$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa File: 111E53B6152811ECB2C0B70BC4F9AE02.roa (raw, json) Hash identifier: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY= Subject key identifier: 35:E9:F3:30:E1:9F:54:D3:AA:30:94:B2:4D:4E:9E:3C:60:D6:1F:C2 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0753 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa Signing time: Mon 26 Aug 2024 21:59:59 +0000 ROA not before: Mon 26 Aug 2024 21:59:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7473 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.218.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Aug 26 21:59:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ccfade-b622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:bd:74:60:8c:f3:2f:d8:e8:e3:5c:e2:48: fa:e6:19:63:fe:ba:90:24:1f:d4:66:53:96:ec:de: 89:46:04:88:08:03:46:ba:e7:43:cd:34:a5:55:ec: 74:ca:bd:29:d0:71:61:eb:92:06:df:59:c8:69:5c: 64:8c:15:8a:79:0f:4f:d2:6b:a4:bc:ab:09:1f:c8: da:f3:18:d4:31:9c:d8:24:fa:94:c8:a3:81:c1:11: d3:89:ae:e9:1c:b9:ec:ee:3f:71:ca:98:e3:a7:bf: 93:e9:61:4c:ea:ae:3c:96:53:76:51:f6:6b:0f:2e: 88:39:23:ce:58:4f:81:f9:d0:16:cf:67:09:28:45: 29:24:93:9b:97:61:e3:54:45:c3:b7:a5:13:9a:19: e1:34:93:03:9c:82:9c:c3:cb:d4:f8:4b:5a:6a:9a: 50:af:49:db:48:c7:02:a6:26:0b:99:c3:c2:4c:bd: 33:74:db:0c:4e:4c:82:75:9e:3f:e9:45:25:d2:5c: 87:2e:97:5f:e6:2f:8f:c8:6f:67:6c:2b:ce:5b:a3: 6c:fc:5f:b9:d2:b3:0a:9c:6e:a4:c6:41:55:ef:eb: 1a:cb:ad:6d:20:8a:b3:8c:a1:66:ba:b1:49:c2:22: 0e:da:97:ec:d3:d1:5d:8f:52:ab:f8:49:d0:54:f7: f6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E9:F3:30:E1:9F:54:D3:AA:30:94:B2:4D:4E:9E:3C:60:D6:1F:C2 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 3f:fb:b7:66:6f:11:0c:30:27:2e:bc:f2:19:43:be:ee:b1:b9: f5:9d:41:da:84:7d:e8:5c:e3:36:69:fd:22:38:c4:8d:d7:aa: fc:22:b8:2a:75:57:22:b6:43:3f:0c:22:95:ee:05:de:28:1e: c2:11:4e:19:db:54:ae:46:b8:5d:10:0d:23:4f:0e:30:a4:f9: a0:02:5e:77:d8:80:7e:ca:1d:07:ad:a6:05:7f:9f:97:49:80: 12:62:0d:6b:f7:3c:c0:b1:43:e4:8a:e5:ce:07:cb:14:20:f4: 35:1a:c4:46:5c:8b:bb:e7:c8:83:f0:48:77:bf:a3:16:28:98: f5:f4:6f:f1:1c:32:4c:71:93:c7:3e:d2:1e:32:96:40:bd:9b: fb:9c:3f:36:20:00:d2:35:ab:3b:f9:66:53:58:93:50:eb:81: e2:64:35:a2:e7:a2:b1:b3:ba:10:13:83:3f:37:7d:8b:4f:a9: 1f:b4:ae:11:c0:8a:6c:14:47:fe:63:34:02:67:24:47:15:69: 2a:d8:25:ac:d8:ef:69:58:1a:ff:d1:11:f7:73:29:a8:72:98: fb:53:3e:7d:15:ad:7b:e2:64:44:9e:69:e9:09:a2:67:24:f3: ad:e5:86:37:12:2c:32:70:00:6e:ac:15:41:06:e6:ed:6f:eb: 84:d1:11:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjQwODI2MjE1OTU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZmFkZS1iNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHa9dGCM8y/Y6ONc4kj65hlj/rqQJB/UZlOW7N6JRgSICANGuudDzTSlVex0 yr0p0HFh65IG31nIaVxkjBWKeQ9P0mukvKsJH8ja8xjUMZzYJPqUyKOBwRHTia7p HLns7j9xypjjp7+T6WFM6q48llN2UfZrDy6IOSPOWE+B+dAWz2cJKEUpJJObl2Hj VEXDt6UTmhnhNJMDnIKcw8vU+EtaappQr0nbSMcCpiYLmcPCTL0zdNsMTkyCdZ4/ 6UUl0lyHLpdf5i+PyG9nbCvOW6Ns/F+50rMKnG6kxkFV7+say61tIIqzjKFmurFJ wiIO2pfs09Fdj1Kr+EnQVPf2KQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDXp8zDh n1TTqjCUsk1Onjxg1h/CMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvMTExRTUzQjYx NTI4MTFFQ0IyQzBCNzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKU8AwDQQCAAIwBwMFACQA8AAwDQYJKoZIhvcNAQELBQAD ggEBAD/7t2ZvEQwwJy688hlDvu6xufWdQdqEfehc4zZp/SI4xI3XqvwiuCp1VyK2 Qz8MIpXuBd4oHsIRThnbVK5GuF0QDSNPDjCk+aACXnfYgH7KHQetpgV/n5dJgBJi DWv3PMCxQ+SK5c4HyxQg9DUaxEZci7vnyIPwSHe/oxYomPX0b/EcMkxxk8c+0h4y lkC9m/ucPzYgANI1qzv5ZlNYk1DrgeJkNaLnorGzuhATgz83fYtPqR+0rhHAimwU R/5jNAJnJEcVaSrYJazY72lYGv/REfdzKahymPtTPn0VrXviZESeaekJomck863l hjcSLDJwAG6sFUEG5u1v64TREQc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org