$ rpki-client -vvf rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/B0071914AAE811EA8412810FC4F9AE02.roa File: B0071914AAE811EA8412810FC4F9AE02.roa (raw, json) Hash identifier: AhV20TOfrv9vpaINNSPFdetVn3yi8Rq+Sxx63x5SsR8= Subject key identifier: A2:2F:07:E2:64:53:58:21:71:A6:E1:32:00:BE:43:D6:1C:24:EE:C0 Certificate issuer: /CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Certificate serial: 080B Authority key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/B0071914AAE811EA8412810FC4F9AE02.roa Signing time: Tue 30 Jan 2024 21:59:44 +0000 ROA not before: Tue 30 Jan 2024 21:59:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9474 IP address blocks: 202.140.64.0/19 maxlen: 19 202.140.64.0/20 maxlen: 20 202.140.69.0/24 maxlen: 24 202.140.72.0/24 maxlen: 24 202.140.76.0/24 maxlen: 24 202.140.78.0/24 maxlen: 24 202.140.80.0/21 maxlen: 21 202.140.88.0/21 maxlen: 21 202.140.90.0/24 maxlen: 24 202.140.92.0/24 maxlen: 24 202.140.94.0/24 maxlen: 24 202.140.96.0/19 maxlen: 19 202.140.101.0/24 maxlen: 24 202.140.107.0/24 maxlen: 24 202.140.108.0/24 maxlen: 24 202.140.110.0/24 maxlen: 24 202.140.112.0/24 maxlen: 24 202.140.114.0/24 maxlen: 24 2403:fa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2059 (0x80b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Validity Not Before: Jan 30 21:59:44 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b97150-f80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:50:33:50:4e:bd:90:ee:31:fa:0e:af:5e:e0: 2d:b5:77:7a:56:d1:6b:93:45:e9:18:49:c8:0f:b2: 66:bb:06:7a:42:16:bb:1a:e5:92:65:33:34:dc:16: 09:ee:3f:27:73:84:8e:89:c4:55:a0:fe:ec:ce:8f: 39:d2:fb:41:b3:ea:7a:2d:1e:17:89:7e:61:fe:ec: 75:3e:ce:01:58:ac:de:f1:9a:53:90:a5:98:95:de: 04:d1:2f:a4:96:e8:0c:78:a2:73:38:53:b7:79:1f: 7a:b8:2b:29:4a:98:60:b7:02:99:8f:06:36:94:79: 71:68:92:1a:59:b3:db:6b:d4:3a:36:fc:e3:10:16: b7:cc:e3:cc:d5:d6:4b:35:c0:69:09:d2:80:a0:fe: 52:88:ae:d2:dc:b0:cc:59:bb:80:a7:07:fe:74:43: e8:6a:81:44:9e:d3:56:95:c4:cb:d5:04:e7:f1:79: 65:e4:c9:8a:d7:20:8a:69:96:ce:42:3d:33:3b:ca: d6:c1:fb:a2:8c:1c:d4:c4:0b:c1:8d:d9:f1:75:f2: 7a:b9:0d:7b:5f:a7:81:5d:f8:0f:e9:87:ac:68:8d: 55:78:90:35:20:9d:ee:83:80:3d:0f:40:83:fe:73: f4:c1:cd:c2:45:88:3d:6c:e2:db:4c:5c:a6:64:a9: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2F:07:E2:64:53:58:21:71:A6:E1:32:00:BE:43:D6:1C:24:EE:C0 X509v3 Authority Key Identifier: keyid:83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/B0071914AAE811EA8412810FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.140.64.0/18 