$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa File: F5CC48A804D011E994985639C4F9AE02.roa (raw, json) Hash identifier: VS0VHmkDeDlKunxOHZGj08THbVfcWifqq1DkBVbt3SM= Subject key identifier: 0F:F1:BA:21:26:A3:51:17:0F:80:CF:83:CE:4E:82:44:DE:FB:58:F9 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E21 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:51 +0000 ROA not before: Fri 20 Sep 2024 16:34:51 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23724 IP address blocks: 218.30.25.0/24 maxlen: 24 218.30.26.0/23 maxlen: 23 218.30.26.0/24 maxlen: 24 218.30.28.0/23 maxlen: 23 218.30.96.0/19 maxlen: 19 218.30.99.0/24 maxlen: 24 218.30.107.0/24 maxlen: 24 218.30.110.0/24 maxlen: 24 218.30.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7713 (0x1e21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:34:51 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda42a-4dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:5d:6b:c6:1e:ad:8e:57:04:c8:a3:cb:c8: c6:dd:1d:5e:9c:3c:c1:5b:93:2f:78:a0:f3:21:cf: 5f:d6:2b:4e:73:a0:ea:d4:aa:2c:df:00:15:ae:7b: 87:4a:99:ba:90:7a:1d:7c:2b:60:91:17:03:8d:ed: 62:2f:88:9c:b1:cc:88:f3:75:c8:4c:1c:4a:84:54: 95:d9:aa:7e:49:32:07:25:8b:1d:63:e0:97:54:71: 14:5b:89:ea:5f:76:ed:e7:7b:58:32:9c:83:2f:bb: 28:fb:ac:f5:4f:41:af:62:6c:f0:fb:71:e4:c3:c8: 65:7f:2c:5c:23:24:5e:25:ed:7d:77:e8:02:16:dc: 0e:71:51:f1:83:57:91:68:3a:0b:7e:11:a0:8b:f6: d5:98:2f:a2:df:7e:bb:da:4a:9b:1f:54:7a:f3:69: 15:bf:36:af:f6:b8:c6:1a:ec:45:79:9d:a9:0a:bb: 94:5f:8b:bd:8b:b7:a2:97:d7:e2:4e:a4:54:1a:e5: 60:e0:1e:d3:4a:73:94:7e:c8:84:7b:fd:dc:de:de: 34:05:88:cc:ee:03:d6:ee:e7:cd:46:27:40:8d:30: 2b:45:fc:2c:bc:ef:26:3e:dc:e0:95:28:64:a7:d2: 3b:2a:12:43:d8:66:c1:89:86:86:b1:35:85:33:e5: f0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F1:BA:21:26:A3:51:17:0F:80:CF:83:CE:4E:82:44:DE:FB:58:F9 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.25.0-218.30.29.255 218.30.96.0/19 Signature Algorithm: sha256WithRSAEncryption ba:df:96:19:c9:ca:7b:5c:f7:30:9f:77:bd:e5:66:31:06:6a: 68:16:e2:2f:9a:a2:1e:97:0b:af:47:04:7f:d5:58:95:9e:52: 61:d6:3e:7f:92:62:8c:28:98:6b:c8:34:f3:a5:95:06:01:24: 74:7f:72:c7:34:b0:17:15:04:1e:5c:9d:24:5e:a7:da:01:b4: 35:d9:08:2a:76:5a:b5:97:be:7b:39:37:3b:89:d2:fe:4c:55: 3b:bd:2d:e2:3c:05:ce:c1:fd:61:17:ae:82:30:2d:e4:d8:4f: bf:89:7c:2a:69:d5:3b:f3:45:27:61:bc:ac:ea:92:15:84:b0: 5c:9e:4f:11:07:91:64:89:5d:1a:09:e9:44:03:de:d2:e0:01: df:1f:f3:d0:e4:b7:c7:32:e8:9b:8d:ff:60:e4:03:7f:da:96: 93:88:33:01:16:43:70:a7:07:af:e7:5a:5d:e7:ef:ab:85:e8: 30:da:12:65:2f:38:d9:ac:5f:2f:ed:4e:92:8e:29:cb:a4:94: 0d:88:e0:cf:66:fb:ef:1d:fe:07:d1:1f:48:d3:df:11:bc:59: 6a:90:7a:16:c1:ba:02:97:87:fe:73:61:b0:5e:08:8f:a0:43: c8:4c:f1:1e:55:74:3d:d1:4c:e0:0b:2c:af:40:17:30:9f:f6: 3f:8d:1d:cc -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICHiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDUxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQyYS00ZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvotda8YerY5XBMijy8jG3R1enDzBW5MveKDzIc9f1itOc6Dq1Kos3wAVrnuH Spm6kHodfCtgkRcDje1iL4icscyI83XITBxKhFSV2ap+STIHJYsdY+CXVHEUW4nq X3bt53tYMpyDL7so+6z1T0GvYmzw+3Hkw8hlfyxcIyReJe19d+gCFtwOcVHxg1eR aDoLfhGgi/bVmC+i33672kqbH1R682kVvzav9rjGGuxFeZ2pCruUX4u9i7eil9fi TqRUGuVg4B7TSnOUfsiEe/3c3t40BYjM7gPW7ufNRidAjTArRfwsvO8mPtzglShk p9I7KhJD2GbBiYaGsTWFM+XwXQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFA/xuiEm o1EXD4DPg85OgkTe+1j5MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRjVDQzQ4QTgw NEQwMTFFOTk0OTg1NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEANoeGQMEAdoeHAMEBdoeYDANBgkqhkiG9w0BAQsFAAOC AQEAut+WGcnKe1z3MJ93veVmMQZqaBbiL5qiHpcLr0cEf9VYlZ5SYdY+f5JijCiY a8g086WVBgEkdH9yxzSwFxUEHlydJF6n2gG0NdkIKnZatZe+ezk3O4nS/kxVO70t 4jwFzsH9YReugjAt5NhPv4l8KmnVO/NFJ2G8rOqSFYSwXJ5PEQeRZIldGgnpRAPe 0uAB3x/z0OS3xzLom43/YOQDf9qWk4gzARZDcKcHr+daXefvq4XoMNoSZS842axf L+1Oko4py6SUDYjgz2b77x3+B9EfSNPfEbxZapB6FsG6ApeH/nNhsF4Ij6BDyEzx HlV0PdFM4Assr0AXMJ/2P40dzA== -----END CERTIFICATE-----Generated at Fri Nov 22 09:41:15 2024 by rpki-client on console-ams.rpki-client.org