$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5DFC320069CD11EFA0E6CC83C4F9AE02.roa File: 5DFC320069CD11EFA0E6CC83C4F9AE02.roa (raw, json) Hash identifier: jbI9nyIyGvuuwD7R5pJI5zo/f8yqDWKnyeAgYYtwurY= Subject key identifier: E4:AE:CE:75:D2:69:CA:EA:FE:65:3B:D1:EB:7B:FB:EA:FC:DE:A4:0E Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06BA Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5DFC320069CD11EFA0E6CC83C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:43:08 +0000 ROA not before: Thu 24 Oct 2024 23:43:08 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 38136 IP address blocks: 163.53.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1722 (0x6ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:43:08 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb8c-2ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b0:20:0c:13:c9:37:59:da:d0:41:20:2c:89: 1c:3a:8c:b3:c4:e6:95:9e:c9:bd:1e:00:a2:96:c1: 60:b3:40:90:fb:ac:16:2a:29:2a:64:42:63:4e:bc: 42:cd:db:1c:98:01:8a:c8:48:79:98:c1:13:0e:c8: 9a:78:58:a8:05:0b:2b:d1:32:c5:27:51:ef:83:9c: 2e:e7:a9:8b:45:ec:10:1a:6a:3a:fa:47:4f:9f:a8: 25:6c:74:ca:66:23:69:1c:47:1d:af:d4:c7:03:93: d3:8d:0d:23:92:ce:f2:ea:c6:6e:65:67:cf:9b:f8: 0b:4b:1a:63:99:fe:31:8e:63:9d:8d:4c:3d:86:d4: 6c:e5:00:b7:a6:bf:8b:19:f4:2d:24:99:dd:2b:f3: 2f:46:49:c6:d9:e0:37:87:1c:9a:70:49:1d:31:79: 73:20:9f:7f:0e:79:30:79:46:69:07:99:65:bb:65: 70:3a:99:d8:b3:cd:f5:b3:25:f1:9b:cb:fa:b8:5a: 0c:89:91:35:74:18:55:3c:23:4b:b5:7e:ea:6f:99: 8e:de:12:b3:54:c5:87:99:aa:92:62:15:77:55:37: 74:61:d8:ec:05:a3:9d:3c:71:2e:35:c2:5f:b8:8e: 33:7d:10:cf:35:8d:fd:4e:f7:05:8c:e2:a3:38:b3: 95:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:AE:CE:75:D2:69:CA:EA:FE:65:3B:D1:EB:7B:FB:EA:FC:DE:A4:0E X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5DFC320069CD11EFA0E6CC83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.53.18.0/24 Signature Algorithm: sha256WithRSAEncryption 82:f9:d0:c3:e9:29:49:46:6b:2d:1a:36:de:58:64:87:c1:56: 00:bb:57:37:78:50:80:80:27:ac:f1:e9:8b:fd:66:c7:ed:98: c9:bd:94:87:16:94:e3:7e:95:30:6e:cb:a1:78:70:c9:80:1c: 28:ec:6c:74:f3:45:58:6d:a5:60:fc:58:f2:d4:e5:64:82:71: 7b:c4:7e:00:79:7b:e8:62:9a:53:25:9d:18:94:c8:20:92:d7: 59:2c:cb:8a:d1:ea:01:3a:52:fb:e3:ee:69:12:7e:3d:a7:ae: eb:ca:ba:8b:76:8c:25:03:a8:0c:92:16:b0:f9:52:74:8d:7f: 0e:0e:96:fe:14:ad:31:14:1a:c8:f3:66:70:57:87:00:f2:ed: 85:e4:94:13:76:3f:42:62:2e:82:ba:ec:30:48:7d:42:6f:3c: 5a:81:ea:52:19:bf:94:ed:76:fb:31:f8:9a:5a:20:1a:d9:78: 73:87:bd:0f:7b:aa:12:05:4e:7f:15:86:3c:fb:ad:91:90:f9: 1b:12:a6:e4:19:2e:ae:8e:c4:36:c0:0f:b3:04:b7:21:e1:d0: 63:43:d5:b0:17:ca:4e:87:ad:4a:ca:01:01:fa:e4:8f:f0:98: e0:d1:65:96:f0:b8:9b:df:5b:2d:5a:b2:61:39:dc:75:4a:39: 96:32:8b:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MzA4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4Yy0yYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7AgDBPJN1na0EEgLIkcOoyzxOaVnsm9HgCilsFgs0CQ+6wWKikqZEJjTrxC zdscmAGKyEh5mMETDsiaeFioBQsr0TLFJ1Hvg5wu56mLRewQGmo6+kdPn6glbHTK ZiNpHEcdr9THA5PTjQ0jks7y6sZuZWfPm/gLSxpjmf4xjmOdjUw9htRs5QC3pr+L GfQtJJndK/MvRknG2eA3hxyacEkdMXlzIJ9/DnkweUZpB5llu2VwOpnYs831syXx m8v6uFoMiZE1dBhVPCNLtX7qb5mO3hKzVMWHmaqSYhV3VTd0YdjsBaOdPHEuNcJf uI4zfRDPNY39TvcFjOKjOLOV6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOSuznXS acrq/mU70et7++r83qQOMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNURGQzMyMDA2 OUNEMTFFRkEwRTZDQzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACjNRIwDQYJKoZIhvcNAQELBQADggEBAIL50MPpKUlGay0a Nt5YZIfBVgC7Vzd4UICAJ6zx6Yv9ZsftmMm9lIcWlON+lTBuy6F4cMmAHCjsbHTz RVhtpWD8WPLU5WSCcXvEfgB5e+himlMlnRiUyCCS11ksy4rR6gE6Uvvj7mkSfj2n ruvKuot2jCUDqAySFrD5UnSNfw4Olv4UrTEUGsjzZnBXhwDy7YXklBN2P0JiLoK6 7DBIfUJvPFqB6lIZv5Ttdvsx+JpaIBrZeHOHvQ97qhIFTn8Vhjz7rZGQ+RsSpuQZ Lq6OxDbAD7MEtyHh0GND1bAXyk6HrUrKAQH65I/wmODRZZbwuJvfWy1asmE53HVK OZYyi14= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:18 2024 by rpki-client on console-fra.rpki-client.org