$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa File: 057EA0EEC63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: USCITVxdvr2vZIKZ9pZeTbR2vvO/c7r8PRbW/v091j8= Subject key identifier: 0D:8E:F2:37:AC:C4:59:A0:14:03:BA:AD:10:64:D0:29:0E:A4:CD:1D Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 07F7 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa Signing time: Mon 26 Aug 2024 21:29:58 +0000 ROA not before: Mon 26 Aug 2024 21:29:58 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16815 IP address blocks: 202.173.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Aug 26 21:29:58 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccf3d6-bd01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c7:69:b0:d2:82:78:db:72:13:3e:65:03:db: 7e:5c:97:ee:d1:63:34:66:25:56:26:3f:1e:64:a4: fe:03:af:bf:e0:b2:0f:49:92:db:8d:18:43:10:4a: 3a:9b:f2:7b:32:34:1c:bd:e6:bb:9f:3f:8c:1c:51: e4:3b:40:a4:97:30:56:5d:74:17:f2:d0:02:c8:26: f4:18:0d:b2:c0:94:82:66:84:4e:37:c0:6b:47:b0: 30:a7:10:20:e5:07:60:37:a0:c9:e9:a4:d5:60:a8: db:b6:c5:ca:92:28:13:aa:44:f9:69:6b:54:26:60: e6:a6:1f:25:89:53:69:eb:1a:81:c6:c5:a6:15:08: 71:a3:15:c5:86:c6:0d:b9:74:c4:85:d9:d6:b0:23: 5d:8a:1f:e8:e8:11:53:fc:e4:0e:86:0a:4f:81:08: 0d:77:15:b3:de:9d:cb:ad:82:76:fe:67:7d:3b:05: fa:be:31:67:04:da:98:ed:b1:e8:6b:c2:46:32:4a: 28:95:ee:90:02:fe:cf:30:29:2f:17:ee:32:23:6c: b5:7f:e2:de:4c:bd:08:53:19:38:aa:5d:c8:20:ec: 05:7e:10:a7:8a:98:1a:36:8e:0a:0d:a1:1a:1a:0c: b9:c9:ad:7d:95:0d:37:de:2e:22:d3:f8:51:f9:72: da:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8E:F2:37:AC:C4:59:A0:14:03:BA:AD:10:64:D0:29:0E:A4:CD:1D X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/21 Signature Algorithm: sha256WithRSAEncryption 14:92:05:e7:d6:c5:b0:59:bd:dd:3b:6b:49:16:07:0b:52:14: 31:6c:9f:5c:dc:69:07:b2:d0:b6:25:01:17:bc:01:0f:b2:f1: 0d:8b:46:0d:12:43:97:2e:be:78:0b:a8:a4:d8:88:47:4d:79: 4a:33:7a:e1:af:d0:0b:66:c2:76:5e:1d:dd:59:21:0e:e0:05: 2a:b4:2f:c0:a1:79:a5:0e:2d:dc:69:7a:50:17:bd:b6:c8:99: 20:5e:f6:2d:2f:ff:ab:f5:54:6c:5f:32:ff:0e:24:dc:42:b0: 2c:d9:cb:6e:5d:3b:b4:8b:49:c3:8e:69:f9:3c:aa:3c:76:89: cf:eb:07:7f:fc:b0:7d:06:0e:d9:c5:43:18:52:9f:43:7f:62: 23:50:5d:d2:a7:06:c4:af:96:e9:c8:7d:c8:e3:7c:e9:b0:05: e8:bc:1a:ca:b1:a5:56:fb:37:e5:85:67:9d:cf:df:79:b6:25: 6c:99:19:12:c2:58:3b:9f:24:c4:d2:80:60:93:72:e3:9e:bc: ff:e2:04:37:3d:93:05:9a:a9:19:12:3f:4a:98:fb:0e:05:cf: ce:6f:f7:ed:3f:40:41:c3:e9:38:27:3a:94:fc:8c:80:1e:79: 20:34:86:8c:bc:17:a7:0b:43:7d:49:10:e0:da:e6:73:96:5a: fb:41:2e:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjQwODI2MjEyOTU4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZjNkNi1iZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8dpsNKCeNtyEz5lA9t+XJfu0WM0ZiVWJj8eZKT+A6+/4LIPSZLbjRhDEEo6 m/J7MjQcvea7nz+MHFHkO0CklzBWXXQX8tACyCb0GA2ywJSCZoRON8BrR7AwpxAg 5QdgN6DJ6aTVYKjbtsXKkigTqkT5aWtUJmDmph8liVNp6xqBxsWmFQhxoxXFhsYN uXTEhdnWsCNdih/o6BFT/OQOhgpPgQgNdxWz3p3LrYJ2/md9OwX6vjFnBNqY7bHo a8JGMkoole6QAv7PMCkvF+4yI2y1f+LeTL0IUxk4ql3IIOwFfhCnipgaNo4KDaEa Ggy5ya19lQ033i4i0/hR+XLaDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA2O8jes xFmgFAO6rRBk0CkOpM0dMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDU3RUEwRUVD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKrRgwDQYJKoZIhvcNAQELBQADggEBABSSBefWxbBZvd07 a0kWBwtSFDFsn1zcaQey0LYlARe8AQ+y8Q2LRg0SQ5cuvngLqKTYiEdNeUozeuGv 0AtmwnZeHd1ZIQ7gBSq0L8CheaUOLdxpelAXvbbImSBe9i0v/6v1VGxfMv8OJNxC sCzZy25dO7SLScOOafk8qjx2ic/rB3/8sH0GDtnFQxhSn0N/YiNQXdKnBsSvlunI fcjjfOmwBei8GsqxpVb7N+WFZ53P33m2JWyZGRLCWDufJMTSgGCTcuOevP/iBDc9 kwWaqRkSP0qY+w4Fz85v9+0/QEHD6TgnOpT8jIAeeSA0hoy8F6cLQ31JEODa5nOW WvtBLhg= -----END CERTIFICATE-----Generated at Sun Nov 24 22:11:57 2024 by rpki-client on console-fra.rpki-client.org