$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/DAF98AAA20F111EC89E7D668C4F9AE02.roa File: DAF98AAA20F111EC89E7D668C4F9AE02.roa (raw, json) Hash identifier: LH3JZfkASioifJ898UuwmPenAKd90H/13hB5MxOGBgQ= Subject key identifier: F9:1E:99:31:DD:57:71:B4:84:54:44:14:A7:DB:24:81:76:F4:EF:F1 Certificate issuer: /CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Certificate serial: 042A Authority key identifier: BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/DAF98AAA20F111EC89E7D668C4F9AE02.roa Signing time: Fri 05 Jul 2024 01:23:23 +0000 ROA not before: Fri 05 Jul 2024 01:23:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45824 IP address blocks: 203.55.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Validity Not Before: Jul 5 01:23:23 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66874b0b-6cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0f:54:94:bf:a1:c3:6a:d1:00:39:d2:b0:92: 13:32:6b:40:ff:bb:5b:66:af:a2:74:c4:3f:29:dc: b4:11:6a:37:3b:77:e7:1b:1e:96:96:b6:b5:cd:38: 9a:8e:1a:94:30:0c:5e:fb:26:23:46:4d:bd:b4:34: e1:cc:9e:4e:c5:7a:16:fb:5d:dc:dd:32:c9:26:7b: d2:c0:ce:37:1f:48:9c:af:c5:87:b6:31:92:7b:56: 49:a9:0c:3c:b7:cc:48:30:6c:d0:c7:59:5e:a2:86: 1b:b7:c3:88:cb:88:78:b6:c9:23:c2:20:f2:7c:db: da:d7:0b:bc:c0:c4:14:92:45:60:e8:08:ee:85:5e: 9b:cf:36:32:1a:99:8a:65:38:07:c1:2b:5c:f5:5a: 03:d4:9e:48:4a:c2:0a:dd:68:48:60:44:42:0b:fa: 75:1a:89:49:4a:53:26:d9:57:02:0f:5f:7d:55:08: b2:7d:d0:f5:b5:b2:14:91:6b:9f:13:d8:83:3c:e8: 02:3f:3b:d6:8e:9b:b2:5d:73:29:bb:b2:85:45:15: b7:e0:2a:a0:7f:f0:a1:a0:01:37:af:eb:27:7c:e9: 2e:cc:b3:44:29:da:39:6d:b1:74:48:87:53:dc:8f: 8b:62:7f:05:7c:69:db:34:f2:8a:c1:38:d6:6b:5d: 48:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1E:99:31:DD:57:71:B4:84:54:44:14:A7:DB:24:81:76:F4:EF:F1 X509v3 Authority Key Identifier: keyid:BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/DAF98AAA20F111EC89E7D668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.55.197.0/24 Signature Algorithm: sha256WithRSAEncryption 91:95:35:f0:e3:a0:d7:07:eb:91:3f:2e:a3:c5:a5:f2:1d:32: bc:3d:bd:1b:e8:02:38:7d:20:5e:72:b5:f6:70:46:f7:44:20: 09:61:d9:91:07:7c:fb:1c:d8:b8:8d:8a:6d:09:4c:be:a1:68: 1c:c4:3a:03:9c:58:f3:19:71:32:8b:45:b8:76:15:87:72:42: 22:85:ed:7e:8d:be:3a:69:79:29:03:67:2b:9e:ac:23:8f:b8: 2e:15:0d:aa:12:cb:9a:36:74:5f:ff:d9:ea:b6:5e:41:dc:64: 8c:8e:0b:a4:b1:e4:80:0a:b4:b9:5d:ad:cf:34:db:70:1a:ad: 6d:0f:99:a7:a8:c8:e4:72:e7:19:2d:3c:fe:22:ce:7f:e3:b6: 1e:ff:b3:b0:77:8c:5e:d0:f7:d6:1a:47:b7:1c:49:03:68:92: f1:6f:48:0c:6e:d7:2b:5e:7e:55:97:2e:7c:1f:86:b1:1b:1d: 62:0c:14:57:60:ea:7f:e7:69:17:aa:7d:0e:dc:8a:e0:33:b1: 95:c5:3b:5c:b2:80:1a:f6:3d:b5:12:4c:57:62:79:7c:bc:cf: ce:ef:db:ff:4c:f7:00:d0:10:72:3b:8c:cc:58:78:ee:53:26: 98:43:17:f9:34:b9:f9:fc:b3:03:d0:df:71:71:50:d4:31:a5: f9:30:33:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQ0IxMTAvBgNVBAUTKEJBMTYwNTY5QjkxNUUyNEM2QUU2QzI0ODk0RDA0RjlE NEEzOTE2OTIwHhcNMjQwNzA1MDEyMzIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3NGIwYi02Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw9UlL+hw2rRADnSsJITMmtA/7tbZq+idMQ/Kdy0EWo3O3fnGx6Wlra1zTia jhqUMAxe+yYjRk29tDThzJ5OxXoW+13c3TLJJnvSwM43H0icr8WHtjGSe1ZJqQw8 t8xIMGzQx1leooYbt8OIy4h4tskjwiDyfNva1wu8wMQUkkVg6AjuhV6bzzYyGpmK ZTgHwStc9VoD1J5ISsIK3WhIYERCC/p1GolJSlMm2VcCD199VQiyfdD1tbIUkWuf E9iDPOgCPzvWjpuyXXMpu7KFRRW34Cqgf/ChoAE3r+snfOkuzLNEKdo5bbF0SIdT 3I+LYn8FfGnbNPKKwTjWa11IMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPkemTHd V3G0hFREFKfbJIF29O/xMB8GA1UdIwQYMBaAFLoWBWm5FeJMaubCSJTQT51KORaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDQi84QTgyMDk0NDIw RUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRreHE1c0pJbE5CUG5VbzVG cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VoWUZhYmtWNGt4cTVzSklsTkJQblVvNUZwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNEQ0IvOEE4MjA5NDQyMEVDMTFFQzlENUQzMTNCQzRGOUFFMDIvREFGOThBQUEy MEYxMTFFQzg5RTdENjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLN8UwDQYJKoZIhvcNAQELBQADggEBAJGVNfDjoNcH65E/ LqPFpfIdMrw9vRvoAjh9IF5ytfZwRvdEIAlh2ZEHfPsc2LiNim0JTL6haBzEOgOc WPMZcTKLRbh2FYdyQiKF7X6NvjppeSkDZyuerCOPuC4VDaoSy5o2dF//2eq2XkHc ZIyOC6Sx5IAKtLldrc8023AarW0PmaeoyORy5xktPP4izn/jth7/s7B3jF7Q99Ya R7ccSQNokvFvSAxu1yteflWXLnwfhrEbHWIMFFdg6n/naReqfQ7ciuAzsZXFO1yy gBr2PbUSTFdieXy8z87v2/9M9wDQEHI7jMxYeO5TJphDF/k0ufn8swPQ33FxUNQx pfkwM+I= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org