$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/0E0C2FDA8A9211EF928F7977C4F9AE02.roa File: 0E0C2FDA8A9211EF928F7977C4F9AE02.roa (raw, json) Hash identifier: JVFgNDefGhhZNaP/+45vnp4r1QlTjKCGH5rrYa2eB70= Subject key identifier: FB:3A:4C:87:73:AD:30:35:14:45:D5:53:7E:FB:A2:29:B1:B8:B9:92 Certificate issuer: /CN=A911AD81/serialNumber=2DE8F216DCD2BEC6D38FEBF01E06D8A990270EBF Certificate serial: 0B Authority key identifier: 2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/0E0C2FDA8A9211EF928F7977C4F9AE02.roa Signing time: Tue 15 Oct 2024 03:20:37 +0000 ROA not before: Tue 15 Oct 2024 03:20:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 8075 IP address blocks: 203.20.128.0/24 maxlen: 24 203.20.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD81/serialNumber=2DE8F216DCD2BEC6D38FEBF01E06D8A990270EBF Validity Not Before: Oct 15 03:20:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=670ddf85-396f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:84:8f:dc:d0:46:e3:1d:45:64:91:83:6f:15: f4:f6:f6:4c:78:b1:25:81:b7:67:5d:7c:cd:4b:a8: 3d:5e:4d:71:c8:ee:8c:85:cc:fc:1f:46:92:39:8a: 7c:8a:36:d8:c0:fa:cb:62:79:dd:23:8b:ac:b4:b8: 6f:a9:c7:b7:5e:44:e7:33:e8:3a:e4:ec:68:7d:40: ba:ca:10:8e:c7:b3:7e:e0:8b:3c:3f:6f:27:5b:89: e9:d2:5b:12:36:37:e4:ff:d9:11:18:e2:94:18:69: 7f:76:00:34:ab:01:41:18:7a:23:65:ed:e6:ed:b6: 89:80:b2:0e:74:db:cc:c5:27:84:6e:06:09:de:5c: 0f:de:da:1c:a0:41:4a:f9:e6:c4:48:bb:66:40:e3: 97:66:4e:0a:bb:c1:04:a3:da:73:9e:3a:a5:3f:94: 0d:38:ae:f8:37:36:12:a0:7d:5a:77:94:f2:eb:45: ba:ee:ee:0d:bc:dc:9f:7d:39:61:89:77:f2:eb:4f: 8a:b1:e3:e3:5f:cb:60:a7:32:94:6f:bd:6f:0e:d8: 37:bf:c1:26:74:a1:6c:bc:c7:9c:41:8c:e4:fb:6c: 93:4a:6d:9f:3e:46:2e:f5:0d:34:fe:6d:40:5d:5c: 72:e8:20:d2:84:63:45:51:bd:08:ab:ba:67:70:b8: c0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3A:4C:87:73:AD:30:35:14:45:D5:53:7E:FB:A2:29:B1:B8:B9:92 X509v3 Authority Key Identifier: keyid:2D:E8:F2:16:DC:D2:BE:C6:D3:8F:EB:F0:1E:06:D8:A9:90:27:0E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/LejyFtzSvsbTj-vwHgbYqZAnDr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LejyFtzSvsbTj-vwHgbYqZAnDr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD81/87D3520A89E111EF8921404DC4F9AE02/0E0C2FDA8A9211EF928F7977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.128.0/23 Signature Algorithm: sha256WithRSAEncryption 21:ae:fd:8f:1d:15:94:61:ad:95:65:14:ed:2a:55:3d:7d:5e: 