$ rpki-client -vvf rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/0B1C25AA364011EB8D09CB13C4F9AE02.roa File: 0B1C25AA364011EB8D09CB13C4F9AE02.roa (raw, json) Hash identifier: Zp5rh04wPxFdk4rF6uPjZtm3aHW5jijAwP5BN/XjlXA= Subject key identifier: EB:5D:0B:5E:FF:4C:EA:34:40:6A:67:68:B4:29:89:46:0C:0B:EB:26 Certificate issuer: /CN=A915D6D4/serialNumber=BDE7B18BDD7F7F684D22A2FB812EE5903489DAE2 Certificate serial: 06C1 Authority key identifier: BD:E7:B1:8B:DD:7F:7F:68:4D:22:A2:FB:81:2E:E5:90:34:89:DA:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veexi91_f2hNIqL7gS7lkDSJ2uI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/0B1C25AA364011EB8D09CB13C4F9AE02.roa Signing time: Thu 10 Oct 2024 14:51:18 +0000 ROA not before: Thu 10 Oct 2024 14:51:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45655 IP address blocks: 202.129.202.0/23 maxlen: 23 202.129.202.0/24 maxlen: 24 202.129.203.0/24 maxlen: 24 202.168.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/veexi91_f2hNIqL7gS7lkDSJ2uI.crl rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/veexi91_f2hNIqL7gS7lkDSJ2uI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veexi91_f2hNIqL7gS7lkDSJ2uI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1729 (0x6c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D6D4/serialNumber=BDE7B18BDD7F7F684D22A2FB812EE5903489DAE2 Validity Not Before: Oct 10 14:51:18 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6707e9e5-66e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:6e:64:6b:7c:5a:d5:9a:ab:51:2b:6d:33: f6:fe:05:96:ee:7d:ea:f3:f5:e9:8d:b7:2b:36:f1: 6c:ef:e4:c4:26:bd:81:e6:10:b4:67:df:e8:ec:8c: 95:0f:ff:ae:6a:cd:d2:16:8c:29:9b:e1:d9:19:2d: de:fd:8b:47:a3:e4:6b:54:45:3e:20:a3:f0:60:92: 09:47:14:cb:12:65:4e:5c:c1:1f:22:f0:80:7f:ac: 55:ee:9d:fa:57:64:25:44:a8:f9:f7:cd:6d:7d:af: 9f:08:63:d1:8f:56:b8:4d:62:b5:ec:69:54:75:d8: dc:9c:c7:a4:fb:36:9f:65:37:a2:e5:85:40:a3:3f: 59:e6:6c:67:7b:cb:e6:00:a4:df:8e:57:27:c6:a5: 62:ce:6f:5c:57:69:7e:4e:6a:b3:fd:53:72:db:51: 00:ad:9a:85:4f:1e:d9:12:bd:96:62:e6:7d:5f:65: 12:4b:a6:26:10:84:a6:2a:dd:6e:9a:04:6f:aa:4c: 20:69:5e:28:14:2e:93:43:5c:60:b5:51:11:43:20: ca:4d:0d:3a:47:fd:7e:75:1c:d0:b2:aa:3b:31:36: 33:33:6b:af:02:95:c1:53:73:3d:a7:43:15:66:31: fe:0a:f4:6b:fa:4f:e4:7a:4a:5d:5c:23:17:88:e6: 9f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5D:0B:5E:FF:4C:EA:34:40:6A:67:68:B4:29:89:46:0C:0B:EB:26 X509v3 Authority Key Identifier: keyid:BD:E7:B1:8B:DD:7F:7F:68:4D:22:A2:FB:81:2E:E5:90:34:89:DA:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/veexi91_f2hNIqL7gS7lkDSJ2uI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veexi91_f2hNIqL7gS7lkDSJ2uI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D6D4/C30171421D8B11E2AF0CA6E608B02CD2/0B1C25AA364011EB8D09CB13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.129.202.0/23 