$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/047C04705AC911EF9DF4275AC4F9AE02.roa File: 047C04705AC911EF9DF4275AC4F9AE02.roa (raw, json) Hash identifier: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc= Subject key identifier: 87:CB:AD:CE:69:1F:E0:8D:FE:D0:44:EE:C1:7D:44:BF:80:04:22:C4 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 02 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/047C04705AC911EF9DF4275AC4F9AE02.roa Signing time: Thu 15 Aug 2024 05:41:28 +0000 ROA not before: Thu 15 Aug 2024 05:41:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 202.160.113.0/24 maxlen: 24 202.160.115.0/24 maxlen: 24 202.160.117.0/24 maxlen: 24 202.160.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Aug 15 05:41:28 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66bd9508-f158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0b:72:35:d1:a7:1a:4a:8f:4c:69:8f:64:f3: 0b:d5:2c:9c:94:6e:5f:66:37:41:03:f5:eb:7e:5a: db:14:43:16:ca:71:b8:41:52:fe:8b:27:87:eb:b5: 43:60:31:28:0e:51:29:c1:95:69:f6:68:46:d1:f9: 7b:5b:7f:15:ef:41:4a:93:bd:99:36:86:c0:87:86: 4a:4b:03:aa:4b:b0:f7:ca:52:df:17:25:b5:d2:ef: f1:7e:57:02:89:3e:1d:05:12:6b:fc:42:04:90:06: 2a:1c:e2:3d:08:c1:82:5e:01:d7:9d:6c:f1:fa:67: c4:11:87:f7:ac:46:77:7c:b9:9d:e8:4c:74:fe:23: 53:f9:d0:48:fa:5a:f8:bf:b5:32:91:ac:2a:6f:56: 29:97:56:e8:0a:0f:d3:f1:fc:05:cb:c2:51:6e:0f: 6a:75:85:ae:d4:e6:75:78:a1:49:1f:08:62:bf:6c: c2:15:ac:f5:e2:9a:84:8a:d3:f2:f6:1e:9b:6d:7e: e1:4a:65:e8:58:01:27:2b:67:fc:f1:cf:21:a5:ba: cc:12:25:61:fb:88:c5:32:70:8b:78:5d:e6:7a:ff: bc:3e:b9:0b:95:02:f3:dd:be:20:0a:23:7d:4a:63: a2:28:fd:d7:4e:4d:b8:69:93:2f:c6:fb:a5:85:61: 5b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:CB:AD:CE:69:1F:E0:8D:FE:D0:44:EE:C1:7D:44:BF:80:04:22:C4 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/047C04705AC911EF9DF4275AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.113.0/24 202.160.115.0/24 202.160.117.0/24 202.160.119.0/24 Signature Algorithm: sha256WithRSAEncryption 03:db:32:c0:56:51:67:a7:63:59:46:36:f6:2f:56:12:a5:e1: 67:33:9f:4c:1a:53:7c:0b:79:24:59:36:42:cd:2d:e5:e0:48: 96:a4:9e:94:7a:d2:8e:71:fb:0b:ce:55:bb:e4:c3:57:19:de: d5:b1:6f:47:1f:0e:aa:7c:95:dc:a4:26:e5:f2:25:73:e1:a6: 32:56:d5:99:d1:9a:60:89:74:2f:92:32:e4:f4:26:06:25:ee: df:56:24:db:99:82:f3:b2:19:35:31:66:b2:66:c7:0c:4a:45: ad:e3:18:85:e0:87:02:88:55:f1:b6:59:8a:14:d2:2b:b7:24: 2a:52:c7:da:1a:e8:64:84:6e:f8:f7:69:1c:bd:08:60:2a:59: 21:6a:f3:96:8d:32:f3:e3:aa:53:fa:24:4b:ea:83:85:dc:89: d3:6d:d6:ac:85:6f:02:80:de:48:e5:60:18:a1:84:53:84:e0: ba:6f:3d:36:25:8f:37:7d:b0:7f:53:54:12:97:af:74:3b:d7: 3a:dc:f2:c3:7e:bd:f3:ee:69:a4:bc:45:04:05:e2:d5:44:df: f0:bd:f4:04:68:86:4e:29:f2:2d:9d:1d:42:7e:6d:ae:6e:eb: 78:f9:e4:ea:09:31:fa:af:21:e7:1b:04:ac:62:ca:d8:94:f0: ef:2e:fb:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REYyNTExMC8GA1UEBRMoOTY4MzU0NTBEMzIxQzFFN0M0OENBMEM1RENEMkJBNkMx RDJENDhGMTAeFw0yNDA4MTUwNTQxMjhaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmQ5NTA4LWYxNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdC3I10acaSo9MaY9k8wvVLJyUbl9mN0ED9et+WtsUQxbKcbhBUv6LJ4frtUNg MSgOUSnBlWn2aEbR+XtbfxXvQUqTvZk2hsCHhkpLA6pLsPfKUt8XJbXS7/F+VwKJ Ph0FEmv8QgSQBioc4j0IwYJeAdedbPH6Z8QRh/esRnd8uZ3oTHT+I1P50Ej6Wvi/ tTKRrCpvVimXVugKD9Px/AXLwlFuD2p1ha7U5nV4oUkfCGK/bMIVrPXimoSK0/L2 HpttfuFKZehYAScrZ/zxzyGluswSJWH7iMUycIt4XeZ6/7w+uQuVAvPdviAKI31K Y6Io/ddOTbhpky/G+6WFYVt3AgMBAAGjggKnMIICozAdBgNVHQ4EFgQUh8utzmkf 4I3+0ETuwX1Ev4AEIsQwHwYDVR0jBBgwFoAUloNUUNMhwefEjKDF3NK6bB0tSPEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJERjI1LzdGN0IxREFDNUFD NzExRUY5OUVBRkM0M0M0RjlBRTAyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQ RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbG9OVVVOTWh3ZWZFaktERjNOSzZiQjB0U1BFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi8wNDdDMDQ3MDVB QzkxMUVGOURGNDI3NUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAMqgcQMEAMqgcwMEAMqgdQMEAMqgdzANBgkqhkiG9w0BAQsF AAOCAQEAA9sywFZRZ6djWUY29i9WEqXhZzOfTBpTfAt5JFk2Qs0t5eBIlqSelHrS jnH7C85Vu+TDVxne1bFvRx8OqnyV3KQm5fIlc+GmMlbVmdGaYIl0L5Iy5PQmBiXu 31Yk25mC87IZNTFmsmbHDEpFreMYheCHAohV8bZZihTSK7ckKlLH2hroZIRu+Pdp HL0IYCpZIWrzlo0y8+OqU/okS+qDhdyJ023WrIVvAoDeSOVgGKGEU4Tgum89NiWP N32wf1NUEpevdDvXOtzyw3698+5ppLxFBAXi1UTf8L30BGiGTinyLZ0dQn5trm7r ePnk6gkx+q8h5xsErGLK2JTw7y77tA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:01 2024 by rpki-client on console-ams.rpki-client.org