$ rpki-client -vvf rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/4E2597ACB30F11EDA610E01FC4F9AE02.roa File: 4E2597ACB30F11EDA610E01FC4F9AE02.roa (raw, json) Hash identifier: 5g7RrFvBwgNiKlK3rQGnarO7ApLyrSM6Xg9ERGMGz5U= Subject key identifier: EA:DB:BC:3D:31:DE:72:8C:AD:A1:26:7F:D0:71:75:10:53:76:C7:6C Certificate issuer: /CN=A9133C64/serialNumber=A7C182CB0C56ECC68D7491A2914144B4774F7732 Certificate serial: 013A Authority key identifier: A7:C1:82:CB:0C:56:EC:C6:8D:74:91:A2:91:41:44:B4:77:4F:77:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p8GCywxW7MaNdJGikUFEtHdPdzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/4E2597ACB30F11EDA610E01FC4F9AE02.roa Signing time: Wed 23 Oct 2024 03:37:22 +0000 ROA not before: Wed 23 Oct 2024 03:37:22 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 4826 IP address blocks: 203.19.224.0/24 maxlen: 24 203.19.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/p8GCywxW7MaNdJGikUFEtHdPdzI.crl rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/p8GCywxW7MaNdJGikUFEtHdPdzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p8GCywxW7MaNdJGikUFEtHdPdzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133C64/serialNumber=A7C182CB0C56ECC68D7491A2914144B4774F7732 Validity Not Before: Oct 23 03:37:22 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67186f71-adce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:68:53:45:4e:4c:ee:47:b3:80:29:d9:06:bc: 4d:31:36:4c:3a:07:4b:a0:79:7a:c8:34:02:48:48: 4d:3b:b7:c9:f1:22:06:05:04:ed:0d:2d:76:1c:b4: be:47:3e:6f:ae:7b:db:8a:6c:71:e3:cd:0e:1a:ec: b6:9d:cd:a8:fa:96:78:cb:b5:09:59:6b:0f:99:50: 7b:35:0a:f1:29:9e:7d:76:1d:d0:a1:c4:80:49:d0: 7a:c8:7c:c1:30:2c:d5:1c:ca:d0:f8:cb:66:a3:cc: cf:ef:51:c4:74:0e:b0:fa:e6:2b:45:1a:4d:51:bd: 04:bf:21:11:9e:62:27:6c:7e:71:39:e7:d6:80:9f: d9:b4:d7:d0:2a:f7:38:aa:85:1e:80:f2:e5:a0:2e: 79:f2:de:d2:7c:3e:97:75:79:5b:b1:58:d6:63:90: 02:56:3d:15:8f:72:ce:ef:ee:27:61:7a:bc:36:f9: dd:6c:c0:4e:a1:6f:ec:77:60:89:c2:8f:8f:a5:c1: 29:00:59:ed:eb:a4:5a:6f:fd:db:85:0b:66:de:50: b9:7d:6a:c8:a7:a9:21:2f:f6:4d:cd:51:ba:5e:35: 7b:f7:d3:96:ff:55:33:6c:67:35:b0:fc:1c:86:d9: 96:45:68:78:85:9f:90:4a:18:de:64:6b:f3:98:45: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DB:BC:3D:31:DE:72:8C:AD:A1:26:7F:D0:71:75:10:53:76:C7:6C X509v3 Authority Key Identifier: keyid:A7:C1:82:CB:0C:56:EC:C6:8D:74:91:A2:91:41:44:B4:77:4F:77:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/p8GCywxW7MaNdJGikUFEtHdPdzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p8GCywxW7MaNdJGikUFEtHdPdzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133C64/A6DEF1EEB30B11ED9E84DF19C4F9AE02/4E2597ACB30F11EDA610E01FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.224.0/23 