$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/06237AC45AC911EF9DF4275AC4F9AE02.roa File: 06237AC45AC911EF9DF4275AC4F9AE02.roa (raw, json) Hash identifier: X3F/CNUdhflmAgi4adN4rn0epV3fDuvZOIzQJHOvlz4= Subject key identifier: A4:12:B6:0D:81:D9:46:A9:B7:BD:5C:3A:1F:5C:C1:78:39:F6:81:77 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 05 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/06237AC45AC911EF9DF4275AC4F9AE02.roa Signing time: Thu 15 Aug 2024 05:41:31 +0000 ROA not before: Thu 15 Aug 2024 05:41:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9503 IP address blocks: 202.160.118.0/24 maxlen: 24 2400:1200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 06:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Aug 15 05:41:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66bd950b-ecef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b2:59:49:4b:ad:33:ad:16:44:1e:7f:ff:15: ed:82:e7:3b:89:dc:2b:50:88:82:66:63:59:f9:ce: f7:86:cc:ef:7f:cb:cc:8d:b4:d4:cb:d4:e4:73:71: da:a1:53:69:98:84:76:81:28:fd:72:b3:e4:28:08: f1:c2:c3:5e:3b:a8:7c:21:a8:2b:73:92:fe:f7:83: 56:59:e8:94:38:59:00:80:89:19:21:29:19:9f:09: 39:34:81:d4:c3:a2:91:36:42:aa:81:25:9a:a8:dd: 32:87:14:83:bc:f2:b0:a0:a0:22:3c:60:73:e0:53: a3:93:ee:4d:53:b2:12:0d:1a:fb:7d:75:28:6e:97: 1e:1b:e8:c8:0d:40:17:9a:74:fd:5a:dd:04:02:e7: 1c:8e:84:7b:39:38:6e:07:c9:76:7e:94:7a:16:be: c6:49:c4:e2:d1:71:01:d3:ca:c7:be:f4:d0:41:90: 16:c0:51:2a:59:2c:00:b9:8a:bd:36:ad:ec:18:c3: 76:b5:52:e0:20:b3:8a:56:bc:b5:03:44:03:95:61: 63:15:21:18:b5:4d:91:d8:77:90:29:26:9c:3a:94: 6a:ac:5e:7e:de:ab:57:2b:da:fc:43:3c:ff:54:9d: 4f:2a:a7:a5:e2:d0:7d:eb:6a:e4:79:2f:ad:e4:f3: c6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:12:B6:0D:81:D9:46:A9:B7:BD:5C:3A:1F:5C:C1:78:39:F6:81:77 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/06237AC45AC911EF9DF4275AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.118.0/24 IPv6: 2400:1200::/32 Signature Algorithm: sha256WithRSAEncryption a7:1f:51:97:50:34:eb:58:a3:84:bd:8a:e6:ee:c9:d6:fe:b2: 6f:ac:ab:e9:b8:bc:ee:91:bb:4e:50:a2:d9:8f:9b:3a:17:bb: 96:7b:06:20:fc:0b:c4:11:15:dd:1c:c4:d1:06:da:77:8e:ec: 47:21:0c:dc:b6:29:81:65:09:b8:1d:a1:d9:2e:f2:97:b3:e6: 49:d7:e6:3a:7a:1c:4d:c4:9e:c1:03:a1:9b:14:2b:d8:e3:37: 91:07:a9:e3:7f:59:e2:aa:c6:1d:10:62:c4:a3:91:bf:5d:47: 1f:e9:b0:be:ee:25:27:89:02:90:9e:b9:37:0b:eb:6f:bc:7b: b5:5b:8d:c6:af:27:51:03:9a:bb:6a:12:21:66:3c:8d:b3:ce: ba:d2:43:c7:20:c3:bc:b1:56:4f:b1:d0:44:9d:65:10:1a:62: 0b:a8:0d:a3:52:df:ef:10:f0:a6:ce:3a:13:51:91:d7:d9:b0: f2:36:c7:91:49:f0:53:45:a5:8e:89:63:34:2d:3a:f1:f7:47: 51:cb:d8:ba:eb:d3:e1:92:25:8e:2f:ed:67:4e:f2:d5:26:56: a5:e2:95:bc:c9:08:0a:bb:d6:41:04:35:be:aa:c3:3b:1b:54: a9:fe:84:a6:f8:36:4f:09:89:24:98:7d:6d:59:84:e8:0a:19: 2f:6b:3a:a1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REYyNTExMC8GA1UEBRMoOTY4MzU0NTBEMzIxQzFFN0M0OENBMEM1RENEMkJBNkMx RDJENDhGMTAeFw0yNDA4MTUwNTQxMzFaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmQ5NTBiLWVjZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCSsllJS60zrRZEHn//Fe2C5zuJ3CtQiIJmY1n5zveGzO9/y8yNtNTL1ORzcdqh U2mYhHaBKP1ys+QoCPHCw147qHwhqCtzkv73g1ZZ6JQ4WQCAiRkhKRmfCTk0gdTD opE2QqqBJZqo3TKHFIO88rCgoCI8YHPgU6OT7k1TshINGvt9dShulx4b6MgNQBea dP1a3QQC5xyOhHs5OG4HyXZ+lHoWvsZJxOLRcQHTyse+9NBBkBbAUSpZLAC5ir02 rewYw3a1UuAgs4pWvLUDRAOVYWMVIRi1TZHYd5ApJpw6lGqsXn7eq1cr2vxDPP9U nU8qp6Xi0H3rauR5L63k88alAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUpBK2DYHZ Rqm3vVw6H1zBeDn2gXcwHwYDVR0jBBgwFoAUloNUUNMhwefEjKDF3NK6bB0tSPEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJERjI1LzdGN0IxREFDNUFD NzExRUY5OUVBRkM0M0M0RjlBRTAyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQ RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbG9OVVVOTWh3ZWZFaktERjNOSzZiQjB0U1BFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi8wNjIzN0FDNDVB QzkxMUVGOURGNDI3NUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAMqgdjANBAIAAjAHAwUAJAASADANBgkqhkiG9w0BAQsFAAOC AQEApx9Rl1A061ijhL2K5u7J1v6yb6yr6bi87pG7TlCi2Y+bOhe7lnsGIPwLxBEV 3RzE0Qbad47sRyEM3LYpgWUJuB2h2S7yl7PmSdfmOnocTcSewQOhmxQr2OM3kQep 439Z4qrGHRBixKORv11HH+mwvu4lJ4kCkJ65Nwvrb7x7tVuNxq8nUQOau2oSIWY8 jbPOutJDxyDDvLFWT7HQRJ1lEBpiC6gNo1Lf7xDwps46E1GR19mw8jbHkUnwU0Wl joljNC068fdHUcvYuuvT4ZIlji/tZ07y1SZWpeKVvMkICrvWQQQ1vqrDOxtUqf6E pvg2TwmJJJh9bVmE6AoZL2s6oQ== -----END CERTIFICATE-----Generated at Mon Oct 21 07:54:11 2024 by rpki-client on console-ams.rpki-client.org