$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/47E1F234B45111EEA556091EC4F9AE02.roa File: 47E1F234B45111EEA556091EC4F9AE02.roa (raw, json) Hash identifier: ODd/KbyV1dKtPRXyiR/8CGUuMB8EdgFkSZIUAw8ZgVc= Subject key identifier: 91:17:5C:6A:E6:CD:2B:DC:D4:E2:65:1A:26:1D:D5:03:05:F9:93:0F Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 3330 Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/47E1F234B45111EEA556091EC4F9AE02.roa Signing time: Thu 14 Mar 2024 16:01:18 +0000 ROA not before: Thu 14 Mar 2024 16:01:18 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 56176 IP address blocks: 118.188.0.0/20 maxlen: 20 118.188.16.0/23 maxlen: 23 118.188.26.0/23 maxlen: 23 118.188.28.0/23 maxlen: 23 118.188.30.0/23 maxlen: 23 118.188.32.0/19 maxlen: 19 118.188.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13104 (0x3330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Validity Not Before: Mar 14 16:01:18 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f31f4d-620d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7c:88:ce:17:54:a0:a5:b1:7a:92:ed:90:88: 53:d1:f1:e3:1d:08:94:f7:70:d1:a2:5b:35:47:8c: 70:1b:89:bf:78:9e:80:d3:e0:81:53:ce:5f:93:de: f9:2e:75:41:d7:61:14:9a:15:24:f4:0e:0e:be:6e: 10:8e:64:ff:15:a1:bc:a4:08:ce:0c:d2:89:08:c1: 8e:f4:8f:11:58:46:83:17:0f:23:92:29:dc:dd:97: e5:8c:ab:59:66:07:3f:fb:82:f0:95:c4:fd:f8:7e: a7:53:dd:cb:bd:63:c7:fc:a0:a6:91:26:4f:3f:c0: 37:8e:b9:5c:5e:fc:bb:33:88:e4:7a:c4:ce:1f:2a: 73:e7:17:49:e6:97:b0:6c:3c:4c:8d:1b:2d:74:79: 6c:29:23:f3:5e:cf:5a:1e:a5:5c:4c:c8:cf:65:f1: 51:4b:14:64:51:cb:41:0b:64:29:18:c9:a3:22:55: 92:f7:13:dc:fe:5f:43:bb:19:4c:ff:06:fa:43:4c: 3d:84:c6:c4:4f:98:05:07:0a:43:c6:46:95:85:e9: 6a:e6:84:e1:2b:88:57:cc:71:f4:03:68:be:e2:33: d3:58:5d:51:3b:17:e3:5e:87:1a:fc:6b:50:c7:ef: 91:ce:81:91:e4:7b:8d:d0:62:9c:f3:31:01:7d:70: 7d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:17:5C:6A:E6:CD:2B:DC:D4:E2:65:1A:26:1D:D5:03:05:F9:93:0F X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/47E1F234B45111EEA556091EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.188.0.0-118.188.17.255 118.188.26.0-118.188.127.255 Signature Algorithm: sha256WithRSAEncryption 83:f2:3e:bd:43:77:5c:8b:ca:65:dd:80:37:86:2d:a0:b6:0a: 98:a1:3c:e9:d1:d5:a9:87:d2:68:d8:1b:30:90:ec:54:db:1b: e3:48:43:6b:3b:31:fc:64:9c:84:23:d1:4c:f8:23:11:04:0b: ae:d3:21:5b:ee:88:c8:c9:d5:3e:87:40:e4:a7:58:c8:76:fa: 29:10:4a:c1:c4:65:84:00:51:d9:38:ec:d7:3a:7d:fc:b4:cd: cd:7a:0d:7c:c7:ad:d1:c5:8c:2e:69:b0:a2:63:3e:90:8e:c8: cb:b1:34:ea:6a:e1:8a:71:26:f7:b9:3e:db:86:75:4a:52:5f: 87:60:1e:36:01:9e:9c:a8:21:c1:8f:da:74:e6:2f:f6:b3:23: 6c:e2:f9:b2:5b:1f:b8:50:03:ba:90:b3:c6:11:49:25:1b:ed: eb:d4:83:c5:a1:c2:0b:00:77:0e:82:fd:7f:5c:bc:4f:b6:a1: b4:0a:8d:59:c9:29:a2:88:91:9b:e8:20:63:8b:f0:ba:51:db: f2:a8:69:44:0f:f8:e0:e1:15:00:8f:dd:1c:d7:8a:d4:78:96: 65:d6:bd:d8:50:9c:81:62:5e:34:a3:df:73:19:d9:2c:2d:b3: 4c:5b:e8:56:9b:8c:d7:06:39:5b:ca:a6:69:6a:98:59:17:e0: 02:5f:70:60 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICMzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQwMzE0MTYwMTE4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzMWY0ZC02MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHyIzhdUoKWxepLtkIhT0fHjHQiU93DRols1R4xwG4m/eJ6A0+CBU85fk975 LnVB12EUmhUk9A4Ovm4QjmT/FaG8pAjODNKJCMGO9I8RWEaDFw8jkinc3ZfljKtZ Zgc/+4LwlcT9+H6nU93LvWPH/KCmkSZPP8A3jrlcXvy7M4jkesTOHypz5xdJ5pew bDxMjRstdHlsKSPzXs9aHqVcTMjPZfFRSxRkUctBC2QpGMmjIlWS9xPc/l9DuxlM /wb6Q0w9hMbET5gFBwpDxkaVhelq5oThK4hXzHH0A2i+4jPTWF1ROxfjXoca/GtQ x++RzoGR5HuN0GKc8zEBfXB9DQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJEXXGrm zSvc1OJlGiYd1QMF+ZMPMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvNDdFMUYyMzRC NDUxMTFFRUE1NTYwOTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgABMBswCwMDAna8AwQBdrwQMAwDBAF2vBoDBAd2vAAwDQYJKoZIhvcN AQELBQADggEBAIPyPr1Dd1yLymXdgDeGLaC2CpihPOnR1amH0mjYGzCQ7FTbG+NI Q2s7MfxknIQj0Uz4IxEEC67TIVvuiMjJ1T6HQOSnWMh2+ikQSsHEZYQAUdk47Nc6 ffy0zc16DXzHrdHFjC5psKJjPpCOyMuxNOpq4YpxJve5PtuGdUpSX4dgHjYBnpyo IcGP2nTmL/azI2zi+bJbH7hQA7qQs8YRSSUb7evUg8WhwgsAdw6C/X9cvE+2obQK jVnJKaKIkZvoIGOL8LpR2/KoaUQP+ODhFQCP3RzXitR4lmXWvdhQnIFiXjSj33MZ 2Swts0xb6FabjNcGOVvKpmlqmFkX4AJfcGA= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org