$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/D85FB84853BE11EF819E6347C4F9AE02.roa File: D85FB84853BE11EF819E6347C4F9AE02.roa (raw, json) Hash identifier: braMW0NAbwyLaqUHCm7d+knh/mAQhxqCF/Ie867bEqc= Subject key identifier: 4A:A4:B3:0D:51:81:DE:0B:1B:0D:07:19:41:08:62:5F:10:59:D9:3D Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Certificate serial: 3440 Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/D85FB84853BE11EF819E6347C4F9AE02.roa Signing time: Tue 06 Aug 2024 06:41:01 +0000 ROA not before: Tue 06 Aug 2024 06:41:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 24455 IP address blocks: 203.130.144.0/24 maxlen: 24 203.130.145.0/24 maxlen: 24 203.156.116.0/24 maxlen: 24 203.156.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13376 (0x3440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Validity Not Before: Aug 6 06:41:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66b1c57d-ad59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0c:70:dc:9a:3b:dd:80:75:3b:44:17:23:2f: 9d:61:6c:3f:3c:30:e8:b5:e2:f4:ee:35:b2:b5:22: 7d:ed:d9:91:0c:b5:df:b9:d2:b6:e1:f3:e2:53:f3: a2:1c:e5:12:32:a2:f3:2e:46:c6:ba:30:03:38:ae: 1d:82:2c:09:c0:22:c1:98:cf:f3:36:6e:e1:d9:36: d8:44:1c:de:2c:97:e2:1d:d2:51:44:72:be:72:30: 7e:f3:9f:55:10:02:51:3b:97:74:ef:65:62:d2:e5: 08:16:89:9a:77:3c:a4:cf:11:fe:1e:5a:74:d2:92: b8:68:ca:5c:2d:84:1c:e6:7b:15:77:83:5b:02:88: d6:ae:b8:cc:d8:7d:99:d6:a7:f2:c1:9e:8e:dd:2f: 41:50:76:e3:65:0e:9b:85:a1:b8:da:76:ee:7f:26: de:b9:62:d1:bc:17:65:1d:65:bb:45:8b:a0:04:95: 0e:97:61:85:2a:f7:bc:86:9a:82:1d:c4:60:5a:eb: c0:ad:47:70:23:10:ec:a2:d5:ed:68:39:a2:18:f7: 4e:3f:c9:18:6e:24:e6:48:3e:3e:dd:92:2b:f4:1e: af:ed:72:c8:fa:72:52:b8:e8:64:a0:e1:b0:8e:63: 5b:90:26:a7:fa:3b:b5:9f:97:b7:5d:fc:dd:02:5b: 2b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A4:B3:0D:51:81:DE:0B:1B:0D:07:19:41:08:62:5F:10:59:D9:3D X509v3 Authority Key Identifier: keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/D85FB84853BE11EF819E6347C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.130.144.0/23 203.156.116.0/23 Signature Algorithm: sha256WithRSAEncryption d1:e2:6c:a1:48:fe:a9:1c:c1:2d:93:ac:1f:12:af:08:a4:97: 70:3b:95:92:2f:99:91:45:d7:8f:c7:6b:50:67:6f:34:01:ea: 3d:d2:18:dc:c2:ca:6d:78:62:a4:61:3f:78:de:c2:9f:b1:c4: 7e:f7:71:c3:94:34:c9:7f:8d:7c:8d:f7:6d:7f:d6:7a:11:ba: 07:e5:ea:5b:1a:71:45:4f:cd:b2:a0:8a:55:48:2b:aa:76:43: 36:46:92:e2:4b:19:c0:26:f8:22:21:9e:72:5d:05:a4:3d:9a: 9c:47:9a:1a:57:56:7d:11:bb:47:b3:fb:3c:01:ac:ca:3a:e0: 81:66:b5:e6:c8:09:01:c7:ae:72:f8:51:4c:68:ec:37:9b:27: bc:a6:81:21:8c:f5:18:f9:79:9e:5a:f1:c9:7b:00:98:45:0b: 1e:f9:da:e1:01:52:d0:27:1c:cb:5a:bb:1f:b0:81:e3:28:3a: 8c:48:38:3a:db:53:01:3c:34:c1:34:2a:8c:c0:b0:9f:fa:17: 0b:5e:e5:eb:7f:36:39:cf:e8:a3:ff:9c:05:e2:70:11:5c:0d: d7:6a:ef:61:56:fe:cf:a0:65:f2:f2:b2:08:b6:e5:bc:66:0f: f6:58:82:6e:36:33:41:74:5f:5d:15:b4:15:5f:af:1f:66:c7: 53:4f:6a:73 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDRENzIzOTU1MjQzQUU4OEQ1NTI0MzlBRjhFNEUwQTA5 QzhGNjU5MEQwHhcNMjQwODA2MDY0MTAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIxYzU3ZC1hZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Axw3Jo73YB1O0QXIy+dYWw/PDDoteL07jWytSJ97dmRDLXfudK24fPiU/Oi HOUSMqLzLkbGujADOK4dgiwJwCLBmM/zNm7h2TbYRBzeLJfiHdJRRHK+cjB+859V EAJRO5d072Vi0uUIFomadzykzxH+Hlp00pK4aMpcLYQc5nsVd4NbAojWrrjM2H2Z 1qfywZ6O3S9BUHbjZQ6bhaG42nbufybeuWLRvBdlHWW7RYugBJUOl2GFKve8hpqC HcRgWuvArUdwIxDsotXtaDmiGPdOP8kYbiTmSD4+3ZIr9B6v7XLI+nJSuOhkoOGw jmNbkCan+ju1n5e3XfzdAlsrQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEqksw1R gd4LGw0HGUEIYl8QWdk9MB8GA1UdIwQYMBaAFE1yOVUkOuiNVSQ5r45OCgnI9lkN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS9ENTIxNDI3MDFE OUIxMUUyQjgyMUZEODkwOEIwMkNEMi9UWEk1VlNRNjZJMVZKRG12ams0S0NjajJX UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYSTVWU1E2NkkxVkpEbXZqazRLQ2NqMldRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvRDUyMTQyNzAxRDlCMTFFMkI4MjFGRDg5MDhCMDJDRDIvRDg1RkI4NDg1 M0JFMTFFRjgxOUU2MzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHLgpADBAHLnHQwDQYJKoZIhvcNAQELBQADggEBANHibKFI /qkcwS2TrB8Srwikl3A7lZIvmZFF14/Ha1BnbzQB6j3SGNzCym14YqRhP3jewp+x xH73ccOUNMl/jXyN921/1noRugfl6lsacUVPzbKgilVIK6p2QzZGkuJLGcAm+CIh nnJdBaQ9mpxHmhpXVn0Ru0ez+zwBrMo64IFmtebICQHHrnL4UUxo7DebJ7ymgSGM 9Rj5eZ5a8cl7AJhFCx752uEBUtAnHMtaux+wgeMoOoxIODrbUwE8NME0KozAsJ/6 Fwte5et/NjnP6KP/nAXicBFcDddq72FW/s+gZfLysgi25bxmD/ZYgm42M0F0X10V tBVfrx9mx1NPanM= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:18 2024 by rpki-client on console-ams.rpki-client.org