$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/7206C9B0B9A911EE82CE6832C4F9AE02.roa File: 7206C9B0B9A911EE82CE6832C4F9AE02.roa (raw, json) Hash identifier: 1BGCuCR8/5XNnfEBqosQ71/PFSfQ7yzaxtqH4ChrsGI= Subject key identifier: AD:82:32:C6:C0:A9:A5:4C:87:5B:CA:B6:6D:8D:71:9E:B7:38:2E:DE Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 0878 Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/7206C9B0B9A911EE82CE6832C4F9AE02.roa Signing time: Mon 28 Oct 2024 20:50:57 +0000 ROA not before: Mon 28 Oct 2024 20:50:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133174 IP address blocks: 117.55.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Oct 28 20:50:56 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff930-fd0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4f:b2:ba:8c:24:0b:fb:6d:16:2a:a3:1f:a9: a8:6b:76:ca:88:a7:1b:ad:b0:aa:58:52:64:71:97: 10:5e:b0:a5:02:15:20:37:6b:58:1a:69:75:c3:af: ee:35:94:19:4e:06:65:31:75:4c:ef:52:55:7e:cc: 39:0e:a5:a6:aa:cd:6d:8e:66:55:83:7d:0a:2b:ea: ab:fd:29:be:78:ab:84:b9:bd:86:36:33:52:d2:09: d5:a6:80:7d:24:66:5e:40:dc:3f:d9:cb:6c:24:68: 06:27:50:3b:45:83:bb:8f:dc:ae:d6:19:43:3c:6d: d3:0d:8c:c5:6f:ce:65:06:bd:f6:b1:fa:e7:a3:25: b3:a6:0a:7e:82:7e:a9:a0:1d:d6:3b:c6:18:18:5e: 89:47:56:68:72:8c:6b:c7:a3:74:85:c3:64:80:73: 6b:ae:14:92:d9:3b:ea:52:c7:9a:e0:2e:6b:bb:5e: 6c:01:eb:1f:fb:ea:1f:57:83:14:e2:79:5b:01:63: bd:79:7e:ba:bd:b5:19:64:be:85:63:ab:c5:e4:82: b7:a2:31:96:76:0a:de:fa:88:0c:5e:d6:73:67:9b: eb:28:f9:6e:b2:3f:29:97:7b:2a:1e:0c:8d:df:b3: ce:fc:fd:e8:cf:e7:ff:63:ef:a8:28:6b:c8:de:30: 93:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:82:32:C6:C0:A9:A5:4C:87:5B:CA:B6:6D:8D:71:9E:B7:38:2E:DE X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/7206C9B0B9A911EE82CE6832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.194.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:bb:f9:7b:b8:8b:e3:c5:0a:2f:fa:83:54:58:42:9c:0f:1f: bf:1a:90:e5:b9:a2:30:37:dc:74:f5:2c:ba:41:7e:ad:fb:cf: d2:29:3a:2c:fa:eb:88:11:aa:2b:20:77:8b:d0:76:21:29:ac: c1:16:7d:41:57:f3:23:2b:70:0f:75:b4:ac:a8:be:e6:8a:66: e4:cd:05:7d:aa:cb:3d:3a:60:d8:dc:69:45:14:cd:f5:53:c1: 57:d1:03:02:cc:93:d2:0e:2b:b1:9a:fd:0f:6c:90:68:0c:a5: e5:f8:8d:bb:4f:dc:c1:85:66:e7:b1:a7:6e:c2:b6:cd:34:d9: 6d:3f:8f:f6:2a:9c:dc:55:9d:2e:d6:71:e4:57:86:5d:92:39: 3e:8c:4c:24:3d:d5:b2:95:1a:61:34:2c:28:fb:44:29:8a:69: fd:e5:9d:0a:41:5b:fe:d4:9a:41:f8:5a:ac:06:26:df:67:bb: c0:42:3c:18:56:d5:d7:7d:01:e0:8d:39:62:f7:6c:30:4f:49: f1:2e:ed:3b:d3:d9:11:8d:aa:d8:73:20:12:28:73:e9:7c:33: 7a:1e:8d:31:0a:d2:82:11:ad:19:df:a4:0b:0d:7c:8f:6e:6a: c1:a5:26:28:d9:39:64:27:a7:e1:2d:6f:2c:3d:d8:b9:a7:56: fd:8a:95:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjQxMDI4MjA1MDU2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjkzMC1mZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU+yuowkC/ttFiqjH6moa3bKiKcbrbCqWFJkcZcQXrClAhUgN2tYGml1w6/u NZQZTgZlMXVM71JVfsw5DqWmqs1tjmZVg30KK+qr/Sm+eKuEub2GNjNS0gnVpoB9 JGZeQNw/2ctsJGgGJ1A7RYO7j9yu1hlDPG3TDYzFb85lBr32sfrnoyWzpgp+gn6p oB3WO8YYGF6JR1Zocoxrx6N0hcNkgHNrrhSS2TvqUsea4C5ru15sAesf++ofV4MU 4nlbAWO9eX66vbUZZL6FY6vF5IK3ojGWdgre+ogMXtZzZ5vrKPlusj8pl3sqHgyN 37PO/P3oz+f/Y++oKGvI3jCTIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK2CMsbA qaVMh1vKtm2NcZ63OC7eMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvNzIwNkM5QjBC OUE5MTFFRTgyQ0U2ODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8IwDQYJKoZIhvcNAQELBQADggEBAJ+7+Xu4i+PFCi/6 g1RYQpwPH78akOW5ojA33HT1LLpBfq37z9IpOiz664gRqisgd4vQdiEprMEWfUFX 8yMrcA91tKyovuaKZuTNBX2qyz06YNjcaUUUzfVTwVfRAwLMk9IOK7Ga/Q9skGgM peX4jbtP3MGFZuexp27Cts002W0/j/YqnNxVnS7WceRXhl2SOT6MTCQ91bKVGmE0 LCj7RCmKaf3lnQpBW/7UmkH4WqwGJt9nu8BCPBhW1dd9AeCNOWL3bDBPSfEu7TvT 2RGNqthzIBIoc+l8M3oejTEK0oIRrRnfpAsNfI9uasGlJijZOWQnp+Etbyw92Lmn Vv2KlZQ= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:37 2024 by rpki-client on console-fra.rpki-client.org