$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/9C58363E8F2811ECA311FF19C4F9AE02.roa File: 9C58363E8F2811ECA311FF19C4F9AE02.roa (raw, json) Hash identifier: N5j7WOPf8R/W04K/g7J6exFJHjLoUKmGax2m8ylN8D4= Subject key identifier: EA:91:8A:38:A2:8F:10:B3:34:6A:8B:AB:67:5F:C9:8F:CB:33:62:88 Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Certificate serial: 30EC Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/9C58363E8F2811ECA311FF19C4F9AE02.roa Signing time: Tue 30 Apr 2024 15:52:26 +0000 ROA not before: Tue 30 Apr 2024 15:52:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17762 IP address blocks: 115.118.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12524 (0x30ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Validity Not Before: Apr 30 15:52:26 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663113ba-6787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:5b:8d:4f:1d:7b:4d:ee:ee:eb:8f:66:4e: 25:6b:bc:1c:3f:30:3f:2a:95:52:73:85:17:bd:85: 56:b1:30:12:93:b6:b0:d2:4f:91:3f:a8:16:fb:41: 24:3d:9e:90:41:7e:3d:ba:da:e7:f7:52:8e:2a:3e: f2:5d:e4:52:96:69:c7:d2:15:4e:9f:6d:cf:94:43: a3:6c:b3:3d:2e:92:3e:1b:18:65:eb:a2:b0:55:02: d3:8f:2d:68:0f:10:0c:3f:93:57:48:47:86:27:7f: 91:6e:d4:24:92:1f:6f:a5:a8:0e:b3:5a:32:45:6b: 49:99:2e:88:30:0a:3b:a4:eb:b8:08:d2:ec:a6:08: c3:fa:a0:09:c7:b2:43:d4:40:96:d0:d0:4a:e8:b5: 7d:94:23:fe:8a:92:f4:9f:66:e9:fe:87:0b:db:e9: 3b:f0:4a:38:e7:a4:f7:53:a5:d3:82:57:cf:e5:8c: 2d:00:f8:28:3e:d5:03:0f:ad:d4:8e:44:12:8d:28: f1:c7:70:07:d5:8b:2d:87:53:85:5a:f8:97:7f:fa: 4e:de:b8:75:00:09:5d:fa:e4:c1:fd:b8:42:25:9c: b9:2e:ca:19:6b:d1:35:b4:db:1c:5e:9d:b8:60:34: 78:06:52:fb:02:a3:62:12:af:26:6e:81:57:44:df: 64:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:91:8A:38:A2:8F:10:B3:34:6A:8B:AB:67:5F:C9:8F:CB:33:62:88 X509v3 Authority Key Identifier: keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/9C58363E8F2811ECA311FF19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.118.72.0/24 Signature Algorithm: sha256WithRSAEncryption 69:1a:97:11:a6:97:f4:e0:6c:ab:48:e6:e7:86:56:4a:c7:b6: f3:61:a8:10:1f:87:d2:33:42:3c:b0:26:de:51:58:a5:d2:fa: 28:60:fc:55:32:58:1d:ff:6d:98:04:f6:99:99:b3:fa:e3:d0: ba:60:02:11:86:b7:e7:e2:18:b7:86:df:08:eb:17:ec:b2:53: 7e:ee:dc:4a:78:ad:cb:be:63:9d:b4:29:95:95:76:f8:5e:bb: 41:d5:36:08:5a:e9:c5:f8:90:e4:1b:53:37:6e:88:a7:17:fe: be:37:f5:f7:d5:b6:19:92:ba:24:04:21:d9:8a:33:d4:c6:15: e8:7d:0e:ce:f8:e9:a2:f1:df:29:93:43:d3:31:46:86:17:e5: f1:c1:f0:fc:11:ea:2c:be:b4:21:43:d0:28:0d:01:99:1c:42: cf:65:14:e7:f6:18:8a:8c:6f:a0:13:1d:22:8c:5d:c2:16:f6: a9:fe:36:73:ce:8b:08:a7:12:91:46:58:3c:5a:3b:ee:bf:3c: 84:0d:ac:0b:ed:a4:6c:04:88:b1:82:2c:94:45:94:71:c8:4a: b5:09:2f:95:57:b3:95:33:bf:78:45:8f:35:52:33:ea:67:a2: e7:99:f8:a8:6f:30:5c:bc:63:d8:a1:b7:36:fc:3d:39:39:93: 05:20:9a:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENFNzUxMTAvBgNVBAUTKDQ5ODkyNTM3RDhCMkMwMzI1QjdCRTA4MUZEOTI4NkM3 OUJFQTZBODUwHhcNMjQwNDMwMTU1MjI2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMTNiYS02Nzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5VbjU8de03u7uuPZk4la7wcPzA/KpVSc4UXvYVWsTASk7aw0k+RP6gW+0Ek PZ6QQX49utrn91KOKj7yXeRSlmnH0hVOn23PlEOjbLM9LpI+Gxhl66KwVQLTjy1o DxAMP5NXSEeGJ3+RbtQkkh9vpagOs1oyRWtJmS6IMAo7pOu4CNLspgjD+qAJx7JD 1ECW0NBK6LV9lCP+ipL0n2bp/ocL2+k78Eo456T3U6XTglfP5YwtAPgoPtUDD63U jkQSjSjxx3AH1Ysth1OFWviXf/pO3rh1AAld+uTB/bhCJZy5LsoZa9E1tNscXp24 YDR4BlL7AqNiEq8mboFXRN9kMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOqRijii jxCzNGqLq2dfyY/LM2KIMB8GA1UdIwQYMBaAFEmJJTfYssAyW3vggf2Shseb6mqF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0U3NS9EMjJFRjNENkZG NEIxMUUyODFCRTA2NjI1OTExRUEzMi9TWWtsTjlpeXdESmJlLUNCX1pLR3g1dnFh b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NZa2xOOWl5d0RKYmUtQ0JfWktHeDV2cWFvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENFNzUvRDIyRUYzRDZGRjRCMTFFMjgxQkUwNjYyNTkxMUVBMzIvOUM1ODM2M0U4 RjI4MTFFQ0EzMTFGRjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzdkgwDQYJKoZIhvcNAQELBQADggEBAGkalxGml/TgbKtI 5ueGVkrHtvNhqBAfh9IzQjywJt5RWKXS+ihg/FUyWB3/bZgE9pmZs/rj0LpgAhGG t+fiGLeG3wjrF+yyU37u3Ep4rcu+Y520KZWVdvheu0HVNgha6cX4kOQbUzduiKcX /r439ffVthmSuiQEIdmKM9TGFeh9Ds746aLx3ymTQ9MxRoYX5fHB8PwR6iy+tCFD 0CgNAZkcQs9lFOf2GIqMb6ATHSKMXcIW9qn+NnPOiwinEpFGWDxaO+6/PIQNrAvt pGwEiLGCLJRFlHHISrUJL5VXs5Uzv3hFjzVSM+pnoueZ+KhvMFy8Y9ihtzb8PTk5 kwUgmg8= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:17 2024 by rpki-client on console-ams.rpki-client.org