$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A012C5E0AF7911EA869B4722C4F9AE02.roa File: A012C5E0AF7911EA869B4722C4F9AE02.roa (raw, json) Hash identifier: EnrdJ6BB4UUlPJCPrDriY5JkZ6kz6OGJ2NtAj8g8718= Subject key identifier: 7F:C9:E0:70:FA:62:50:61:C0:90:B3:C5:CB:D7:2B:27:F7:3E:B3:A9 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E1C Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A012C5E0AF7911EA869B4722C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:46 +0000 ROA not before: Fri 20 Sep 2024 16:34:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17638 IP address blocks: 123.151.192.0/19 maxlen: 19 123.151.210.0/24 maxlen: 24 123.151.224.0/19 maxlen: 19 218.30.175.0/24 maxlen: 24 218.30.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7708 (0x1e1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:34:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda426-b427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a7:6f:57:00:74:46:6e:ae:7a:ec:7b:97:61: 1f:fa:e3:ed:c3:97:b3:ea:35:49:0a:74:51:a8:6f: 03:91:39:03:9e:44:f6:ac:97:5b:f0:4d:7d:88:ff: e9:72:60:cc:97:9c:65:a0:6f:95:eb:20:85:0b:22: 4b:12:47:2f:61:66:b2:8b:9a:bf:bb:f4:18:53:a5: 09:d4:f6:26:fe:84:df:f0:10:bc:ba:9a:d4:1a:05: 0d:c3:4f:0a:96:13:bb:e5:bf:7d:21:ab:46:6b:e2: fd:58:21:80:47:82:96:3f:0c:e6:d7:1d:8b:bb:a6: 43:f0:e0:6e:2c:77:9b:bc:52:23:aa:00:33:da:a3: 46:6c:22:40:d4:76:82:69:61:78:49:1b:96:ce:68: f0:61:ad:7b:03:5b:ac:d0:f8:b2:67:78:1b:d1:54: d7:e8:84:14:31:9a:62:ee:2c:9b:ad:b7:16:06:5e: da:d5:b7:79:3a:73:dd:22:55:d4:be:a3:69:0c:82: 44:43:c0:1e:58:35:3b:6f:e2:10:77:b0:14:36:a9: 6c:3b:b2:21:86:d2:52:f5:86:cd:99:05:41:2d:41: 60:ae:0c:cd:70:3f:33:a2:af:fc:24:ec:fa:20:56: fe:76:29:f9:d1:f2:c3:39:1d:09:52:39:5e:2c:7a: ed:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C9:E0:70:FA:62:50:61:C0:90:B3:C5:CB:D7:2B:27:F7:3E:B3:A9 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A012C5E0AF7911EA869B4722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.151.192.0/18 218.30.175.0/24 218.30.189.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:f4:2d:d8:41:37:d1:d0:bd:d8:29:c7:5c:bc:6d:0d:89:7f: 48:43:a8:d7:b8:37:4f:53:ff:31:73:f6:ce:f3:12:db:90:93: 81:82:27:ca:eb:b5:0d:bc:9b:ff:54:6f:7c:0c:ee:4d:a8:a1: 3c:b1:70:16:79:02:24:6a:7f:c2:05:3c:eb:d9:38:ab:bb:b2: 64:f9:88:c0:32:86:39:20:44:17:cc:01:8e:8b:20:15:23:27: c8:0e:7d:2c:6d:9f:f1:ac:94:a4:09:d0:48:72:d8:14:e8:7c: f4:55:12:39:ec:4c:50:17:26:ae:bf:52:c1:7e:04:6d:ba:9c: 2a:d9:1c:3a:be:30:f3:a0:89:44:0b:0e:22:f8:93:61:65:2e: 23:e8:57:6b:94:31:da:64:b5:36:d3:1e:a3:07:42:c4:96:48: 6c:27:45:4e:0d:55:aa:22:e6:c1:a3:ac:40:86:f4:fd:56:fa: 01:db:41:1f:ae:a3:c1:e2:dc:6c:87:9f:9f:e0:e2:ad:cb:6a: dc:e7:de:96:4c:d6:96:dd:7e:f3:fa:9e:8f:c8:a2:56:34:b7: a4:5e:96:bd:23:1f:7a:8f:55:9e:c0:bf:60:9c:a3:cb:af:4f: 1a:b4:35:75:db:2c:5a:63:98:95:7f:d9:2c:1c:04:76:51:dc: dd:4e:4a:92 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQyNi1iNDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsadvVwB0Rm6ueux7l2Ef+uPtw5ez6jVJCnRRqG8DkTkDnkT2rJdb8E19iP/p cmDMl5xloG+V6yCFCyJLEkcvYWayi5q/u/QYU6UJ1PYm/oTf8BC8uprUGgUNw08K lhO75b99IatGa+L9WCGAR4KWPwzm1x2Lu6ZD8OBuLHebvFIjqgAz2qNGbCJA1HaC aWF4SRuWzmjwYa17A1us0PiyZ3gb0VTX6IQUMZpi7iybrbcWBl7a1bd5OnPdIlXU vqNpDIJEQ8AeWDU7b+IQd7AUNqlsO7IhhtJS9YbNmQVBLUFgrgzNcD8zoq/8JOz6 IFb+din50fLDOR0JUjleLHrtywIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH/J4HD6 YlBhwJCzxcvXKyf3PrOpMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQTAxMkM1RTBB Rjc5MTFFQTg2OUI0NzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAZ7l8ADBADaHq8DBADaHr0wDQYJKoZIhvcNAQELBQADggEB AI30LdhBN9HQvdgpx1y8bQ2Jf0hDqNe4N09T/zFz9s7zEtuQk4GCJ8rrtQ28m/9U b3wM7k2ooTyxcBZ5AiRqf8IFPOvZOKu7smT5iMAyhjkgRBfMAY6LIBUjJ8gOfSxt n/GslKQJ0Ehy2BTofPRVEjnsTFAXJq6/UsF+BG26nCrZHDq+MPOgiUQLDiL4k2Fl LiPoV2uUMdpktTbTHqMHQsSWSGwnRU4NVaoi5sGjrECG9P1W+gHbQR+uo8Hi3GyH n5/g4q3Latzn3pZM1pbdfvP6no/IolY0t6Relr0jH3qPVZ7Av2Cco8uvTxq0NXXb LFpjmJV/2SwcBHZR3N1OSpI= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:42 2024 by rpki-client on console-fra.rpki-client.org