$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/5A2BB4DE28C111E7A885571AC4F9AE02.roa File: 5A2BB4DE28C111E7A885571AC4F9AE02.roa (raw, json) Hash identifier: lmPij0yxhpci1H7hfOEpStvrCK/OQdYLZzjGWxHldlQ= Subject key identifier: 69:F4:F7:3B:D2:64:DB:B6:39:39:1B:8B:8D:2B:BE:7E:FC:B9:0A:28 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 240F Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/5A2BB4DE28C111E7A885571AC4F9AE02.roa Signing time: Tue 20 Aug 2024 16:03:16 +0000 ROA not before: Tue 20 Aug 2024 16:03:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38612 IP address blocks: 117.18.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9231 (0x240f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Aug 20 16:03:16 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4be44-f0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1f:4b:fd:7a:10:79:ed:9e:98:46:43:cb:86: 7b:b6:a2:e6:02:91:aa:e5:be:19:97:c8:80:3a:01: 4b:36:9e:50:fe:19:21:5d:ae:f2:49:09:57:fd:b0: 13:95:6f:2d:99:ca:ab:7a:9b:19:3c:68:67:0b:93: 4b:93:8b:c2:71:c9:16:36:77:aa:da:3b:62:ef:09: 3c:f2:b8:f8:e3:35:9e:dd:81:a2:3d:0e:5f:b2:ef: bc:18:f5:01:d5:d0:fc:47:58:b5:38:0f:50:be:b7: 0d:ac:5b:ad:35:70:0c:f3:14:fd:fd:8d:00:3d:bd: ec:0d:3f:d7:34:e7:b2:e8:a5:85:d9:4a:97:cb:1c: d5:11:4c:de:42:a4:66:92:2e:3b:b3:43:36:bf:64: c9:91:e0:51:cc:b1:f7:2a:8e:bd:44:4d:43:c1:99: c5:ba:77:51:be:5e:15:1a:71:06:e2:d9:4d:1d:5d: 57:60:24:bb:5c:71:c4:8f:c8:c2:f1:a3:fc:ab:b2: 39:a8:fb:f6:a3:18:a5:20:84:bb:d3:b2:aa:36:2e: eb:7c:f2:92:3a:8c:52:c8:e1:32:30:a0:08:83:f8: c2:bf:1b:a6:d8:1d:bb:08:f2:80:6d:b9:86:5e:4c: 15:e4:9e:03:65:d8:93:99:65:47:4c:60:4b:41:f1: f2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F4:F7:3B:D2:64:DB:B6:39:39:1B:8B:8D:2B:BE:7E:FC:B9:0A:28 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/5A2BB4DE28C111E7A885571AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.48.0/21 Signature Algorithm: sha256WithRSAEncryption b2:d7:00:62:58:2f:cd:df:58:c3:e7:10:11:b0:cb:cd:cc:a8: 52:84:1e:4d:67:60:c6:f8:55:c1:45:2d:56:b3:71:60:53:3f: c5:99:95:bc:94:d6:f0:71:de:23:5a:27:db:62:83:36:c9:69: a1:5c:42:aa:b8:aa:ba:ce:09:00:c6:bf:64:94:73:15:81:7d: bf:32:8e:c6:0d:86:98:76:28:07:24:cb:d1:ef:db:f1:e2:76: 16:48:be:99:2c:14:04:90:7e:a7:37:27:fc:92:ab:85:04:4a: d1:92:45:9a:ef:83:88:d3:c3:c6:64:f6:55:68:c2:73:df:28: 23:85:15:42:aa:a0:12:37:ea:87:bd:b5:a8:df:2a:87:76:da: f5:ee:68:f3:9b:62:a1:fe:47:f4:18:f7:b7:64:06:9a:9e:88: a1:45:6b:0c:ff:43:0f:b6:57:28:9a:c0:75:68:25:d0:b6:5d: ba:ae:3c:90:4f:a3:86:10:bb:aa:47:fd:93:88:fc:a2:5a:c5: 39:da:d5:86:c9:14:c9:5c:1a:13:97:d6:03:bd:9f:38:de:25: 97:a3:2e:8c:30:52:6c:b8:e3:68:bd:2d:8d:b1:c9:d5:81:b4: 92:16:48:d6:c3:ce:83:8e:df:61:c4:2d:01:c8:38:1c:4e:a3: 85:74:ca:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQwODIwMTYwMzE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YmU0NC1mMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtR9L/XoQee2emEZDy4Z7tqLmApGq5b4Zl8iAOgFLNp5Q/hkhXa7ySQlX/bAT lW8tmcqrepsZPGhnC5NLk4vCcckWNneq2jti7wk88rj44zWe3YGiPQ5fsu+8GPUB 1dD8R1i1OA9QvrcNrFutNXAM8xT9/Y0APb3sDT/XNOey6KWF2UqXyxzVEUzeQqRm ki47s0M2v2TJkeBRzLH3Ko69RE1DwZnFundRvl4VGnEG4tlNHV1XYCS7XHHEj8jC 8aP8q7I5qPv2oxilIIS707KqNi7rfPKSOoxSyOEyMKAIg/jCvxum2B27CPKAbbmG XkwV5J4DZdiTmWVHTGBLQfHysQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGn09zvS ZNu2OTkbi40rvn78uQooMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvNUEyQkI0REUy OEMxMTFFN0E4ODU1NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN1EjAwDQYJKoZIhvcNAQELBQADggEBALLXAGJYL83fWMPn EBGwy83MqFKEHk1nYMb4VcFFLVazcWBTP8WZlbyU1vBx3iNaJ9tigzbJaaFcQqq4 qrrOCQDGv2SUcxWBfb8yjsYNhph2KAcky9Hv2/HidhZIvpksFASQfqc3J/ySq4UE StGSRZrvg4jTw8Zk9lVownPfKCOFFUKqoBI36oe9tajfKod22vXuaPObYqH+R/QY 97dkBpqeiKFFawz/Qw+2VyiawHVoJdC2XbquPJBPo4YQu6pH/ZOI/KJaxTna1YbJ FMlcGhOX1gO9nzjeJZejLowwUmy442i9LY2xydWBtJIWSNbDzoOO32HELQHIOBxO o4V0yhA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org