$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa File: 6D5014F2146F11EDB756F727C4F9AE02.roa (raw, json) Hash identifier: rj0KTjzf+DtNN3R81snVNcDYp+a1rWXY0u8rHIUHCk8= Subject key identifier: AD:7C:32:A1:E3:A4:9E:D0:1B:52:B0:D7:B9:80:93:2B:77:8D:72:F0 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 01EE Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa Signing time: Sat 05 Oct 2024 02:35:51 +0000 ROA not before: Sat 05 Oct 2024 02:35:51 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 56132 IP address blocks: 203.23.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Oct 5 02:35:51 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6700a606-cac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5f:5a:d9:bd:49:af:cf:66:54:51:eb:58:68: 66:69:c7:b2:f6:ac:05:61:59:12:f0:58:b4:cb:29: 05:be:c6:7b:2e:1d:f1:b9:b7:43:c8:fd:25:7d:50: 7c:8f:6d:3f:3a:65:37:04:ec:f8:22:3b:72:33:ea: 59:7b:d9:3b:d2:a8:a9:df:75:34:68:07:74:35:49: e2:70:cf:2a:52:c3:66:b2:29:56:3b:61:96:3e:54: b4:d2:6c:44:3d:36:2d:41:01:a1:85:f4:80:06:0b: ee:cc:94:d1:0a:18:ea:3a:74:45:c8:79:8e:6b:08: 52:bd:a4:ce:91:b7:aa:85:2d:ae:47:25:d6:04:cd: 49:fc:21:e4:4a:2c:8d:8f:49:3f:b8:5b:4b:55:4b: be:1c:a0:a8:e7:86:96:3b:f2:85:ca:cb:d3:b5:df: d0:72:2f:3f:c7:ce:62:4a:ee:52:bc:c1:ee:66:a3: 40:4b:e1:cb:ea:09:1e:1a:56:28:87:a5:f8:4b:a3: 3b:c0:73:11:0d:69:4a:93:98:bb:b6:b3:a6:03:78: 56:38:f1:d3:e8:e8:06:ca:63:88:d7:df:bb:c8:7c: 05:45:0d:ee:7d:43:b3:a6:3e:10:73:91:a9:6d:41: 38:98:74:40:5d:5d:b7:42:8a:19:cc:8b:c3:40:30: 28:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7C:32:A1:E3:A4:9E:D0:1B:52:B0:D7:B9:80:93:2B:77:8D:72:F0 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.136.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:2c:22:8c:e2:ac:d5:19:fc:59:e3:0f:88:91:d1:cc:4d:f4: 46:66:1c:ef:74:a9:5e:7a:ec:56:15:9d:c3:99:9d:ca:77:af: 3e:56:49:b3:87:59:5b:84:fa:82:2d:02:3d:87:bf:7d:66:55: dd:0e:ba:a9:04:9b:38:30:d8:67:be:77:d4:58:01:93:f9:fc: 8d:9e:f3:8b:ea:41:e5:95:6e:25:08:04:fa:f3:1e:42:6c:11: b5:11:4d:bf:a5:ba:40:74:37:0f:3a:2d:62:6f:03:6f:44:5d: 9f:c5:ae:01:a4:70:59:23:1b:a0:c5:d9:6f:49:3a:0e:b9:eb: 6a:4f:9d:d9:04:e3:b2:6b:80:df:ea:ea:08:e8:c2:41:f0:44: 78:99:66:79:6b:3f:1a:25:55:ec:65:f4:3e:9e:08:b8:5d:b5: ec:78:72:33:a4:38:be:52:02:af:65:c1:68:2c:e7:45:7c:68: a9:82:12:a9:af:96:e8:a2:78:81:8b:1f:d4:b5:a9:ba:38:93: a1:6d:cb:f6:f1:3f:b6:f7:54:a3:4f:6a:e9:4b:2d:bd:8e:5a: 72:0c:5f:5c:b2:33:6e:f8:3c:22:62:d4:88:40:6a:6c:5d:9d: c5:30:96:50:ed:42:fb:35:a9:bd:80:d5:83:31:e5:c4:2e:cd: 86:1d:08:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjQxMDA1MDIzNTUxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYTYwNi1jYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnl9a2b1Jr89mVFHrWGhmacey9qwFYVkS8Fi0yykFvsZ7Lh3xubdDyP0lfVB8 j20/OmU3BOz4IjtyM+pZe9k70qip33U0aAd0NUnicM8qUsNmsilWO2GWPlS00mxE PTYtQQGhhfSABgvuzJTRChjqOnRFyHmOawhSvaTOkbeqhS2uRyXWBM1J/CHkSiyN j0k/uFtLVUu+HKCo54aWO/KFysvTtd/Qci8/x85iSu5SvMHuZqNAS+HL6gkeGlYo h6X4S6M7wHMRDWlKk5i7trOmA3hWOPHT6OgGymOI19+7yHwFRQ3ufUOzpj4Qc5Gp bUE4mHRAXV23QooZzIvDQDAo2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFK18MqHj pJ7QG1Kw17mAkyt3jXLwMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZGNkYvMTJFMjUxN0MxNDZDMTFFREI3QzQwQTIzQzRGOUFFMDIvNkQ1MDE0RjIx NDZGMTFFREI3NTZGNzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF4gwDQYJKoZIhvcNAQELBQADggEBABosIozirNUZ/Fnj D4iR0cxN9EZmHO90qV567FYVncOZncp3rz5WSbOHWVuE+oItAj2Hv31mVd0OuqkE mzgw2Ge+d9RYAZP5/I2e84vqQeWVbiUIBPrzHkJsEbURTb+lukB0Nw86LWJvA29E XZ/FrgGkcFkjG6DF2W9JOg6562pPndkE47JrgN/q6gjowkHwRHiZZnlrPxolVexl 9D6eCLhdtex4cjOkOL5SAq9lwWgs50V8aKmCEqmvluiieIGLH9S1qbo4k6Fty/bx P7b3VKNPaulLLb2OWnIMX1yyM274PCJi1IhAamxdncUwllDtQvs1qb2A1YMx5cQu zYYdCIk= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org