$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa File: E33945D6B0ED11E5B7779F44C4F9AE02.roa (raw, json) Hash identifier: skjzRKV2yiK6mRZi2jO6tjX3v0zfq/yBAWOKemHERmE= Subject key identifier: 35:47:BA:5E:8C:6F:61:B5:99:C0:E0:D6:B5:2A:D8:05:A1:DD:FB:AC Certificate issuer: /CN=A9148AC4/serialNumber=DE313CB35CD076AFE5C3778F05E5CA15CF337AF9 Certificate serial: 2C0E Authority key identifier: DE:31:3C:B3:5C:D0:76:AF:E5:C3:77:8F:05:E5:CA:15:CF:33:7A:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa Signing time: Thu 18 Jul 2024 16:02:34 +0000 ROA not before: Thu 18 Jul 2024 16:02:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 17741 IP address blocks: 114.31.96.0/21 maxlen: 21 202.44.75.0/24 maxlen: 24 2401:2800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.crl rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11278 (0x2c0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC4/serialNumber=DE313CB35CD076AFE5C3778F05E5CA15CF337AF9 Validity Not Before: Jul 18 16:02:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66993c9a-956c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e3:8e:36:14:0d:ae:54:ed:2c:46:46:7a:10: 8a:33:20:b6:dd:c6:a9:21:37:6d:eb:c4:c4:49:a2: b3:11:6c:b6:de:2f:a5:10:92:8e:18:8c:e9:5c:90: 44:fe:0e:8c:15:c1:fe:d7:c6:b7:b8:59:1b:40:16: 30:7e:12:95:76:aa:67:5f:46:30:95:15:e7:80:2e: da:87:b8:a5:d8:1f:5d:55:1d:67:b6:e8:f0:5b:92: 0f:ad:ec:6e:bf:e8:2f:fe:5b:10:d3:54:f0:ae:5d: cd:1d:4f:d8:69:0b:99:39:a5:f4:d6:a2:c4:62:ae: e2:d3:75:2a:bb:92:d2:6e:67:78:f8:c5:6d:a0:e9: 6c:cc:76:51:ef:29:88:1f:a1:92:d3:b5:08:ab:22: d2:dd:32:3f:ab:54:20:ab:26:ce:b5:aa:d5:b2:bd: 6b:7b:de:c1:e6:1e:70:48:fb:59:b6:58:03:be:6d: fa:0a:44:aa:e6:d6:d4:18:05:e0:4f:eb:8e:e2:a4: 80:71:0f:a1:25:cc:85:28:3a:1c:4d:07:04:7c:18: a4:18:00:76:be:82:c6:3c:e2:1a:43:30:49:e1:2b: 60:db:b0:f0:8c:ec:1f:66:04:24:20:ce:d3:ac:01: 16:3c:cc:39:92:db:8c:1b:b3:8b:ad:bb:e6:31:d5: 01:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:47:BA:5E:8C:6F:61:B5:99:C0:E0:D6:B5:2A:D8:05:A1:DD:FB:AC X509v3 Authority Key Identifier: keyid:DE:31:3C:B3:5C:D0:76:AF:E5:C3:77:8F:05:E5:CA:15:CF:33:7A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.96.0/21 202.44.75.0/24 IPv6: 2401:2800::/32 Signature Algorithm: sha256WithRSAEncryption 7f:e4:80:92:9b:a2:e7:84:6b:a0:eb:37:16:c4:e0:0b:89:4f: bd:b5:3d:e7:e7:f0:8c:5f:fb:41:6f:d0:db:6f:b4:d6:9c:0d: 