$ rpki-client -vvf rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa File: A5DE28B4216E11EF88CCA84FC4F9AE02.roa (raw, json) Hash identifier: 13jDFbSB4Wbq97/o1FA1VIeJskGUmF86MlXT/FUyldw= Subject key identifier: 16:05:93:5E:ED:58:FA:05:39:B4:51:B7:8B:F4:A6:A0:30:94:EA:9E Certificate issuer: /CN=A912CED3/serialNumber=A741EB410D4B8E46FF48AB70A1DA006A3DCF41A3 Certificate serial: 02 Authority key identifier: A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa Signing time: Mon 03 Jun 2024 06:00:58 +0000 ROA not before: Mon 03 Jun 2024 06:00:58 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 117.18.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CED3/serialNumber=A741EB410D4B8E46FF48AB70A1DA006A3DCF41A3 Validity Not Before: Jun 3 06:00:58 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=665d5c1a-384e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:be:cc:4b:18:73:06:63:06:5f:e9:66:2f:86: 9e:13:b8:e0:5e:46:ea:e1:5c:cb:21:0b:d4:af:a6: f7:41:a1:21:02:79:eb:8e:bd:15:bf:b5:b2:3e:dd: d4:f2:0f:c3:5c:6f:c0:92:20:2c:ee:0a:11:83:e1: 71:23:c6:a6:40:c0:10:78:66:32:e4:03:c7:47:e3: 25:53:bc:f3:ef:41:58:a2:df:08:4f:a4:aa:83:99: 05:ed:8d:6f:75:50:dd:90:88:09:c7:76:2d:ec:47: d7:e1:9c:a7:7e:f7:32:56:d9:81:1d:d8:3e:c6:1a: e1:66:be:d8:67:0f:bf:3c:44:bd:84:ad:9e:e2:c1: a3:e4:fa:2d:49:f0:81:ee:f6:61:97:8f:59:7b:d8: b8:0e:89:61:72:d7:67:26:a7:84:0d:30:63:ac:b3: 2a:71:ae:ec:b3:46:4b:dc:e6:1a:84:16:1e:06:cf: 9e:c6:9e:6f:8b:c7:a6:92:c2:cf:87:4c:c5:cd:4a: 34:c5:a8:ec:fa:5c:cd:fd:1d:76:98:c2:18:42:b4: 9e:2d:ba:ed:3a:cf:e4:bd:d7:b0:ae:4d:bf:85:30: eb:3b:ca:f7:e4:5d:ff:cf:03:5a:26:64:27:67:f0: ee:75:35:43:09:71:e7:27:73:8c:ac:ac:20:7d:09: 47:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:05:93:5E:ED:58:FA:05:39:B4:51:B7:8B:F4:A6:A0:30:94:EA:9E X509v3 Authority Key Identifier: keyid:A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.103.0/24 Signature Algorithm: sha256WithRSAEncryption 58:92:f9:29:e6:65:35:ed:09:71:9b:e8:6d:ef:09:e5:34:5c: 56:2b:9d:7d:6a:01:7e:88:ea:3f:c4:87:83:be:fc:e8:3f:2c: f6:ae:b7:f9:ea:bf:79:aa:e7:f3:d2:a6:c9:b2:fd:ff:14:bd: 5b:78:25:e8:7b:2d:be:a9:5b:5a:e1:e8:ab:db:98:d9:50:d5: b5:4c:8b:5b:6b:8d:c5:8b:59:06:75:a8:11:3d:38:d7:6b:ce: 95:36:75:9e:65:02:df:dc:ee:df:5a:80:35:56:c4:20:55:00: 1a:51:2c:a5:23:70:5f:a4:e7:a9:7b:bd:c5:95:0c:95:68:e0: c9:e2:44:6c:c4:13:45:7b:f7:43:b7:30:db:0a:90:99:a0:34: 12:a6:a8:a1:6e:70:a0:fc:dd:c2:c3:4d:fe:65:0f:cf:da:90: 15:b8:88:f6:62:5e:c6:87:c7:2a:85:0f:3e:0e:14:39:33:18: 96:a2:4a:6a:13:f3:cf:3f:31:af:db:74:f2:04:ec:98:20:49: 30:39:97:f7:a6:a6:f4:65:8b:75:d0:c4:b2:9b:52:68:30:bf: cc:af:da:b3:20:3e:bc:b9:b9:e4:95:22:92:f2:6f:d5:09:50: 1d:06:73:72:b0:06:e3:c7:8e:97:c4:74:10:f2:68:03:8d:50: 0c:b5:79:79 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Q0VEMzExMC8GA1UEBRMoQTc0MUVCNDEwRDRCOEU0NkZGNDhBQjcwQTFEQTAwNkEz RENGNDFBMzAeFw0yNDA2MDMwNjAwNThaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWQ1YzFhLTM4NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlvsxLGHMGYwZf6WYvhp4TuOBeRurhXMshC9SvpvdBoSECeeuOvRW/tbI+3dTy D8Ncb8CSICzuChGD4XEjxqZAwBB4ZjLkA8dH4yVTvPPvQVii3whPpKqDmQXtjW91 UN2QiAnHdi3sR9fhnKd+9zJW2YEd2D7GGuFmvthnD788RL2ErZ7iwaPk+i1J8IHu 9mGXj1l72LgOiWFy12cmp4QNMGOssypxruyzRkvc5hqEFh4Gz57Gnm+Lx6aSws+H TMXNSjTFqOz6XM39HXaYwhhCtJ4tuu06z+S917CuTb+FMOs7yvfkXf/PA1omZCdn 8O51NUMJcecnc4ysrCB9CUeFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFgWTXu1Y +gU5tFG3i/SmoDCU6p4wHwYDVR0jBBgwFoAUp0HrQQ1Ljkb/SKtwodoAaj3PQaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDRUQzLzNDMTYxRkE2MjE2 QzExRUY4MEIxNTMyQkM0RjlBRTAyL3AwSHJRUTFMamtiX1NLdHdvZG9BYWozUFFh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcDBIclFRMUxqa2JfU0t0d29kb0FhajNQUWFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0VEMy8zQzE2MUZBNjIxNkMxMUVGODBCMTUzMkJDNEY5QUUwMi9BNURFMjhCNDIx NkUxMUVGODhDQ0E4NEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHUSZzANBgkqhkiG9w0BAQsFAAOCAQEAWJL5KeZlNe0JcZvo be8J5TRcViudfWoBfojqP8SHg7786D8s9q63+eq/earn89KmybL9/xS9W3gl6Hst vqlbWuHoq9uY2VDVtUyLW2uNxYtZBnWoET0412vOlTZ1nmUC39zu31qANVbEIFUA GlEspSNwX6TnqXu9xZUMlWjgyeJEbMQTRXv3Q7cw2wqQmaA0EqaooW5woPzdwsNN /mUPz9qQFbiI9mJexofHKoUPPg4UOTMYlqJKahPzzz8xr9t08gTsmCBJMDmX96am 9GWLddDEsptSaDC/zK/asyA+vLm55JUikvJv1QlQHQZzcrAG48eOl8R0EPJoA41Q DLV5eQ== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:51 2024 by rpki-client on console-ams.rpki-client.org