IPv6: 2403:fa00::/32 Signature Algorithm: sha256WithRSAEncryption 0b:e7:f1:e2:bf:9d:28:8e:ed:f7:89:40:5d:88:31:d8:33:3d: 77:7c:d5:e4:4b:3f:46:2c:3e:08:d9:12:e2:20:16:10:ce:18: 94:3b:cc:7c:23:21:4f:c6:dd:22:66:1b:04:91:31:76:bf:e0: 60:14:d5:6c:63:8d:32:c4:60:b4:59:2b:6c:1b:cd:c0:dc:45: 2a:ed:7c:df:89:e5:be:63:e5:b4:93:09:ae:58:00:20:1a:ac: 69:ba:14:f6:e6:f1:ee:82:15:81:39:64:53:77:bc:ae:d5:49: 25:74:c8:27:83:33:4f:c5:2b:96:0d:68:6d:c5:21:37:12:d4: c4:a5:91:90:9f:a9:f4:c5:33:eb:67:7d:f9:5d:81:9d:9c:c1: e4:ce:a4:4b:8e:25:7c:98:e6:68:08:44:73:36:c7:88:71:92: 65:70:a6:9e:ee:85:1d:21:1f:90:1d:92:46:85:8f:fb:ba:bc: af:63:6f:05:bd:31:e0:3d:af:b1:1c:02:60:8d:d4:7f:2e:95: 05:51:29:0b:aa:89:c1:52:67:6e:7a:97:39:9c:b9:5d:1f:d9: 48:70:27:9a:61:63:7b:de:18:fa:99:48:11:aa:d0:7f:d3:2e: b0:95:cd:ff:bf:6b:49:ed:c3:76:87:88:56:b9:56:d6:62:40: 17:18:f6:a4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwMDUxMTAvBgNVBAUTKDgzMERDRkNCNUE5QUEwQzdGQTdEN0FCOTk4OURBMjM0 M0RFRDJDMjIwHhcNMjQwMTMwMjE1OTQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5NzE1MC1mODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lAzUE69kO4x+g6vXuAttXd6VtFrk0XpGEnID7JmuwZ6Qha7GuWSZTM03BYJ 7j8nc4SOicRVoP7szo850vtBs+p6LR4XiX5h/ux1Ps4BWKze8ZpTkKWYld4E0S+k lugMeKJzOFO3eR96uCspSphgtwKZjwY2lHlxaJIaWbPba9Q6NvzjEBa3zOPM1dZL NcBpCdKAoP5SiK7S3LDMWbuApwf+dEPoaoFEntNWlcTL1QTn8Xll5MmK1yCKaZbO Qj0zO8rWwfuijBzUxAvBjdnxdfJ6uQ17X6eBXfgP6YesaI1VeJA1IJ3ug4A9D0CD /nP0wc3CRYg9bOLbTFymZKkbTwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKIvB+Jk U1ghcabhMgC+Q9YcJO7AMB8GA1UdIwQYMBaAFIMNz8tamqDH+n16uZidojQ97Swi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzAwNS84Q0E2ODI3NkFB RTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9NZjZmWHE1bUoyaU5EM3RM Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3M1B5MXFhb01mNmZYcTVtSjJpTkQzdExDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMwMDUvOENBNjgyNzZBQUU3MTFFQUE5MTIyQjBFQzRGOUFFMDIvQjAwNzE5MTRB QUU4MTFFQTg0MTI4MTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAbKjEAwDQQCAAIwBwMFACQD+gAwDQYJKoZIhvcNAQELBQAD ggEBAAvn8eK/nSiO7feJQF2IMdgzPXd81eRLP0YsPgjZEuIgFhDOGJQ7zHwjIU/G 3SJmGwSRMXa/4GAU1WxjjTLEYLRZK2wbzcDcRSrtfN+J5b5j5bSTCa5YACAarGm6 FPbm8e6CFYE5ZFN3vK7VSSV0yCeDM0/FK5YNaG3FITcS1MSlkZCfqfTFM+tnffld gZ2cweTOpEuOJXyY5mgIRHM2x4hxkmVwpp7uhR0hH5AdkkaFj/u6vK9jbwW9MeA9 r7EcAmCN1H8ulQVRKQuqicFSZ256lzmcuV0f2UhwJ5phY3veGPqZSBGq0H/TLrCV zf+/a0ntw3aHiFa5VtZiQBcY9qQ= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org