$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/1361FD26EC2011EA8DFD251FC4F9AE02.roa File: 1361FD26EC2011EA8DFD251FC4F9AE02.roa (raw, json) Hash identifier: nsaH5I08UA9S7pBWJEs95VRVtj6VDnIyoLGMkyvaxCM= Subject key identifier: 80:5E:4E:EB:64:9D:C6:7B:EC:75:52:69:A2:43:37:B0:96:AF:B4:76 Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 075B Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/1361FD26EC2011EA8DFD251FC4F9AE02.roa Signing time: Wed 10 Apr 2024 23:01:38 +0000 ROA not before: Wed 10 Apr 2024 23:01:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55439 IP address blocks: 203.119.85.0/24 maxlen: 24 2001:dd8:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1883 (0x75b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 10 23:01:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66171a52-5024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:ef:cd:32:3e:33:6a:df:85:32:7e:28:f0: e7:2b:e0:88:49:9d:d8:11:a2:5f:93:e6:17:c0:5f: 16:93:b7:af:c3:ae:4f:84:78:c9:cc:4b:1f:cb:59: 4c:7e:be:9a:12:89:56:31:41:b5:d2:9a:5a:6e:7d: cd:28:fb:61:c9:a0:c7:79:fd:2e:3f:b9:d7:91:e3: 56:ec:c7:bf:49:15:a4:36:34:df:7a:0a:4e:22:db: 2b:0f:9a:57:59:37:ee:a6:d8:0c:ae:f3:fe:d4:6d: dd:1b:5e:3a:ec:4c:1c:46:fc:af:64:65:27:ac:33: 3d:97:1e:ac:e1:5c:a4:79:e7:0f:74:5b:b2:4d:cb: db:ba:7b:23:43:b0:a3:7e:9e:79:9c:2c:4b:c4:26: fc:77:b3:bb:8a:0d:8d:f3:11:e1:d2:a0:44:7d:0a: 19:35:f2:8d:8a:5e:d8:30:fc:bb:5f:a2:a8:ed:46: 45:39:b1:0e:17:25:af:c4:00:d0:4e:70:30:f1:1e: 3d:52:5c:d3:e2:1e:5e:7d:10:0d:d2:8a:9b:ab:87: b6:60:3e:b9:4e:63:fb:2f:ac:4d:a1:2f:72:2d:21: 4c:8d:08:52:a8:71:d4:c8:e6:28:0c:69:91:79:3c: aa:c5:30:8b:3b:27:40:5e:ed:06:24:60:ab:5a:ba: 58:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5E:4E:EB:64:9D:C6:7B:EC:75:52:69:A2:43:37:B0:96:AF:B4:76 X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/1361FD26EC2011EA8DFD251FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.119.85.0/24 IPv6: 2001:dd8:5::/48 Signature Algorithm: sha256WithRSAEncryption 0a:b2:45:8f:37:f8:76:3a:9a:a1:3d:3a:21:26:d7:4d:2e:45: 2a:86:b0:8e:28:ca:8f:8d:af:48:1d:3a:93:36:46:c9:72:8b: d6:f6:d4:d4:82:47:e8:67:5f:1f:b2:83:a7:0f:34:9f:04:01: c8:b1:0e:7b:07:f2:62:a0:40:39:15:56:61:2b:5a:b0:be:4a: 31:a1:4d:89:72:a8:af:37:2b:99:60:47:9d:78:9f:44:bb:b9: 1f:74:de:39:b6:15:b3:9c:8c:f9:2b:73:61:d8:55:ae:f0:79: 41:9c:ba:61:83:1d:5c:d5:16:65:11:d9:b8:6d:c0:fe:59:76: e2:63:fa:fe:ca:ca:80:c6:0e:74:a5:0c:6c:b5:4a:a9:83:36: 40:46:28:36:eb:29:53:4e:65:32:f0:72:e3:32:f3:22:c3:f2: db:b0:ab:d0:7d:12:e1:03:1e:48:bf:ff:46:c1:db:9c:40:d5: 71:6d:1a:c4:9f:fc:57:9e:ea:97:16:10:7e:1c:77:7d:a8:ab: 70:f7:84:ce:9a:72:6c:e0:4e:a5:6a:df:ed:88:38:99:0f:b4: 65:8a:ac:9d:9e:c8:5c:c5:22:be:3a:58:aa:62:c4:f2:e9:dc: ca:0d:24:50:0e:e9:ba:b6:2f:1a:4e:94:51:d3:90:e7:64:8e: e7:d6:64:55 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjQwNDEwMjMwMTM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3MWE1Mi01MDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9TvzTI+M2rfhTJ+KPDnK+CISZ3YEaJfk+YXwF8Wk7evw65PhHjJzEsfy1lM fr6aEolWMUG10ppabn3NKPthyaDHef0uP7nXkeNW7Me/SRWkNjTfegpOItsrD5pX WTfuptgMrvP+1G3dG1467EwcRvyvZGUnrDM9lx6s4VykeecPdFuyTcvbunsjQ7Cj fp55nCxLxCb8d7O7ig2N8xHh0qBEfQoZNfKNil7YMPy7X6Ko7UZFObEOFyWvxADQ TnAw8R49UlzT4h5efRAN0oqbq4e2YD65TmP7L6xNoS9yLSFMjQhSqHHUyOYoDGmR eTyqxTCLOydAXu0GJGCrWrpYnQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIBeTutk ncZ77HVSaaJDN7CWr7R2MB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvMTM2MUZEMjZF QzIwMTFFQThERkQyNTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLd1UwDwQCAAIwCQMHACABDdgABTANBgkqhkiG9w0BAQsF AAOCAQEACrJFjzf4djqaoT06ISbXTS5FKoawjijKj42vSB06kzZGyXKL1vbU1IJH 6GdfH7KDpw80nwQByLEOewfyYqBAORVWYStasL5KMaFNiXKorzcrmWBHnXifRLu5 H3TeObYVs5yM+StzYdhVrvB5QZy6YYMdXNUWZRHZuG3A/ll24mP6/srKgMYOdKUM bLVKqYM2QEYoNuspU05lMvBy4zLzIsPy27Cr0H0S4QMeSL//RsHbnEDVcW0axJ/8 V57qlxYQfhx3faircPeEzppybOBOpWrf7Yg4mQ+0ZYqsnZ7IXMUivjpYqmLE8unc yg0kUA7purYvGk6UUdOQ52SO59ZkVQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org