$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/7D3AC586C19B11ED854B7639C4F9AE02.roa File: 7D3AC586C19B11ED854B7639C4F9AE02.roa (raw, json) Hash identifier: Rl2QgIY1asE3WPoShZtQ2iuX/xj4UI8nBTHZn6A9k6M= Subject key identifier: 79:69:27:5F:C7:B1:87:9C:44:83:F4:3A:B9:37:7F:90:09:AD:EC:EF Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 03F3 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/7D3AC586C19B11ED854B7639C4F9AE02.roa Signing time: Tue 29 Oct 2024 01:26:36 +0000 ROA not before: Tue 29 Oct 2024 01:26:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 1239 IP address blocks: 113.20.40.0/22 maxlen: 22 113.20.48.0/20 maxlen: 20 223.29.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Oct 29 01:26:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672039cc-ece5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:0a:f0:6b:c0:a3:22:b4:cc:95:d3:05:4f:65: 54:cd:d1:d4:12:8e:32:93:c7:0d:52:9c:96:09:5b: 03:94:7a:39:a0:cd:0b:5a:8b:f2:1b:e1:ce:61:8c: 48:f7:51:4f:4b:ee:7e:4a:21:d3:ea:fb:50:6f:a2: ef:af:0d:56:48:54:a8:75:5d:35:0e:81:9d:89:6b: d7:29:df:d8:e4:fe:89:39:03:10:af:d5:fa:95:09: 7f:a9:7a:2a:62:6b:22:d0:c3:83:fd:31:b1:d2:e0: 09:f5:13:63:5f:df:79:de:7c:d5:21:e5:5e:1c:fa: b6:ab:75:b0:ed:71:20:3d:a4:7c:b6:19:f2:fa:37: eb:29:98:08:a5:07:33:6d:29:f0:5e:74:bf:7d:1b: 5c:0b:00:e0:d0:f7:bb:21:99:52:6d:7a:28:53:54: 4a:f7:bc:f4:a9:3b:6f:55:7a:45:6a:65:73:fd:85: 4c:0e:01:05:39:57:c2:f9:cc:43:7c:8c:da:d9:31: d8:b6:dd:79:97:b3:44:e2:fd:30:1c:6b:7b:d1:9a: 86:1f:62:58:31:2b:57:2f:ca:c0:1e:88:f3:cc:67: 85:bc:58:0b:35:0d:3e:a2:12:5e:5b:b3:40:de:f5: f1:f0:8b:a3:7b:a5:c6:db:42:aa:b1:5e:33:b2:64: ee:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:69:27:5F:C7:B1:87:9C:44:83:F4:3A:B9:37:7F:90:09:AD:EC:EF X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/7D3AC586C19B11ED854B7639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.40.0/22 113.20.48.0/20 223.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption ad:b2:7d:0c:9e:2b:a9:c2:08:86:bd:d3:f4:81:6e:67:2c:f6: 3c:32:f0:f9:78:44:7f:65:d9:89:50:bf:93:84:5f:f9:34:57: a1:f4:37:44:3d:fd:4a:33:8f:5a:f4:6f:ff:2d:eb:da:ea:41: fb:2c:d1:d5:81:7b:ed:7c:21:84:d6:ba:0c:ab:7f:57:27:7f: 9f:ac:d2:cd:5d:a9:87:2a:b6:3e:3a:84:1f:b8:e3:7a:2a:4e: f0:49:1f:d3:01:32:a1:62:2a:b7:6f:ce:69:80:1d:b9:44:12: da:0b:0d:61:c3:f9:0b:82:b0:9e:41:17:f2:51:45:29:97:52: b6:d5:60:f0:c9:68:b1:8b:bd:eb:35:b5:73:6c:db:c0:c3:ba: 87:1b:bb:9b:38:e8:07:0f:cc:5c:13:66:83:9f:f8:ed:5b:32: 52:c6:de:d0:33:ac:5f:b8:a1:6c:af:57:81:3b:28:13:ec:8d: 87:73:9e:bb:35:c4:c5:bb:b6:72:ee:ad:0b:95:e6:6e:78:0c: b3:cf:c4:b2:19:01:06:8d:d7:92:4c:47:0b:a6:2b:ee:c1:17: f3:9a:10:5c:b5:87:a5:f9:ac:a5:5f:55:55:97:7c:cb:5e:0a: d4:3b:2f:f2:c5:71:e6:83:2a:93:ec:32:9c:04:37:9c:ac:35: 6a:5c:a5:3f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjQxMDI5MDEyNjM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMzljYy1lY2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wrwa8CjIrTMldMFT2VUzdHUEo4yk8cNUpyWCVsDlHo5oM0LWovyG+HOYYxI 91FPS+5+SiHT6vtQb6Lvrw1WSFSodV01DoGdiWvXKd/Y5P6JOQMQr9X6lQl/qXoq Ymsi0MOD/TGx0uAJ9RNjX9953nzVIeVeHPq2q3Ww7XEgPaR8thny+jfrKZgIpQcz bSnwXnS/fRtcCwDg0Pe7IZlSbXooU1RK97z0qTtvVXpFamVz/YVMDgEFOVfC+cxD fIza2THYtt15l7NE4v0wHGt70ZqGH2JYMStXL8rAHojzzGeFvFgLNQ0+ohJeW7NA 3vXx8Iuje6XG20KqsV4zsmTunQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHlpJ1/H sYecRIP0Ork3f5AJrezvMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvN0QzQUM1ODZD MTlCMTFFRDg1NEI3NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJxFCgDBARxFDADBAXfHYAwDQYJKoZIhvcNAQELBQADggEB AK2yfQyeK6nCCIa90/SBbmcs9jwy8Pl4RH9l2YlQv5OEX/k0V6H0N0Q9/Uozj1r0 b/8t69rqQfss0dWBe+18IYTWugyrf1cnf5+s0s1dqYcqtj46hB+443oqTvBJH9MB MqFiKrdvzmmAHblEEtoLDWHD+QuCsJ5BF/JRRSmXUrbVYPDJaLGLves1tXNs28DD uocbu5s46AcPzFwTZoOf+O1bMlLG3tAzrF+4oWyvV4E7KBPsjYdznrs1xMW7tnLu rQuV5m54DLPPxLIZAQaN15JMRwumK+7BF/OaEFy1h6X5rKVfVVWXfMteCtQ7L/LF ceaDKpPsMpwEN5ysNWpcpT8= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:53 2024 by rpki-client on console-fra.rpki-client.org