202.168.91.0/24 Signature Algorithm: sha256WithRSAEncryption a9:cf:ce:f9:7f:8e:fe:61:8f:89:14:ed:ad:6c:10:92:f2:74: f1:bc:7b:aa:e5:8e:9f:79:0e:0a:66:83:ff:c8:8c:7e:97:ce: 65:da:23:6c:cb:d3:c0:8e:7b:12:2d:04:c0:be:90:11:cf:2b: 04:0e:bc:05:38:ae:86:e8:72:1d:de:b2:4c:b3:29:1d:02:1f: f9:36:d4:ba:9f:5c:04:e7:70:35:f1:71:a8:dc:f7:63:d5:eb: 82:c3:f1:08:30:65:b7:fd:46:6d:65:3c:03:81:62:83:53:33: ba:39:a3:1c:1c:2d:28:13:32:76:81:d6:38:0f:89:68:b3:0e: 41:35:27:a3:5a:8f:c6:23:ae:fe:a4:61:63:97:8f:3d:17:f8: 1d:d5:7f:55:81:5c:1f:45:e1:50:54:f7:61:70:d8:db:a1:f4: d4:b5:96:a2:db:88:82:7c:74:2d:1c:c3:0d:83:9b:cf:7e:d8: 7a:d4:f5:83:fa:3d:fa:12:7b:e1:4e:f6:49:fa:8d:2b:7d:c4: 28:1e:be:2c:e3:e0:ac:76:e9:6a:d8:76:14:6f:88:e0:a6:c6: f2:05:bd:07:ad:3a:25:2f:82:4e:cc:f6:e4:19:33:04:15:8d: 44:f6:fe:4e:3e:1c:4c:14:f9:2a:ef:33:9b:07:a5:ae:27:6f: f1:e4:81:c4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2RDQxMTAvBgNVBAUTKEJERTdCMThCREQ3RjdGNjg0RDIyQTJGQjgxMkVFNTkw MzQ4OURBRTIwHhcNMjQxMDEwMTQ1MTE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZTllNS02NmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGtuZGt8WtWaq1ErbTP2/gWW7n3q8/XpjbcrNvFs7+TEJr2B5hC0Z9/o7IyV D/+uas3SFowpm+HZGS3e/YtHo+RrVEU+IKPwYJIJRxTLEmVOXMEfIvCAf6xV7p36 V2QlRKj5981tfa+fCGPRj1a4TWK17GlUddjcnMek+zafZTei5YVAoz9Z5mxne8vm AKTfjlcnxqVizm9cV2l+Tmqz/VNy21EArZqFTx7ZEr2WYuZ9X2USS6YmEISmKt1u mgRvqkwgaV4oFC6TQ1xgtVERQyDKTQ06R/1+dRzQsqo7MTYzM2uvApXBU3M9p0MV ZjH+CvRr+k/kekpdXCMXiOaf7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOtdC17/ TOo0QGpnaLQpiUYMC+smMB8GA1UdIwQYMBaAFL3nsYvdf39oTSKi+4Eu5ZA0idri MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDZENC9DMzAxNzE0MjFE OEIxMUUyQUYwQ0E2RTYwOEIwMkNEMi92ZWV4aTkxX2YyaE5JcUw3Z1M3bGtEU0oy dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZlZXhpOTFfZjJoTklxTDdnUzdsa0RTSjJ1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ2RDQvQzMwMTcxNDIxRDhCMTFFMkFGMENBNkU2MDhCMDJDRDIvMEIxQzI1QUEz NjQwMTFFQjhEMDlDQjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKgcoDBADKqFswDQYJKoZIhvcNAQELBQADggEBAKnPzvl/ jv5hj4kU7a1sEJLydPG8e6rljp95Dgpmg//IjH6XzmXaI2zL08COexItBMC+kBHP KwQOvAU4roboch3eskyzKR0CH/k21LqfXATncDXxcajc92PV64LD8QgwZbf9Rm1l PAOBYoNTM7o5oxwcLSgTMnaB1jgPiWizDkE1J6Naj8Yjrv6kYWOXjz0X+B3Vf1WB XB9F4VBU92Fw2Nuh9NS1lqLbiIJ8dC0cww2Dm89+2HrU9YP6PfoSe+FO9kn6jSt9 xCgevizj4Kx26WrYdhRviOCmxvIFvQetOiUvgk7M9uQZMwQVjUT2/k4+HEwU+Srv M5sHpa4nb/HkgcQ= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:37 2024 by rpki-client on console-fra.rpki-client.org