$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/59B3485028C111E7A885571AC4F9AE02.roa File: 59B3485028C111E7A885571AC4F9AE02.roa (raw, json) Hash identifier: ygxWmU9VftQ+d/EjaZ40O1nAYsETaroBLZ3pkKq/izw= Subject key identifier: 15:FE:96:00:B7:50:9C:69:F2:B9:B8:B6:10:42:D2:1C:88:04:0A:32 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 2335 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/59B3485028C111E7A885571AC4F9AE02.roa Signing time: Mon 14 Aug 2023 16:12:49 +0000 ROA not before: Mon 14 Aug 2023 16:12:49 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24493 IP address blocks: 117.18.32.0/20 maxlen: 20 117.18.33.0/24 maxlen: 24 117.18.34.0/24 maxlen: 24 117.18.35.0/24 maxlen: 24 117.18.36.0/24 maxlen: 24 117.18.37.0/24 maxlen: 24 117.18.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9013 (0x2335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Aug 14 16:12:49 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64da5281-2a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:c2:d6:ba:7f:39:76:ef:6f:7f:c1:da:52: a3:4f:6f:94:f6:bb:65:50:74:90:b1:64:1d:7b:dd: 3f:26:24:88:c8:52:c4:66:4d:a6:5a:de:3d:90:58: 44:5f:fa:8d:52:0a:2f:31:d9:70:fc:3c:92:c1:1a: fd:1d:a7:da:23:7f:38:28:7d:ec:32:dd:72:0c:94: 92:f8:63:56:d5:31:7e:28:15:97:bb:39:30:25:8c: 40:a1:20:dd:1c:63:20:65:74:a6:ed:e9:89:8d:3e: 81:92:7a:dd:44:38:1f:38:c9:d5:50:01:63:97:5a: b1:3f:50:47:f4:97:6b:8b:35:cc:c5:3b:bc:5a:49: 64:98:91:ee:f8:04:b5:06:9b:c5:6c:c9:69:fe:33: da:0d:ed:be:f0:58:2a:c0:3d:89:45:e5:40:c2:94: 70:0f:79:46:f2:08:39:ca:20:ca:12:8e:59:8e:65: 6b:f6:82:b8:2c:e0:ef:14:93:03:80:74:43:b7:27: 21:2e:16:e0:5c:02:17:c1:21:0a:30:86:49:21:26: 59:63:d4:bc:37:1b:11:c9:e5:40:c1:ec:25:f0:d5: e8:db:07:28:3e:b2:c2:79:56:b8:78:06:25:f3:7b: fe:18:48:11:2a:12:2d:ac:6c:53:ab:57:5a:39:98: 51:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:FE:96:00:B7:50:9C:69:F2:B9:B8:B6:10:42:D2:1C:88:04:0A:32 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/59B3485028C111E7A885571AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.32.0/20 Signature Algorithm: sha256WithRSAEncryption d4:7d:84:bb:33:5f:d6:e1:91:52:54:fc:cb:17:be:0e:2d:9f: 3b:84:a5:b7:3b:41:2b:7f:32:b8:d6:ec:52:b2:c3:4f:ec:61: 57:72:89:56:eb:5d:7f:cf:21:e6:65:07:6d:e0:7c:c7:ff:1e: 88:af:88:17:1f:55:8b:62:39:3e:c7:b9:9e:3d:9c:58:1e:aa: f7:81:3d:7b:53:98:f8:fc:d0:bb:2b:c3:29:26:fb:84:22:16: 4e:a5:59:87:e7:a6:a3:ed:63:dc:d5:bb:9e:75:b0:1b:ba:2d: 8f:d0:53:44:a5:e9:6c:01:fb:3b:c2:cd:c9:ae:9e:73:2f:8b: d8:77:4f:78:57:78:2b:45:39:16:12:58:87:fc:7a:a2:68:f1: 4f:a5:8f:4e:3d:8a:62:8d:d9:56:5e:00:c4:2e:3b:96:4c:54: 0c:8b:42:8e:7e:f4:e6:dc:a0:03:01:0c:ca:f4:8c:f1:3d:e9: 29:a7:16:cb:bc:9c:47:53:2f:97:28:27:a9:bc:8c:df:7a:c4: 07:d7:4b:46:5e:7a:e6:fb:f1:b6:e6:82:9c:48:b2:56:24:ae: 82:a5:7c:5c:4b:e9:fa:b2:84:13:cc:e1:46:94:27:f8:2f:42: b4:20:6a:6b:6d:99:eb:e6:4b:42:88:77:37:df:f9:18:94:eb: 38:93:35:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjMwODE0MTYxMjQ5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRhNTI4MS0yYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNXC1rp/OXbvb3/B2lKjT2+U9rtlUHSQsWQde90/JiSIyFLEZk2mWt49kFhE X/qNUgovMdlw/DySwRr9HafaI384KH3sMt1yDJSS+GNW1TF+KBWXuzkwJYxAoSDd HGMgZXSm7emJjT6BknrdRDgfOMnVUAFjl1qxP1BH9JdrizXMxTu8WklkmJHu+AS1 BpvFbMlp/jPaDe2+8FgqwD2JReVAwpRwD3lG8gg5yiDKEo5ZjmVr9oK4LODvFJMD gHRDtychLhbgXAIXwSEKMIZJISZZY9S8NxsRyeVAwewl8NXo2wcoPrLCeVa4eAYl 83v+GEgRKhItrGxTq1daOZhRmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBX+lgC3 UJxp8rm4thBC0hyIBAoyMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvNTlCMzQ4NTAy OEMxMTFFN0E4ODU1NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAR1EiAwDQYJKoZIhvcNAQELBQADggEBANR9hLszX9bhkVJU /MsXvg4tnzuEpbc7QSt/MrjW7FKyw0/sYVdyiVbrXX/PIeZlB23gfMf/HoiviBcf VYtiOT7HuZ49nFgeqveBPXtTmPj80Lsrwykm+4QiFk6lWYfnpqPtY9zVu551sBu6 LY/QU0Sl6WwB+zvCzcmunnMvi9h3T3hXeCtFORYSWIf8eqJo8U+lj049imKN2VZe AMQuO5ZMVAyLQo5+9ObcoAMBDMr0jPE96SmnFsu8nEdTL5coJ6m8jN96xAfXS0Ze eub78bbmgpxIslYkroKlfFxL6fqyhBPM4UaUJ/gvQrQgamttmevmS0KIdzff+RiU 6ziTNVM= -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org