$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/619B0B285AE611E781C33D7CC4F9AE02.roa File: 619B0B285AE611E781C33D7CC4F9AE02.roa (raw, json) Hash identifier: ZGC2ZFJHwlq5Ep2j3cd1PYdlRsmipJnSDGQN5BOUcNk= Subject key identifier: 2C:71:5D:0F:CE:57:5F:AA:30:22:05:47:A8:67:A5:83:23:A1:0D:D8 Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1B8E Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/619B0B285AE611E781C33D7CC4F9AE02.roa Signing time: Fri 30 Aug 2024 16:54:06 +0000 ROA not before: Fri 30 Aug 2024 16:54:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 20473 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7054 (0x1b8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9 Validity Not Before: Aug 30 16:54:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d1f92e-83cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:58:56:dd:2e:07:1e:7e:d8:5b:2b:1e:e6: 04:3c:c3:ae:52:bc:96:63:1a:dd:95:e4:c6:1d:7f: cf:5a:10:95:2e:e8:ff:6c:df:2a:f6:da:80:6e:c2: d8:36:a3:37:9c:16:4f:06:29:6d:e6:1f:26:3c:e8: 24:ea:d2:6e:18:ad:fb:11:fe:9f:8d:99:b7:9b:4c: b1:26:c6:bd:b3:ce:da:7b:8d:b6:4f:6d:c8:52:6e: 33:4e:41:60:b5:1e:46:b2:2a:24:47:f7:96:da:78: 11:bb:72:fc:f3:5b:f2:43:b0:89:4f:1f:7e:af:84: b9:bd:93:2d:49:fc:9d:44:70:ac:47:d7:45:13:e5: b2:9e:55:1a:3c:46:bf:30:96:7c:aa:cf:fd:c0:d3: 9c:dc:8c:93:b1:1f:b8:3f:c6:11:b5:09:9d:14:7f: 8c:d0:c3:ad:89:51:3a:11:0a:4b:4b:88:47:95:e6: 45:d6:5c:30:17:33:a9:8c:7e:59:83:b8:f2:0d:66: 4b:99:1b:38:2f:d0:8b:c9:cf:48:87:99:04:63:f0: a6:8d:ec:b9:55:85:46:3c:d6:3e:12:2d:56:c9:0f: e6:94:f4:89:72:03:0c:c1:39:03:75:9f:6f:96:02: a3:30:dd:95:83:61:ac:62:5c:31:7a:f7:c5:41:aa: ca:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:71:5D:0F:CE:57:5F:AA:30:22:05:47:A8:67:A5:83:23:A1:0D:D8 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/619B0B285AE611E781C33D7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 69:66:f4:c5:9d:30:3f:de:e7:8d:68:3e:bc:4b:8b:03:46:3b: d4:06:07:4a:36:bc:0e:d4:5c:d9:cd:e1:a7:39:05:f2:ec:a4: d6:6d:e2:1e:97:0f:1a:41:7d:00:90:82:af:e8:ef:c7:42:4c: 58:d6:b9:92:9d:8f:ac:5b:ed:f2:bc:1e:e4:ad:7c:86:9b:c5: 8a:7c:3d:39:ea:c8:57:31:ea:ab:8f:67:a5:3a:c2:a6:32:01: 85:7b:65:4b:72:d4:f9:1f:b2:1b:17:29:1c:7f:9c:c0:94:a4: 09:32:4f:17:c1:a1:c4:43:be:38:5d:78:2d:d3:73:59:32:99: bf:79:92:6d:7b:52:be:51:8f:6e:50:17:ba:b7:16:21:ec:36: 8e:e8:79:36:3c:3f:d0:27:01:ec:d9:c2:c0:4a:7a:74:44:da: 85:e4:f9:be:c3:db:05:f8:69:ff:89:87:db:ca:97:4f:bc:54: 53:91:a9:2a:b8:ae:da:08:69:03:ea:0a:49:01:b5:75:24:b4: 32:6c:6e:db:fd:ee:f9:2d:34:a2:44:be:68:f8:46:fa:20:ae: bb:49:ba:5f:b7:5a:f2:6b:bf:b4:af:db:47:5c:9f:ff:82:02: b3:d9:65:1a:4a:c3:ad:8b:26:54:f9:36:9f:a6:a0:64:21:67: e3:3f:a9:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICG44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjQwODMwMTY1NDA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZjkyZS04M2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi1YVt0uBx5+2FsrHuYEPMOuUryWYxrdleTGHX/PWhCVLuj/bN8q9tqAbsLY NqM3nBZPBilt5h8mPOgk6tJuGK37Ef6fjZm3m0yxJsa9s87ae422T23IUm4zTkFg tR5GsiokR/eW2ngRu3L881vyQ7CJTx9+r4S5vZMtSfydRHCsR9dFE+WynlUaPEa/ MJZ8qs/9wNOc3IyTsR+4P8YRtQmdFH+M0MOtiVE6EQpLS4hHleZF1lwwFzOpjH5Z g7jyDWZLmRs4L9CLyc9Ih5kEY/Cmjey5VYVGPNY+Ei1WyQ/mlPSJcgMMwTkDdZ9v lgKjMN2Vg2GsYlwxevfFQarKNQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCxxXQ/O V1+qMCIFR6hnpYMjoQ3YMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvNjE5QjBCMjg1 QUU2MTFFNzgxQzMzRDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAaWb0xZ0wP97njWg+vEuLA0Y71AYHSja8DtRc2c3hpzkF8uyk1m3iHpcP GkF9AJCCr+jvx0JMWNa5kp2PrFvt8rwe5K18hpvFinw9OerIVzHqq49npTrCpjIB hXtlS3LU+R+yGxcpHH+cwJSkCTJPF8GhxEO+OF14LdNzWTKZv3mSbXtSvlGPblAX urcWIew2juh5Njw/0CcB7NnCwEp6dETaheT5vsPbBfhp/4mH28qXT7xUU5GpKriu 2ghpA+oKSQG1dSS0Mmxu2/3u+S00okS+aPhG+iCuu0m6X7da8mu/tK/bR1yf/4IC s9llGkrDrYsmVPk2n6agZCFn4z+p/w== -----END CERTIFICATE-----Generated at Sun Feb 16 15:19:58 2025 by rpki-client