$ rpki-client -vvf rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/F40EE60A9B5C11EFAF221C2AC4F9AE02.roa File: F40EE60A9B5C11EFAF221C2AC4F9AE02.roa (raw, json) Hash identifier: jJCobfJLcL+bxm+0JuTzhdUR6TH06A3Cv8Ze73t5bJc= Subject key identifier: DA:DA:F6:0A:78:E7:DD:9B:FD:D3:DB:85:F8:3C:23:7F:D4:A5:BC:F8 Certificate issuer: /CN=A913EC3B/serialNumber=2DDCD05DCE2C58037FE02F95E1A8BFCBD3E0E325 Certificate serial: 016B Authority key identifier: 2D:DC:D0:5D:CE:2C:58:03:7F:E0:2F:95:E1:A8:BF:CB:D3:E0:E3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/F40EE60A9B5C11EFAF221C2AC4F9AE02.roa Signing time: Sat 09 Nov 2024 02:35:31 +0000 ROA not before: Sat 09 Nov 2024 02:35:31 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 17810 IP address blocks: 203.212.67.0/24 maxlen: 24 203.212.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.crl rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EC3B/serialNumber=2DDCD05DCE2C58037FE02F95E1A8BFCBD3E0E325 Validity Not Before: Nov 9 02:35:31 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672eca73-95cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1e:13:83:a6:80:f7:38:3c:02:b2:99:db:f5: 15:73:6d:a0:8c:8a:f9:fd:55:e7:e2:66:cf:90:d2: 94:83:de:48:98:19:03:dc:c1:41:9b:1e:72:88:7a: 67:ea:0d:19:76:15:49:5d:5b:ef:27:31:53:bd:08: 6f:57:9d:8b:e7:ea:bf:41:da:f0:22:e6:6d:b7:8c: ed:bd:be:91:bb:19:01:d4:8c:4f:d6:a8:49:28:5f: 84:21:b8:42:93:14:f2:97:03:28:98:13:15:91:e4: cc:6d:17:86:ac:99:d5:d6:f3:71:b7:8c:fd:d6:71: a5:cc:a6:04:26:85:d7:64:d0:36:18:94:ec:e2:b3: a8:b9:04:4a:51:ee:89:1d:52:49:13:09:94:bd:01: e8:eb:d3:b4:4e:ea:a0:35:1d:b7:fc:0d:62:fa:5c: fd:27:42:18:4b:20:19:68:12:31:2a:d9:1b:da:cb: 98:7d:64:6e:d4:f0:cd:22:ca:57:e0:6b:93:78:ed: ea:da:25:5c:98:b3:af:fa:82:5e:30:5a:61:19:35: 39:c2:b2:af:4e:47:2b:9c:65:54:75:e1:e7:f8:2a: 11:c1:85:0d:c5:8a:95:b5:91:5c:d1:a0:84:f5:9a: 01:43:d6:31:7e:44:e6:bd:26:29:e3:cd:38:2f:8f: 2a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DA:F6:0A:78:E7:DD:9B:FD:D3:DB:85:F8:3C:23:7F:D4:A5:BC:F8 X509v3 Authority Key Identifier: keyid:2D:DC:D0:5D:CE:2C:58:03:7F:E0:2F:95:E1:A8:BF:CB:D3:E0:E3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LdzQXc4sWAN_4C-V4ai_y9Pg4yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EC3B/DF4A43727DE511ED8781127FC4F9AE02/F40EE60A9B5C11EFAF221C2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.212.67.0/24 203.212.69.0/24 Signature Algorithm: sha256WithRSAEncryption 