$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/862D18003A1011EDB5225E73C4F9AE02.roa File: 862D18003A1011EDB5225E73C4F9AE02.roa (raw, json) Hash identifier: v4HK4sfgYsSfASOHkvKK7CKePuHBgJRykt1ECioRpqY= Subject key identifier: D1:B4:C7:9F:5E:4F:BA:4E:B9:AC:B3:78:A9:C8:4F:A1:ED:8B:9C:11 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35F4 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/862D18003A1011EDB5225E73C4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:27 +0000 ROA not before: Fri 16 Aug 2024 14:40:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 209242 IP address blocks: 119.59.0.0/20 maxlen: 20 119.59.0.0/24 maxlen: 24 119.59.1.0/24 maxlen: 24 119.59.2.0/24 maxlen: 24 119.59.3.0/24 maxlen: 24 119.59.4.0/24 maxlen: 24 119.59.5.0/24 maxlen: 24 119.59.6.0/24 maxlen: 24 119.59.7.0/24 maxlen: 24 119.59.8.0/24 maxlen: 24 119.59.9.0/24 maxlen: 24 119.59.10.0/24 maxlen: 24 119.59.11.0/24 maxlen: 24 119.59.12.0/24 maxlen: 24 119.59.13.0/24 maxlen: 24 119.59.14.0/24 maxlen: 24 119.59.15.0/24 maxlen: 24 119.59.16.0/24 maxlen: 24 119.59.17.0/24 maxlen: 24 119.59.18.0/24 maxlen: 24 119.59.19.0/24 maxlen: 24 119.59.20.0/24 maxlen: 24 119.59.21.0/24 maxlen: 24 119.59.22.0/24 maxlen: 24 119.59.23.0/24 maxlen: 24 210.126.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13812 (0x35f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:27 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64db-3a0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2e:97:48:ed:74:42:4a:9b:97:2a:43:99:90: b7:05:c0:f1:5b:34:ed:2c:d8:96:37:ea:63:37:e7: de:e9:6c:7c:f9:99:db:26:14:0f:92:95:4a:c3:93: a8:68:84:88:d1:76:9b:5a:2a:62:ef:92:76:3f:00: ac:6f:f0:18:21:52:99:b5:54:37:db:f9:de:26:0f: f3:63:6c:fc:8f:69:d4:18:1c:99:f5:85:75:27:f6: 0f:c3:a9:9c:3a:26:77:f7:d6:c3:a4:c5:09:3b:4f: c4:ed:13:1e:aa:68:a7:c3:dd:d5:a2:74:b8:cf:8e: b7:3b:67:58:bd:25:9a:6e:a9:da:da:7f:b9:2d:8b: 65:28:ee:cb:59:31:90:42:b5:d5:2f:d4:d4:99:86: 17:b4:44:32:59:c5:ec:30:0c:d1:58:00:9f:cd:16: 11:53:93:73:e6:ae:54:45:ea:bc:14:55:96:22:77: 27:fd:74:d9:d3:8f:b5:e9:57:14:f4:ed:a2:3b:69: c8:c2:bb:52:63:cd:98:b4:25:77:05:bb:67:8b:b5: 0b:a5:1c:bb:1c:11:4f:94:c1:f9:96:82:95:04:f9: 19:a5:12:66:81:ae:7a:6a:01:c5:1b:09:79:42:ca: 00:b0:dd:18:1a:f4:4a:ff:a7:a1:94:82:0b:d1:6f: b9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B4:C7:9F:5E:4F:BA:4E:B9:AC:B3:78:A9:C8:4F:A1:ED:8B:9C:11 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/862D18003A1011EDB5225E73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.59.0.0-119.59.23.255 210.126.126.0/24 Signature Algorithm: sha256WithRSAEncryption 75:ed:56:2a:59:13:5c:f9:be:ca:cb:21:25:2e:e3:ec:ce:65: 74:bc:dc:df:07:a6:55:eb:a7:99:d5:68:cf:a0:89:01:64:7e: 31:74:05:23:f6:21:b6:36:66:1a:7f:a9:c4:70:84:73:40:6d: e3:1e:2e:ea:d4:bb:52:ab:39:bf:a7:b7:a7:ef:d2:81:fc:0d: 76:06:7b:4c:de:44:cb:b2:2c:02:d8:cb:99:21:bc:2e:73:89: 74:b5:6f:dc:5c:bd:9c:a5:db:97:b5:6b:aa:1f:a4:c7:46:e2: 38:af:f3:bd:40:3f:2b:51:db:a0:e2:49:18:c3:fc:2b:6d:f6: 79:01:56:29:2a:1d:ef:78:4a:d5:02:d7:e8:08:7f:be:2e:d8: 1c:29:66:90:0d:6b:0d:54:54:05:62:d0:34:9d:6d:00:47:30: f2:c8:86:3d:f9:00:df:93:ff:40:7f:f3:c2:fb:a5:fe:bf:49: 6b:42:b9:95:e5:fe:3f:b5:a1:36:6a:37:36:a5:be:ea:9b:92: 16:c7:4f:be:f4:85:46:04:b6:9f:89:62:1e:fd:d1:78:17:96: 4a:6e:d5:df:6f:83:0d:41:b0:60:4f:56:66:9b:4f:d8:59:52: 7e:98:8a:b1:73:b8:a8:5f:1e:5d:9d:a8:30:ab:b1:2d:41:a2: 30:90:a1:65 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICNfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRkYi0zYTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3C6XSO10QkqblypDmZC3BcDxWzTtLNiWN+pjN+fe6Wx8+ZnbJhQPkpVKw5Oo aISI0XabWipi75J2PwCsb/AYIVKZtVQ32/neJg/zY2z8j2nUGByZ9YV1J/YPw6mc OiZ399bDpMUJO0/E7RMeqminw93VonS4z463O2dYvSWabqna2n+5LYtlKO7LWTGQ QrXVL9TUmYYXtEQyWcXsMAzRWACfzRYRU5Nz5q5UReq8FFWWIncn/XTZ04+16VcU 9O2iO2nIwrtSY82YtCV3Bbtni7ULpRy7HBFPlMH5loKVBPkZpRJmga56agHFGwl5 QsoAsN0YGvRK/6ehlIIL0W+5UQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNG0x59e T7pOuayzeKnIT6Hti5wRMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvODYyRDE4MDAz QTEwMTFFREI1MjI1RTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMwCwMDAHc7AwQDdzsQAwQA0n5+MA0GCSqGSIb3DQEBCwUAA4IB AQB17VYqWRNc+b7KyyElLuPszmV0vNzfB6ZV66eZ1WjPoIkBZH4xdAUj9iG2NmYa f6nEcIRzQG3jHi7q1LtSqzm/p7en79KB/A12BntM3kTLsiwC2MuZIbwuc4l0tW/c XL2cpduXtWuqH6THRuI4r/O9QD8rUdug4kkYw/wrbfZ5AVYpKh3veErVAtfoCH++ LtgcKWaQDWsNVFQFYtA0nW0ARzDyyIY9+QDfk/9Af/PC+6X+v0lrQrmV5f4/taE2 ajc2pb7qm5IWx0++9IVGBLafiWIe/dF4F5ZKbtXfb4MNQbBgT1Zmm0/YWVJ+mIqx c7ioXx5dnagwq7EtQaIwkKFl -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:25 2024 by rpki-client on console-fra.rpki-client.org