$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D36E1CE02A3211EFA7554C59C4F9AE02.roa File: D36E1CE02A3211EFA7554C59C4F9AE02.roa (raw, json) Hash identifier: +qzxrrbDAbjm5oGRWL2M9bgOfHEjl4iskK+N/J81qak= Subject key identifier: C4:FC:40:30:F2:43:F5:1C:22:37:B5:C0:F6:20:AF:CF:39:90:D6:3D Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B2 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D36E1CE02A3211EFA7554C59C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:59 +0000 ROA not before: Thu 24 Oct 2024 23:42:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141750 IP address blocks: 163.53.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb82-eff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cd:95:e9:08:c8:ce:8d:54:ff:7a:ae:e9:5c: 7b:3b:0f:5d:ab:56:a4:91:9d:c0:79:05:9b:e9:93: 13:de:69:55:6a:82:d5:e5:79:bb:4a:1e:4a:77:c0: 65:a1:7e:5e:c4:0b:84:c2:9b:4c:0d:c6:7c:b7:b7: 77:3f:85:89:58:02:51:77:a3:1b:39:88:81:ca:a8: 4c:b1:74:8a:e1:fc:ee:64:cd:b1:b8:ce:24:15:b1: 63:f2:5a:e5:d1:80:0b:0b:c7:3c:47:21:f5:ab:4e: c3:2d:8d:12:02:dc:17:a1:95:71:96:39:08:15:ba: ad:e5:5d:6c:cd:cd:99:bb:dd:22:2e:c7:ca:a7:73: 9a:d2:9f:33:05:62:29:74:d6:c8:ed:59:b1:e0:b4: 7a:33:f1:b4:ef:37:c3:05:9f:60:f6:72:dc:90:71: 97:12:77:d8:56:52:58:6a:fb:80:b4:c2:33:ed:c5: b6:5b:22:ae:81:68:d6:70:59:68:c4:c0:bb:fc:83: 8b:ee:3e:dc:ed:8f:08:6a:4a:23:36:de:e0:eb:a9: ff:dd:90:e7:bc:ef:4b:4c:12:f0:1c:e5:73:f8:64: d8:af:82:e2:26:fd:3b:a8:59:f7:aa:da:b7:49:e4: 94:56:5a:5b:c7:a9:b5:b6:a5:e1:eb:5f:4c:24:3b: dd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FC:40:30:F2:43:F5:1C:22:37:B5:C0:F6:20:AF:CF:39:90:D6:3D X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D36E1CE02A3211EFA7554C59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.53.16.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:03:21:51:4a:f5:fb:30:9a:d6:09:d3:b4:44:15:dc:5f:ea: 7d:1c:1e:a2:97:27:16:91:07:a8:e0:d5:1b:b6:6d:a3:08:20: c5:f2:f8:ad:39:98:58:1c:a1:44:b5:cd:6e:60:3c:27:b8:f3: 39:82:77:60:da:47:dc:c0:71:f5:e0:a3:77:1e:7c:44:82:6b: 9e:50:7f:93:8b:09:30:7c:ca:c6:7f:b5:0e:05:61:40:94:bb: dd:bf:53:57:c6:e0:c8:28:91:5f:f9:3b:50:35:e8:63:c4:66: 1b:bc:7f:96:7a:ef:a0:80:d7:9c:c5:b8:5f:59:40:07:95:71: 3c:88:ee:67:00:5c:e5:07:ef:08:88:3a:03:36:25:5f:f7:cc: ab:b4:c4:c5:8d:e6:0e:af:90:c7:31:1b:8f:7d:a8:8f:f8:23: 07:bc:3c:fa:8a:56:ce:37:76:b4:11:7a:6a:73:2b:a7:aa:53: 9c:de:1a:4c:30:be:91:bc:8d:90:fc:a7:c2:ff:42:02:3d:13: 64:9b:48:58:1f:73:1a:47:3d:1e:b6:6e:88:e5:3e:86:f7:fb: f0:56:59:4f:1c:ba:f2:44:f0:d9:49:a6:e5:84:30:46:c8:88: 36:91:ed:a1:d7:86:27:f7:fe:06:9a:2a:6f:20:08:81:78:77: 2e:72:f5:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4Mi1lZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM2V6QjIzo1U/3qu6Vx7Ow9dq1akkZ3AeQWb6ZMT3mlVaoLV5Xm7Sh5Kd8Bl oX5exAuEwptMDcZ8t7d3P4WJWAJRd6MbOYiByqhMsXSK4fzuZM2xuM4kFbFj8lrl 0YALC8c8RyH1q07DLY0SAtwXoZVxljkIFbqt5V1szc2Zu90iLsfKp3Oa0p8zBWIp dNbI7Vmx4LR6M/G07zfDBZ9g9nLckHGXEnfYVlJYavuAtMIz7cW2WyKugWjWcFlo xMC7/IOL7j7c7Y8IakojNt7g66n/3ZDnvO9LTBLwHOVz+GTYr4LiJv07qFn3qtq3 SeSUVlpbx6m1tqXh619MJDvd5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMT8QDDy Q/UcIje1wPYgr885kNY9MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRDM2RTFDRTAy QTMyMTFFRkE3NTU0QzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACjNRAwDQYJKoZIhvcNAQELBQADggEBAJ8DIVFK9fswmtYJ 07REFdxf6n0cHqKXJxaRB6jg1Ru2baMIIMXy+K05mFgcoUS1zW5gPCe48zmCd2Da R9zAcfXgo3cefESCa55Qf5OLCTB8ysZ/tQ4FYUCUu92/U1fG4MgokV/5O1A16GPE Zhu8f5Z676CA15zFuF9ZQAeVcTyI7mcAXOUH7wiIOgM2JV/3zKu0xMWN5g6vkMcx G499qI/4Iwe8PPqKVs43drQRempzK6eqU5zeGkwwvpG8jZD8p8L/QgI9E2SbSFgf cxpHPR62bojlPob3+/BWWU8cuvJE8NlJpuWEMEbIiDaR7aHXhif3/gaaKm8gCIF4 dy5y9a8= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:18 2024 by rpki-client on console-fra.rpki-client.org