$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/5042F2F6ED2D11EE83179F16C4F9AE02.roa File: 5042F2F6ED2D11EE83179F16C4F9AE02.roa (raw, json) Hash identifier: swYLtK6/7FNzTxaHvHKDUagJAbxQcguql17O0l4jnjY= Subject key identifier: A9:EF:46:0C:CD:38:EC:DB:A1:4B:F4:39:AF:AC:7A:F4:EA:45:AE:7E Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 03F7 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/5042F2F6ED2D11EE83179F16C4F9AE02.roa Signing time: Tue 29 Oct 2024 01:26:39 +0000 ROA not before: Tue 29 Oct 2024 01:26:39 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 399989 IP address blocks: 113.20.40.0/22 maxlen: 22 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 113.20.56.0/22 maxlen: 22 113.20.60.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.132.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Oct 29 01:26:39 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672039cf-129a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:36:4a:dd:3f:a6:66:a4:53:2b:05:05:c5:03: f3:18:7e:28:de:0d:5c:e0:1e:47:0b:1a:5c:3a:4c: df:10:7f:4c:de:85:5c:43:4c:30:40:f1:a6:e1:7c: b4:a8:12:e0:bd:bc:39:de:0c:12:c9:bf:7d:b3:05: ca:fe:7a:f2:08:33:38:67:8d:cd:1b:b2:6a:90:38: 35:51:d1:ca:71:2f:3f:0f:53:84:15:20:89:b5:ec: ea:da:b5:39:d3:96:78:87:f5:d5:af:14:04:a2:af: 08:06:a7:5e:c5:56:98:76:73:1f:87:dc:ae:4d:d9: 76:31:10:fc:3e:75:b3:2d:38:02:8e:d2:76:7b:a9: 09:aa:94:85:cd:1b:5f:0a:4e:df:bf:24:d7:b8:60: 49:a1:fe:20:33:e0:66:06:58:06:82:c2:d9:3e:10: 9e:39:b6:e9:ae:b6:d3:a4:cf:73:7a:6f:2e:f1:d3: b7:e7:c2:35:f6:41:34:75:2b:6f:61:4f:c7:32:62: c1:3b:a6:74:22:e5:58:0c:39:38:99:a4:b8:42:3b: 28:7a:d8:f0:a2:ff:da:3d:e4:69:6a:7d:fb:60:f8: f8:b1:8c:91:5a:5a:18:84:68:fc:ca:24:b1:d4:8a: 9d:d3:52:fb:8e:2f:b9:9f:fe:2f:67:dc:14:26:23: 27:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EF:46:0C:CD:38:EC:DB:A1:4B:F4:39:AF:AC:7A:F4:EA:45:AE:7E X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/5042F2F6ED2D11EE83179F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.40.0/22 113.20.48.0/20 223.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:c6:20:05:ed:65:d5:01:b7:4a:2b:89:17:7a:97:57:f1:b7: de:50:f5:d8:b5:e1:e0:49:aa:d6:55:6d:b0:06:e0:77:b3:f7: b1:0c:f6:a0:49:5b:3d:72:63:fd:be:c0:42:69:94:11:47:35: 0c:8d:fa:e3:54:b4:0e:bd:43:75:0b:8c:ed:e7:f5:bd:4d:81: 41:2b:a7:6f:f3:50:8d:0e:29:ad:ed:aa:d1:90:9b:4b:7e:0f: f2:e1:2c:23:5d:04:55:74:94:30:01:fa:82:d3:43:a2:5d:3a: d8:81:50:98:8e:88:ab:3a:61:7a:95:dc:99:7f:be:f0:0e:a4: ea:32:e5:01:47:99:d0:3a:a4:09:98:6d:7f:cb:cc:87:e6:19: f7:99:0b:0e:d2:ec:e6:9b:f9:40:94:9e:ed:94:2e:d1:1d:27: d3:33:a5:b4:7f:0f:ed:6e:70:d9:6d:19:53:45:3c:67:1a:74: cd:40:e9:4e:cd:de:e9:15:00:76:49:3f:a4:fa:85:1e:97:96: 92:45:03:23:af:4f:09:52:ee:3e:19:e0:b8:b2:6b:c3:d4:e4: 08:5a:09:80:ee:5b:9c:37:de:ae:98:11:e7:87:aa:e6:9b:24: 9b:18:75:e2:49:e2:7e:a2:7a:6f:3e:70:ac:0f:b9:8e:23:55: ec:dc:5f:09 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjQxMDI5MDEyNjM5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMzljZi0xMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DZK3T+mZqRTKwUFxQPzGH4o3g1c4B5HCxpcOkzfEH9M3oVcQ0wwQPGm4Xy0 qBLgvbw53gwSyb99swXK/nryCDM4Z43NG7JqkDg1UdHKcS8/D1OEFSCJtezq2rU5 05Z4h/XVrxQEoq8IBqdexVaYdnMfh9yuTdl2MRD8PnWzLTgCjtJ2e6kJqpSFzRtf Ck7fvyTXuGBJof4gM+BmBlgGgsLZPhCeObbprrbTpM9zem8u8dO358I19kE0dStv YU/HMmLBO6Z0IuVYDDk4maS4Qjsoetjwov/aPeRpan37YPj4sYyRWloYhGj8yiSx 1Iqd01L7ji+5n/4vZ9wUJiMndwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKnvRgzN OOzboUv0Oa+sevTqRa5+MB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNTA0MkYyRjZF RDJEMTFFRTgzMTc5RjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJxFCgDBARxFDADBAXfHYAwDQYJKoZIhvcNAQELBQADggEB AA3GIAXtZdUBt0oriRd6l1fxt95Q9di14eBJqtZVbbAG4Hez97EM9qBJWz1yY/2+ wEJplBFHNQyN+uNUtA69Q3ULjO3n9b1NgUErp2/zUI0OKa3tqtGQm0t+D/LhLCNd BFV0lDAB+oLTQ6JdOtiBUJiOiKs6YXqV3Jl/vvAOpOoy5QFHmdA6pAmYbX/LzIfm GfeZCw7S7Oab+UCUnu2ULtEdJ9MzpbR/D+1ucNltGVNFPGcadM1A6U7N3ukVAHZJ P6T6hR6XlpJFAyOvTwlS7j4Z4Liya8PU5AhaCYDuW5w33q6YEeeHquabJJsYdeJJ 4n6iem8+cKwPuY4jVezcXwk= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:53 2024 by rpki-client on console-fra.rpki-client.org