08:b1:c4:1d:83:cb:f7:ab:35:c3:e6:a9:5c:21:3a:be:c2:6e: 1c:7c:c6:87:5b:f8:17:a1:38:ef:75:04:a9:64:8f:f6:fc:c3: 4f:cd:cc:ac:83:9b:71:01:e4:5f:13:02:97:6d:6f:70:96:0b: b6:e7:06:3c:1d:02:25:5e:99:e7:fb:33:6f:2c:fa:ef:2e:3f: 50:25:f3:c4:3a:a5:c0:e5:56:01:ab:4c:f5:3e:bc:b2:27:aa: 84:40:fb:d8:b5:0b:93:40:ab:27:cb:97:8d:d8:42:68:f9:35: 1b:6f:2a:15:2e:d5:0c:9c:ea:b8:e9:09:bc:a4:59:84:27:df: 26:96:1a:d4:43:da:a3:fd:b0:1a:44:37:37:45:1c:e3:58:b1: 62:ae:64:a9:0f:e8:5c:2d:1d:58:55:f4:5b:09:b7:c2:8e:a2: 53:a1:b0:17:80:d2:5a:f4:39:15:3d:b1:75:84:50:d0:6b:e6: 5d:68:d7:c6:d5:12:d0:06:33:51:be:bd:78:bd:59:e4:00:a9: 0b:4a:63:52:7c:e5:63:0a:13:4b:ac:4d:61:ac:2f:ae:f9:16: f9:c3:0d:fa -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICLA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzQxMTAvBgNVBAUTKERFMzEzQ0IzNUNEMDc2QUZFNUMzNzc4RjA1RTVDQTE1 Q0YzMzdBRjkwHhcNMjQwNzE4MTYwMjM0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk5M2M5YS05NTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uOONhQNrlTtLEZGehCKMyC23capITdt68TESaKzEWy23i+lEJKOGIzpXJBE /g6MFcH+18a3uFkbQBYwfhKVdqpnX0YwlRXngC7ah7il2B9dVR1ntujwW5IPrexu v+gv/lsQ01Twrl3NHU/YaQuZOaX01qLEYq7i03Uqu5LSbmd4+MVtoOlszHZR7ymI H6GS07UIqyLS3TI/q1QgqybOtarVsr1re97B5h5wSPtZtlgDvm36CkSq5tbUGAXg T+uO4qSAcQ+hJcyFKDocTQcEfBikGAB2voLGPOIaQzBJ4Stg27DwjOwfZgQkIM7T rAEWPMw5ktuMG7OLrbvmMdUBcQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDVHul6M b2G1mcDg1rUq2AWh3fusMB8GA1UdIwQYMBaAFN4xPLNc0Hav5cN3jwXlyhXPM3r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDNC8yMDZCQzg2Q0FF NkExMUUzOTM3OUQ1NTA1OTExRUEzMi8zakU4czF6UWRxX2x3M2VQQmVYS0ZjOHpl dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNqRThzMXpRZHFfbHczZVBCZVhLRmM4emV2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhBQzQvMjA2QkM4NkNBRTZBMTFFMzkzNzlENTUwNTkxMUVBMzIvRTMzOTQ1RDZC MEVEMTFFNUI3Nzc5RjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBANyH2ADBADKLEswDQQCAAIwBwMFACQBKAAwDQYJKoZIhvcN AQELBQADggEBAH/kgJKboueEa6DrNxbE4AuJT721Pefn8Ixf+0Fv0NtvtNacDQix xB2Dy/erNcPmqVwhOr7Cbhx8xodb+BehOO91BKlkj/b8w0/NzKyDm3EB5F8TApdt b3CWC7bnBjwdAiVemef7M28s+u8uP1Al88Q6pcDlVgGrTPU+vLInqoRA+9i1C5NA qyfLl43YQmj5NRtvKhUu1Qyc6rjpCbykWYQn3yaWGtRD2qP9sBpENzdFHONYsWKu ZKkP6FwtHVhV9FsJt8KOolOhsBeA0lr0ORU9sXWEUNBr5l1o18bVEtAGM1G+vXi9 WeQAqQtKY1J85WMKE0usTWGsL675FvnDDfo= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:44 2024 by rpki-client on console-fra.rpki-client.org