$ rpki-client -vvf rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/E75B22220B5D11EBADED9667C4F9AE02.roa File: E75B22220B5D11EBADED9667C4F9AE02.roa (raw, json) Hash identifier: cxdHWuAltuUsC5sxH/N44N1gT2Gc5UuUxA+u+mvlARY= Subject key identifier: 86:3C:30:C9:EC:89:D7:B4:7E:8C:CE:A3:BA:43:2B:05:AD:39:77:06 Certificate issuer: /CN=A9123072/serialNumber=E3BCBA88BEDC2A768A9865F416D68A7C3033F469 Certificate serial: 0704 Authority key identifier: E3:BC:BA:88:BE:DC:2A:76:8A:98:65:F4:16:D6:8A:7C:30:33:F4:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47y6iL7cKnaKmGX0FtaKfDAz9Gk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/E75B22220B5D11EBADED9667C4F9AE02.roa Signing time: Mon 08 Jul 2024 00:27:47 +0000 ROA not before: Mon 08 Jul 2024 00:27:47 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132825 IP address blocks: 118.107.244.0/24 maxlen: 24 118.107.245.0/24 maxlen: 24 118.107.246.0/24 maxlen: 24 118.107.247.0/24 maxlen: 24 118.107.248.0/24 maxlen: 24 118.107.249.0/24 maxlen: 24 118.107.250.0/24 maxlen: 24 118.107.251.0/24 maxlen: 24 118.107.252.0/24 maxlen: 24 118.107.253.0/24 maxlen: 24 118.107.254.0/24 maxlen: 24 118.107.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/47y6iL7cKnaKmGX0FtaKfDAz9Gk.crl rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/47y6iL7cKnaKmGX0FtaKfDAz9Gk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47y6iL7cKnaKmGX0FtaKfDAz9Gk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1796 (0x704) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123072/serialNumber=E3BCBA88BEDC2A768A9865F416D68A7C3033F469 Validity Not Before: Jul 8 00:27:47 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=668b3283-0371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:5f:05:b2:0c:7c:65:d4:f9:dd:88:7a:82: 06:2f:45:5b:51:fd:e7:76:c7:f1:d3:aa:4d:a5:a3: cb:3b:9e:4d:2d:73:62:f4:d6:12:85:88:aa:16:7a: 54:a4:89:4d:79:1d:1a:b3:1f:39:67:0d:f0:35:3d: 6e:88:df:03:f8:be:2d:e6:c5:e5:be:52:75:b4:4c: 45:87:57:e4:86:41:1a:a6:f4:dd:35:27:ac:0d:3f: b3:c7:b7:9f:ff:d7:ee:1b:cd:0b:0f:00:a4:c6:79: cc:f6:9f:ec:4e:de:cc:48:1e:a1:f7:91:d3:22:0b: 1d:c8:74:b6:8a:a4:c4:6f:78:8d:67:4f:30:2b:0d: 49:a6:e4:3a:83:ed:46:83:21:49:cd:15:e7:4c:8c: 7b:9d:c6:16:8b:10:a1:4e:06:ec:f5:51:d5:b4:2b: 25:25:4e:56:81:fc:ad:92:54:f3:84:5b:fb:67:dc: c2:b3:67:85:c4:ca:a9:cb:79:d7:32:70:ee:a4:56: 95:85:40:5b:55:c4:a7:92:3a:b9:8c:0c:b0:c6:b0: 95:8e:06:30:94:38:e3:22:34:d6:a9:58:53:0b:00: 64:6f:94:57:e2:54:9a:78:08:ed:56:06:5b:b8:e2: 3e:76:a5:62:73:18:4b:8a:6b:0e:61:47:f1:fa:45: 6d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3C:30:C9:EC:89:D7:B4:7E:8C:CE:A3:BA:43:2B:05:AD:39:77:06 X509v3 Authority Key Identifier: