$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa File: A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa (raw, json) Hash identifier: epJ6YwC72VRBim5PQOMO7uZeYMut1EhPSthxQO3K3yM= Subject key identifier: 5B:80:B3:9E:E7:97:AF:4D:09:34:D4:A2:8C:A5:25:1E:AD:90:32:2C Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 84 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa Signing time: Fri 09 Feb 2024 06:08:09 +0000 ROA not before: Fri 09 Feb 2024 06:08:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 23854 IP address blocks: 119.15.64.0/24 maxlen: 24 119.15.70.0/23 maxlen: 24 203.8.95.0/24 maxlen: 24 203.26.51.0/24 maxlen: 24 203.26.177.0/24 maxlen: 24 203.31.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Validity Not Before: Feb 9 06:08:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c5c149-456a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bc:2d:ac:c8:f9:00:a8:4f:a9:ce:d4:f9:a7: 95:46:00:59:50:f8:22:ba:02:43:77:a0:50:a1:4c: a6:d9:26:f8:25:45:47:d6:0b:d0:6c:ff:13:c5:2d: 2a:63:2a:a0:47:0d:7d:26:ef:66:47:69:22:f1:6f: 54:72:ce:d6:9f:45:f6:4a:1d:2f:29:1e:5c:24:8f: 3e:24:7c:46:71:62:70:52:9a:e9:09:91:83:5a:a1: 42:03:08:00:e1:41:c4:3b:ec:68:d5:bb:05:a1:27: ba:98:98:8d:2d:60:69:ee:c4:c1:91:e5:be:a2:25: 36:15:2a:8e:44:63:d9:7c:6f:18:45:ac:bc:ed:c0: a4:9b:7b:61:da:07:3a:b0:28:56:6b:1b:e7:0d:cc: c5:fe:7c:c2:21:34:09:5c:ec:b9:8d:17:48:37:b4: d3:82:2e:54:db:e0:8c:df:f1:5a:90:1a:a0:18:2f: 98:76:af:68:02:34:63:9e:dd:2f:7c:49:3f:ec:0a: ad:69:fa:51:95:5a:15:14:3c:ad:dc:a7:36:64:6e: 3d:77:06:fa:ac:b5:e1:59:de:96:df:02:76:b9:31: f8:96:c8:d7:f8:7f:9a:cb:7f:21:2d:f7:c5:10:1f: 0f:6b:79:ed:72:b6:56:ff:15:11:bc:e3:87:3b:1a: cc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:80:B3:9E:E7:97:AF:4D:09:34:D4:A2:8C:A5:25:1E:AD:90:32:2C X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.64.0/24 119.15.70.0/23 203.8.95.0/24 203.26.51.0/24 203.26.177.0/24 203.31.75.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:2c:1a:53:9b:ff:8d:da:a2:29:b7:3c:53:cd:3c:7c:52:83: 44:c7:93:2f:b6:18:f6:c4:90:9d:31:57:6b:e2:ca:d2:02:62: 41:54:4e:3d:cc:6e:94:a7:45:65:21:d1:0b:1b:d3:77:a7:11: 64:3f:b5:1a:d4:93:5d:fd:47:f3:1a:f1:e9:66:9d:c7:15:6c: 1c:20:e3:07:fa:52:9e:46:c1:c5:bd:40:0a:f9:d4:45:7d:84: 40:87:f9:ff:22:c6:6e:5e:a5:d9:36:4c:7e:9f:e5:6a:96:07: ae:9b:7d:a0:54:23:92:a7:95:9b:5a:50:95:2e:d7:ff:70:4f: 0a:55:d4:39:a6:0e:c4:5c:13:95:ed:67:83:5e:63:87:9d:b6: a4:d6:9c:bb:3f:38:ae:ab:08:6e:fe:ca:8a:dc:87:46:97:1f: 3c:41:75:bd:8f:c7:df:1b:83:be:ee:50:ea:47:5a:2c:39:c7: 89:fb:82:d5:1c:86:a0:fd:4f:7b:10:18:e3:64:82:b0:6b:67: 75:b8:3c:ed:84:02:e5:db:d7:8b:86:0a:db:ff:72:81:3b:8a: 22:50:83:12:b0:bf:ca:ea:cc:b3:48:2a:93:71:e5:1c:e2:95: 4e:c8:81:df:9e:99:65:67:8e:3c:c4:a9:41:35:21:b0:59:64: 86:e7:b1:fa -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjQwMjA5MDYwODA5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1YzE0OS00NTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7wtrMj5AKhPqc7U+aeVRgBZUPgiugJDd6BQoUym2Sb4JUVH1gvQbP8TxS0q YyqgRw19Ju9mR2ki8W9Ucs7Wn0X2Sh0vKR5cJI8+JHxGcWJwUprpCZGDWqFCAwgA 4UHEO+xo1bsFoSe6mJiNLWBp7sTBkeW+oiU2FSqORGPZfG8YRay87cCkm3th2gc6 sChWaxvnDczF/nzCITQJXOy5jRdIN7TTgi5U2+CM3/FakBqgGC+Ydq9oAjRjnt0v fEk/7AqtafpRlVoVFDyt3Kc2ZG49dwb6rLXhWd6W3wJ2uTH4lsjX+H+ay38hLffF EB8Pa3ntcrZW/xURvOOHOxrM0QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFFuAs57n l69NCTTUooylJR6tkDIsMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvQTVENzI2M0Mx RUNCMTFFRThGRUZFRTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAB3D0ADBAF3D0YDBADLCF8DBADLGjMDBADLGrEDBADLH0sw DQYJKoZIhvcNAQELBQADggEBABssGlOb/43aoim3PFPNPHxSg0THky+2GPbEkJ0x V2viytICYkFUTj3MbpSnRWUh0Qsb03enEWQ/tRrUk139R/Ma8elmnccVbBwg4wf6 Up5GwcW9QAr51EV9hECH+f8ixm5epdk2TH6f5WqWB66bfaBUI5KnlZtaUJUu1/9w TwpV1DmmDsRcE5XtZ4NeY4edtqTWnLs/OK6rCG7+yorch0aXHzxBdb2Px98bg77u UOpHWiw5x4n7gtUchqD9T3sQGONkgrBrZ3W4PO2EAuXb14uGCtv/coE7iiJQgxKw v8rqzLNIKpNx5RzilU7Igd+emWVnjjzEqUE1IbBZZIbnsfo= -----END CERTIFICATE-----Generated at Sun Jun 9 08:55:03 2024 by rpki-client on console-ams.rpki-client.org