$ rpki-client -vvf rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/3EFB586286BB11EFBD5D541DC4F9AE02.roa File: 3EFB586286BB11EFBD5D541DC4F9AE02.roa (raw, json) Hash identifier: gTljkeOtiLUXIev71WvDZsUroRxts5KzF3IxcDIZHnk= Subject key identifier: DF:D7:3B:F8:80:C4:B1:F8:64:E2:DA:6B:FA:50:3A:81:A2:95:08:E4 Certificate issuer: /CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Certificate serial: 1D Authority key identifier: 0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/3EFB586286BB11EFBD5D541DC4F9AE02.roa Signing time: Thu 10 Oct 2024 03:53:45 +0000 ROA not before: Thu 10 Oct 2024 03:53:45 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4913 IP address blocks: 111.92.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Validity Not Before: Oct 10 03:53:45 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67074fc8-42de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4a:90:47:b2:20:c4:e0:4b:e1:67:eb:3b:7c: 71:f1:bb:16:a2:b3:a4:4f:05:18:cf:13:25:8b:fb: 5e:0d:8c:53:a4:ad:4c:54:f1:2e:0c:e6:c3:4c:49: 87:d0:d6:b0:1f:88:90:71:73:22:d5:a2:e8:a7:fc: e0:60:b0:39:eb:0d:c6:f7:50:26:b7:a6:34:7f:3f: a3:62:4c:4f:3a:b2:6d:7f:9c:ba:12:8d:39:79:1a: 58:52:aa:a3:ae:44:12:a4:ab:39:cd:07:3c:37:d3: a5:9b:fd:80:70:af:86:9c:84:8e:51:c1:63:7b:49: 4d:7e:89:00:0c:74:73:7d:11:98:1a:0a:35:f6:ec: b6:bb:49:7b:d6:28:54:43:f3:44:69:09:c5:6c:3e: cb:0f:8b:23:b1:54:47:d7:b5:90:28:55:be:01:48: 97:2d:94:97:9d:94:5f:c4:b6:1a:33:e4:a9:29:73: de:5b:bc:b3:ce:d8:eb:17:57:8e:ed:c0:7a:35:11: bb:65:e8:10:e3:2d:2d:78:8b:36:d9:fc:dd:7e:55: 9d:6c:21:11:67:e5:03:9e:71:f5:20:de:d1:f7:eb: 52:37:3a:65:98:0d:28:ae:ab:45:22:a8:bd:00:0e: 09:f9:3a:f8:af:c1:5e:fb:ac:eb:96:e4:8b:89:8d: f5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D7:3B:F8:80:C4:B1:F8:64:E2:DA:6B:FA:50:3A:81:A2:95:08:E4 X509v3 Authority Key Identifier: keyid:0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/3EFB586286BB11EFBD5D541DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.92.178.0/24 Signature Algorithm: sha256WithRSAEncryption 32:16:75:8a:c9:35:53:56:48:e3:76:37:22:4a:b9:7e:fd:18: 17:a9:b4:dc:52:47:26:ae:05:0e:8b:a5:6f:de:03:9a:cd:ba: 7f:58:df:a4:58:03:82:9e:b2:26:82:96:02:e5:54:a6:54:9d: c9:ea:d0:6b:2a:89:b0:ea:56:c8:94:de:1f:50:b3:4e:2d:21: 43:73:fe:b1:1b:f7:73:4b:c0:ea:84:df:bc:61:eb:53:13:12: d1:f4:69:c1:05:cd:59:21:39:2e:b5:c7:6e:32:0c:7a:a6:fb: b5:40:30:32:42:f4:21:5f:10:e9:ec:33:2b:d2:9c:60:ac:be: 8d:7b:ea:13:78:54:2f:3a:25:71:2f:81:c4:a9:c4:cc:1f:0d: 85:ab:62:3a:8b:68:69:0c:52:f8:4f:48:e9:13:ed:dc:81:bd: 6d:15:ef:8a:2e:b4:da:b2:26:eb:77:64:97:4b:e7:b2:18:a7: 6c:ad:e8:50:0d:16:6b:89:13:b9:4d:61:a6:93:1e:ea:34:3d: 78:64:3b:aa:3a:61:1d:72:0d:96:9b:2a:7b:b3:ed:59:5b:d9: 86:e3:bd:08:ab:c2:b8:97:0e:0a:f8:77:42:f4:0b:9b:21:ef: 69:3c:bb:bb:fc:62:79:3d:28:da:7b:7d:4f:6b:f7:23:df:3f: c9:c4:8c:69 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODE5QTExMC8GA1UEBRMoMEIzNjZFMDcwQ0ZFNzAwRTQ3N0VFNDc0RDZDOTU0OURE M0IzOEJGMjAeFw0yNDEwMTAwMzUzNDVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDc0ZmM4LTQyZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwSpBHsiDE4EvhZ+s7fHHxuxais6RPBRjPEyWL+14NjFOkrUxU8S4M5sNMSYfQ 1rAfiJBxcyLVouin/OBgsDnrDcb3UCa3pjR/P6NiTE86sm1/nLoSjTl5GlhSqqOu RBKkqznNBzw306Wb/YBwr4achI5RwWN7SU1+iQAMdHN9EZgaCjX27La7SXvWKFRD 80RpCcVsPssPiyOxVEfXtZAoVb4BSJctlJedlF/Ethoz5Kkpc95bvLPO2OsXV47t wHo1Ebtl6BDjLS14izbZ/N1+VZ1sIRFn5QOecfUg3tH361I3OmWYDSiuq0UiqL0A Dgn5OvivwV77rOuW5IuJjfXdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU39c7+IDE sfhk4tpr+lA6gaKVCOQwHwYDVR0jBBgwFoAUCzZuBwz+cA5HfuR01slUndOzi/Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4MTlBLzVGODlGNDMwODZC MTExRUZBRjZFQ0I1MkM0RjlBRTAyL0N6WnVCd3otY0E1SGZ1UjAxc2xVbmRPemlf SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ3padUJ3ei1jQTVIZnVSMDFzbFVuZE96aV9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODE5QS81Rjg5RjQzMDg2QjExMUVGQUY2RUNCNTJDNEY5QUUwMi8zRUZCNTg2Mjg2 QkIxMUVGQkQ1RDU0MURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAG9csjANBgkqhkiG9w0BAQsFAAOCAQEAMhZ1isk1U1ZI43Y3 Ikq5fv0YF6m03FJHJq4FDoulb94Dms26f1jfpFgDgp6yJoKWAuVUplSdyerQayqJ sOpWyJTeH1CzTi0hQ3P+sRv3c0vA6oTfvGHrUxMS0fRpwQXNWSE5LrXHbjIMeqb7 tUAwMkL0IV8Q6ewzK9KcYKy+jXvqE3hULzolcS+BxKnEzB8NhatiOotoaQxS+E9I 6RPt3IG9bRXvii602rIm63dkl0vnshinbK3oUA0Wa4kTuU1hppMe6jQ9eGQ7qjph HXINlpsqe7PtWVvZhuO9CKvCuJcOCvh3QvQLmyHvaTy7u/xieT0o2nt9T2v3I98/ ycSMaQ== -----END CERTIFICATE-----Generated at Mon Nov 25 07:19:47 2024 by rpki-client on console-ams.rpki-client.org