$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C7B/675208AE1D9311E2BCBDE5F608B02CD2/A8F46E3ACE3C11EE9418F274C4F9AE02.roa File: A8F46E3ACE3C11EE9418F274C4F9AE02.roa (raw, json) Hash identifier: 1QkerkhXXJPb5P83qDLjcP5h9pfLAWxswWLwxPIwwVo= Subject key identifier: 29:DA:F5:02:8D:9E:C3:2C:A9:F9:2C:FA:0B:F8:D2:0D:F1:70:8F:AD Certificate issuer: /CN=A9148C7B/serialNumber=17577F1E92EB33B2CDE6E489C0B9A99A2E02FDA3 Certificate serial: 3493 Authority key identifier: 17:57:7F:1E:92:EB:33:B2:CD:E6:E4:89:C0:B9:A9:9A:2E:02:FD:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F1d_HpLrM7LN5uSJwLmpmi4C_aM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C7B/675208AE1D9311E2BCBDE5F608B02CD2/A8F46E3ACE3C11EE9418F274C4F9AE02.roa Signing time: Tue 22 Oct 2024 14:50:57 +0000 ROA not before: Tue 22 Oct 2024 14:50:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133066 IP address blocks: 61.5.192.0/24 maxlen: 24 119.59.81.0/24 maxlen: 24 119.59.83.0/24 maxlen: 24 119.59.84.0/24 maxlen: 24 119.59.85.0/24 maxlen: 24 121.100.51.0/24 maxlen: 24 121.100.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C7B/675208AE1D9311E2BCBDE5F608B02CD2/F1d_HpLrM7LN5uSJwLmpmi4C_aM.crl rsync://rpki.apnic.net/member_repository/A9148C7B/675208AE1D9311E2BCBDE5F608B02CD2/F1d_HpLrM7LN5uSJwLmpmi4C_aM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F1d_HpLrM7LN5uSJwLmpmi4C_aM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C7B/serialNumber=17577F1E92EB33B2CDE6E489C0B9A99A2E02FDA3 Validity Not Before: Oct 22 14:50:57 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6717bbd1-4ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ad:31:33:da:09:8d:76:c8:45:31:f8:df:16: f6:09:c8:a7:8d:76:6b:1c:f5:75:8e:c2:23:1f:6b: 3f:2c:20:15:5e:b9:b1:24:0e:46:58:41:c8:26:b9: a1:e0:6a:a8:34:ca:bc:77:b0:44:5d:8a:c6:07:36: ea:e2:9e:87:f0:98:0a:57:9a:e1:a5:16:8a:01:a6: 98:ef:a4:f2:8e:9b:70:f6:34:a9:03:fa:8c:f1:4d: 03:fb:f0:f9:e5:74:51:10:d8:c1:ef:b2:8a:5b:a5: dd:94:2d:43:96:28:3a:73:7b:d4:03:0d:79:2c:d3: 8b:a1:12:5a:3f:79:05:68:52:cd:af:58:a9:dd:1e: 40:45:26:ef:b1:78:59:94:5e:77:f4:e8:24:08:35: e9:da:d4:7a:99:e0:b8:f0:10:9f:22:a1:d4:a2:0e: 12:71:2b:80:8f:ca:89:41:99:9e:6b:35:03:b1:7d: b2:5a:aa:05:3f:22:04:e8:ab:89:0a:5b:50:1d:48: 69:3d:1f:4b:6b:ed:c6:be:c1:d0:62:29:2c:18:16: 6a:e8:f2:da:74:02:e1:12:17:41:31:0b:7b:a8:40: 07:e3:5b:d7:1e:38:cf:00:11:e2:09:e0:8e:45:1f: 97:b1:c7:4c:a2:44:93:34:c4:d9:4c:37:74:84:a7: 96:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DA:F5:02:8D:9E:C3:2C:A9:F9:2C:FA:0B:F8:D2:0D:F1:70:8F:AD X509v3 Authority Key Identifier: keyid:17:57:7F:1E:92:EB:33:B2:CD:E6:E4:89:C0:B9:A9:9A:2E:02:FD:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C7B/675208AE1D9311E2BCBDE5F608B02CD2/F1d_HpLrM7LN5uSJwLmpmi4C_aM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F1d_HpLrM7LN5uSJwLmpmi4C_aM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C7B/675208AE1D9311E2BCBDE5F608B02CD2/A8F46E3ACE3C11EE9418F274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.5.192.0/24 