$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa File: 0B989CC8BC6711EAA9856B6AC4F9AE02.roa (raw, json) Hash identifier: 5JWbsLN/dW9xbqfNvNx/Ipznac7jWKsUQzc216E28SI= Subject key identifier: 87:7A:D9:0E:A9:56:7E:0B:C3:57:E4:F2:25:0A:6B:4D:89:43:45:05 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E1E Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:48 +0000 ROA not before: Fri 20 Sep 2024 16:34:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17799 IP address blocks: 218.30.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7710 (0x1e1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:34:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda428-0042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:02:96:c5:a6:29:25:63:df:4f:bc:9e:6a:98: 43:a7:f4:34:e0:fb:1b:09:8c:77:41:cd:fe:3d:50: 8a:5f:bb:fb:ea:d5:40:07:51:3d:a1:9c:3e:dc:85: f3:c8:8f:71:50:18:9c:e7:ef:2a:aa:4a:8b:72:47: 3b:d2:70:d1:c3:f4:37:65:c5:28:57:c8:0e:61:f5: 1b:d2:e3:10:19:43:4e:52:89:fc:cf:8c:46:71:53: bb:aa:1c:e3:b0:0f:2a:b2:83:7c:e3:f2:59:75:42: bd:c3:6f:29:44:5e:32:4e:0c:17:3e:ab:00:42:8d: db:35:42:90:e8:a5:ce:cb:ee:7d:64:db:7d:c1:35: 72:b4:c4:4f:67:89:37:39:6e:cd:5d:09:c4:85:14: 6f:6e:e9:83:d3:2a:2d:3c:a5:b7:3e:bd:0f:14:03: 26:1b:65:d1:cc:f1:80:d5:4b:cb:cc:94:3b:d1:99: 64:15:4f:2f:ce:90:96:05:b9:74:19:26:3e:e0:a2: 17:aa:0d:57:f0:78:bd:bf:4c:c0:00:47:24:05:78: 48:6b:4c:4c:64:43:05:61:fa:74:f2:c6:8a:6e:ec: 4a:4e:9b:bc:1d:d5:93:21:8f:d7:8e:d6:7e:16:1f: 24:d8:6c:2c:8a:8f:51:9d:71:50:62:d2:c5:8d:d6: 44:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7A:D9:0E:A9:56:7E:0B:C3:57:E4:F2:25:0A:6B:4D:89:43:45:05 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.170.0/24 Signature Algorithm: sha256WithRSAEncryption 49:11:aa:f0:0a:5b:7a:19:f1:7c:17:fe:29:2b:38:d1:0d:d7: 71:04:f8:3d:ef:d3:68:94:66:1a:09:09:c1:45:dd:06:7b:0f: 4a:53:b9:42:a5:93:6b:37:05:dd:6f:7f:b6:0b:9a:dc:83:ac: 0a:b8:36:c2:19:b3:0a:74:dc:02:42:6e:8e:e6:f9:24:61:12: 31:19:78:8d:a3:3c:56:60:a8:01:38:8a:e2:61:50:22:a8:46: 0c:a2:34:ca:d0:44:80:86:91:dd:6c:51:b9:5a:e1:61:dc:da: ea:5e:c3:58:1d:76:1d:1e:e4:65:7f:cf:0e:30:2f:a0:90:d5: 2b:e4:39:b2:8a:f2:9f:fa:c3:b6:17:8e:3d:08:4c:93:24:e8: 50:f6:4c:f9:96:5d:56:81:d9:52:f9:2e:c3:d4:6e:a0:fd:d6: a5:1c:29:e7:1f:d4:1f:79:0c:20:5f:91:3b:95:72:1c:03:60: db:47:2b:d9:4f:fd:91:49:6a:6c:f1:c8:d0:5a:60:16:96:79: 5e:32:b8:a1:14:fb:51:1e:bf:a9:42:12:47:83:28:53:5b:03: b3:0e:68:d1:a4:06:e4:d8:62:47:9e:f9:e5:f1:b9:50:b4:85: 1a:18:61:a8:09:fa:ca:79:cf:13:ee:a4:0b:6b:a8:18:4c:33: 2e:74:03:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQyOC0wMDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwKWxaYpJWPfT7yeaphDp/Q04PsbCYx3Qc3+PVCKX7v76tVAB1E9oZw+3IXz yI9xUBic5+8qqkqLckc70nDRw/Q3ZcUoV8gOYfUb0uMQGUNOUon8z4xGcVO7qhzj sA8qsoN84/JZdUK9w28pRF4yTgwXPqsAQo3bNUKQ6KXOy+59ZNt9wTVytMRPZ4k3 OW7NXQnEhRRvbumD0yotPKW3Pr0PFAMmG2XRzPGA1UvLzJQ70ZlkFU8vzpCWBbl0 GSY+4KIXqg1X8Hi9v0zAAEckBXhIa0xMZEMFYfp08saKbuxKTpu8HdWTIY/XjtZ+ Fh8k2Gwsio9RnXFQYtLFjdZEpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFId62Q6p Vn4Lw1fk8iUKa02JQ0UFMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMEI5ODlDQzhC QzY3MTFFQUE5ODU2QjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADaHqowDQYJKoZIhvcNAQELBQADggEBAEkRqvAKW3oZ8XwX /ikrONEN13EE+D3v02iUZhoJCcFF3QZ7D0pTuUKlk2s3Bd1vf7YLmtyDrAq4NsIZ swp03AJCbo7m+SRhEjEZeI2jPFZgqAE4iuJhUCKoRgyiNMrQRICGkd1sUbla4WHc 2upew1gddh0e5GV/zw4wL6CQ1SvkObKK8p/6w7YXjj0ITJMk6FD2TPmWXVaB2VL5 LsPUbqD91qUcKecf1B95DCBfkTuVchwDYNtHK9lP/ZFJamzxyNBaYBaWeV4yuKEU +1Eev6lCEkeDKFNbA7MOaNGkBuTYYkee+eXxuVC0hRoYYagJ+sp5zxPupAtrqBhM My50Azk= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:03 2024 by rpki-client on console-fra.rpki-client.org