$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/688EAE1E8A1911EC94921D85C4F9AE02.roa File: 688EAE1E8A1911EC94921D85C4F9AE02.roa (raw, json) Hash identifier: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc= Subject key identifier: 87:89:A8:54:BB:D0:56:4C:BA:21:CA:CC:83:5B:3F:BA:81:90:96:25 Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0691 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/688EAE1E8A1911EC94921D85C4F9AE02.roa Signing time: Mon 02 Sep 2024 23:21:42 +0000 ROA not before: Mon 02 Sep 2024 23:21:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138186 IP address blocks: 110.76.176.0/23 maxlen: 24 110.76.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 21:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Sep 2 23:21:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d64886-535c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e2:39:b9:1f:f8:dc:6a:66:8d:db:aa:dc:91: 78:97:ec:8e:9d:bc:33:62:c3:cd:0c:1e:e4:fe:29: 40:a3:c7:f1:7b:3f:03:fc:d7:f1:60:e6:e8:61:75: 57:0a:73:ca:22:13:1a:fa:b3:2e:35:b4:51:31:59: aa:d2:e9:1e:6a:a9:26:9f:51:08:85:f9:26:83:2a: d2:fa:78:92:e4:a4:d0:39:fc:8e:ab:9a:17:0e:7d: 1a:e5:2d:16:75:e8:f1:26:6c:18:a5:cb:f5:a3:c1: 77:a3:7e:78:c5:af:39:55:70:ef:b8:fc:27:c7:f8: 2c:d5:97:7b:06:e9:2a:cb:cb:30:65:6c:08:18:58: 71:a8:15:38:a2:21:80:fb:10:df:ba:f3:bd:c2:41: 32:0e:fc:82:ff:6a:0c:41:78:91:d8:d5:8c:0d:18: c4:59:cd:e7:d0:a6:df:cb:92:f3:8e:31:f4:c6:fe: 5a:b6:d6:a5:22:18:a9:f0:d2:ee:9a:95:9f:fe:98: e1:ae:17:ef:81:02:a2:4e:fc:0d:fe:08:61:52:38: b3:38:7b:cd:ff:02:0c:3c:3b:4e:20:33:9e:9d:d0: 0a:af:c8:d7:e7:ec:b8:31:ec:75:14:13:88:b8:2a: b2:9c:30:b4:f5:d6:61:0c:fe:19:c5:95:8a:13:7a: 87:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:89:A8:54:BB:D0:56:4C:BA:21:CA:CC:83:5B:3F:BA:81:90:96:25 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/688EAE1E8A1911EC94921D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.76.176.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:8e:93:b8:9b:ab:25:a6:a0:af:75:3f:0a:20:c2:2f:1b:7d: 74:c7:40:90:73:bc:e9:22:13:07:8c:f9:a7:c5:0b:1c:cd:2a: 4e:83:aa:79:fc:12:40:20:79:dc:62:60:48:c1:df:5e:94:a9: e5:a8:2c:c7:01:73:49:b0:59:47:82:dc:82:0e:16:b7:91:00: 9a:51:3d:97:a5:ff:66:21:3f:59:3d:8d:34:41:d8:f5:c3:16: 75:b4:39:99:ac:59:2b:c0:f4:ee:b2:9f:1a:85:e5:9c:48:3f: ee:2d:95:99:c1:6a:f1:8d:4f:ff:2f:a9:bb:fa:12:1a:37:a2: 64:a3:b9:ed:eb:1f:b4:61:ed:45:e0:d8:61:eb:e9:ad:6c:e1: fc:f5:43:35:1e:bf:71:e8:18:85:bf:ce:fd:1a:96:ca:0b:bc: c2:39:44:96:46:7f:54:01:38:ea:e5:7c:5e:6f:14:7c:02:0b: d1:d8:68:db:ac:9c:30:bc:a6:65:f8:74:7f:f8:20:fa:0e:e9: 7c:f2:f1:c3:05:cc:99:da:43:b4:cd:75:28:2e:e4:87:f1:b7: 2a:17:58:92:b9:61:b2:e2:d2:5d:f4:d9:c7:9a:65:fe:5c:57: 73:90:7d:70:20:ed:87:7e:6a:8c:92:d5:82:d9:46:43:f3:1a: 8e:d0:c1:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjQwOTAyMjMyMTQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NDg4Ni01MzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9eI5uR/43Gpmjduq3JF4l+yOnbwzYsPNDB7k/ilAo8fxez8D/NfxYOboYXVX CnPKIhMa+rMuNbRRMVmq0ukeaqkmn1EIhfkmgyrS+niS5KTQOfyOq5oXDn0a5S0W dejxJmwYpcv1o8F3o354xa85VXDvuPwnx/gs1Zd7Bukqy8swZWwIGFhxqBU4oiGA +xDfuvO9wkEyDvyC/2oMQXiR2NWMDRjEWc3n0Kbfy5LzjjH0xv5attalIhip8NLu mpWf/pjhrhfvgQKiTvwN/ghhUjizOHvN/wIMPDtOIDOendAKr8jX5+y4Mex1FBOI uCqynDC09dZhDP4ZxZWKE3qHbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIeJqFS7 0FZMuiHKzINbP7qBkJYlMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJDMzkvQjM3QjE1OEUzRjI5MTFFQjlCOUEyMzE0QzRGOUFFMDIvNjg4RUFFMUU4 QTE5MTFFQzk0OTIxRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJuTLAwDQYJKoZIhvcNAQELBQADggEBAF+Ok7ibqyWmoK91 Pwogwi8bfXTHQJBzvOkiEweM+afFCxzNKk6Dqnn8EkAgedxiYEjB316UqeWoLMcB c0mwWUeC3IIOFreRAJpRPZel/2YhP1k9jTRB2PXDFnW0OZmsWSvA9O6ynxqF5ZxI P+4tlZnBavGNT/8vqbv6Eho3omSjue3rH7Rh7UXg2GHr6a1s4fz1QzUev3HoGIW/ zv0alsoLvMI5RJZGf1QBOOrlfF5vFHwCC9HYaNusnDC8pmX4dH/4IPoO6Xzy8cMF zJnaQ7TNdSgu5IfxtyoXWJK5YbLi0l302ceaZf5cV3OQfXAg7Yd+aoyS1YLZRkPz Go7QwQk= -----END CERTIFICATE-----Generated at Wed Nov 27 00:09:57 2024 by rpki-client on console-ams.rpki-client.org