Signature Algorithm: sha256WithRSAEncryption 63:e4:3c:42:cd:be:77:5a:89:d6:05:69:18:8c:db:54:d6:97: 23:d5:59:a5:d9:3a:9a:73:3f:56:b0:d9:31:0f:dc:e8:d5:9e: b8:2d:a8:bf:f7:26:62:ac:8b:06:aa:fb:69:04:a4:80:fe:79: 20:39:d6:4e:3b:d8:6f:cf:08:96:76:12:2b:1e:8e:c2:b0:9c: 2c:80:cd:f6:f3:c4:a4:fc:7e:4e:0e:0a:42:90:3e:10:3f:bd: 32:53:58:63:c9:75:69:6a:b7:6d:61:24:29:75:fc:50:37:11: 7b:70:45:3e:c0:93:65:f5:9c:1e:2a:db:22:2a:4c:e2:2f:14: d7:bc:65:a7:4b:2c:ab:9f:5d:f7:ca:57:b3:33:af:60:c8:ea: 89:23:32:cc:cd:5a:db:23:a4:a8:24:f7:a7:bf:16:c8:31:a9: f3:b8:c5:69:0b:d6:fd:43:af:42:1b:e1:be:77:be:c7:2f:f2: c8:c9:c3:38:68:8b:57:e9:68:ca:fa:3b:1b:15:35:85:46:34: 8b:94:31:8d:b4:dd:15:10:60:9d:ca:08:83:9e:b3:8d:68:d9: 14:c0:99:18:16:3a:bc:30:ad:ba:2f:be:04:5e:18:c2:3b:df: f4:0f:02:0a:dd:eb:9b:98:10:17:1b:fb:84:21:b9:98:6e:17: 07:50:f5:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNDNjQxMTAvBgNVBAUTKEE3QzE4MkNCMEM1NkVDQzY4RDc0OTFBMjkxNDE0NEI0 Nzc0Rjc3MzIwHhcNMjQxMDIzMDMzNzIyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NmY3MS1hZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmhTRU5M7kezgCnZBrxNMTZMOgdLoHl6yDQCSEhNO7fJ8SIGBQTtDS12HLS+ Rz5vrnvbimxx480OGuy2nc2o+pZ4y7UJWWsPmVB7NQrxKZ59dh3QocSASdB6yHzB MCzVHMrQ+Mtmo8zP71HEdA6w+uYrRRpNUb0EvyERnmInbH5xOefWgJ/ZtNfQKvc4 qoUegPLloC558t7SfD6XdXlbsVjWY5ACVj0Vj3LO7+4nYXq8NvndbMBOoW/sd2CJ wo+PpcEpAFnt66Rab/3bhQtm3lC5fWrIp6khL/ZNzVG6XjV799OW/1UzbGc1sPwc htmWRWh4hZ+QShjeZGvzmEUZWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOrbvD0x 3nKMraEmf9BxdRBTdsdsMB8GA1UdIwQYMBaAFKfBgssMVuzGjXSRopFBRLR3T3cy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0M2NC9BNkRFRjFFRUIz MEIxMUVEOUU4NERGMTlDNEY5QUUwMi9wOEdDeXd4VzdNYU5kSkdpa1VGRXRIZFBk ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A4R0N5d3hXN01hTmRKR2lrVUZFdEhkUGR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzNDNjQvQTZERUYxRUVCMzBCMTFFRDlFODRERjE5QzRGOUFFMDIvNEUyNTk3QUNC MzBGMTFFREE2MTBFMDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLE+AwDQYJKoZIhvcNAQELBQADggEBAGPkPELNvndaidYF aRiM21TWlyPVWaXZOppzP1aw2TEP3OjVnrgtqL/3JmKsiwaq+2kEpID+eSA51k47 2G/PCJZ2EisejsKwnCyAzfbzxKT8fk4OCkKQPhA/vTJTWGPJdWlqt21hJCl1/FA3 EXtwRT7Ak2X1nB4q2yIqTOIvFNe8ZadLLKufXffKV7Mzr2DI6okjMszNWtsjpKgk 96e/FsgxqfO4xWkL1v1Dr0Ib4b53vscv8sjJwzhoi1fpaMr6OxsVNYVGNIuUMY20 3RUQYJ3KCIOes41o2RTAmRgWOrwwrbovvgReGMI73/QPAgrd65uYEBcb+4QhuZhu FwdQ9eg= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org