$ rpki-client -vvf rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa File: 97285ACA5BB111EEB6671243C4F9AE02.roa (raw, json) Hash identifier: gE/MQo8ZrPv9XHP+3Vj9mSrbyCLukXMXn37+Yd+YKik= Subject key identifier: 2C:D8:55:76:7A:22:FE:94:30:5E:7E:D3:47:3F:5F:59:D5:D3:C7:C2 Certificate issuer: /CN=A913383A/serialNumber=9ED7BAF63F554F1FEA570E19BAF69EDED0D9E4BE Certificate serial: 0AC6 Authority key identifier: 9E:D7:BA:F6:3F:55:4F:1F:EA:57:0E:19:BA:F6:9E:DE:D0:D9:E4:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa Signing time: Thu 04 Jul 2024 19:57:46 +0000 ROA not before: Thu 04 Jul 2024 19:57:46 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4787 IP address blocks: 123.253.128.0/24 maxlen: 24 123.253.129.0/24 maxlen: 24 123.253.130.0/24 maxlen: 24 123.253.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.crl rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2758 (0xac6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913383A/serialNumber=9ED7BAF63F554F1FEA570E19BAF69EDED0D9E4BE Validity Not Before: Jul 4 19:57:46 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6686feb9-e16d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:28:15:b1:e8:f4:a0:7f:2b:67:9a:56:37:fa: ee:c0:48:fe:e8:f8:f3:52:10:e4:87:61:4d:2a:e5: 77:7b:81:3e:f2:c3:91:05:36:8f:79:6f:38:7d:15: 2f:84:1a:a5:7a:94:55:6d:6a:91:77:62:2f:3c:a6: c8:02:f2:fd:87:05:a0:d8:64:13:04:19:1d:b5:b7: 7e:fe:f3:9b:92:4a:f7:c4:05:8d:c2:7c:58:fe:d6: a8:ab:5a:f4:2b:90:f2:06:b1:1b:03:a7:ea:d3:f7: 4a:31:90:1d:29:c9:ef:19:82:8c:a5:92:0c:10:07: 97:d2:a3:bb:b9:f5:77:0c:25:be:6e:bf:54:e9:cc: 1b:76:7b:ed:70:89:cb:fd:d6:82:26:55:a4:bd:28: d7:b2:bc:65:b5:e0:5e:e8:b0:9c:57:64:a0:8a:5c: 77:2a:15:49:9d:21:14:7c:79:72:0b:38:48:5e:d8: 85:3e:f3:16:35:e3:97:2f:4a:ff:53:39:c6:e0:c5: 84:28:27:31:bf:d3:48:2a:3a:1f:3b:57:aa:15:f8: 48:48:c7:77:d9:6c:14:db:73:03:f6:b1:df:9d:8c: 96:b1:e0:b8:59:9e:66:ac:ca:fa:7f:a5:bf:29:23: 01:98:2d:2e:e5:6a:da:e2:3b:69:ea:bf:24:23:04: 85:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D8:55:76:7A:22:FE:94:30:5E:7E:D3:47:3F:5F:59:D5:D3:C7:C2 X509v3 Authority Key Identifier: keyid:9E:D7:BA:F6:3F:55:4F:1F:EA:57:0E:19:BA:F6:9E:DE:D0:D9:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.128.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:ad:7b:9e:87:15:37:b6:1c:22:8c:d8:0e:03:7e:20:33:4e: 65:bd:c8:b9:b7:80:97:e4:3f:e3:6a:2b:8b:f0:b0:79:e9:00: 4f:c8:11:99:06:26:ec:c8:6c:11:d2:8a:6a:9d:fe:cc:b6:82: 08:9f:47:2b:80:a6:35:e3:fc:bf:4b:1d:3c:6b:40:ed:07:20: 10:cc:2b:dc:cf:9c:2f:1d:37:81:c9:f5:17:04:06:0e:64:5e: 97:72:17:a1:88:35:6d:83:96:52:35:fc:ec:a5:ee:8c:a5:ac: 1a:87:86:80:c2:4c:e8:d0:0b:ed:40:c0:4e:98:da:19:16:39: 46:eb:1f:ab:c6:b3:ec:f1:78:08:48:78:b0:6d:5e:92:4f:d6: 4e:2a:d8:19:e8:97:29:88:ff:8e:4f:d1:0f:83:2c:f6:9f:19: 4d:bb:fd:c5:6d:d6:4f:1c:fb:92:22:6a:e3:23:9a:1b:48:5d: 8c:80:08:8f:c7:04:8c:6b:d1:c4:2f:a7:16:e6:f2:39:16:d6: 22:37:bb:da:80:84:6f:a9:b5:4f:fc:ab:16:d5:6b:1b:36:95: 75:61:f9:c8:7f:ec:a2:23:1e:b3:13:5d:79:b3:ae:a3:77:39: d0:da:fc:7e:36:ef:7c:c3:12:8b:aa:f1:a6:1d:14:f2:e5:43: ed:20:4a:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4M0ExMTAvBgNVBAUTKDlFRDdCQUY2M0Y1NTRGMUZFQTU3MEUxOUJBRjY5RURF RDBEOUU0QkUwHhcNMjQwNzA0MTk1NzQ2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg2ZmViOS1lMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ygVsej0oH8rZ5pWN/ruwEj+6PjzUhDkh2FNKuV3e4E+8sORBTaPeW84fRUv hBqlepRVbWqRd2IvPKbIAvL9hwWg2GQTBBkdtbd+/vObkkr3xAWNwnxY/taoq1r0 K5DyBrEbA6fq0/dKMZAdKcnvGYKMpZIMEAeX0qO7ufV3DCW+br9U6cwbdnvtcInL /daCJlWkvSjXsrxlteBe6LCcV2Sgilx3KhVJnSEUfHlyCzhIXtiFPvMWNeOXL0r/ UznG4MWEKCcxv9NIKjofO1eqFfhISMd32WwU23MD9rHfnYyWseC4WZ5mrMr6f6W/ KSMBmC0u5Wra4jtp6r8kIwSFqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCzYVXZ6 Iv6UMF5+00c/X1nV08fCMB8GA1UdIwQYMBaAFJ7XuvY/VU8f6lcOGbr2nt7Q2eS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzgzQS8xRkZCN0Q4MDMw NkIxMUVBODQ4QkUwMzFDNEY5QUUwMi9udGU2OWo5VlR4X3FWdzRadXZhZTN0RFo1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250ZTY5ajlWVHhfcVZ3NFp1dmFlM3REWjVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM4M0EvMUZGQjdEODAzMDZCMTFFQTg0OEJFMDMxQzRGOUFFMDIvOTcyODVBQ0E1 QkIxMTFFRUI2NjcxMjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ7/YAwDQYJKoZIhvcNAQELBQADggEBAJute56HFTe2HCKM 2A4DfiAzTmW9yLm3gJfkP+NqK4vwsHnpAE/IEZkGJuzIbBHSimqd/sy2ggifRyuA pjXj/L9LHTxrQO0HIBDMK9zPnC8dN4HJ9RcEBg5kXpdyF6GINW2DllI1/Oyl7oyl rBqHhoDCTOjQC+1AwE6Y2hkWOUbrH6vGs+zxeAhIeLBtXpJP1k4q2BnolymI/45P 0Q+DLPafGU27/cVt1k8c+5IiauMjmhtIXYyACI/HBIxr0cQvpxbm8jkW1iI3u9qA hG+ptU/8qxbVaxs2lXVh+ch/7KIjHrMTXXmzrqN3OdDa/H4273zDEouq8aYdFPLl Q+0gSqw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org