$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa File: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: yomdqOdjT/I2gnB3kNHRnmOa5KgGzGpapRAlE8R2x9Y= Subject key identifier: 3C:CB:13:86:B8:A0:5D:3E:4E:87:0E:35:4E:EA:83:49:E4:BA:43:45 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0750 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 02 Jul 2024 23:11:10 +0000 ROA not before: Tue 02 Jul 2024 23:11:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132063 IP address blocks: 203.154.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 2 23:11:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684890e-c540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5c:40:e4:77:b7:9d:16:e0:69:66:98:96:07: 86:60:f5:dc:8e:30:7d:4e:79:a7:5a:9c:67:f1:cf: 80:48:3e:cb:88:ec:81:99:da:a9:af:d0:b7:78:a3: 2f:a6:40:76:78:67:93:7b:ed:bd:74:42:be:f4:82: 86:7c:9b:df:92:e7:aa:6a:73:29:28:d2:b5:92:06: 83:18:02:e4:93:8a:f3:fc:96:a5:7d:ee:f0:a0:87: ea:dd:0a:db:53:ae:57:0e:ce:9d:6c:ed:d6:3f:80: e3:82:2d:80:04:c7:12:9f:6a:e1:e9:88:6d:66:df: 62:01:43:58:2e:64:d9:a7:a1:92:4c:09:ca:62:1b: 2b:c7:61:7b:01:a5:a7:73:4e:eb:64:ff:de:62:d2: 3d:18:fd:e4:a6:2d:88:9d:98:bc:8c:41:89:4b:7f: 98:00:0d:d0:58:de:4a:26:f1:86:3d:ed:7b:6c:95: 1b:f1:20:46:95:18:79:9b:c9:5d:b0:c5:34:34:5f: d1:72:82:8c:a9:92:d8:fd:60:b2:31:4b:91:1d:63: 3c:06:bc:c6:82:3e:d9:0d:6c:0f:ae:72:24:fd:a5: 2e:fd:1e:9c:b1:c2:de:64:10:18:ec:bb:a5:3c:18: 74:e0:cf:81:39:b2:39:6a:36:54:3d:b8:39:c7:9c: 62:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CB:13:86:B8:A0:5D:3E:4E:87:0E:35:4E:EA:83:49:E4:BA:43:45 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.154.137.0/24 Signature Algorithm: sha256WithRSAEncryption 31:db:91:08:99:05:bf:ce:57:91:3f:37:2c:11:3e:37:52:5c: c8:2b:b7:82:7c:e4:7e:91:d5:69:4d:2a:62:23:7e:e7:3d:43: 86:82:30:2d:b5:28:57:0b:cc:2e:65:06:60:9c:33:a1:26:fd: 97:fc:cf:22:1b:34:66:94:bf:52:f5:93:87:c5:cf:92:04:ca: e7:85:74:67:69:79:e4:81:ae:80:17:17:5a:f5:0b:49:68:74: df:ef:0a:97:40:66:5f:73:b0:b8:13:b5:1b:0c:5e:79:6b:b8: 98:c1:bd:ff:b9:8a:58:3f:16:de:d8:ae:8b:90:12:25:18:4b: 64:23:4d:39:2e:8e:3b:13:ea:23:df:35:42:fd:06:a2:84:2a: bb:fb:34:36:a9:a5:78:11:60:be:bf:80:c7:a9:fa:a6:fa:42: 70:6d:26:d7:c8:d4:0e:bb:03:68:93:be:ee:01:37:d8:8c:45: 46:10:3a:e6:66:4d:0e:26:f9:0a:70:d1:85:eb:37:da:fa:b6: 12:f0:02:ec:fb:58:7a:be:45:64:0c:45:52:90:d7:bd:4f:02: 0f:5a:25:ea:2d:73:99:0c:b1:ff:45:d1:13:c9:7c:9f:80:a3: 9b:36:cc:0d:ae:25:52:db:cc:94:38:17:a4:c7:ec:0b:9e:59: 03:d0:bb:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjQwNzAyMjMxMTEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0ODkwZS1jNTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1xA5He3nRbgaWaYlgeGYPXcjjB9TnmnWpxn8c+ASD7LiOyBmdqpr9C3eKMv pkB2eGeTe+29dEK+9IKGfJvfkueqanMpKNK1kgaDGALkk4rz/Jalfe7woIfq3Qrb U65XDs6dbO3WP4Djgi2ABMcSn2rh6YhtZt9iAUNYLmTZp6GSTAnKYhsrx2F7AaWn c07rZP/eYtI9GP3kpi2InZi8jEGJS3+YAA3QWN5KJvGGPe17bJUb8SBGlRh5m8ld sMU0NF/RcoKMqZLY/WCyMUuRHWM8BrzGgj7ZDWwPrnIk/aUu/R6cscLeZBAY7Lul PBh04M+BObI5ajZUPbg5x5xiXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDzLE4a4 oF0+TocONU7qg0nkukNFMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUFEMkRBOUEy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLmokwDQYJKoZIhvcNAQELBQADggEBADHbkQiZBb/OV5E/ NywRPjdSXMgrt4J85H6R1WlNKmIjfuc9Q4aCMC21KFcLzC5lBmCcM6Em/Zf8zyIb NGaUv1L1k4fFz5IEyueFdGdpeeSBroAXF1r1C0lodN/vCpdAZl9zsLgTtRsMXnlr uJjBvf+5ilg/Ft7YrouQEiUYS2QjTTkujjsT6iPfNUL9BqKEKrv7NDappXgRYL6/ gMep+qb6QnBtJtfI1A67A2iTvu4BN9iMRUYQOuZmTQ4m+Qpw0YXrN9r6thLwAuz7 WHq+RWQMRVKQ171PAg9aJeotc5kMsf9F0RPJfJ+Ao5s2zA2uJVLbzJQ4F6TH7Aue WQPQu+g= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org