$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C714F71CBF9B11EA9CDFD642C4F9AE02.roa File: C714F71CBF9B11EA9CDFD642C4F9AE02.roa (raw, json) Hash identifier: WQhWvpsGEUoUyhuwJrl1CNiZNORHG8GhG41+pFuVnQM= Subject key identifier: 2B:BE:CF:3A:0E:5D:4A:37:C2:40:AB:AF:33:59:D0:98:01:AE:F4:38 Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 0879 Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C714F71CBF9B11EA9CDFD642C4F9AE02.roa Signing time: Mon 28 Oct 2024 20:50:57 +0000 ROA not before: Mon 28 Oct 2024 20:50:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 198247 IP address blocks: 117.55.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Oct 28 20:50:57 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff931-1892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2b:f3:c3:11:96:e8:18:ed:b2:18:aa:64:aa: 4f:be:be:12:be:a1:dc:06:a9:30:cc:35:09:93:0f: ce:e1:1a:c2:31:45:4f:25:c7:ad:0a:15:ef:86:cf: 8f:df:c6:4e:d2:59:27:01:14:ee:74:30:18:54:55: 2d:64:31:b0:43:7b:ee:15:f9:b1:bc:54:19:07:ec: 89:78:da:b8:d5:c5:a9:79:ea:7c:13:bd:38:a0:2c: b3:6e:f6:7e:53:7f:b4:a7:0b:eb:ad:5a:d3:74:20: d6:33:75:3d:7f:31:e4:e8:8c:1a:e4:70:e3:ca:6e: d6:7a:d7:1f:53:41:b2:28:53:d1:d6:9b:51:be:42: 14:2a:08:3d:e2:83:06:03:12:e8:f3:83:f3:ea:cd: 12:7f:88:8f:91:27:76:06:6d:91:e4:d5:a1:f8:ff: 73:b7:c4:cd:1e:62:e2:83:be:8d:39:08:7d:5e:a6: b2:f9:8f:9e:a0:1a:5c:0e:24:ce:8b:97:e7:a9:c2: 4a:f6:a0:ab:74:9b:71:8a:d0:ac:46:4c:4a:d1:61: 57:5a:dc:3a:00:8f:5b:58:9a:d8:b6:39:73:bd:32: 98:b2:ca:69:c3:ca:e6:f8:20:2b:2f:d9:ed:c6:49: 80:c5:2f:07:ef:2b:62:9b:37:18:17:6f:b3:90:95: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:BE:CF:3A:0E:5D:4A:37:C2:40:AB:AF:33:59:D0:98:01:AE:F4:38 X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C714F71CBF9B11EA9CDFD642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.196.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:30:20:a8:d6:e4:8e:b7:08:c3:4d:f1:4b:e4:5c:cc:e6:dc: cd:fc:4c:56:97:4b:05:36:09:2f:63:0c:94:b0:70:1f:c4:1a: 5b:ba:d1:d9:24:12:45:3f:ff:df:63:fe:07:a7:db:c0:3b:dd: 82:81:9f:fe:ee:60:9f:a2:0b:8f:49:80:04:c7:9b:4e:d8:cb: d9:0a:0b:23:b4:e1:aa:af:8a:c3:a6:e7:cc:4c:4b:23:b3:a4: 7c:cf:b0:a4:44:9e:f0:3e:a1:30:27:46:58:6a:80:1d:46:62: b1:e1:b4:c9:88:01:75:5b:7b:45:b4:ce:ed:f2:1a:8a:32:3d: 92:7b:c3:44:da:05:38:bd:ee:cd:ad:f2:21:e7:5f:82:ad:bc: 83:45:a0:be:a3:eb:73:81:a3:d6:d1:16:5f:23:2c:f9:90:e7: 56:b0:2f:67:78:a1:3c:46:d4:1f:ab:1f:c5:ac:cb:28:5c:a8: e4:9c:15:54:e8:59:43:b3:1f:de:89:33:98:5b:fe:85:af:44: b7:eb:60:c4:f1:41:72:ec:6e:f1:55:59:9f:6c:0a:6f:04:ab: bb:fc:69:dc:68:e8:00:0f:7f:53:c8:25:c5:a4:47:83:94:d0: 07:b0:75:93:49:07:19:c3:fd:99:22:b7:07:0d:0e:53:bf:22: 10:62:b3:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjQxMDI4MjA1MDU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjkzMS0xODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SvzwxGW6BjtshiqZKpPvr4SvqHcBqkwzDUJkw/O4RrCMUVPJcetChXvhs+P 38ZO0lknARTudDAYVFUtZDGwQ3vuFfmxvFQZB+yJeNq41cWpeep8E704oCyzbvZ+ U3+0pwvrrVrTdCDWM3U9fzHk6Iwa5HDjym7WetcfU0GyKFPR1ptRvkIUKgg94oMG AxLo84Pz6s0Sf4iPkSd2Bm2R5NWh+P9zt8TNHmLig76NOQh9Xqay+Y+eoBpcDiTO i5fnqcJK9qCrdJtxitCsRkxK0WFXWtw6AI9bWJrYtjlzvTKYssppw8rm+CArL9nt xkmAxS8H7ytimzcYF2+zkJWluQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCu+zzoO XUo3wkCrrzNZ0JgBrvQ4MB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvQzcxNEY3MUNC RjlCMTFFQTlDREZENjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1N8QwDQYJKoZIhvcNAQELBQADggEBAA0wIKjW5I63CMNN 8UvkXMzm3M38TFaXSwU2CS9jDJSwcB/EGlu60dkkEkU//99j/gen28A73YKBn/7u YJ+iC49JgATHm07Yy9kKCyO04aqvisOm58xMSyOzpHzPsKREnvA+oTAnRlhqgB1G YrHhtMmIAXVbe0W0zu3yGooyPZJ7w0TaBTi97s2t8iHnX4KtvINFoL6j63OBo9bR Fl8jLPmQ51awL2d4oTxG1B+rH8WsyyhcqOScFVToWUOzH96JM5hb/oWvRLfrYMTx QXLsbvFVWZ9sCm8Eq7v8adxo6AAPf1PIJcWkR4OU0AewdZNJBxnD/ZkitwcNDlO/ IhBiswY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:37 2024 by rpki-client on console-fra.rpki-client.org