$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/235019148A3911EF864D8512C4F9AE02.roa File: 235019148A3911EF864D8512C4F9AE02.roa (raw, json) Hash identifier: hnfY3HHIXsd6wmd3BY/eNxymbtFAwmDiWZ9khlttIH8= Subject key identifier: 69:34:6E:03:1C:83:5E:9E:A5:E5:20:7D:7D:F2:D5:D5:91:F8:4F:4B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 21A7 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/235019148A3911EF864D8512C4F9AE02.roa Signing time: Mon 14 Oct 2024 14:33:31 +0000 ROA not before: Mon 14 Oct 2024 14:33:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10103 IP address blocks: 59.153.31.0/24 maxlen: 24 180.210.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8615 (0x21a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Oct 14 14:33:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=670d2bbb-178a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8c:3b:19:a8:73:c6:86:45:77:ec:da:5a:d9: 01:a4:cd:e2:8b:dc:d2:d7:23:9d:b7:38:4d:c1:78: cd:90:07:92:a3:b9:7f:a6:c2:55:ee:e4:33:ab:ac: 08:5b:6a:5e:97:89:ea:aa:7b:f6:69:81:31:69:b0: 79:85:26:6a:34:69:9c:49:16:dd:42:3e:d0:5f:42: ce:c1:d2:17:49:a7:52:39:da:b4:8d:21:3a:84:44: b8:64:0a:2d:99:5d:dd:8a:fa:08:2b:fd:93:8c:2f: 09:02:c5:d0:19:08:93:40:aa:9e:e1:7a:d1:eb:aa: a7:dc:46:8a:83:9d:41:26:7d:86:63:66:11:ac:82: 68:09:d6:f2:13:26:f5:f0:01:31:02:7a:48:37:65: 57:3e:da:38:c4:83:53:7e:44:10:ca:fe:22:21:43: 99:30:da:a4:c3:93:e7:4c:04:4e:cf:b8:14:09:b8: 09:b2:fe:79:b8:fa:74:fb:e8:45:eb:31:cd:99:72: e9:73:0a:5a:36:e4:7f:ef:02:5e:d4:e8:1a:55:3b: 79:5d:33:05:4a:cc:a1:82:6a:e0:05:b5:33:1c:c4: 16:b5:09:9c:45:15:a3:6f:f4:37:d9:c5:da:c2:c3: c8:bb:ec:52:53:38:e6:43:b6:c9:39:ab:49:10:ee: 48:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:34:6E:03:1C:83:5E:9E:A5:E5:20:7D:7D:F2:D5:D5:91:F8:4F:4B X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/235019148A3911EF864D8512C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.31.0/24 180.210.222.0/24 Signature Algorithm: sha256WithRSAEncryption 50:1a:fd:1f:7c:cc:ff:9b:e7:8d:c8:15:2e:c4:28:9b:d5:0b: a6:a2:40:84:9c:e1:8a:e4:a3:c8:03:6e:84:8d:f2:6a:89:ea: 0f:85:fd:fe:c5:f4:2e:ff:29:f3:2b:97:fd:39:ce:1f:65:7b: 2f:79:23:14:81:24:e0:9b:b0:66:7c:45:73:7f:fe:9c:3d:94: 6c:06:e9:57:0d:42:41:4f:0d:9e:76:23:61:b1:cd:7e:37:a3: 20:71:ae:ef:5c:6d:44:db:46:92:30:30:16:e3:ca:a4:3b:ea: e4:5b:61:f7:cc:4b:6c:ec:94:18:08:6a:ab:e9:2c:64:c3:ed: 2e:59:19:63:f7:0f:37:d8:e2:1e:88:6e:04:5a:83:22:29:98: 05:6d:ff:c4:b5:86:c5:af:93:29:f2:4d:b6:26:96:7c:ea:27: 8d:7b:af:06:9c:a1:c7:fa:9b:39:59:3a:73:16:fd:96:88:53: 76:5b:a9:c3:78:9b:5c:61:3c:4e:21:e1:c8:d9:22:1c:95:05: f8:75:c6:93:59:48:ea:02:6f:d4:bc:e2:6b:ee:cc:b2:34:f1: 32:9a:93:48:e2:d7:43:57:a4:de:aa:5d:2c:93:29:1b:c5:b5: 61:f5:9f:1a:2d:6d:0d:0a:ed:0a:24:fd:21:64:f3:e3:2a:0f: db:7b:72:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICIacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjQxMDE0MTQzMzMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkMmJiYi0xNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Iw7GahzxoZFd+zaWtkBpM3ii9zS1yOdtzhNwXjNkAeSo7l/psJV7uQzq6wI W2pel4nqqnv2aYExabB5hSZqNGmcSRbdQj7QX0LOwdIXSadSOdq0jSE6hES4ZAot mV3divoIK/2TjC8JAsXQGQiTQKqe4XrR66qn3EaKg51BJn2GY2YRrIJoCdbyEyb1 8AExAnpIN2VXPto4xINTfkQQyv4iIUOZMNqkw5PnTAROz7gUCbgJsv55uPp0++hF 6zHNmXLpcwpaNuR/7wJe1OgaVTt5XTMFSsyhgmrgBbUzHMQWtQmcRRWjb/Q32cXa wsPIu+xSUzjmQ7bJOatJEO5IIQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGk0bgMc g16epeUgfX3y1dWR+E9LMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvMjM1MDE5MTQ4 QTM5MTFFRjg2NEQ4NTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA7mR8DBAC00t4wDQYJKoZIhvcNAQELBQADggEBAFAa/R98 zP+b543IFS7EKJvVC6aiQISc4Yrko8gDboSN8mqJ6g+F/f7F9C7/KfMrl/05zh9l ey95IxSBJOCbsGZ8RXN//pw9lGwG6VcNQkFPDZ52I2GxzX43oyBxru9cbUTbRpIw MBbjyqQ76uRbYffMS2zslBgIaqvpLGTD7S5ZGWP3DzfY4h6IbgRagyIpmAVt/8S1 hsWvkynyTbYmlnzqJ417rwacocf6mzlZOnMW/ZaIU3ZbqcN4m1xhPE4h4cjZIhyV Bfh1xpNZSOoCb9S84mvuzLI08TKak0ji10NXpN6qXSyTKRvFtWH1nxotbQ0K7Qok /SFk8+MqD9t7cj8= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:14 2024 by rpki-client on console-ams.rpki-client.org