keyid:E3:BC:BA:88:BE:DC:2A:76:8A:98:65:F4:16:D6:8A:7C:30:33:F4:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/47y6iL7cKnaKmGX0FtaKfDAz9Gk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47y6iL7cKnaKmGX0FtaKfDAz9Gk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123072/0CEA495C0B5C11EB99A17562C4F9AE02/E75B22220B5D11EBADED9667C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.107.244.0-118.107.255.255 Signature Algorithm: sha256WithRSAEncryption 86:1b:cf:83:04:dd:f5:df:44:59:6e:66:e6:fb:2e:d8:7b:c8: 38:8d:7b:df:b3:73:b6:ee:25:7c:fd:62:14:5a:0a:24:c9:26: 7a:1b:3e:05:50:9e:89:ae:ea:96:74:5c:38:08:6b:16:57:72: 65:9f:7f:4f:80:c3:23:65:91:cf:89:d2:3f:c2:c5:e7:1d:20: 26:13:a9:74:83:9c:81:99:8f:4d:62:9d:3c:90:ff:79:da:88: 0d:c5:28:f5:28:c3:00:0f:7b:0e:7f:6d:24:e8:1f:fa:0e:d8: 44:45:11:bd:26:08:6c:e1:82:a8:29:33:37:88:b1:4a:cf:f2: e9:f5:56:f8:3e:1e:ce:27:69:0f:47:53:11:e8:7f:fa:e0:a8: aa:9e:3c:95:5e:e9:1e:79:6d:b4:10:bd:ee:b4:6b:16:92:09: 95:bf:3d:3b:f2:be:8d:16:bc:82:85:7d:7f:9e:78:dd:2a:de: cd:cd:6e:8a:bf:1e:c4:8d:0d:a2:30:99:78:99:26:f4:06:91: ef:24:1d:6e:dd:35:31:17:a5:af:28:e3:21:fe:12:26:22:52: d3:c8:ec:c5:ea:de:46:cf:59:2f:9b:83:06:69:03:c7:0a:3f: 5f:4d:a1:0f:27:4e:5e:04:a8:b4:a7:35:df:84:46:1b:c8:e8: 6d:0b:c7:f5 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICBwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwNzIxMTAvBgNVBAUTKEUzQkNCQTg4QkVEQzJBNzY4QTk4NjVGNDE2RDY4QTdD MzAzM0Y0NjkwHhcNMjQwNzA4MDAyNzQ3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhiMzI4My0wMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc1fBbIMfGXU+d2IeoIGL0VbUf3ndsfx06pNpaPLO55NLXNi9NYShYiqFnpU pIlNeR0asx85Zw3wNT1uiN8D+L4t5sXlvlJ1tExFh1fkhkEapvTdNSesDT+zx7ef /9fuG80LDwCkxnnM9p/sTt7MSB6h95HTIgsdyHS2iqTEb3iNZ08wKw1JpuQ6g+1G gyFJzRXnTIx7ncYWixChTgbs9VHVtCslJU5WgfytklTzhFv7Z9zCs2eFxMqpy3nX MnDupFaVhUBbVcSnkjq5jAywxrCVjgYwlDjjIjTWqVhTCwBkb5RX4lSaeAjtVgZb uOI+dqVicxhLimsOYUfx+kVtDwIDAQABo4ICnDCCApgwHQYDVR0OBBYEFIY8MMns ide0fozOo7pDKwWtOXcGMB8GA1UdIwQYMBaAFOO8uoi+3Cp2iphl9BbWinwwM/Rp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzA3Mi8wQ0VBNDk1QzBC NUMxMUVCOTlBMTc1NjJDNEY5QUUwMi80N3k2aUw3Y0tuYUttR1gwRnRhS2ZEQXo5 R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ3eTZpTDdjS25hS21HWDBGdGFLZkRBejlHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMwNzIvMENFQTQ5NUMwQjVDMTFFQjk5QTE3NTYyQzRGOUFFMDIvRTc1QjIyMjIw QjVEMTFFQkFERUQ5NjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMEAnZr9AMDAnZoMA0GCSqGSIb3DQEBCwUAA4IBAQCGG8+D BN3130RZbmbm+y7Ye8g4jXvfs3O27iV8/WIUWgokySZ6Gz4FUJ6JruqWdFw4CGsW V3Jln39PgMMjZZHPidI/wsXnHSAmE6l0g5yBmY9NYp08kP952ogNxSj1KMMAD3sO f20k6B/6DthERRG9Jghs4YKoKTM3iLFKz/Lp9Vb4Ph7OJ2kPR1MR6H/64KiqnjyV XukeeW20EL3utGsWkgmVvz078r6NFryChX1/nnjdKt7NzW6Kvx7EjQ2iMJl4mSb0 BpHvJB1u3TUxF6WvKOMh/hImIlLTyOzF6t5Gz1kvm4MGaQPHCj9fTaEPJ05eBKi0 pzXfhEYbyOhtC8f1 -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org