$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/689E513E2A4311EBBD69BE46C4F9AE02.roa File: 689E513E2A4311EBBD69BE46C4F9AE02.roa (raw, json) Hash identifier: aPw4mGEbOxYWWebEcyujbpJrg+fs+P4Y9IEeShpAP4U= Subject key identifier: 24:BD:BF:7B:99:77:3B:2E:64:F0:49:9A:B9:39:58:45:23:67:BE:04 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0764 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/689E513E2A4311EBBD69BE46C4F9AE02.roa Signing time: Tue 02 Jul 2024 23:11:28 +0000 ROA not before: Tue 02 Jul 2024 23:11:28 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 56018 IP address blocks: 203.150.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 2 23:11:28 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66848920-cc1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ce:63:53:a3:1b:fd:0e:f0:7c:84:e9:25:d1: ed:b5:92:1a:73:b3:b8:9c:c9:99:35:04:a5:a2:46: 17:fd:9c:d6:51:2e:0d:41:67:7c:b9:7e:5c:2b:89: c6:d6:23:a7:ec:5a:1c:63:f6:02:0a:34:d2:78:5c: 0d:e9:58:76:6e:11:14:f9:5b:d6:b8:e0:56:09:3f: 7e:04:16:36:e0:53:24:df:3f:87:d5:0d:f7:36:2b: f4:e1:f5:24:a3:2c:7c:21:4c:13:4b:d1:3d:48:86: e8:2a:69:e7:4e:2d:09:fc:b8:ae:a2:e7:c2:2d:ed: c7:f9:b4:d5:15:c4:9e:5d:f7:05:09:ad:7f:c1:1d: cc:2b:5f:75:0e:47:8e:34:76:40:6d:ce:e7:35:e9: 0d:85:84:f6:f5:ea:fc:34:53:06:6c:0a:60:d2:ae: 75:bd:78:db:0e:f2:05:1c:95:6b:ff:c1:e5:18:7c: 16:13:0e:02:f2:22:ad:7c:e5:b9:a0:2e:3d:0a:e7: b3:2c:f5:6b:70:31:b0:d5:f2:45:f2:cd:33:b5:d2: 94:1e:5b:83:6b:d3:48:1d:61:5a:2a:66:50:46:79: b6:59:f6:1d:47:04:a7:58:76:1f:6a:fc:d6:92:9d: 42:1e:e8:52:65:ef:61:3c:d8:d1:df:9b:9b:4e:82: 3c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BD:BF:7B:99:77:3B:2E:64:F0:49:9A:B9:39:58:45:23:67:BE:04 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/689E513E2A4311EBBD69BE46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.42.0/24 Signature Algorithm: sha256WithRSAEncryption 42:59:ce:be:6f:23:34:9b:da:eb:30:d8:00:b5:1a:20:ed:03: 91:11:98:99:7f:9b:57:98:5d:80:79:5e:46:36:cc:9e:70:56: 68:3a:5e:3e:d1:18:b9:98:9e:47:18:58:b9:67:a6:0b:e2:c2: d7:1b:a7:db:ad:b5:be:a1:c8:94:f6:f1:04:47:24:b6:95:3f: 1f:f2:50:f2:f2:9a:43:ba:25:0a:15:e6:20:cb:68:fc:dd:3f: 31:50:80:e6:00:58:f7:24:85:48:a8:61:04:68:c4:e2:4a:02: 0f:24:98:eb:fc:89:ba:1e:e9:4c:b9:21:f8:60:41:46:68:ec: 5f:7d:0a:48:23:88:2a:fa:2a:4f:79:4c:03:3e:83:68:75:b7: de:8d:3c:bc:a9:08:c7:80:85:26:32:8d:7d:6b:83:20:9a:bf: a8:c1:ea:27:1e:2b:5c:9a:e2:39:f1:8c:89:50:ae:a4:22:69: bc:fc:a0:57:1f:7a:3b:ed:b7:0c:c3:67:5e:7b:1c:c5:8e:d6: 65:14:71:29:71:9f:fd:dc:f5:32:f8:7b:b7:be:d0:0d:50:f5: cb:5e:87:47:cc:ac:a5:06:92:04:cc:ea:34:5e:74:95:c3:2d: 6a:0c:c0:29:6f:9a:c2:fb:a2:dd:17:cf:2e:14:af:31:2a:d7: 74:51:fc:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjQwNzAyMjMxMTI4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0ODkyMC1jYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss5jU6Mb/Q7wfITpJdHttZIac7O4nMmZNQSlokYX/ZzWUS4NQWd8uX5cK4nG 1iOn7FocY/YCCjTSeFwN6Vh2bhEU+VvWuOBWCT9+BBY24FMk3z+H1Q33Niv04fUk oyx8IUwTS9E9SIboKmnnTi0J/LiuoufCLe3H+bTVFcSeXfcFCa1/wR3MK191DkeO NHZAbc7nNekNhYT29er8NFMGbApg0q51vXjbDvIFHJVr/8HlGHwWEw4C8iKtfOW5 oC49CuezLPVrcDGw1fJF8s0ztdKUHluDa9NIHWFaKmZQRnm2WfYdRwSnWHYfavzW kp1CHuhSZe9hPNjR35ubToI86wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCS9v3uZ dzsuZPBJmrk5WEUjZ74EMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNjg5RTUxM0Uy QTQzMTFFQkJENjlCRTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLliowDQYJKoZIhvcNAQELBQADggEBAEJZzr5vIzSb2usw 2AC1GiDtA5ERmJl/m1eYXYB5XkY2zJ5wVmg6Xj7RGLmYnkcYWLlnpgviwtcbp9ut tb6hyJT28QRHJLaVPx/yUPLymkO6JQoV5iDLaPzdPzFQgOYAWPckhUioYQRoxOJK Ag8kmOv8iboe6Uy5IfhgQUZo7F99CkgjiCr6Kk95TAM+g2h1t96NPLypCMeAhSYy jX1rgyCav6jB6iceK1ya4jnxjIlQrqQiabz8oFcfejvttwzDZ157HMWO1mUUcSlx n/3c9TL4e7e+0A1Q9cteh0fMrKUGkgTM6jRedJXDLWoMwClvmsL7ot0Xzy4UrzEq 13RR/H0= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org