$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa File: D36286F2D55C11EAA224E026C4F9AE02.roa (raw, json) Hash identifier: tTA+Jj1VE8Mirfwxda9PRkkRRhfGQ+BLffao2HDxah4= Subject key identifier: 84:EF:1F:71:7D:3C:6A:DD:80:3D:B0:BE:D2:49:E5:F1:8E:DF:D8:77 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E12 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:37 +0000 ROA not before: Fri 20 Sep 2024 16:34:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134419 IP address blocks: 124.227.64.0/20 maxlen: 20 124.227.144.0/22 maxlen: 22 202.103.214.0/23 maxlen: 23 202.103.247.0/24 maxlen: 24 218.21.104.0/21 maxlen: 21 218.21.112.0/21 maxlen: 21 218.65.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7698 (0x1e12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:34:37 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda41d-f0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:f1:eb:fd:4a:d2:39:85:86:06:0f:7e:92: 08:7d:aa:6b:76:9a:65:18:81:21:cf:02:a1:fa:d2: a2:22:a1:1c:c4:e1:7a:34:f2:15:a6:60:e2:fb:7f: d1:c8:75:90:a8:1d:03:0a:ed:ea:19:d5:37:a6:5f: a7:21:7f:03:79:8a:36:34:48:be:47:1f:64:1a:3d: c9:f2:69:15:3d:4d:e9:a7:92:c8:c0:81:37:0c:2b: b4:05:61:b8:e4:aa:fd:f8:fc:9f:08:59:e5:3b:13: 47:cc:4e:3a:89:09:a3:85:da:ea:8f:06:9a:8c:ef: f3:39:85:d4:4e:57:32:35:37:f6:55:ac:23:12:61: c7:f7:b2:71:b7:e3:6d:42:46:28:a2:39:12:2f:f2: 12:d4:4e:d9:b1:99:9f:fe:45:bb:6e:78:dc:29:a6: 71:da:5d:c6:0b:af:71:d4:41:92:64:e1:12:37:c6: dc:14:f0:f9:79:6d:63:ed:f6:04:20:18:48:0f:a9: 92:36:c6:45:b5:9b:53:ed:92:ca:3a:49:17:df:8b: 0f:bf:d5:d2:71:cd:28:96:71:22:ab:3b:cb:c8:bf: 6a:c5:a2:59:da:02:19:07:d0:d3:f3:69:85:05:9e: cb:93:1b:32:1f:28:77:0e:a4:91:1a:00:c9:a1:8e: 02:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EF:1F:71:7D:3C:6A:DD:80:3D:B0:BE:D2:49:E5:F1:8E:DF:D8:77 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D36286F2D55C11EAA224E026C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.227.64.0/20 124.227.144.0/22 202.103.214.0/23 202.103.247.0/24 218.21.104.0-218.21.119.255 218.65.132.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:e7:bc:ea:38:61:c1:32:36:de:95:21:dc:a3:70:57:22:b6: 05:0f:de:31:cf:85:d4:dd:5d:f0:f6:34:8f:d9:6f:7f:47:e5: bd:1f:a4:aa:59:24:c5:30:7b:04:4b:d2:a8:48:a0:7e:ff:bd: 8b:ea:ae:d2:1c:7c:41:91:2f:c6:c7:cc:2f:6d:4f:02:85:c9: 69:69:9f:c9:cf:7e:2c:21:17:ac:37:85:30:ef:c2:41:36:3b: 7a:ea:c6:bb:e2:47:27:5c:d0:7a:7e:84:62:e7:a3:87:44:3e: a1:cd:86:17:c9:74:93:d5:f3:76:82:25:9a:3f:33:ac:16:d0: 59:d4:23:dd:ab:fc:51:f1:b1:58:fb:7d:c3:f8:73:c4:84:39: 76:2e:71:0b:e4:3c:ea:6b:98:21:ea:ee:56:c1:3b:2e:21:9c: 65:8b:c0:b5:ba:17:67:33:bf:1e:1b:f9:04:2e:97:90:c5:93: aa:5a:13:ec:c8:a7:2d:fa:4a:e9:f0:e7:86:44:54:ce:aa:48: 82:35:ba:88:0a:9f:f3:d2:6a:00:b5:c9:61:99:06:26:75:59: 8b:07:b6:a4:fc:0b:3b:aa:ea:44:69:64:82:da:eb:99:c1:e2: 1c:bf:35:4f:35:24:11:84:2d:ff:e6:53:3f:1c:4b:af:19:2e: 97:27:69:a4 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICHhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQxZC1mMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJvx6/1K0jmFhgYPfpIIfaprdpplGIEhzwKh+tKiIqEcxOF6NPIVpmDi+3/R yHWQqB0DCu3qGdU3pl+nIX8DeYo2NEi+Rx9kGj3J8mkVPU3pp5LIwIE3DCu0BWG4 5Kr9+PyfCFnlOxNHzE46iQmjhdrqjwaajO/zOYXUTlcyNTf2VawjEmHH97Jxt+Nt QkYoojkSL/IS1E7ZsZmf/kW7bnjcKaZx2l3GC69x1EGSZOESN8bcFPD5eW1j7fYE IBhID6mSNsZFtZtT7ZLKOkkX34sPv9XScc0olnEiqzvLyL9qxaJZ2gIZB9DT82mF BZ7LkxsyHyh3DqSRGgDJoY4CjwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFITvH3F9 PGrdgD2wvtJJ5fGO39h3MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDM2Mjg2RjJE NTVDMTFFQUEyMjRFMDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAR840ADBAJ845ADBAHKZ9YDBADKZ/cwDAMEA9oVaAMEA9oV cAMEANpBhDANBgkqhkiG9w0BAQsFAAOCAQEAG+e86jhhwTI23pUh3KNwVyK2BQ/e Mc+F1N1d8PY0j9lvf0flvR+kqlkkxTB7BEvSqEigfv+9i+qu0hx8QZEvxsfML21P AoXJaWmfyc9+LCEXrDeFMO/CQTY7eurGu+JHJ1zQen6EYuejh0Q+oc2GF8l0k9Xz doIlmj8zrBbQWdQj3av8UfGxWPt9w/hzxIQ5di5xC+Q86muYIeruVsE7LiGcZYvA tboXZzO/Hhv5BC6XkMWTqloT7MinLfpK6fDnhkRUzqpIgjW6iAqf89JqALXJYZkG JnVZiwe2pPwLO6rqRGlkgtrrmcHiHL81TzUkEYQt/+ZTPxxLrxkulydppA== -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:04 2024 by rpki-client on console-fra.rpki-client.org