$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8AD3E23A17DC11EE959DE671C4F9AE02.roa File: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: obVSxBoAnqffXMDTd+Z9+Lr3d6TSTuDzUuAxF1nefiI= Subject key identifier: 69:CD:A8:00:C1:C8:D4:7D:A4:4E:79:92:06:F7:FA:15:A5:A9:6F:6E Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0C0F Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8AD3E23A17DC11EE959DE671C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:43 +0000 ROA not before: Wed 06 Nov 2024 19:08:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24514 IP address blocks: 1.9.21.0/24 maxlen: 24 1.9.65.0/24 maxlen: 24 203.106.56.0/21 maxlen: 21 203.106.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 6 19:08:43 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672bbebb-b96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:45:0f:4e:09:34:16:5e:96:a2:04:24:b6: 14:4f:f8:89:34:69:65:55:10:b0:bf:0c:61:97:b9: 3c:fe:8c:44:98:9d:f0:a7:dd:a6:78:de:7e:4e:a0: a2:75:f1:15:6e:77:da:5e:9f:35:45:f2:87:21:64: 5e:19:32:b9:3e:79:d5:68:e1:83:e0:e9:d4:26:61: 8c:81:19:e2:44:6e:5e:5a:6d:81:57:88:22:7a:e6: b8:72:85:df:5b:3f:4a:a1:a6:e6:9a:6b:e3:d7:7f: b5:ca:2f:38:30:2c:83:c3:6b:3f:1a:e5:c4:0a:c5: 0f:1b:b4:ef:c4:9a:4c:79:34:96:84:35:2e:db:23: 4a:9e:fa:f7:73:8e:a3:36:8f:42:42:82:18:7c:66: e6:ab:e0:94:f8:8d:48:b9:9f:9e:60:31:2b:1f:eb: 0c:55:61:2d:53:d8:5f:23:2d:50:13:1d:d6:81:d8: 88:24:b4:e0:00:be:7b:fc:79:14:0b:c5:69:eb:bc: cc:a3:04:5c:b2:42:b3:b8:0f:35:31:04:12:31:81: 4f:df:40:20:1b:60:7c:b2:22:09:27:d7:c7:d4:18: 4d:82:3d:5d:fd:20:30:bc:11:13:b5:34:d1:cc:93: 60:77:af:c7:c4:35:15:3f:05:51:05:f2:cc:fc:fd: bc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CD:A8:00:C1:C8:D4:7D:A4:4E:79:92:06:F7:FA:15:A5:A9:6F:6E X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8AD3E23A17DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.9.21.0/24 1.9.65.0/24 203.106.56.0-203.106.67.255 Signature Algorithm: sha256WithRSAEncryption 8d:5f:a4:22:c3:73:f2:bf:41:ac:41:50:21:b9:88:cf:a8:2f: fc:02:73:46:f8:cc:86:39:c4:21:bb:77:cf:c3:d2:5b:c1:8a: 79:ef:4c:12:47:d8:5f:7f:16:7c:be:a1:fb:79:7a:07:c2:36: b2:f1:84:19:5c:f8:1d:7b:7c:4b:78:44:8a:7b:32:a6:a9:1d: 9e:26:7e:70:8b:ed:00:04:60:1a:76:05:7d:cc:ef:5d:cd:71: ab:fa:6d:89:df:67:d0:b1:01:77:a0:78:94:9e:dc:e9:32:26: 37:2b:07:2b:fd:e8:71:01:d7:e6:ed:81:65:03:a4:1e:2e:c4: e4:73:14:89:6f:a1:21:57:cc:90:a6:e5:7e:0d:17:79:b1:a3: b8:5a:dd:16:21:d6:a1:1b:07:d8:97:36:2a:44:96:cc:60:a3: 50:93:f8:6d:37:16:a2:e4:e4:4a:f7:04:dd:4c:dc:81:3d:56: 3c:f6:8a:6a:c4:4f:4a:6a:c5:85:35:0b:a6:ed:de:96:7f:3a: 6e:b6:cf:fa:a9:44:e1:79:3f:0b:cc:1b:c3:35:4c:0d:40:ce: e2:cf:ce:51:9a:87:3d:b6:a7:3a:de:12:c0:d8:5a:f3:c0:46: aa:b9:1e:96:0e:9b:39:33:53:1f:af:12:ce:9d:44:38:e1:b4: 3b:ba:14:c6 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjQxMTA2MTkwODQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmViYi1iOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QZFD04JNBZelqIEJLYUT/iJNGllVRCwvwxhl7k8/oxEmJ3wp92meN5+TqCi dfEVbnfaXp81RfKHIWReGTK5PnnVaOGD4OnUJmGMgRniRG5eWm2BV4gieua4coXf Wz9Koabmmmvj13+1yi84MCyDw2s/GuXECsUPG7TvxJpMeTSWhDUu2yNKnvr3c46j No9CQoIYfGbmq+CU+I1IuZ+eYDErH+sMVWEtU9hfIy1QEx3WgdiIJLTgAL57/HkU C8Vp67zMowRcskKzuA81MQQSMYFP30AgG2B8siIJJ9fH1BhNgj1d/SAwvBETtTTR zJNgd6/HxDUVPwVRBfLM/P28GwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFGnNqADB yNR9pE55kgb3+hWlqW9uMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEFEM0UyM0Ex N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAABCRUDBAABCUEwDAMEA8tqOAMEAstqQDANBgkqhkiG9w0B AQsFAAOCAQEAjV+kIsNz8r9BrEFQIbmIz6gv/AJzRvjMhjnEIbt3z8PSW8GKee9M EkfYX38WfL6h+3l6B8I2svGEGVz4HXt8S3hEinsypqkdniZ+cIvtAARgGnYFfczv Xc1xq/ptid9n0LEBd6B4lJ7c6TImNysHK/3ocQHX5u2BZQOkHi7E5HMUiW+hIVfM kKblfg0XebGjuFrdFiHWoRsH2Jc2KkSWzGCjUJP4bTcWouTkSvcE3UzcgT1WPPaK asRPSmrFhTULpu3eln86brbP+qlE4Xk/C8wbwzVMDUDO4s/OUZqHPbanOt4SwNha 88BGqrkelg6bOTNTH68Szp1EOOG0O7oUxg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org