$ rpki-client -vvf rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/859871F2215D11EE963E9A52C4F9AE02.roa File: 859871F2215D11EE963E9A52C4F9AE02.roa (raw, json) Hash identifier: HHHOwt/fdM7W7+F6fEKQDH5IL/vBD99o4H9HkpME2xk= Subject key identifier: 72:89:F1:43:A4:21:96:93:52:9F:C4:8F:4F:A0:FA:0E:E7:8C:E0:90 Certificate issuer: /CN=A9113217/serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB Certificate serial: CC Authority key identifier: BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/859871F2215D11EE963E9A52C4F9AE02.roa Signing time: Wed 31 Jul 2024 05:56:29 +0000 ROA not before: Wed 31 Jul 2024 05:56:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45906 IP address blocks: 180.131.148.0/22 maxlen: 22 2402:8c80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113217/serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB Validity Not Before: Jul 31 05:56:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a9d20d-3bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:67:ad:da:31:47:1b:eb:b8:bd:b5:00:24:05: 2e:b3:63:c0:57:c0:54:cf:14:c7:ed:cc:01:ee:e7: f9:b4:bf:91:58:25:e7:db:18:f2:34:5b:ae:15:d0: 17:cf:cf:7d:c9:fa:b9:24:99:65:8a:9c:8f:b3:f2: c3:fc:ad:6e:df:90:70:df:2c:31:0c:55:e4:00:3e: b7:0f:0b:82:86:5a:69:55:c4:4a:d7:56:e6:14:55: ea:e2:08:8e:29:1e:55:35:88:c2:64:6b:52:65:43: 29:cf:09:1b:c2:74:a8:37:56:f2:a2:5b:b4:34:a5: 07:b5:f3:b8:e0:b5:ef:dd:b0:67:c6:50:52:67:b8: ca:3a:c7:ac:68:2c:ae:42:70:f8:41:d9:f7:1f:50: 58:49:47:bf:88:76:66:6d:4c:62:b5:f8:36:12:6d: 16:68:12:c0:3d:ae:1e:c8:64:d7:df:c1:b6:5e:bf: 49:78:d0:ea:f9:34:7c:88:fa:f0:c0:57:bd:dd:e5: c4:3b:eb:1c:15:72:cb:4c:ca:10:3b:1c:86:10:31: 65:b6:2d:7d:f4:15:d0:89:46:bb:83:1c:93:fd:e5: ac:91:8d:17:12:3e:9c:c9:9d:3d:2b:90:89:2a:2b: 3f:14:ab:79:82:7c:53:ba:37:c0:f9:9a:7d:e0:79: 8c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:89:F1:43:A4:21:96:93:52:9F:C4:8F:4F:A0:FA:0E:E7:8C:E0:90 X509v3 Authority Key Identifier: keyid:BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/859871F2215D11EE963E9A52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.131.148.0/22 IPv6: 2402:8c80::/32 Signature Algorithm: sha256WithRSAEncryption 81:1e:66:ad:df:70:23:5b:36:66:19:49:d7:5b:28:e3:b9:3f: c1:88:47:18:b1:4d:94:dd:58:a8:34:01:61:d1:9d:0f:63:ed: 63:b5:f9:3a:8c:8f:90:ee:59:53:3c:53:0e:3e:a0:30:14:0e: fc:8c:af:d8:c7:ec:51:73:79:2a:b4:01:b7:c2:45:d8:0f:a9: d7:c7:19:37:7e:3c:c2:eb:0e:be:f2:45:52:b7:a5:ff:d1:da: 1c:fd:02:39:a5:71:7e:bb:21:56:e1:7d:95:8e:97:cb:4f:5d: 44:01:fa:53:ae:cf:c6:43:fc:79:57:3e:37:c3:43:81:a3:83: 79:ea:b1:d5:c1:3d:b3:01:f6:ce:94:3f:61:de:8d:dd:f7:26: 43:4f:60:70:02:46:ce:4c:df:d9:e7:59:ed:fe:d4:63:ad:67: 53:a3:35:36:69:7e:b4:9b:35:88:91:6c:bd:88:b4:ae:2e:88: ab:e2:75:76:7c:3f:61:03:89:42:05:32:7e:0d:a8:1c:5f:7e: 0e:52:ba:2c:d2:54:6f:3d:31:5e:b1:db:65:67:c6:8d:40:5f: e9:5f:81:f7:73:12:78:30:70:ac:c8:7a:26:a8:ea:48:5b:2b: 5f:1c:ba:78:bf:cc:fb:5b:f7:64:f6:85:f5:92:8b:e8:7a:f9: 05:ae:fa:eb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMyMTcxMTAvBgNVBAUTKEJCMzAwNzhDRjY4Nzc4N0QzQTVCM0U1MzRDMDg5NzE2 QTg2QjEzQkIwHhcNMjQwNzMxMDU1NjI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5ZDIwZC0zYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWet2jFHG+u4vbUAJAUus2PAV8BUzxTH7cwB7uf5tL+RWCXn2xjyNFuuFdAX z899yfq5JJllipyPs/LD/K1u35Bw3ywxDFXkAD63DwuChlppVcRK11bmFFXq4giO KR5VNYjCZGtSZUMpzwkbwnSoN1byolu0NKUHtfO44LXv3bBnxlBSZ7jKOsesaCyu QnD4Qdn3H1BYSUe/iHZmbUxitfg2Em0WaBLAPa4eyGTX38G2Xr9JeNDq+TR8iPrw wFe93eXEO+scFXLLTMoQOxyGEDFlti199BXQiUa7gxyT/eWskY0XEj6cyZ09K5CJ Kis/FKt5gnxTujfA+Zp94HmM7wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHKJ8UOk IZaTUp/Ej0+g+g7njOCQMB8GA1UdIwQYMBaAFLswB4z2h3h9Ols+U0wIlxaoaxO7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzIxNy9ENzIxOTZEMDIx NUMxMUVFQkNCNUIyNEVDNEY5QUUwMi91ekFIalBhSGVIMDZXejVUVEFpWEZxaHJF N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V6QUhqUGFIZUgwNld6NVRUQWlYRnFockU3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTMyMTcvRDcyMTk2RDAyMTVDMTFFRUJDQjVCMjRFQzRGOUFFMDIvODU5ODcxRjIy MTVEMTFFRTk2M0U5QTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAK0g5QwDQQCAAIwBwMFACQCjIAwDQYJKoZIhvcNAQELBQAD ggEBAIEeZq3fcCNbNmYZSddbKOO5P8GIRxixTZTdWKg0AWHRnQ9j7WO1+TqMj5Du WVM8Uw4+oDAUDvyMr9jH7FFzeSq0AbfCRdgPqdfHGTd+PMLrDr7yRVK3pf/R2hz9 AjmlcX67IVbhfZWOl8tPXUQB+lOuz8ZD/HlXPjfDQ4Gjg3nqsdXBPbMB9s6UP2He jd33JkNPYHACRs5M39nnWe3+1GOtZ1OjNTZpfrSbNYiRbL2ItK4uiKvidXZ8P2ED iUIFMn4NqBxffg5SuizSVG89MV6x22Vnxo1AX+lfgfdzEngwcKzIeiao6khbK18c uni/zPtb92T2hfWSi+h6+QWu+us= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:43 2024 by rpki-client on console-fra.rpki-client.org