$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/976CE5744E2611EFA302D279C4F9AE02.roa File: 976CE5744E2611EFA302D279C4F9AE02.roa (raw, json) Hash identifier: RNDFpMyb4OgClBEmtZgmujP2U/SAB9NFIFH9Ehnlx88= Subject key identifier: 98:F5:AE:E0:7A:1C:66:6E:13:D9:DF:12:D0:73:1A:9A:A8:36:FF:D5 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 35E5 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/976CE5744E2611EFA302D279C4F9AE02.roa Signing time: Tue 30 Jul 2024 03:48:33 +0000 ROA not before: Tue 30 Jul 2024 03:48:33 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137058 IP address blocks: 61.19.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13797 (0x35e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Validity Not Before: Jul 30 03:48:33 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66a86291-dffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b3:86:59:c5:73:3d:0b:2b:e5:75:f9:28:20: 56:e6:90:3f:ba:e1:d6:d2:10:a3:65:ca:c8:c1:80: 69:86:0b:d0:2a:a8:ce:8d:f1:d5:2e:06:0d:24:ad: b2:24:3e:3c:4f:43:82:41:43:24:3e:d2:b5:8e:5f: fb:4f:6f:cc:15:a4:e4:db:24:7d:da:e4:8d:22:3b: 4b:0f:00:e4:31:ba:cd:67:41:65:f7:5b:1a:2b:61: c0:d8:39:0c:77:c1:b2:94:05:42:f0:7e:cd:ff:f7: 53:48:f6:7b:43:0c:a8:4c:90:c7:4e:0f:21:d2:3f: f3:42:e1:9f:46:ff:26:67:18:21:ae:01:8c:f4:7b: 60:71:7f:c3:86:d3:c8:ad:44:8e:63:f5:aa:ad:22: 96:b6:d6:4b:4f:44:77:88:fa:11:f0:83:18:82:e6: c0:ea:8f:1c:e5:df:4c:31:7b:2f:89:a0:c8:66:e0: 96:1c:7f:d1:dd:70:64:46:d3:9d:80:bd:14:75:83: 1a:79:58:57:8c:a0:34:13:74:c6:ac:44:b2:91:79: be:41:44:b2:90:e2:e1:09:30:5b:cb:5c:76:33:46: e9:e8:f7:1b:b5:ba:7e:30:2d:1c:92:0e:49:b3:b9: a1:16:e2:db:30:64:69:dd:4e:5f:91:19:91:b8:30: bf:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F5:AE:E0:7A:1C:66:6E:13:D9:DF:12:D0:73:1A:9A:A8:36:FF:D5 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/976CE5744E2611EFA302D279C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.19.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:66:9b:66:42:f2:9d:1c:41:f3:53:d7:08:62:32:6a:8b:49: 2e:bc:44:34:80:c2:2e:97:0d:55:0c:94:d4:17:e9:c7:1e:32: 99:39:1b:5f:99:e7:86:9c:2f:96:47:24:58:17:27:85:1a:bd: fe:5b:08:69:08:42:f1:55:f8:08:25:c4:50:26:57:5e:6f:ce: a8:2a:e2:16:72:d7:64:2c:cc:dd:44:22:45:4d:5e:b8:42:64: 1e:c7:e8:3a:f1:9c:ff:d6:53:a0:98:a3:fc:f3:55:7d:1c:c8: 8c:10:4e:e2:05:a6:c4:89:76:ab:70:b1:ee:23:1f:c6:4b:b8: 7d:bb:1b:53:db:d4:72:cd:3a:91:cd:1b:f3:f2:17:7e:0f:52: 38:b8:0b:27:a0:63:06:ea:d4:78:0b:ee:73:96:0a:1d:b0:06: 88:e9:42:4e:97:d4:40:6c:1d:17:91:3e:03:29:fe:5d:af:14: b8:1a:26:9f:08:19:23:07:13:80:8c:70:e3:52:90:74:00:28: 2e:18:fa:2e:93:af:7a:11:30:30:78:5f:12:87:8b:b6:62:3a: ba:4c:cd:fe:96:53:97:c2:c5:50:3e:06:25:65:eb:65:66:64: 7a:cb:13:5b:aa:f6:72:a4:17:f1:0e:6f:5b:ad:f5:52:34:4a: 8e:88:d5:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQwNzMwMDM0ODMzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE4NjI5MS1kZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbOGWcVzPQsr5XX5KCBW5pA/uuHW0hCjZcrIwYBphgvQKqjOjfHVLgYNJK2y JD48T0OCQUMkPtK1jl/7T2/MFaTk2yR92uSNIjtLDwDkMbrNZ0Fl91saK2HA2DkM d8GylAVC8H7N//dTSPZ7QwyoTJDHTg8h0j/zQuGfRv8mZxghrgGM9HtgcX/DhtPI rUSOY/WqrSKWttZLT0R3iPoR8IMYgubA6o8c5d9MMXsviaDIZuCWHH/R3XBkRtOd gL0UdYMaeVhXjKA0E3TGrESykXm+QUSykOLhCTBby1x2M0bp6Pcbtbp+MC0ckg5J s7mhFuLbMGRp3U5fkRmRuDC/2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJj1ruB6 HGZuE9nfEtBzGpqoNv/VMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvOTc2Q0U1NzQ0 RTI2MTFFRkEzMDJEMjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9ExAwDQYJKoZIhvcNAQELBQADggEBAFpmm2ZC8p0cQfNT 1whiMmqLSS68RDSAwi6XDVUMlNQX6cceMpk5G1+Z54acL5ZHJFgXJ4Uavf5bCGkI QvFV+AglxFAmV15vzqgq4hZy12QszN1EIkVNXrhCZB7H6DrxnP/WU6CYo/zzVX0c yIwQTuIFpsSJdqtwse4jH8ZLuH27G1Pb1HLNOpHNG/PyF34PUji4CyegYwbq1HgL 7nOWCh2wBojpQk6X1EBsHReRPgMp/l2vFLgaJp8IGSMHE4CMcONSkHQAKC4Y+i6T r3oRMDB4XxKHi7ZiOrpMzf6WU5fCxVA+BiVl62VmZHrLE1uq9nKkF/EOb1ut9VI0 So6I1QA= -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:23 2024 by rpki-client on console-fra.rpki-client.org