$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/897F96FC5A1811EFAF24E138C4F9AE02.roa File: 897F96FC5A1811EFAF24E138C4F9AE02.roa (raw, json) Hash identifier: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w= Subject key identifier: CE:28:7B:92:8F:34:E3:DC:B7:48:AD:8F:22:7A:29:A4:DF:CE:BA:D9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: 2A Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/897F96FC5A1811EFAF24E138C4F9AE02.roa Signing time: Fri 25 Oct 2024 06:21:54 +0000 ROA not before: Fri 25 Oct 2024 06:21:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45152 IP address blocks: 119.82.150.0/24 maxlen: 24 122.252.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Oct 25 06:21:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b3902-4f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ed:cf:6f:b1:09:37:09:ba:45:07:be:54:1b: 30:9d:f5:36:9c:9a:a6:45:8b:b0:98:f7:60:b0:6c: b3:d7:d9:62:06:c8:c0:a9:bd:74:68:44:cb:50:d0: 80:1e:07:61:0f:8a:6a:5f:1a:a8:30:10:65:f3:c8: 85:23:75:b7:15:9f:dc:41:93:9d:ad:0e:4d:64:71: f7:97:4c:c5:74:ed:89:bd:10:e8:32:d5:5a:63:49: 8b:16:13:b9:1d:cf:3f:6d:06:b1:dd:62:2e:0b:47: a3:85:9d:45:b9:a6:cc:79:ab:37:84:b4:57:2c:8b: 78:54:03:01:15:7d:a5:a1:0b:19:d7:5e:af:e0:77: 5e:9f:b3:66:75:cd:3c:88:4e:4b:8b:e2:45:2e:24: 5b:a3:05:98:70:7c:98:99:dc:ef:63:fb:cb:17:8d: f2:26:6b:1f:70:1a:7b:c5:3a:8c:b1:17:27:3c:b2: 5f:4f:6d:7e:f4:e6:46:96:62:8b:44:cb:ad:d6:56: f8:89:dc:67:75:3e:4b:4a:6a:70:af:24:92:62:fd: 95:3a:2e:02:13:73:9b:57:88:62:aa:0b:2f:a4:88: 37:ac:3f:db:0b:98:dd:c9:02:4f:60:f2:10:4c:36: 18:9c:e5:ef:d3:4c:72:25:9e:65:b7:a6:8a:db:2c: d9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:28:7B:92:8F:34:E3:DC:B7:48:AD:8F:22:7A:29:A4:DF:CE:BA:D9 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/897F96FC5A1811EFAF24E138C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.82.150.0/24 122.252.13.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:a9:e3:e3:81:95:1c:08:97:00:26:8b:33:6a:ea:ae:7a:51: f4:e4:3c:bf:86:ae:91:2e:46:dc:27:38:5d:b4:dc:0e:6f:41: 47:8f:a3:bb:e2:71:57:2b:a2:f6:73:02:0a:db:fb:4b:fe:ad: b4:14:bc:cb:c5:50:ab:3a:72:a4:a3:ee:a7:c0:22:c9:30:c4: af:db:ee:61:91:9a:f1:1a:30:65:95:bd:de:19:2b:a8:a5:0b: f5:4d:31:91:63:cb:a3:2a:a3:ac:f1:94:fd:ad:f1:52:9b:b4: 45:17:2a:16:ca:1c:54:58:d2:ad:65:ee:54:b8:da:fa:59:92: b5:23:bd:d5:a1:cc:d3:14:da:1a:58:2f:4b:99:65:56:15:87: 79:83:12:87:ec:af:bf:e4:0c:cf:e1:52:32:95:d8:9c:2b:ec: 7e:4e:db:9b:be:9b:19:75:4e:d9:2a:36:6b:21:ea:d4:88:58: 05:54:90:77:3c:4d:43:e2:db:b5:5a:b6:f3:d3:67:7d:23:21: c1:2e:9f:05:5f:f6:dd:88:f3:42:60:73:4b:00:e9:6b:82:74: ac:1d:62:ce:b0:04:d5:fb:16:23:77:ec:09:7b:4a:c6:04:24: 5b:97:60:f1:ac:12:61:e9:93:ec:aa:66:a2:06:46:3f:b4:d3: 19:b7:7c:33 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0RBOTExMC8GA1UEBRMoRUY1MzkxRjJBMjJERDY1RjQ4NDMxQTMyMjZERENDNjVC NzY1OTZBOTAeFw0yNDEwMjUwNjIxNTRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWIzOTAyLTRmMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe7c9vsQk3CbpFB75UGzCd9TacmqZFi7CY92CwbLPX2WIGyMCpvXRoRMtQ0IAe B2EPimpfGqgwEGXzyIUjdbcVn9xBk52tDk1kcfeXTMV07Ym9EOgy1VpjSYsWE7kd zz9tBrHdYi4LR6OFnUW5psx5qzeEtFcsi3hUAwEVfaWhCxnXXq/gd16fs2Z1zTyI TkuL4kUuJFujBZhwfJiZ3O9j+8sXjfImax9wGnvFOoyxFyc8sl9PbX705kaWYotE y63WVviJ3Gd1PktKanCvJJJi/ZU6LgITc5tXiGKqCy+kiDesP9sLmN3JAk9g8hBM Nhic5e/TTHIlnmW3porbLNkxAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUzih7ko80 49y3SK2PInoppN/OutkwHwYDVR0jBBgwFoAU71OR8qIt1l9IQxoyJt3MZbdllqkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3REE5LzQyM0UxQUQ0NUEx ODExRUZCRDQ3NzMzOEM0RjlBRTAyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxx ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzFPUjhxSXQxbDlJUXhveUp0M01aYmRsbHFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi84OTdGOTZGQzVB MTgxMUVGQUYyNEUxMzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAHdSlgMEAHr8DTANBgkqhkiG9w0BAQsFAAOCAQEAOqnj44GV HAiXACaLM2rqrnpR9OQ8v4aukS5G3Cc4XbTcDm9BR4+ju+JxVyui9nMCCtv7S/6t tBS8y8VQqzpypKPup8AiyTDEr9vuYZGa8RowZZW93hkrqKUL9U0xkWPLoyqjrPGU /a3xUpu0RRcqFsocVFjSrWXuVLja+lmStSO91aHM0xTaGlgvS5llVhWHeYMSh+yv v+QMz+FSMpXYnCvsfk7bm76bGXVO2So2ayHq1IhYBVSQdzxNQ+LbtVq289NnfSMh wS6fBV/23YjzQmBzSwDpa4J0rB1izrAE1fsWI3fsCXtKxgQkW5dg8awSYemT7Kpm ogZGP7TTGbd8Mw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org