$ rpki-client -vvf rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/F0C7266245D811EF9D851624C4F9AE02.roa File: F0C7266245D811EF9D851624C4F9AE02.roa (raw, json) Hash identifier: pw/GqWr0qmChe0D51U8eU/aVUZcqLEEvJowa9XsiVv8= Subject key identifier: 72:0C:D0:DD:D3:FC:44:CF:50:C7:CE:78:6D:44:01:D6:37:66:52:C3 Certificate issuer: /CN=A9119465/serialNumber=70FA7911C7012E58EF9FB05A55A4CE6FB0609BCF Certificate serial: 07 Authority key identifier: 70:FA:79:11:C7:01:2E:58:EF:9F:B0:5A:55:A4:CE:6F:B0:60:9B:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/F0C7266245D811EF9D851624C4F9AE02.roa Signing time: Sat 20 Jul 2024 08:18:18 +0000 ROA not before: Sat 20 Jul 2024 08:18:18 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56057 IP address blocks: 111.118.220.0/24 maxlen: 24 111.118.221.0/24 maxlen: 24 111.118.222.0/24 maxlen: 24 111.118.223.0/24 maxlen: 24 2402:e500:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.crl rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119465/serialNumber=70FA7911C7012E58EF9FB05A55A4CE6FB0609BCF Validity Not Before: Jul 20 08:18:18 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=669b72c9-1359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:69:ef:37:a8:a7:41:6a:5b:75:f9:07:b2:11: 73:e9:1f:64:28:b4:27:fe:4a:59:85:5b:0b:f2:07: ae:1c:1f:40:41:20:87:98:67:69:73:7d:a9:6e:9a: 6d:98:57:bb:e3:2c:5b:80:23:66:98:a2:83:0f:73: 99:c5:dc:de:c6:44:33:d9:7a:05:d5:f2:7e:64:2a: e6:2d:36:1b:6c:f4:12:32:e4:a9:48:1b:2b:9b:62: 80:78:94:90:49:cc:55:9d:ab:93:e7:39:63:e3:ff: 89:f9:ff:97:51:59:f3:5c:08:5e:7c:2c:d3:3e:5e: 1c:8a:06:7b:ad:65:c1:b7:21:72:35:26:c0:48:1f: f0:49:ac:ac:e8:b7:8e:59:2e:04:95:73:a7:f6:27: 6c:55:68:08:0a:40:bb:f6:2e:93:13:bf:1e:08:f6: fc:75:6d:1b:3b:8d:fb:1f:1b:47:a5:01:2b:6a:26: c6:86:85:0a:e2:cb:85:e5:e0:99:19:89:d3:fe:62: ca:d4:9b:cb:9d:19:4c:84:86:d7:f0:01:fa:9e:af: 87:70:ed:13:ef:f6:b6:bc:e3:5d:5c:d6:af:4b:ed: 8d:58:ec:ec:90:f0:f5:94:38:ba:da:54:8c:e6:d1: a9:86:e1:71:f0:af:dc:ea:3f:cb:cc:f9:27:8c:9b: 43:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0C:D0:DD:D3:FC:44:CF:50:C7:CE:78:6D:44:01:D6:37:66:52:C3 X509v3 Authority Key Identifier: keyid:70:FA:79:11:C7:01:2E:58:EF:9F:B0:5A:55:A4:CE:6F:B0:60:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/F0C7266245D811EF9D851624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.118.220.0/22 IPv6: 2402:e500:1000::/36 Signature Algorithm: sha256WithRSAEncryption