$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/1D5CF862021A11EFB5F82E67C4F9AE02.roa File: 1D5CF862021A11EFB5F82E67C4F9AE02.roa (raw, json) Hash identifier: 2bOakHyb7i9NJ8coC16KwgAcH3GdRFoW5NmtKsElTzY= Subject key identifier: C6:95:F4:E9:41:E1:FD:59:49:F0:23:F0:8A:1B:58:E1:6F:00:69:03 Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 341B Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/1D5CF862021A11EFB5F82E67C4F9AE02.roa Signing time: Fri 22 Nov 2024 07:13:33 +0000 ROA not before: Fri 22 Nov 2024 07:13:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55361 IP address blocks: 122.8.15.0/24 maxlen: 24 122.8.16.0/24 maxlen: 24 122.8.17.0/24 maxlen: 24 122.8.18.0/24 maxlen: 24 122.8.19.0/24 maxlen: 24 122.8.20.0/24 maxlen: 24 122.8.21.0/24 maxlen: 24 122.8.22.0/24 maxlen: 24 122.8.56.0/24 maxlen: 24 122.8.57.0/24 maxlen: 24 122.8.58.0/24 maxlen: 24 122.8.59.0/24 maxlen: 24 122.8.60.0/24 maxlen: 24 122.8.61.0/24 maxlen: 24 122.8.62.0/24 maxlen: 24 122.8.82.0/24 maxlen: 24 122.8.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13339 (0x341b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Validity Not Before: Nov 22 07:13:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67402f1c-3edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:60:8f:15:37:b8:05:4d:b9:17:68:c9:79:4f: db:25:ae:9b:c5:b8:d1:ad:fe:86:0b:31:4e:83:c9: 56:17:86:18:5a:7d:fc:7d:8f:b0:b3:ee:ed:2a:79: 10:26:9c:1a:6d:53:8b:70:01:85:76:4c:99:f9:09: 5a:6a:73:18:82:b7:48:93:95:95:cd:bf:5e:1b:76: e6:64:20:fd:df:50:0e:1a:df:15:33:db:0a:12:37: 46:08:3e:d5:8c:7f:32:1b:1e:56:42:07:84:00:f2: 51:61:fc:0e:52:97:3c:b7:f9:aa:d9:b8:5a:bf:91: 5b:1d:69:d1:77:8d:ff:59:3e:bb:79:0b:ab:87:6c: 8f:9b:1b:7f:76:89:ad:ed:f4:59:e1:4f:af:0c:b3: 02:ed:ae:eb:38:87:d3:36:b2:f3:37:df:41:24:ed: 2e:0f:43:3c:0b:a8:23:b9:80:e1:0a:78:c8:29:b6: 6f:8e:47:bb:f7:c0:78:8d:62:5e:53:3e:f8:41:72: d0:92:e5:41:42:a4:0f:bf:51:5d:3f:98:d7:6d:83: e0:48:02:8d:e1:4b:0a:12:20:a2:e4:aa:f8:90:5e: fa:0a:63:44:40:ef:35:b5:1a:4a:02:58:6c:df:5d: ad:a3:e4:46:de:75:60:4e:ff:74:11:24:0b:a4:2d: 54:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:95:F4:E9:41:E1:FD:59:49:F0:23:F0:8A:1B:58:E1:6F:00:69:03 X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/1D5CF862021A11EFB5F82E67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.8.15.0-122.8.22.255 122.8.56.0-122.8.62.255 122.8.82.0/23 Signature Algorithm: sha256WithRSAEncryption cc:48:03:76:db:a4:15:99:b2:fe:c3:71:3c:c8:b1:85:6a:fc: 52:47:4e:27:df:75:b3:e8:58:a4:05:6a:ee:cc:06:1c:a9:46: 40:52:b9:8f:bd:e4:f2:6f:4f:4e:86:27:b3:a7:07:5e:71:5d: 69:36:6f:7e:49:47:08:3a:1f:a3:4f:26:f6:d4:25:e2:70:c6: 23:3d:37:c2:9e:b5:18:72:9f:2a:44:ff:d3:0d:5d:ef:13:0d: e2:b9:64:85:e9:aa:71:02:c5:c4:cd:1a:64:d6:d2:bd:04:f5: aa:72:2b:ec:69:42:ff:9e:55:26:c4:c4:ed:99:2d:02:d1:b9: 2c:3c:c4:59:d3:36:d6:77:98:6c:94:8a:fd:e9:bd:cd:30:62: ea:10:f0:45:7c:b3:fd:58:40:0a:bb:2e:1f:22:24:d0:4a:a3: 7f:4e:a5:0a:bb:ca:62:7d:48:26:67:6b:6c:da:6d:81:03:31: 7a:ad:5a:47:0c:3a:31:fa:7c:63:fd:c0:ea:aa:b8:83:da:51: 97:76:d9:ac:d3:7e:3a:18:ae:f6:82:7f:fa:69:41:50:fb:92: bc:0d:38:6e:cc:bd:a9:15:a1:68:44:70:48:4a:ac:26:39:1c: 35:e6:58:f4:e3:fb:08:e5:6f:23:11:75:aa:2f:bd:c7:d4:c6: 37:dc:6b:68 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICNBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQxMTIyMDcxMzMzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzQwMmYxYy0zZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWCPFTe4BU25F2jJeU/bJa6bxbjRrf6GCzFOg8lWF4YYWn38fY+ws+7tKnkQ JpwabVOLcAGFdkyZ+QlaanMYgrdIk5WVzb9eG3bmZCD931AOGt8VM9sKEjdGCD7V jH8yGx5WQgeEAPJRYfwOUpc8t/mq2bhav5FbHWnRd43/WT67eQurh2yPmxt/domt 7fRZ4U+vDLMC7a7rOIfTNrLzN99BJO0uD0M8C6gjuYDhCnjIKbZvjke798B4jWJe Uz74QXLQkuVBQqQPv1FdP5jXbYPgSAKN4UsKEiCi5Kr4kF76CmNEQO81tRpKAlhs 312to+RG3nVgTv90ESQLpC1UFQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFMaV9OlB 4f1ZSfAj8IobWOFvAGkDMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvMUQ1Q0Y4NjIw MjFBMTFFRkI1RjgyRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAHoIDwMEAHoIFjAMAwQDegg4AwQAegg+AwQBeghSMA0G CSqGSIb3DQEBCwUAA4IBAQDMSAN226QVmbL+w3E8yLGFavxSR04n33Wz6FikBWru zAYcqUZAUrmPveTyb09OhiezpwdecV1pNm9+SUcIOh+jTyb21CXicMYjPTfCnrUY cp8qRP/TDV3vEw3iuWSF6apxAsXEzRpk1tK9BPWqcivsaUL/nlUmxMTtmS0C0bks PMRZ0zbWd5hslIr96b3NMGLqEPBFfLP9WEAKuy4fIiTQSqN/TqUKu8pifUgmZ2ts 2m2BAzF6rVpHDDox+nxj/cDqqriD2lGXdtms0346GK72gn/6aUFQ+5K8DThuzL2p FaFoRHBISqwmORw15lj04/sI5W8jEXWqL73H1MY33Gto -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:04 2024 by rpki-client on console-fra.rpki-client.org