$ rpki-client -vvf rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/8AA99B52FEC511EABAAE7814C4F9AE02.roa File: 8AA99B52FEC511EABAAE7814C4F9AE02.roa (raw, json) Hash identifier: d4YjT+wZz2FF52dbAjBXkm9vxrKKV8DOl0ST7TwKzd4= Subject key identifier: 53:D0:46:AA:D6:BB:84:76:6C:42:3C:81:A7:09:6D:E4:C9:01:B0:14 Certificate issuer: /CN=A911784E/serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Certificate serial: 06C8 Authority key identifier: 7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/8AA99B52FEC511EABAAE7814C4F9AE02.roa Signing time: Sat 10 Feb 2024 22:30:30 +0000 ROA not before: Sat 10 Feb 2024 22:30:30 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4826 IP address blocks: 203.30.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911784E/serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Validity Not Before: Feb 10 22:30:30 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c7f905-a449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e9:4b:7d:ff:1c:0c:74:9e:22:d0:1e:3c:78: 4f:92:05:37:96:ac:a4:e9:48:21:bc:7f:48:64:7b: 55:df:c6:aa:10:8c:29:e9:80:05:de:23:b0:bd:d3: 7c:4a:dd:55:b7:64:c5:30:36:02:cc:79:b8:69:5d: f0:1f:63:0d:5e:52:10:60:d0:be:8d:eb:ea:15:cb: 20:51:fe:94:14:13:f4:c1:75:57:22:7b:84:a0:7f: 5b:35:1b:9f:4e:98:03:65:ce:a0:a1:28:69:74:85: ab:a8:39:8e:e0:ad:ff:9e:ce:30:b6:1e:5b:50:50: 27:2a:12:c3:8f:1b:5c:ac:03:3b:33:a3:fc:28:fb: 20:31:bc:17:ad:4f:9c:ee:dd:f6:b4:9e:08:d4:42: 5e:83:fe:dd:39:48:cc:af:e3:23:fb:a7:80:7e:7c: 03:df:40:6e:cf:44:48:7d:24:0c:aa:7a:7b:e1:87: 62:2e:8e:71:10:80:e6:2e:b8:19:fe:c2:1f:4d:43: 75:c2:56:09:3b:7e:36:5a:ca:c4:98:12:2c:94:64: 99:87:7b:d9:f7:1c:d7:69:09:59:6c:fb:8c:30:13: df:12:05:25:b2:43:04:66:e6:dd:88:9c:6a:5d:93: 06:9c:1c:ef:b1:e1:04:82:40:85:f1:64:90:9b:06: 75:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D0:46:AA:D6:BB:84:76:6C:42:3C:81:A7:09:6D:E4:C9:01:B0:14 X509v3 Authority Key Identifier: keyid:7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/8AA99B52FEC511EABAAE7814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.30.229.0/24 Signature Algorithm: sha256WithRSAEncryption 68:40:f7:4c:78:94:ef:98:89:3c:b7:35:ad:78:88:b7:8b:23: 2a:43:69:84:ce:01:ed:75:49:7a:b9:d5:2b:0e:2c:7a:cd:3f: e2:d9:09:01:4d:93:ad:fe:7f:5f:f8:55:27:de:7e:fa:5f:e4: 8b:3b:72:38:48:3d:b4:3a:f9:9e:e5:34:73:62:22:da:04:9a: f9:c5:a1:67:2f:5b:e3:bb:77:86:c9:3c:10:c1:7f:6d:b5:f9: cc:ea:46:f9:9b:4e:d6:35:62:e2:15:79:75:78:99:b9:47:f4: 27:fe:8c:71:c1:6c:c2:1d:db:e3:3a:e6:a8:c5:0d:b9:a5:c3: 36:4f:2b:ba:cc:dc:b8:8b:2f:f9:38:3f:5b:f6:26:1c:17:c5: c7:e7:6d:3c:3c:ac:ed:ab:2a:38:df:7b:ea:d8:d0:d0:20:df: 9f:b9:f1:13:9f:46:5c:9c:31:b7:7c:94:58:90:2d:ad:0a:14: ec:64:cc:4f:e9:6f:23:df:64:1b:d2:88:df:52:84:6f:1f:e4: 8d:dd:27:8f:05:d4:30:f3:c4:37:bf:f5:35:96:20:14:e4:da: a7:d6:f0:73:7f:fc:8c:02:c2:4a:f3:24:01:7d:69:39:e2:ff: f1:01:e7:2e:2c:82:d1:38:49:c6:72:7b:17:fb:8b:48:08:39: e8:f4:58:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4NEUxMTAvBgNVBAUTKDdFN0UzQkU4ODkzNzBBNzFFNTUyMTU1N0JCMDNBMDBG MUIzOUJGRDgwHhcNMjQwMjEwMjIzMDMwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM3ZjkwNS1hNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtulLff8cDHSeItAePHhPkgU3lqyk6UghvH9IZHtV38aqEIwp6YAF3iOwvdN8 St1Vt2TFMDYCzHm4aV3wH2MNXlIQYNC+jevqFcsgUf6UFBP0wXVXInuEoH9bNRuf TpgDZc6goShpdIWrqDmO4K3/ns4wth5bUFAnKhLDjxtcrAM7M6P8KPsgMbwXrU+c 7t32tJ4I1EJeg/7dOUjMr+Mj+6eAfnwD30Buz0RIfSQMqnp74YdiLo5xEIDmLrgZ /sIfTUN1wlYJO342WsrEmBIslGSZh3vZ9xzXaQlZbPuMMBPfEgUlskMEZubdiJxq XZMGnBzvseEEgkCF8WSQmwZ1cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFPQRqrW u4R2bEI8gacJbeTJAbAUMB8GA1UdIwQYMBaAFH5+O+iJNwpx5VIVV7sDoA8bOb/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzg0RS82QjU0RDlDOEZF QzExMUVBOUU3MzMzNzVDNEY5QUUwMi9mbjQ3NklrM0NuSGxVaFZYdXdPZ0R4czV2 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuNDc2SWszQ25IbFVoVlh1d09nRHhzNXY5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc4NEUvNkI1NEQ5QzhGRUMxMTFFQTlFNzMzMzc1QzRGOUFFMDIvOEFBOTlCNTJG RUM1MTFFQUJBQUU3ODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHuUwDQYJKoZIhvcNAQELBQADggEBAGhA90x4lO+YiTy3 Na14iLeLIypDaYTOAe11SXq51SsOLHrNP+LZCQFNk63+f1/4VSfefvpf5Is7cjhI PbQ6+Z7lNHNiItoEmvnFoWcvW+O7d4bJPBDBf221+czqRvmbTtY1YuIVeXV4mblH 9Cf+jHHBbMId2+M65qjFDbmlwzZPK7rM3LiLL/k4P1v2JhwXxcfnbTw8rO2rKjjf e+rY0NAg35+58ROfRlycMbd8lFiQLa0KFOxkzE/pbyPfZBvSiN9ShG8f5I3dJ48F 1DDzxDe/9TWWIBTk2qfW8HN//IwCwkrzJAF9aTni//EB5y4sgtE4ScZyexf7i0gI Oej0WNE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org