119.59.81.0/24 119.59.83.0-119.59.85.255 121.100.51.0-121.100.52.255 Signature Algorithm: sha256WithRSAEncryption 1e:8b:f8:f4:ee:fa:56:bb:23:ea:e3:4c:31:09:54:b6:44:bb: 53:f7:8a:5b:9c:54:51:36:82:3a:d6:89:07:27:b3:73:6b:c0: ae:e7:10:0a:99:1c:81:8f:65:7e:0b:e8:00:24:72:f8:72:4a: 26:a3:c7:b9:b2:07:ab:51:aa:fe:93:68:20:7b:5f:23:0b:dc: 98:a4:54:cd:ec:60:33:0d:5a:fb:85:29:c3:cd:3a:f6:46:12: db:0c:35:d1:72:d4:93:ce:ca:ce:f4:30:42:50:e0:2f:ed:2f: 65:b0:b7:d5:80:71:0a:f9:a3:f5:c3:41:81:1e:0b:ab:2f:b2: 0d:f5:76:d7:fe:59:57:42:cc:57:f4:9e:9b:18:3f:cc:e8:7d: 49:db:6f:bc:fc:e6:48:d5:9a:3d:14:c7:95:5a:21:9d:d4:c5: cc:90:e7:f9:4b:e8:3d:c7:71:54:bc:0f:b5:4f:8f:e5:08:c5: 27:3c:05:f0:7e:2b:36:31:a8:32:e6:6a:04:6d:69:a6:e8:8b: 89:22:cd:1b:68:cf:83:92:c3:85:3e:c0:53:f6:50:01:cc:d2: 2b:19:12:8d:ee:8b:34:f4:3f:8a:8f:51:f8:04:8e:58:14:79: 38:19:b6:0b:e1:1b:72:54:a1:52:81:66:da:58:01:3c:2d:d6: 9a:87:b3:00 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDN0IxMTAvBgNVBAUTKDE3NTc3RjFFOTJFQjMzQjJDREU2RTQ4OUMwQjlBOTlB MkUwMkZEQTMwHhcNMjQxMDIyMTQ1MDU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3YmJkMS00ZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4K0xM9oJjXbIRTH43xb2CcinjXZrHPV1jsIjH2s/LCAVXrmxJA5GWEHIJrmh 4GqoNMq8d7BEXYrGBzbq4p6H8JgKV5rhpRaKAaaY76Tyjptw9jSpA/qM8U0D+/D5 5XRRENjB77KKW6XdlC1Dlig6c3vUAw15LNOLoRJaP3kFaFLNr1ip3R5ARSbvsXhZ lF539OgkCDXp2tR6meC48BCfIqHUog4ScSuAj8qJQZmeazUDsX2yWqoFPyIE6KuJ CltQHUhpPR9La+3GvsHQYiksGBZq6PLadALhEhdBMQt7qEAH41vXHjjPABHiCeCO RR+XscdMokSTNMTZTDd0hKeWaQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFCna9QKN nsMsqfks+gv40g3xcI+tMB8GA1UdIwQYMBaAFBdXfx6S6zOyzebkicC5qZouAv2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEM3Qi82NzUyMDhBRTFE OTMxMUUyQkNCREU1RjYwOEIwMkNEMi9GMWRfSHBMck03TE41dVNKd0xtcG1pNENf YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YxZF9IcExyTTdMTjV1U0p3TG1wbWk0Q19hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhDN0IvNjc1MjA4QUUxRDkzMTFFMkJDQkRFNUY2MDhCMDJDRDIvQThGNDZFM0FD RTNDMTFFRTk0MThGMjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgDBAA9BcADBAB3O1EwDAMEAHc7UwMEAXc7VDAMAwQAeWQzAwQA eWQ0MA0GCSqGSIb3DQEBCwUAA4IBAQAei/j07vpWuyPq40wxCVS2RLtT94pbnFRR NoI61okHJ7Nza8Cu5xAKmRyBj2V+C+gAJHL4ckomo8e5sgerUar+k2gge18jC9yY pFTN7GAzDVr7hSnDzTr2RhLbDDXRctSTzsrO9DBCUOAv7S9lsLfVgHEK+aP1w0GB HgurL7IN9XbX/llXQsxX9J6bGD/M6H1J22+8/OZI1Zo9FMeVWiGd1MXMkOf5S+g9 x3FUvA+1T4/lCMUnPAXwfis2Magy5moEbWmm6IuJIs0baM+DksOFPsBT9lABzNIr GRKN7os09D+Kj1H4BI5YFHk4GbYL4RtyVKFSgWbaWAE8Ldaah7MA -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:18 2024 by rpki-client on console-ams.rpki-client.org