42:02:65:d0:35:35:a2:56:d2:ca:d0:b7:c7:0c:78:2f:ef:2e: 86:7f:1c:49:f6:71:1b:04:dd:a3:cb:e8:f5:85:de:18:33:b0: 85:86:1b:c8:e9:75:ad:96:c8:16:b1:8d:ba:61:e6:07:fd:92: 3f:7f:d8:9d:b6:44:a8:f5:bd:62:42:42:0a:1b:a2:d9:12:cd: 45:a8:e6:02:09:6a:0e:88:23:d7:65:5d:f8:56:b0:49:8d:42: 53:2b:f0:a0:a4:72:de:59:af:b7:99:ce:1e:cf:24:6f:f3:cd: cc:cb:d0:9d:f2:62:d4:c3:bf:e3:e7:bf:bc:b5:63:38:f4:31: 3f:3c:28:d5:8a:67:0a:66:3b:ba:82:b5:41:af:12:e2:b7:72: e1:14:29:df:df:d4:cb:0c:10:13:18:7e:46:b9:6a:14:e8:74: 51:05:60:c3:16:4c:75:47:a0:e2:29:d9:d8:0d:9d:8e:de:98: 88:15:84:68:f4:de:68:19:d5:d8:22:fd:f6:26:7d:32:04:8a: 48:05:2a:8d:36:3a:15:07:25:42:c4:60:9b:6c:7e:49:09:14: b2:60:65:7f:08:c5:1f:74:3e:63:75:57:7d:17:cd:0c:84:07: da:6e:90:8c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUQ4MTExMC8GA1UEBRMoMkRFOEYyMTZEQ0QyQkVDNkQzOEZFQkYwMUUwNkQ4QTk5 MDI3MEVCRjAeFw0yNDEwMTUwMzIwMzdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGRkZjg1LTM5NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlhI/c0EbjHUVkkYNvFfT29kx4sSWBt2ddfM1LqD1eTXHI7oyFzPwfRpI5inyK NtjA+stied0ji6y0uG+px7deROcz6Drk7Gh9QLrKEI7Hs37gizw/bydbienSWxI2 N+T/2REY4pQYaX92ADSrAUEYeiNl7ebttomAsg5028zFJ4RuBgneXA/e2hygQUr5 5sRIu2ZA45dmTgq7wQSj2nOeOqU/lA04rvg3NhKgfVp3lPLrRbru7g283J99OWGJ d/LrT4qx4+Nfy2CnMpRvvW8O2De/wSZ0oWy8x5xBjOT7bJNKbZ8+Ri71DTT+bUBd XHLoINKEY0VRvQirumdwuMADAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+zpMh3Ot MDUURdVTfvuiKbG4uZIwHwYDVR0jBBgwFoAULejyFtzSvsbTj+vwHgbYqZAnDr8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBRDgxLzg3RDM1MjBBODlF MTExRUY4OTIxNDA0REM0RjlBRTAyL0xlanlGdHpTdnNiVGotdndIZ2JZcVpBbkRy OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGVqeUZ0elN2c2JUai12d0hnYllxWkFuRHI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQ4MS84N0QzNTIwQTg5RTExMUVGODkyMTQwNERDNEY5QUUwMi8wRTBDMkZEQThB OTIxMUVGOTI4Rjc5NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsUgDANBgkqhkiG9w0BAQsFAAOCAQEAIa79jx0VlGGtlWUU 7SpVPX1eQgJl0DU1olbSytC3xwx4L+8uhn8cSfZxGwTdo8vo9YXeGDOwhYYbyOl1 rZbIFrGNumHmB/2SP3/YnbZEqPW9YkJCChui2RLNRajmAglqDogj12Vd+FawSY1C UyvwoKRy3lmvt5nOHs8kb/PNzMvQnfJi1MO/4+e/vLVjOPQxPzwo1YpnCmY7uoK1 Qa8S4rdy4RQp39/UywwQExh+RrlqFOh0UQVgwxZMdUeg4inZ2A2djt6YiBWEaPTe aBnV2CL99iZ9MgSKSAUqjTY6FQclQsRgm2x+SQkUsmBlfwjFH3Q+Y3VXfRfNDIQH 2m6QjA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:13 2024 by rpki-client on console-fra.rpki-client.org