D5C30A6BFB6D5B50221 Validity Not Before: Sep 3 06:19:41 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6aa7d-fde7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:b7:79:ff:f5:ba:ea:ad:51:6a:60:5c:ea: 8a:72:e5:6e:c9:c6:6f:fe:c3:35:ca:7e:a9:87:a9: 50:76:42:e8:88:b7:e9:4e:65:80:23:2b:4f:37:27: b8:cb:b8:86:12:8d:d4:2c:cb:ba:ea:6b:7d:80:03: 93:7a:b5:58:c1:42:70:ee:fc:fb:b8:23:95:a3:b0: 44:7c:62:3f:e4:dc:b9:7f:b2:e6:1c:36:f2:b9:ca: 3e:ad:fb:cc:23:04:6a:95:bd:19:6e:d5:5d:80:fc: c8:ab:39:23:ca:a7:bc:4e:5c:64:47:c8:79:cc:be: b9:71:4d:bb:15:e1:a2:64:bd:66:5f:8b:45:5c:9f: 8c:18:08:67:bb:e8:a4:47:3e:63:cc:c8:8f:fd:84: bd:56:07:31:39:36:68:d1:9a:f0:67:80:30:27:f5: 6e:52:ed:65:39:92:d0:21:12:db:af:7a:cd:b0:5a: aa:73:94:b5:e3:16:5d:01:3a:99:63:bf:c6:6a:0c: 89:68:a8:2d:f1:4d:5b:7b:9c:cd:71:be:62:6f:05: b6:45:52:4f:a1:09:c6:0a:dd:89:66:49:18:fd:28: 30:f3:fc:1a:c8:4a:3e:31:66:da:9c:00:94:aa:b4: e3:43:8b:7e:34:1c:65:c2:61:0c:79:ab:a9:e7:be: b7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1C:3E:22:1B:91:3D:CB:F6:7F:80:C8:FF:CC:30:AB:1C:63:25:AA X509v3 Authority Key Identifier: keyid:5B:82:E8:8C:01:41:32:82:3D:02:0D:5C:30:A6:BF:B6:D5:B5:02:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/12C3947A66F611EE82864875C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.120.36.0/23 Signature Algorithm: sha256WithRSAEncryption ae:eb:32:2f:c6:7c:2b:80:58:d7:32:d2:96:19:e1:70:1b:c9: 73:a8:11:15:b7:81:aa:c2:5d:9b:d9:0c:02:d5:c4:fb:41:95: 0c:18:01:f9:18:39:a8:4c:d1:28:c2:e8:b6:a5:07:56:54:45: 5a:06:bd:71:3c:c1:de:41:42:88:d3:2a:0e:2c:8d:7d:47:fc: 3f:4a:e7:af:2f:ea:44:c3:9d:14:ee:1b:89:4d:82:92:c0:86: 36:75:87:83:3d:da:5b:3b:67:19:dd:64:50:36:d2:ef:c2:64: f0:71:cd:50:24:a1:9c:3c:ac:1d:dd:fb:4c:ea:09:9d:27:01: 3f:aa:a7:75:7c:05:4a:77:99:c6:d2:4d:06:e2:f4:dd:da:a7: 44:72:85:8b:2f:a1:15:b4:63:87:d7:83:a6:e1:cd:8a:72:68: 4e:2c:23:7b:85:92:34:75:db:c8:d7:9d:91:1f:44:a5:72:ab: 84:03:69:12:df:4b:88:f9:8b:d4:ea:9e:b0:71:27:09:be:28: f2:81:30:5d:8b:b1:54:41:fe:01:03:1c:9f:e8:18:5b:4e:07: 88:38:d7:dc:15:d9:89:de:d7:a8:e5:7b:9e:6b:fb:07:3c:5b: ff:7a:7c:d4:fa:86:ac:56:71:d2:62:70:d3:2c:3a:30:a6:72: 40:41:fc:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA2OUExMTAvBgNVBAUTKDVCODJFODhDMDE0MTMyODIzRDAyMEQ1QzMwQTZCRkI2 RDVCNTAyMjEwHhcNMjQwOTAzMDYxOTQxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2YWE3ZC1mZGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgy3ef/1uuqtUWpgXOqKcuVuycZv/sM1yn6ph6lQdkLoiLfpTmWAIytPNye4 y7iGEo3ULMu66mt9gAOTerVYwUJw7vz7uCOVo7BEfGI/5Ny5f7LmHDbyuco+rfvM IwRqlb0ZbtVdgPzIqzkjyqe8TlxkR8h5zL65cU27FeGiZL1mX4tFXJ+MGAhnu+ik Rz5jzMiP/YS9VgcxOTZo0ZrwZ4AwJ/VuUu1lOZLQIRLbr3rNsFqqc5S14xZdATqZ Y7/GagyJaKgt8U1be5zNcb5ibwW2RVJPoQnGCt2JZkkY/Sgw8/wayEo+MWbanACU qrTjQ4t+NBxlwmEMeaup5763dwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD4cPiIb kT3L9n+AyP/MMKscYyWqMB8GA1UdIwQYMBaAFFuC6IwBQTKCPQINXDCmv7bVtQIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDY5QS85NjFCMkE0NjY2 RjUxMUVFQTQzODRGNzRDNEY5QUUwMi9XNExvakFGQk1vSTlBZzFjTUthX3R0VzFB aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c0TG9qQUZCTW9JOUFnMWNNS2FfdHRXMUFpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA2OUEvOTYxQjJBNDY2NkY1MTFFRUE0Mzg0Rjc0QzRGOUFFMDIvMTJDMzk0N0E2 NkY2MTFFRTgyODY0ODc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1eCQwDQYJKoZIhvcNAQELBQADggEBAK7rMi/GfCuAWNcy 0pYZ4XAbyXOoERW3garCXZvZDALVxPtBlQwYAfkYOahM0SjC6LalB1ZURVoGvXE8 wd5BQojTKg4sjX1H/D9K568v6kTDnRTuG4lNgpLAhjZ1h4M92ls7ZxndZFA20u/C ZPBxzVAkoZw8rB3d+0zqCZ0nAT+qp3V8BUp3mcbSTQbi9N3ap0RyhYsvoRW0Y4fX g6bhzYpyaE4sI3uFkjR128jXnZEfRKVyq4QDaRLfS4j5i9TqnrBxJwm+KPKBMF2L sVRB/gEDHJ/oGFtOB4g419wV2Yne16jle55r+wc8W/96fNT6hqxWcdJicNMsOjCm ckBB/HY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org