32:c9:66:da:bd:05:26:92:9a:74:7a:89:7d:15:f5:22:03:24: 12:ee:21:dd:72:d7:87:5f:32:0f:e0:39:2e:24:71:cb:d0:d1: 20:63:92:7e:dd:6c:9f:76:46:98:b9:28:17:a9:08:60:c3:30: 89:bc:3d:9a:59:68:d0:5b:12:7d:0d:9e:dd:7b:20:f8:a6:80: 74:93:da:62:64:5f:00:fa:2c:29:c3:c2:82:b0:20:e5:f9:01: 84:44:42:f9:ab:29:0e:fa:f7:e0:77:27:75:c0:28:48:dc:2b: f8:f0:40:99:e9:b1:d8:87:6d:e9:51:96:8f:59:50:0a:65:9c: 88:7e:66:70:f1:a1:ef:1e:26:dc:be:dc:f8:0e:58:01:f4:0c: 8a:e3:fa:cf:16:1e:a7:f7:2c:6d:f5:5d:c3:6b:01:6a:d3:64: 23:73:64:01:bf:58:cb:02:5b:31:aa:df:51:f3:00:81:94:d8: e2:2c:d0:3e:e1:8c:e4:db:8d:67:21:5d:ef:70:be:b6:73:3f: 6d:e6:5a:5a:ea:c3:1e:fd:a9:32:01:fc:df:9b:65:06:13:38: 5c:7e:e2:94:ac:94:b1:67:c8:37:90:e1:85:e4:34:76:7a:0a: 9f:7b:25:13:a5:df:d9:6f:b5:d2:5e:79:08:61:7d:58:e0:37: 5e:55:7b:b9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VDM0IxMTAvBgNVBAUTKDJERENEMDVEQ0UyQzU4MDM3RkUwMkY5NUUxQThCRkNC RDNFMEUzMjUwHhcNMjQxMTA5MDIzNTMxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlY2E3My05NWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyR4Tg6aA9zg8ArKZ2/UVc22gjIr5/VXn4mbPkNKUg95ImBkD3MFBmx5yiHpn 6g0ZdhVJXVvvJzFTvQhvV52L5+q/QdrwIuZtt4ztvb6RuxkB1IxP1qhJKF+EIbhC kxTylwMomBMVkeTMbReGrJnV1vNxt4z91nGlzKYEJoXXZNA2GJTs4rOouQRKUe6J HVJJEwmUvQHo69O0TuqgNR23/A1i+lz9J0IYSyAZaBIxKtkb2suYfWRu1PDNIspX 4GuTeO3q2iVcmLOv+oJeMFphGTU5wrKvTkcrnGVUdeHn+CoRwYUNxYqVtZFc0aCE 9ZoBQ9YxfkTmvSYp4804L48qcQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNra9gp4 592b/dPbhfg8I3/Upbz4MB8GA1UdIwQYMBaAFC3c0F3OLFgDf+AvleGov8vT4OMl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUMzQi9ERjRBNDM3MjdE RTUxMUVEODc4MTEyN0ZDNEY5QUUwMi9MZHpRWGM0c1dBTl80Qy1WNGFpX3k5UGc0 eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xkelFYYzRzV0FOXzRDLVY0YWlfeTlQZzR5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VDM0IvREY0QTQzNzI3REU1MTFFRDg3ODExMjdGQzRGOUFFMDIvRjQwRUU2MEE5 QjVDMTFFRkFGMjIxQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADL1EMDBADL1EUwDQYJKoZIhvcNAQELBQADggEBADLJZtq9 BSaSmnR6iX0V9SIDJBLuId1y14dfMg/gOS4kccvQ0SBjkn7dbJ92Rpi5KBepCGDD MIm8PZpZaNBbEn0Nnt17IPimgHST2mJkXwD6LCnDwoKwIOX5AYREQvmrKQ769+B3 J3XAKEjcK/jwQJnpsdiHbelRlo9ZUAplnIh+ZnDxoe8eJty+3PgOWAH0DIrj+s8W Hqf3LG31XcNrAWrTZCNzZAG/WMsCWzGq31HzAIGU2OIs0D7hjOTbjWchXe9wvrZz P23mWlrqwx79qTIB/N+bZQYTOFx+4pSslLFnyDeQ4YXkNHZ6Cp97JROl39lvtdJe eQhhfVjgN15Ve7k= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:54 2024 by rpki-client on console-fra.rpki-client.org