$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF1B9FF6F74011EE9C9F952CC4F9AE02.roa File: DF1B9FF6F74011EE9C9F952CC4F9AE02.roa (raw, json) Hash identifier: w1B3o1OMz0AwvDogavP9u8G0Djky1E8iA/Nj9+wfPVw= Subject key identifier: 01:88:23:35:43:68:69:39:E6:7C:EB:D4:A2:82:5D:E7:C9:38:89:15 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 189B Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF1B9FF6F74011EE9C9F952CC4F9AE02.roa Signing time: Wed 10 Apr 2024 13:47:29 +0000 ROA not before: Wed 10 Apr 2024 13:47:29 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4657 IP address blocks: 118.214.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6299 (0x189b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Apr 10 13:47:29 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66169871-1970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:75:e1:57:b1:b2:34:d2:83:64:13:62:b2: a8:a1:6b:2c:31:d4:84:79:78:39:56:4f:5e:fa:89: 79:09:81:36:6d:32:f7:d0:00:3c:20:81:e7:c9:73: 7d:1f:3e:3b:0c:ed:8a:83:0d:b8:e2:61:1d:88:0d: d1:67:3a:80:48:fc:13:e3:af:ab:b7:3d:df:26:d7: 3b:6c:cc:0d:13:b3:56:d5:84:e8:9c:17:9e:d8:ca: 5c:e5:50:47:ac:ea:d8:1e:f5:77:9f:d7:26:6c:27: e3:00:51:ea:de:95:72:04:8f:82:68:33:65:00:44: de:b1:dc:dd:e0:dc:45:ac:d3:f6:fc:48:7f:9e:3d: e7:f4:63:e3:32:a8:d5:bb:ab:ea:35:06:8c:6e:38: 1a:90:06:5f:91:76:a1:ed:ca:de:7b:80:78:1e:b4: 9b:50:80:24:77:d4:ab:52:66:55:61:42:90:b4:ee: 77:f5:1f:e5:8d:75:d4:5f:8f:e5:7d:a5:4f:54:f5: 9c:c7:84:6e:65:19:b3:10:6e:06:6d:65:4f:65:81: 8b:99:85:aa:34:b5:03:cc:84:d7:1e:87:a7:dd:37: c0:e7:35:0e:38:6f:74:83:db:d6:76:99:85:88:77: bc:a6:5f:c9:a5:9d:74:8d:6e:57:d0:b8:2b:e8:34: 16:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:88:23:35:43:68:69:39:E6:7C:EB:D4:A2:82:5D:E7:C9:38:89:15 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF1B9FF6F74011EE9C9F952CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.214.180.0/24 Signature Algorithm: sha256WithRSAEncryption 54:4a:8c:80:c3:31:60:e2:84:3b:2d:12:5c:07:8d:f7:b1:33: 9a:b1:6b:0b:fb:c0:3d:89:91:cb:2b:3b:bb:1a:72:64:b8:17: cc:4f:39:32:97:a2:79:f6:80:b0:1c:d6:8c:ca:50:00:08:85: 63:c1:22:b7:b3:c5:f9:01:78:f4:61:eb:67:ec:97:e6:8c:8a: 54:09:66:fd:27:f4:4d:ae:68:fa:d7:6e:8a:00:39:fd:d5:5e: 46:fb:f1:66:08:c8:d5:57:c3:7f:ac:95:4f:57:e1:04:83:32: ca:a6:b0:ff:c0:f5:5d:aa:ba:41:e6:a5:14:48:0e:3a:30:d3: 71:ba:6e:3a:6c:60:8a:08:e3:6c:a2:4f:17:a9:03:4e:dd:f1: 9a:e5:3e:1d:42:c0:84:6e:b4:c0:9e:b1:32:f2:e1:38:b9:72: c4:3f:66:58:5d:d0:90:aa:b2:eb:7c:6c:0d:d9:db:9b:b6:75: ef:59:60:b8:96:d3:77:db:e2:8a:9d:6d:8f:47:d7:b7:aa:42: 38:5c:58:85:7e:52:be:af:99:a6:c0:c7:65:39:70:5c:05:7d: a4:fa:06:cc:fa:02:f8:98:2d:2d:36:97:14:a4:4d:d6:e1:ce: 49:15:ca:2f:87:05:bd:e8:bc:04:ca:cb:15:3e:96:39:ab:f4: 9f:45:0a:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjQwNDEwMTM0NzI5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2OTg3MS0xOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7514VexsjTSg2QTYrKooWssMdSEeXg5Vk9e+ol5CYE2bTL30AA8IIHnyXN9 Hz47DO2Kgw244mEdiA3RZzqASPwT46+rtz3fJtc7bMwNE7NW1YTonBee2Mpc5VBH rOrYHvV3n9cmbCfjAFHq3pVyBI+CaDNlAETesdzd4NxFrNP2/Eh/nj3n9GPjMqjV u6vqNQaMbjgakAZfkXah7cree4B4HrSbUIAkd9SrUmZVYUKQtO539R/ljXXUX4/l faVPVPWcx4RuZRmzEG4GbWVPZYGLmYWqNLUDzITXHoen3TfA5zUOOG90g9vWdpmF iHe8pl/JpZ10jW5X0Lgr6DQWhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGIIzVD aGk55nzr1KKCXefJOIkVMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvREYxQjlGRjZG NzQwMTFFRTlDOUY5NTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB21rQwDQYJKoZIhvcNAQELBQADggEBAFRKjIDDMWDihDst ElwHjfexM5qxawv7wD2JkcsrO7sacmS4F8xPOTKXonn2gLAc1ozKUAAIhWPBIrez xfkBePRh62fsl+aMilQJZv0n9E2uaPrXbooAOf3VXkb78WYIyNVXw3+slU9X4QSD MsqmsP/A9V2qukHmpRRIDjow03G6bjpsYIoI42yiTxepA07d8ZrlPh1CwIRutMCe sTLy4Ti5csQ/Zlhd0JCqsut8bA3Z25u2de9ZYLiW03fb4oqdbY9H17eqQjhcWIV+ Ur6vmabAx2U5cFwFfaT6Bsz6AviYLS02lxSkTdbhzkkVyi+HBb3ovATKyxU+ljmr 9J9FCgY= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:05 2024 by rpki-client on console-fra.rpki-client.org