$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/E89AA63C3A3411EDA5928760C4F9AE02.roa File: E89AA63C3A3411EDA5928760C4F9AE02.roa (raw, json) Hash identifier: 05APYQJe4DJPEEjidbXlOzb6+S6p4c1Z55iGoGM7Isg= Subject key identifier: 41:A1:68:6D:B4:FA:92:81:CE:9A:95:73:60:CA:28:3C:87:9D:D8:B3 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 341F Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/E89AA63C3A3411EDA5928760C4F9AE02.roa Signing time: Tue 22 Oct 2024 14:50:33 +0000 ROA not before: Tue 22 Oct 2024 14:50:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 17820 IP address blocks: 203.196.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13343 (0x341f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Oct 22 14:50:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6717bbb8-fc8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:be:b4:c7:c8:1d:d8:b8:13:c6:da:59:81: 47:d8:79:bc:e9:7c:40:dc:1c:10:1f:a9:00:77:b2: f5:d3:1b:45:fe:70:8b:bf:21:ad:3e:e9:25:c6:23: 1e:a4:88:85:97:c0:67:52:87:f3:84:d4:f1:d9:e9: 7e:19:47:eb:5e:e7:78:74:e9:a4:4f:f3:75:6c:e6: a5:07:de:e8:20:81:a2:3c:5a:cb:1b:92:85:45:9e: 0c:0c:56:17:f5:20:19:82:5d:3f:c9:53:ba:d2:96: 64:69:05:ea:ca:7b:0a:70:74:0b:87:e4:22:59:1e: 71:e8:2d:1f:61:9c:1b:41:a0:27:a3:7f:de:11:e6: 66:39:e5:49:be:72:39:5a:31:b0:4c:04:4c:60:b0: 19:fa:6d:9d:e4:f8:ba:05:15:de:49:b2:b7:d2:a1: 61:a6:ee:73:fb:d1:5c:86:6e:af:3f:89:a3:90:b6: 31:b3:13:38:05:64:ce:a8:29:9f:71:4e:56:61:ae: d2:9f:e3:b0:50:eb:eb:3d:68:3c:07:02:c4:f6:77: 52:d7:46:d8:56:3b:e5:c7:cc:fc:9d:ce:19:d3:0c: 2a:97:4f:d8:91:83:39:51:d7:5a:ed:b4:ee:6b:61: 75:76:ba:49:77:59:96:00:eb:6b:87:85:43:15:1c: 42:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A1:68:6D:B4:FA:92:81:CE:9A:95:73:60:CA:28:3C:87:9D:D8:B3 X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/E89AA63C3A3411EDA5928760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.196.128.0/21 Signature Algorithm: sha256WithRSAEncryption be:a3:cd:98:03:1d:ae:6a:b0:af:9e:75:ce:95:b8:ae:36:ba: f1:3a:6b:eb:af:e7:17:4c:bb:1f:7f:f5:e7:08:62:ca:65:e2: b4:0f:5e:ed:80:67:96:e2:0b:64:48:0e:a3:75:d4:02:82:c8: 7a:0d:d3:21:a6:91:df:5a:40:d7:e0:64:e2:f7:78:d4:ec:4a: 0e:b9:b0:f3:aa:2d:77:8c:ed:75:c6:f2:b0:4d:00:bc:61:8a: 3b:ab:a1:7e:f9:0b:1e:0e:1a:70:78:cb:38:2a:17:58:cb:b6: d5:56:8b:b2:61:f6:65:f2:37:66:c9:c3:e3:b7:ec:ec:26:82: 8e:09:70:de:eb:96:36:8f:f5:89:a3:d1:74:77:15:03:5f:71: d7:b6:a4:3f:cf:10:b6:1a:36:b0:86:d0:55:71:d0:e7:39:5e: 21:47:9b:ad:2c:50:d4:8f:c7:72:a3:91:8c:24:48:71:68:a9: a1:00:af:c2:f3:60:df:30:1b:6d:58:af:21:34:47:31:7f:d4: f7:7f:28:27:ad:4a:08:f9:ea:92:66:19:77:92:d2:bf:20:bd: 45:f6:d8:c5:82:42:73:01:ea:5e:2d:9e:de:2a:4c:9e:a7:63: 37:64:2c:05:6a:e1:73:ff:33:7a:9e:61:f6:b8:d4:76:cf:f3: 5a:b0:fa:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjQxMDIyMTQ1MDMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3YmJiOC1mYzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGm+tMfIHdi4E8baWYFH2Hm86XxA3BwQH6kAd7L10xtF/nCLvyGtPuklxiMe pIiFl8BnUofzhNTx2el+GUfrXud4dOmkT/N1bOalB97oIIGiPFrLG5KFRZ4MDFYX 9SAZgl0/yVO60pZkaQXqynsKcHQLh+QiWR5x6C0fYZwbQaAno3/eEeZmOeVJvnI5 WjGwTARMYLAZ+m2d5Pi6BRXeSbK30qFhpu5z+9Fchm6vP4mjkLYxsxM4BWTOqCmf cU5WYa7Sn+OwUOvrPWg8BwLE9ndS10bYVjvlx8z8nc4Z0wwql0/YkYM5Udda7bTu a2F1drpJd1mWAOtrh4VDFRxCVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEGhaG20 +pKBzpqVc2DKKDyHndizMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzVFQzQvOEE5QTgzNjgxRDg5MTFFMjlDRTVFQ0UyMDhCMDJDRDIvRTg5QUE2M0Mz QTM0MTFFREE1OTI4NzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLxIAwDQYJKoZIhvcNAQELBQADggEBAL6jzZgDHa5qsK+e dc6VuK42uvE6a+uv5xdMux9/9ecIYspl4rQPXu2AZ5biC2RIDqN11AKCyHoN0yGm kd9aQNfgZOL3eNTsSg65sPOqLXeM7XXG8rBNALxhijuroX75Cx4OGnB4yzgqF1jL ttVWi7Jh9mXyN2bJw+O37Owmgo4JcN7rljaP9Ymj0XR3FQNfcde2pD/PELYaNrCG 0FVx0Oc5XiFHm60sUNSPx3KjkYwkSHFoqaEAr8LzYN8wG21YryE0RzF/1Pd/KCet Sgj56pJmGXeS0r8gvUX22MWCQnMB6l4tnt4qTJ6nYzdkLAVq4XP/M3qeYfa41HbP 81qw+r0= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:16 2024 by rpki-client on console-ams.rpki-client.org