$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa File: C3E2252E205F11EE8117111CC4F9AE02.roa (raw, json) Hash identifier: b89a9XRc4AM1AMlF52w1xwkFcE20RCssOx3I+fNCh44= Subject key identifier: D8:64:38:13:12:D2:9D:B2:5B:83:76:06:6D:A0:F2:C0:25:3C:8D:DB Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0A13 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa Signing time: Sat 22 Jun 2024 21:14:05 +0000 ROA not before: Sat 22 Jun 2024 21:14:05 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 35280 IP address blocks: 203.80.88.0/24 maxlen: 24 203.185.1.0/24 maxlen: 24 203.185.33.0/24 maxlen: 24 203.185.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jun 22 21:14:05 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66773e9c-09dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:00:58:cf:3b:74:3b:d8:a8:52:22:45:03:5c: 98:1a:14:0a:c6:ca:73:c8:58:c2:5f:36:b0:26:23: b1:6d:7f:7c:9b:6c:b1:90:f8:61:f0:41:f1:9f:fb: 1a:5c:cd:50:2e:c9:82:f3:17:2b:27:7d:5f:67:9f: f4:bc:43:b2:ec:68:0c:c7:5a:22:84:c1:e6:34:d0: df:46:44:ec:6c:7f:51:e6:5d:85:50:50:57:6b:c2: 42:ed:f0:3e:06:30:27:36:38:5f:ee:13:14:7c:83: da:30:05:e0:f0:a3:af:5d:e9:73:39:a1:b1:bc:2d: f9:69:6a:bf:f1:48:fd:91:e9:4f:c4:ca:15:7b:30: 12:fe:04:5e:06:5c:13:78:ca:dc:dd:1f:15:52:3f: 7c:bf:0a:d9:67:96:eb:b9:48:28:80:27:2c:35:3f: 07:04:93:87:a7:9e:fa:dc:33:ba:38:ab:17:dd:c9: b5:95:3c:86:7f:78:0c:48:06:55:3d:07:d3:00:bf: c2:f1:71:27:22:a4:c5:fc:0d:a4:e4:41:0d:df:b1: dd:10:b7:d8:86:01:ed:97:6b:1f:59:be:59:b5:fd: ca:48:78:a7:4e:58:86:1f:47:a7:fd:7c:c2:25:a5: b9:e4:f4:f8:4e:91:53:2b:99:05:85:f5:4d:96:5e: 46:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:64:38:13:12:D2:9D:B2:5B:83:76:06:6D:A0:F2:C0:25:3C:8D:DB X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.80.88.0/24 203.185.1.0/24 203.185.33.0-203.185.35.255 Signature Algorithm: sha256WithRSAEncryption c3:3a:82:ca:85:b2:50:ef:fa:d5:0b:e5:b3:88:c0:f7:b8:e8: 68:e9:0c:51:63:07:6c:08:2d:f4:f7:47:5a:ad:1a:3b:ef:05: ee:9f:9c:ba:a7:8d:f7:75:ad:d2:21:54:55:c2:f1:07:2e:87: 04:42:8b:26:70:8c:e0:01:db:d0:55:90:31:38:ec:8a:c3:2f: 43:9a:79:e1:6f:98:ae:21:ea:42:0e:7c:a5:51:8a:10:ee:b1: 8f:c5:19:46:89:96:b3:f0:a5:cf:9a:2a:bd:ad:72:75:66:06: d1:8a:56:1f:2d:43:fe:3c:63:b1:7b:a6:94:a9:de:9d:d8:2a: 58:df:85:15:fb:35:07:c6:18:5f:b5:c7:2f:ae:c8:9d:10:cb: 80:f3:de:81:ab:fe:47:dc:34:19:f9:49:e1:36:b9:5a:f5:ae: 41:78:5f:c6:4c:36:cb:89:65:25:a0:86:3a:1e:6f:e6:9c:ce: 06:3a:02:06:5f:d8:6a:eb:42:1e:0d:10:e4:a8:81:ef:1a:c3: f9:42:8d:30:7e:4e:4c:93:88:26:60:3d:06:be:fb:44:b4:1a: e6:9e:87:d2:20:fe:cb:76:fb:55:ff:9e:9f:b2:5f:0d:a3:c7: 2b:a2:3f:6e:c6:b9:15:7c:16:ea:85:d0:52:e1:a6:ef:99:e7: 35:48:d7:16 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjQwNjIyMjExNDA1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3M2U5Yy0wOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gBYzzt0O9ioUiJFA1yYGhQKxspzyFjCXzawJiOxbX98m2yxkPhh8EHxn/sa XM1QLsmC8xcrJ31fZ5/0vEOy7GgMx1oihMHmNNDfRkTsbH9R5l2FUFBXa8JC7fA+ BjAnNjhf7hMUfIPaMAXg8KOvXelzOaGxvC35aWq/8Uj9kelPxMoVezAS/gReBlwT eMrc3R8VUj98vwrZZ5bruUgogCcsNT8HBJOHp5763DO6OKsX3cm1lTyGf3gMSAZV PQfTAL/C8XEnIqTF/A2k5EEN37HdELfYhgHtl2sfWb5Ztf3KSHinTliGH0en/XzC JaW55PT4TpFTK5kFhfVNll5GHQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFNhkOBMS 0p2yW4N2Bm2g8sAlPI3bMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvQzNFMjI1MkUy MDVGMTFFRTgxMTcxMTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBADLUFgDBADLuQEwDAMEAMu5IQMEAsu5IDANBgkqhkiG9w0B AQsFAAOCAQEAwzqCyoWyUO/61Qvls4jA97joaOkMUWMHbAgt9PdHWq0aO+8F7p+c uqeN93Wt0iFUVcLxBy6HBEKLJnCM4AHb0FWQMTjsisMvQ5p54W+YriHqQg58pVGK EO6xj8UZRomWs/Clz5oqva1ydWYG0YpWHy1D/jxjsXumlKnendgqWN+FFfs1B8YY X7XHL67InRDLgPPegav+R9w0GflJ4Ta5WvWuQXhfxkw2y4llJaCGOh5v5pzOBjoC Bl/YautCHg0Q5KiB7xrD+UKNMH5OTJOIJmA9Br77RLQa5p6H0iD+y3b7Vf+en7Jf DaPHK6I/bsa5FXwW6oXQUuGm75nnNUjXFg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org