$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa File: AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: pfkn3LqtWnlMP8UpcJdjJfLXYLMtDN/Y2mXi1zUzlb8= Subject key identifier: 4A:67:78:10:60:5C:C2:46:00:48:E8:6F:0D:F6:1E:8A:AA:C7:8D:35 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 075A Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 02 Jul 2024 23:11:19 +0000 ROA not before: Tue 02 Jul 2024 23:11:19 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24083 IP address blocks: 210.4.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 2 23:11:19 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66848916-6631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a5:24:9e:62:6f:06:57:2e:03:38:1b:a0:3d: de:32:b7:b0:01:14:93:21:17:51:37:38:78:4c:bf: f2:1c:bf:56:38:54:bc:c4:e3:50:d5:d8:1f:fd:a0: 87:68:ee:3a:92:5a:33:c3:8f:b4:62:85:a0:85:3f: 74:c9:ac:d8:78:26:3f:59:34:86:ab:35:13:df:c6: ad:3c:a6:a5:a8:c1:69:6c:c6:1a:7f:ff:de:a2:5c: 13:4f:10:61:35:72:0e:e0:c0:73:24:74:cb:04:0b: 34:9c:58:c2:88:7f:e8:97:a9:f2:d4:6d:af:3f:f3: d9:fa:98:a2:cb:96:db:a5:23:24:e8:a2:a6:80:72: 38:70:fe:b1:6f:45:66:a8:51:20:df:4d:05:ef:7a: 29:de:bc:57:6e:ed:d5:2b:56:21:5b:99:37:a3:85: 28:db:02:cc:e7:b7:e9:12:7b:7e:d2:ea:6a:5c:3c: 09:8f:97:ac:2b:cf:78:fd:de:04:43:3b:0b:1c:b6: cd:c2:e6:f8:e7:3c:33:4b:8b:5c:67:a4:03:1d:f3: 65:1a:82:85:52:6b:96:5c:f1:be:b2:e9:d8:fa:c6: 61:4f:76:e2:10:a7:77:4f:25:ce:65:f4:11:ee:75: a0:d1:5e:ae:8f:57:3e:2c:50:6f:cd:6c:db:c7:41: 6f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:67:78:10:60:5C:C2:46:00:48:E8:6F:0D:F6:1E:8A:AA:C7:8D:35 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.4.139.0/24 Signature Algorithm: sha256WithRSAEncryption aa:54:ce:3d:14:49:ac:f6:c8:cf:09:97:8e:33:30:a1:6a:09: 68:7f:b1:e6:31:13:7d:e3:cf:d3:85:b5:54:df:d1:0d:8d:d1: 8a:b3:b6:78:7d:7a:ce:2c:da:2c:02:8b:cd:31:32:83:a4:15: 7c:84:85:f8:2d:6c:e8:32:ca:33:02:91:0f:9d:ed:63:fe:c4: 9a:53:6b:4a:82:87:70:6b:97:9e:a2:8c:cc:c8:79:85:fb:9a: 20:d6:a1:1b:64:b4:23:2b:3e:ce:3d:4c:5f:04:dc:40:fe:9e: c0:f1:98:24:06:dd:98:1e:dd:fa:ba:f4:c6:cf:26:c5:2f:03: 5f:5c:41:39:fa:c7:f2:fe:05:6d:1b:cd:2a:67:a2:b5:88:84: e5:ed:6a:60:82:22:9d:7e:87:5c:a5:f1:01:6d:11:f9:4d:98: 95:d7:d0:49:08:0e:9b:b3:27:75:42:51:01:97:8a:12:63:cf: 13:4c:ac:49:79:67:65:00:ab:6b:74:0f:7d:3c:d5:4b:8c:98: f1:54:f4:33:40:25:bb:4d:f5:f1:d1:5c:77:e1:0d:13:14:79: 8e:42:40:89:65:7e:ab:9e:d4:ac:c3:e7:69:38:f9:25:8f:d6: 3e:9c:cb:71:6b:98:f9:5e:dd:e4:b7:36:db:ac:19:49:1f:00: 9b:f0:d4:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjQwNzAyMjMxMTE5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0ODkxNi02NjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6UknmJvBlcuAzgboD3eMrewARSTIRdRNzh4TL/yHL9WOFS8xONQ1dgf/aCH aO46klozw4+0YoWghT90yazYeCY/WTSGqzUT38atPKalqMFpbMYaf//eolwTTxBh NXIO4MBzJHTLBAs0nFjCiH/ol6ny1G2vP/PZ+piiy5bbpSMk6KKmgHI4cP6xb0Vm qFEg300F73op3rxXbu3VK1YhW5k3o4Uo2wLM57fpEnt+0upqXDwJj5esK894/d4E QzsLHLbNwub45zwzS4tcZ6QDHfNlGoKFUmuWXPG+sunY+sZhT3biEKd3TyXOZfQR 7nWg0V6uj1c+LFBvzWzbx0FvFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEpneBBg XMJGAEjobw32Hoqqx401MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUY5NkQwN0My QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSBIswDQYJKoZIhvcNAQELBQADggEBAKpUzj0USaz2yM8J l44zMKFqCWh/seYxE33jz9OFtVTf0Q2N0Yqztnh9es4s2iwCi80xMoOkFXyEhfgt bOgyyjMCkQ+d7WP+xJpTa0qCh3Brl56ijMzIeYX7miDWoRtktCMrPs49TF8E3ED+ nsDxmCQG3Zge3fq69MbPJsUvA19cQTn6x/L+BW0bzSpnorWIhOXtamCCIp1+h1yl 8QFtEflNmJXX0EkIDpuzJ3VCUQGXihJjzxNMrEl5Z2UAq2t0D3081UuMmPFU9DNA JbtN9fHRXHfhDRMUeY5CQIllfque1KzD52k4+SWP1j6cy3FrmPle3eS3NtusGUkf AJvw1CA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org