$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa File: 651E60A6535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: 4i6VJPAbegLRPG1TiRgqleRdlv3u9kO2DBkdXwrkMys= Subject key identifier: F3:AA:60:EC:BE:5A:0E:D5:09:56:9E:52:EB:B5:1E:9A:E1:29:61:72 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0C11 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:45 +0000 ROA not before: Wed 06 Nov 2024 19:08:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4202202056 IP address blocks: 112.137.162.0/24 maxlen: 24 119.110.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3089 (0xc11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 6 19:08:45 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672bbebd-007c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c6:15:24:38:21:b9:c6:1f:c2:10:ae:35:4e: e1:2e:6f:24:dd:f0:da:51:f2:df:c5:84:9e:61:50: 4b:02:8e:68:bd:b4:1c:04:b1:61:fc:70:72:5f:2c: 70:57:e4:8c:1a:2f:56:4b:da:57:80:1f:6c:48:10: 31:c5:b4:37:4a:a1:17:3c:9f:0d:b9:17:80:ac:39: b7:8c:37:cc:16:03:b2:10:df:ea:d9:0c:12:d6:df: b6:2b:ca:c8:29:d4:1c:58:84:c9:75:48:87:c5:2c: 40:67:66:95:ab:0d:57:26:40:5d:5a:d8:5f:dd:3d: 90:f3:bf:f3:ce:6e:ad:74:bd:2c:b3:20:be:94:dd: dc:c4:17:5f:7b:87:30:d0:6e:b0:d3:08:27:5c:64: b9:32:2f:84:ee:be:08:5a:a8:b8:dd:77:1a:7c:5e: 52:e0:7b:43:6c:b8:fd:5e:71:03:b7:3b:9c:c6:f5: 32:80:4c:05:d6:64:f0:0a:71:47:53:f2:24:6f:77: 41:12:35:ab:ba:d3:0a:63:42:b9:c8:c1:6f:2a:a8: 7c:83:c3:d0:92:33:07:01:35:8c:f5:eb:16:57:41: f0:0c:f6:bf:33:7a:34:dd:64:61:ae:a0:5f:58:28: 86:df:b5:71:b3:79:ca:7d:60:47:55:5a:7e:12:b3: fb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AA:60:EC:BE:5A:0E:D5:09:56:9E:52:EB:B5:1E:9A:E1:29:61:72 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.137.162.0/24 119.110.108.0/24 Signature Algorithm: sha256WithRSAEncryption 72:72:12:2a:96:49:56:5e:0f:94:2f:2a:36:d1:5a:b0:8b:fb: 9a:99:b8:5f:6c:9f:7a:db:6c:66:05:91:b5:a5:40:73:e7:a4: a4:7d:d3:57:03:6b:90:0d:e1:71:51:59:e4:70:b6:d6:c1:19: 37:3f:f2:c9:2d:eb:6c:33:c2:77:d9:72:89:c6:f8:84:32:8d: 28:10:c2:68:84:7b:da:70:2c:af:3e:22:b7:6d:22:1b:f0:3f: f7:8e:f7:98:52:92:24:98:12:d0:f3:61:a2:aa:48:bb:8c:55: 42:0f:4a:1b:9a:3e:9b:37:45:b6:67:75:32:d9:00:72:a5:3f: aa:69:0d:73:69:e0:0d:76:b3:69:f9:bb:da:b7:41:44:11:bb: ba:34:2b:3d:e6:b2:77:cb:c5:29:37:9b:da:9e:7f:a6:dd:44: 04:8a:9c:7a:38:d8:65:5b:f8:12:6b:3f:cb:83:23:ea:15:74: 0e:51:4e:98:32:f7:2b:9b:a5:13:3b:1b:a5:9e:b1:0d:6c:b0: f3:c4:68:4a:1f:ab:e6:71:b6:ef:e5:d4:8f:13:cb:d5:a3:75: 5a:27:1b:7c:71:4c:58:46:63:b6:5f:09:eb:36:a8:13:31:17: 9b:d8:dd:99:c4:d6:55:44:12:a4:dc:3b:56:54:52:ee:2a:df: 96:79:ed:d4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjQxMTA2MTkwODQ1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmViZC0wMDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8YVJDghucYfwhCuNU7hLm8k3fDaUfLfxYSeYVBLAo5ovbQcBLFh/HByXyxw V+SMGi9WS9pXgB9sSBAxxbQ3SqEXPJ8NuReArDm3jDfMFgOyEN/q2QwS1t+2K8rI KdQcWITJdUiHxSxAZ2aVqw1XJkBdWthf3T2Q87/zzm6tdL0ssyC+lN3cxBdfe4cw 0G6w0wgnXGS5Mi+E7r4IWqi43XcafF5S4HtDbLj9XnEDtzucxvUygEwF1mTwCnFH U/Ikb3dBEjWrutMKY0K5yMFvKqh8g8PQkjMHATWM9esWV0HwDPa/M3o03WRhrqBf WCiG37Vxs3nKfWBHVVp+ErP7PQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPOqYOy+ Wg7VCVaeUuu1HprhKWFyMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjUxRTYwQTY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABwiaIDBAB3bmwwDQYJKoZIhvcNAQELBQADggEBAHJyEiqW SVZeD5QvKjbRWrCL+5qZuF9sn3rbbGYFkbWlQHPnpKR901cDa5AN4XFRWeRwttbB GTc/8skt62wzwnfZconG+IQyjSgQwmiEe9pwLK8+IrdtIhvwP/eO95hSkiSYEtDz YaKqSLuMVUIPShuaPps3RbZndTLZAHKlP6ppDXNp4A12s2n5u9q3QUQRu7o0Kz3m snfLxSk3m9qef6bdRASKnHo42GVb+BJrP8uDI+oVdA5RTpgy9yubpRM7G6WesQ1s sPPEaEofq+Zxtu/l1I8Ty9WjdVonG3xxTFhGY7ZfCes2qBMxF5vY3ZnE1lVEEqTc O1ZUUu4q35Z57dQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org