$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa File: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: UDsBn5PvZT9d8TXHaLnosXPpBPHeYaVzwhGnl9mAcIU= Subject key identifier: D0:41:47:6E:B9:8D:8B:C2:BA:35:23:A3:C3:EC:19:4B:98:B4:E0:DE Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 02B4 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa Signing time: Sat 19 Oct 2024 01:45:44 +0000 ROA not before: Sat 19 Oct 2024 01:45:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 18390 IP address blocks: 27.96.192.0/19 maxlen: 24 115.69.0.0/18 maxlen: 24 202.172.96.0/19 maxlen: 24 203.23.236.0/22 maxlen: 24 203.29.65.0/24 maxlen: 24 203.29.124.0/23 maxlen: 24 203.31.202.0/23 maxlen: 24 203.56.244.0/22 maxlen: 24 203.57.48.0/23 maxlen: 24 210.1.192.0/19 maxlen: 24 2407:e400::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Oct 19 01:45:44 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=67130f48-ac0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5a:7f:40:e9:de:2a:8e:cf:55:10:8d:ea:6c: 9f:f2:e0:b7:a0:2c:22:2a:f2:96:e6:7b:3f:d9:b0: 49:c0:35:69:24:78:7a:04:32:22:f0:0c:2a:60:50: 7c:de:6b:fc:23:32:8e:b7:6f:9f:fd:54:05:a5:7b: 82:06:3f:42:f2:cd:ed:74:b9:05:84:6b:43:78:1b: 4d:b2:e9:cc:c9:25:a9:02:72:f4:8f:3a:cb:21:df: f9:fe:0a:1e:df:a9:17:23:86:5b:01:89:af:7c:ea: d7:22:6e:1d:4a:74:65:16:68:06:49:78:14:c3:0c: 07:ea:29:c9:b6:99:fe:a2:c9:3e:05:64:6e:38:50: bc:51:f8:ca:69:c2:ff:fc:5f:e3:72:cd:1e:3c:1d: 64:e5:83:f3:2d:be:49:e8:50:b9:0c:6c:5e:6d:cd: a1:55:81:07:b0:23:7e:30:3d:ee:ba:33:16:85:ff: de:1d:3b:5f:d0:dd:b8:39:a5:35:3e:53:18:d4:ca: 4e:a8:fb:eb:7f:f4:70:aa:26:4c:0c:06:bd:21:19: b4:fb:fd:7c:82:e1:72:44:79:48:b1:d2:2b:55:45: ac:3f:d8:b1:0d:53:b8:26:e1:70:9c:0c:6c:12:2a: bc:46:37:83:1b:4e:ea:d8:55:f3:78:d6:41:0c:35: 11:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:41:47:6E:B9:8D:8B:C2:BA:35:23:A3:C3:EC:19:4B:98:B4:E0:DE X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.192.0/19 115.69.0.0/18 202.172.96.0/19 203.23.236.0/22 203.29.65.0/24 203.29.124.0/23 203.31.202.0/23 203.56.244.0/22 203.57.48.0/23 210.1.192.0/19 IPv6: 2407:e400::/32 Signature Algorithm: sha256WithRSAEncryption 82:4c:42:c1:c5:66:aa:a9:c8:0b:c5:4c:f1:e5:54:e6:36:dc: b4:43:83:0d:4d:9b:9c:01:13:0f:a9:1c:b9:7e:26:14:80:ce: c5:69:b1:0a:21:66:5a:6e:06:3c:bd:f7:4a:4b:80:e7:ef:50: e3:44:89:a9:d5:64:d4:13:1d:44:92:e9:aa:6a:b1:4c:86:86: 85:fe:74:bf:83:50:7d:56:9d:3f:33:2d:af:c1:14:bb:cd:d8: b2:cf:fa:84:f7:13:74:53:ae:af:7e:cd:c5:cd:ba:ed:e7:43: df:bc:90:b5:1e:b0:fd:55:88:67:2a:5e:ed:6d:ec:11:a9:5d: 0d:9a:e1:86:db:ca:bd:85:cb:b3:27:e8:9f:22:6e:1b:8b:a8: 48:d4:9a:fc:3b:27:30:74:ff:8d:04:5f:5c:b0:de:83:6a:26: 1a:74:2e:46:bc:40:d2:fc:19:da:5e:9a:7e:47:78:70:cf:fd: f5:bc:50:71:b4:a9:9f:3f:83:67:69:b5:a2:62:5d:3f:91:9f: 25:b1:82:b5:68:69:98:6d:00:de:2f:2c:a7:1b:7a:11:f0:8d: 21:b7:5a:d6:25:d6:1a:29:bb:36:43:89:b7:33:20:81:2f:4a: 58:b5:87:0f:f1:30:3d:9f:7a:9c:80:94:b3:d8:fa:38:f8:96: 8e:fa:cc:44 -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjQxMDE5MDE0NTQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEzMGY0OC1hYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Vp/QOneKo7PVRCN6myf8uC3oCwiKvKW5ns/2bBJwDVpJHh6BDIi8AwqYFB8 3mv8IzKOt2+f/VQFpXuCBj9C8s3tdLkFhGtDeBtNsunMySWpAnL0jzrLId/5/goe 36kXI4ZbAYmvfOrXIm4dSnRlFmgGSXgUwwwH6inJtpn+osk+BWRuOFC8UfjKacL/ /F/jcs0ePB1k5YPzLb5J6FC5DGxebc2hVYEHsCN+MD3uujMWhf/eHTtf0N24OaU1 PlMY1MpOqPvrf/RwqiZMDAa9IRm0+/18guFyRHlIsdIrVUWsP9ixDVO4JuFwnAxs Eiq8RjeDG07q2FXzeNZBDDURtwIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFNBBR265 jYvCujUjo8PsGUuYtODeMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MzEvMzlFNEQ3QThEQzc4MTFFQ0E0RTMwNjE3QzRGOUFFMDIvNjNGMDVERTAy RjFEMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMEIEAgABMDwDBAUbYMADBAZzRQADBAXKrGADBALLF+wDBADLHUEDBAHLHXwD BAHLH8oDBALLOPQDBAHLOTADBAXSAcAwDQQCAAIwBwMFACQH5AAwDQYJKoZIhvcN AQELBQADggEBAIJMQsHFZqqpyAvFTPHlVOY23LRDgw1Nm5wBEw+pHLl+JhSAzsVp sQohZlpuBjy990pLgOfvUONEianVZNQTHUSS6apqsUyGhoX+dL+DUH1WnT8zLa/B FLvN2LLP+oT3E3RTrq9+zcXNuu3nQ9+8kLUesP1ViGcqXu1t7BGpXQ2a4Ybbyr2F y7Mn6J8ibhuLqEjUmvw7JzB0/40EX1yw3oNqJhp0Lka8QNL8Gdpemn5HeHDP/fW8 UHG0qZ8/g2dptaJiXT+RnyWxgrVoaZhtAN4vLKcbehHwjSG3WtYl1hopuzZDibcz IIEvSli1hw/xMD2fepyAlLPY+jj4lo76zEQ= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:37 2024 by rpki-client on console-fra.rpki-client.org