$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/59B3485028C111E7A885571AC4F9AE02.roa File: 59B3485028C111E7A885571AC4F9AE02.roa (raw, json) Hash identifier: cpxWzbtBjfOYkdrL+G3YkBQCddhQ01gMHqlqKByoADs= Subject key identifier: E8:5E:DA:E6:26:B2:39:8C:A7:74:F3:68:66:00:76:55:D3:FF:1D:71 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 240D Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/59B3485028C111E7A885571AC4F9AE02.roa Signing time: Tue 20 Aug 2024 16:03:14 +0000 ROA not before: Tue 20 Aug 2024 16:03:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24493 IP address blocks: 117.18.32.0/20 maxlen: 20 117.18.33.0/24 maxlen: 24 117.18.34.0/24 maxlen: 24 117.18.35.0/24 maxlen: 24 117.18.36.0/24 maxlen: 24 117.18.37.0/24 maxlen: 24 117.18.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9229 (0x240d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Aug 20 16:03:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4be42-7c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:de:56:cb:d5:00:d0:8d:14:0a:cc:04:9e:26: 77:f2:d8:3a:41:e4:0e:cf:8f:95:06:d1:59:fe:93: 27:7b:b9:b0:25:89:40:d9:f0:bb:12:3a:e6:92:cb: 15:a7:bb:84:61:ee:89:70:b7:ac:74:dc:ab:20:37: d2:a8:c9:90:9b:a8:a1:d1:bb:4a:e6:31:5c:e4:d4: 96:46:fd:69:55:a4:44:06:06:7a:dd:02:94:68:e4: a4:90:d5:81:76:6e:fa:93:bb:64:ee:c9:e6:2f:7b: 02:67:dc:05:b2:ab:fd:e6:ea:63:2c:8b:0c:98:45: 84:43:50:58:d5:7a:39:e2:bf:96:5d:52:3b:1f:da: 5f:11:c2:6c:c2:f4:6b:25:0a:7c:2d:4b:d8:62:30: de:2d:ff:22:69:a6:e7:7b:2c:11:21:26:e4:f0:8d: 18:08:8b:d8:11:19:92:89:87:dd:c1:06:ce:37:53: a9:cd:95:a7:d6:04:20:e3:ca:da:21:a2:78:c4:32: 69:f5:af:8e:bc:2d:f2:e0:a3:70:27:4f:46:fd:cc: 1e:3c:40:93:b7:d7:74:eb:ce:97:1c:97:a8:b0:54: 3b:c1:c1:d7:db:58:c3:f7:31:cf:94:e3:11:01:56: 47:1c:9d:93:4f:49:30:73:90:e9:27:cc:2e:d4:23: a1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5E:DA:E6:26:B2:39:8C:A7:74:F3:68:66:00:76:55:D3:FF:1D:71 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/59B3485028C111E7A885571AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.32.0/20 Signature Algorithm: sha256WithRSAEncryption d0:65:29:a7:62:a5:21:2c:36:34:29:3b:9c:a5:e5:8e:b7:ca: 96:28:d8:30:de:de:43:5d:0a:66:fe:14:2e:a0:71:45:f3:40: 2d:ee:b6:53:fe:89:0b:3d:d2:fb:29:96:e2:5e:ee:1e:3f:37: 1e:1b:c2:5e:03:3f:dc:98:09:a3:7b:da:a4:2c:ac:1c:1e:e4: 37:67:8c:71:c3:12:44:c0:27:25:ca:d2:d9:cf:3b:23:2c:45: a1:c6:81:03:29:a7:1a:8e:ba:0b:2b:d7:24:b4:9f:dd:da:52: 89:1c:4b:31:c7:a3:55:c0:b1:4a:f0:8a:20:4d:71:eb:bd:44: db:cb:63:71:e6:c7:bc:43:2e:ee:94:37:57:ec:17:ad:09:f3: e3:ac:00:3b:34:b7:59:98:82:aa:4f:cd:2d:2e:a4:5f:f0:49: 55:7d:f2:8d:08:c6:98:5f:80:69:f2:50:a4:e8:36:43:74:82: 37:d3:97:b9:a5:e4:8c:93:3d:19:31:e2:9b:f5:00:02:4e:1d: b8:7e:00:73:84:ff:3c:f9:ee:0c:3d:06:3b:f2:04:60:f4:23: 76:7f:af:8c:c6:d4:37:db:d0:ba:63:72:42:94:59:b9:59:c8: 4e:64:af:30:68:aa:32:f9:46:c9:d9:b6:1f:a3:7f:cb:55:17: bc:21:fd:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQwODIwMTYwMzE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YmU0Mi03YzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo95Wy9UA0I0UCswEniZ38tg6QeQOz4+VBtFZ/pMne7mwJYlA2fC7EjrmkssV p7uEYe6JcLesdNyrIDfSqMmQm6ih0btK5jFc5NSWRv1pVaREBgZ63QKUaOSkkNWB dm76k7tk7snmL3sCZ9wFsqv95upjLIsMmEWEQ1BY1Xo54r+WXVI7H9pfEcJswvRr JQp8LUvYYjDeLf8iaabneywRISbk8I0YCIvYERmSiYfdwQbON1OpzZWn1gQg48ra IaJ4xDJp9a+OvC3y4KNwJ09G/cwePECTt9d0686XHJeosFQ7wcHX21jD9zHPlOMR AVZHHJ2TT0kwc5DpJ8wu1COh/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOhe2uYm sjmMp3TzaGYAdlXT/x1xMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvNTlCMzQ4NTAy OEMxMTFFN0E4ODU1NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAR1EiAwDQYJKoZIhvcNAQELBQADggEBANBlKadipSEsNjQp O5yl5Y63ypYo2DDe3kNdCmb+FC6gcUXzQC3utlP+iQs90vspluJe7h4/Nx4bwl4D P9yYCaN72qQsrBwe5DdnjHHDEkTAJyXK0tnPOyMsRaHGgQMppxqOugsr1yS0n93a UokcSzHHo1XAsUrwiiBNceu9RNvLY3Hmx7xDLu6UN1fsF60J8+OsADs0t1mYgqpP zS0upF/wSVV98o0IxphfgGnyUKToNkN0gjfTl7ml5IyTPRkx4pv1AAJOHbh+AHOE /zz57gw9BjvyBGD0I3Z/r4zG1Dfb0LpjckKUWblZyE5krzBoqjL5RsnZth+jf8tV F7wh/fk= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org