eb:98:21:88:62:7d:12:1a:06:c7:ef:0e:1d:be:0d:53:62:aa: 6e:00:cc:13:62:7a:1c:fb:7c:4b:b4:d3:20:a9:60:b6:1e:7f: 7f:04:8f:d2:23:2e:a9:27:35:03:74:3b:32:64:b4:07:6d:9e: 72:56:93:59:d9:b4:23:6d:b4:7a:56:0f:ea:96:91:6e:31:1f: d5:e5:88:db:e6:b7:3f:73:48:94:31:fa:30:e3:8b:ef:f9:47: b7:80:5d:44:2d:d1:80:9e:cb:ec:a9:3d:ec:70:c9:60:46:61: ab:04:c3:28:3e:ce:a1:b1:bf:16:a3:6d:ca:14:3f:6e:6e:48: 95:93:03:7d:1b:e6:b3:3b:7e:c0:50:99:c6:ed:45:5c:fd:f0: f2:50:88:dd:77:36:00:b0:6a:b0:0f:5b:64:d1:24:00:38:30: 0b:5d:f0:0d:54:bb:0b:fb:fe:ce:5e:99:60:4c:d0:6c:48:96: 8d:9d:32:6e:d0:da:2a:82:f8:cd:c2:af:2a:33:46:b0:07:12: 9e:35:95:8f:7d:10:4f:a2:3f:5d:ba:28:55:36:08:c2:03:8a: 14:91:7c:b1:96:29:79:da:ec:63:0b:eb:bf:32:84:69:55:75: 4c:32:9e:c9:55:7b:12:d9:47:8c:e7:39:c0:15:4e:e7:26:c0: 26:be:4a:94 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTQ2NTExMC8GA1UEBRMoNzBGQTc5MTFDNzAxMkU1OEVGOUZCMDVBNTVBNENFNkZC MDYwOUJDRjAeFw0yNDA3MjAwODE4MThaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OWI3MmM5LTEzNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD3ae83qKdBalt1+QeyEXPpH2QotCf+SlmFWwvyB64cH0BBIIeYZ2lzfalumm2Y V7vjLFuAI2aYooMPc5nF3N7GRDPZegXV8n5kKuYtNhts9BIy5KlIGyubYoB4lJBJ zFWdq5PnOWPj/4n5/5dRWfNcCF58LNM+XhyKBnutZcG3IXI1JsBIH/BJrKzot45Z LgSVc6f2J2xVaAgKQLv2LpMTvx4I9vx1bRs7jfsfG0elAStqJsaGhQriy4Xl4JkZ idP+YsrUm8udGUyEhtfwAfqer4dw7RPv9ra8411c1q9L7Y1Y7OyQ8PWUOLraVIzm 0amG4XHwr9zqP8vM+SeMm0MnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUcgzQ3dP8 RM9Qx854bUQB1jdmUsMwHwYDVR0jBBgwFoAUcPp5EccBLljvn7BaVaTOb7Bgm88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NDY1L0RDMzY4QUMyNDUy RDExRUZBREVENjM0Q0M0RjlBRTAyL2NQcDVFY2NCTGxqdm43QmFWYVRPYjdCZ204 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1BwNUVjY0JMbGp2bjdCYVZhVE9iN0JnbTg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ2NS9EQzM2OEFDMjQ1MkQxMUVGQURFRDYzNENDNEY5QUUwMi9GMEM3MjY2MjQ1 RDgxMUVGOUQ4NTE2MjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAvBggrBgEFBQcBBwEB/wQg MB4wDAQCAAEwBgMEAm923DAOBAIAAjAIAwYEJALlABAwDQYJKoZIhvcNAQELBQAD ggEBAOuYIYhifRIaBsfvDh2+DVNiqm4AzBNiehz7fEu00yCpYLYef38Ej9IjLqkn NQN0OzJktAdtnnJWk1nZtCNttHpWD+qWkW4xH9XliNvmtz9zSJQx+jDji+/5R7eA XUQt0YCey+ypPexwyWBGYasEwyg+zqGxvxajbcoUP25uSJWTA30b5rM7fsBQmcbt RVz98PJQiN13NgCwarAPW2TRJAA4MAtd8A1Uuwv7/s5emWBM0GxIlo2dMm7Q2iqC +M3CryozRrAHEp41lY99EE+iP126KFU2CMIDihSRfLGWKXna7GML678yhGlVdUwy nslVexLZR4znOcAVTucmwCa+SpQ= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org