$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DDFED4E068FA11EFB2CB6E60C4F9AE02.roa File: DDFED4E068FA11EFB2CB6E60C4F9AE02.roa (raw, json) Hash identifier: 2itygBnA8UlXf6E6fQxxoMNJ1Dpn4lvk4Av278wLGiE= Subject key identifier: 56:D1:BA:08:9B:D8:1D:D5:04:CC:A0:47:C0:B8:66:AD:03:A3:5B:AD Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 027A Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DDFED4E068FA11EFB2CB6E60C4F9AE02.roa Signing time: Mon 02 Sep 2024 07:13:35 +0000 ROA not before: Mon 02 Sep 2024 07:13:35 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137489 IP address blocks: 116.193.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Sep 2 07:13:35 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66d5659e-e065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d7:1b:55:55:b2:ff:7d:0e:b7:b5:c8:5a:0a: a0:8e:18:e5:a6:9f:fd:61:b9:a4:95:8b:23:f0:8a: 79:6e:80:48:1f:02:27:38:07:7a:e1:ac:2c:5a:ca: b7:54:ec:23:cd:f6:65:34:b9:3e:9a:e9:3e:54:3d: 63:57:b1:01:1c:cd:06:7b:a0:6d:10:c9:5c:98:4b: 69:3b:46:a4:62:27:1c:76:ba:8e:e8:33:67:a4:17: b6:8f:35:b9:12:50:bb:58:b0:6b:c8:92:8f:93:d6: bf:b0:64:cb:83:50:c6:e1:1b:47:56:7e:66:34:e5: d8:6f:8f:5a:8e:e9:f9:21:f1:6e:07:88:22:c4:19: 08:49:0a:b7:c8:f3:c8:36:a2:ac:85:73:be:5b:25: c9:ee:eb:bb:f6:a2:53:0d:e5:d8:56:96:33:29:de: 73:e7:8c:36:88:d4:1f:3c:32:76:ba:aa:6b:9b:1a: 75:2d:45:24:98:73:90:82:fb:b1:ee:8d:7e:47:1a: e9:b5:10:8f:d3:c4:80:a3:30:e6:99:82:1f:83:d7: 93:7f:b9:13:d2:58:58:ae:3b:3b:73:3a:d7:f9:9d: b6:8b:c1:06:68:ac:81:4a:d8:26:54:ac:f8:4e:e8: 77:a0:3c:8e:ed:c5:77:3f:28:87:f1:99:34:a8:ca: 55:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D1:BA:08:9B:D8:1D:D5:04:CC:A0:47:C0:B8:66:AD:03:A3:5B:AD X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DDFED4E068FA11EFB2CB6E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.148.0/24 Signature Algorithm: sha256WithRSAEncryption 84:08:c4:a0:77:f9:22:e6:a6:e3:38:9e:93:a8:a1:8c:47:38: 12:bb:26:fe:be:1c:65:1c:49:6a:c7:86:99:af:b9:85:9c:e4: 9d:63:78:12:50:cc:e6:2b:c2:6d:c8:57:dc:1d:1d:b7:d0:be: de:9b:da:e1:e0:b7:f0:09:b0:94:13:ed:47:b6:ea:f2:7f:fb: 2b:85:28:b3:8b:b7:69:f0:d7:72:6d:9f:2a:33:93:97:12:71: 56:24:a6:21:24:8b:bd:37:6c:21:97:a8:43:65:70:41:f1:5f: f8:64:2c:50:99:34:a4:ff:d5:0b:50:39:7e:e0:90:6c:8b:78: 10:fe:d3:99:15:0b:95:2f:13:60:b7:2b:db:74:62:7f:ae:69: 59:94:b4:e7:da:59:7d:38:0f:31:5e:d7:bf:9f:88:a4:f8:19: 9f:87:78:d0:81:a7:2c:8d:f9:47:9e:4e:d9:1e:83:93:4b:0b: 8e:d1:e6:ca:a1:87:bb:5b:a3:65:7c:c1:69:6e:bc:6a:e8:e7: 6f:a8:f2:32:85:cf:f7:49:eb:f7:5a:7d:70:09:9d:c5:8d:f2: 9f:f9:50:74:c7:64:8c:f9:eb:a7:03:96:d9:16:39:8e:c1:86: 8b:16:45:5f:86:cf:92:d1:39:a0:ab:a5:d3:20:9a:10:73:d1: 61:91:c1:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQwOTAyMDcxMzM1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1NjU5ZS1lMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9cbVVWy/30Ot7XIWgqgjhjlpp/9YbmklYsj8Ip5boBIHwInOAd64awsWsq3 VOwjzfZlNLk+muk+VD1jV7EBHM0Ge6BtEMlcmEtpO0akYiccdrqO6DNnpBe2jzW5 ElC7WLBryJKPk9a/sGTLg1DG4RtHVn5mNOXYb49ajun5IfFuB4gixBkISQq3yPPI NqKshXO+WyXJ7uu79qJTDeXYVpYzKd5z54w2iNQfPDJ2uqprmxp1LUUkmHOQgvux 7o1+RxrptRCP08SAozDmmYIfg9eTf7kT0lhYrjs7czrX+Z22i8EGaKyBStgmVKz4 Tuh3oDyO7cV3PyiH8Zk0qMpV7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFbRugib 2B3VBMygR8C4Zq0Do1utMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvRERGRUQ0RTA2 OEZBMTFFRkIyQ0I2RTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0wZQwDQYJKoZIhvcNAQELBQADggEBAIQIxKB3+SLmpuM4 npOooYxHOBK7Jv6+HGUcSWrHhpmvuYWc5J1jeBJQzOYrwm3IV9wdHbfQvt6b2uHg t/AJsJQT7Ue26vJ/+yuFKLOLt2nw13Jtnyozk5cScVYkpiEki703bCGXqENlcEHx X/hkLFCZNKT/1QtQOX7gkGyLeBD+05kVC5UvE2C3K9t0Yn+uaVmUtOfaWX04DzFe 17+fiKT4GZ+HeNCBpyyN+UeeTtkeg5NLC47R5sqhh7tbo2V8wWluvGro52+o8jKF z/dJ6/dafXAJncWN8p/5UHTHZIz566cDltkWOY7BhosWRV+Gz5LROaCrpdMgmhBz 0WGRwVI= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org