$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/67AFCD36F73911EE8BEC0A76C4F9AE02.roa File: 67AFCD36F73911EE8BEC0A76C4F9AE02.roa (raw, json) Hash identifier: s1sxUbrIJzlmdAuhFyg4Ypkz9mjbzVxqBgJTMm35sDA= Subject key identifier: E1:55:42:98:EC:D3:C9:D3:1E:9D:97:CC:E5:A9:3B:9A:A9:8D:3C:A5 Certificate issuer: /CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Certificate serial: 33B6 Authority key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/67AFCD36F73911EE8BEC0A76C4F9AE02.roa Signing time: Wed 10 Apr 2024 13:04:05 +0000 ROA not before: Wed 10 Apr 2024 13:04:05 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 23703 IP address blocks: 202.78.16.0/20 maxlen: 20 202.78.31.0/24 maxlen: 24 2405:d980::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13238 (0x33b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D Validity Not Before: Apr 10 13:04:05 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66168e44-18a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:80:9f:17:29:80:2d:b6:5c:8c:c2:a6:8a:36: 72:a3:e7:18:a2:09:97:8c:37:18:a0:e2:49:8c:fc: d1:03:19:2b:ba:99:f4:be:e5:77:6c:b0:f3:e4:5b: 42:8f:1e:2c:a1:29:62:d1:dd:7c:0c:a2:0b:a9:43: c6:67:5e:33:24:ab:49:5b:e2:5c:11:ce:29:1d:a1: 4a:fa:af:e4:53:1c:80:2f:a4:ca:40:7e:44:75:f3: 52:ec:c9:e0:2a:39:a3:c4:e5:1b:75:19:a7:eb:5a: 33:31:2c:39:13:82:2b:08:a5:17:b1:7b:0a:96:96: c4:0a:21:4c:fb:1a:49:de:83:33:33:93:5a:bc:9d: d3:10:52:66:49:52:0b:f1:71:8f:e8:dd:ef:d5:04: 29:27:04:ff:56:7e:71:b9:f7:c7:a2:a1:f6:5f:ce: ff:b7:21:35:aa:ec:ce:ac:8a:57:78:77:0d:9f:c3: 16:76:43:8a:99:57:a1:b2:a2:3c:f9:0d:27:12:37: 2d:83:af:3a:9a:5a:47:9f:10:02:65:13:e4:f6:5c: 69:eb:9f:dd:07:24:cb:ce:bc:99:d6:a4:db:bf:d1: ac:e0:19:db:98:ac:29:63:32:73:b3:f4:c7:e4:e4: 86:8c:04:11:f5:9d:51:78:f0:4e:69:eb:f6:5b:69: 41:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:55:42:98:EC:D3:C9:D3:1E:9D:97:CC:E5:A9:3B:9A:A9:8D:3C:A5 X509v3 Authority Key Identifier: keyid:4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/67AFCD36F73911EE8BEC0A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.78.16.0/20 IPv6: 2405:d980::/32 Signature Algorithm: sha256WithRSAEncryption 51:8f:3a:19:a1:99:02:26:5f:5c:54:f6:00:b9:ec:b2:2c:e6: c0:1e:bb:80:5d:06:32:34:3a:18:8f:8b:8d:51:9d:dc:43:7c: 55:8d:92:ce:e1:4e:7d:7c:01:d3:6b:85:10:cc:37:7d:5b:c6: cf:f6:d8:b2:c5:72:65:e2:44:a3:25:2e:31:a4:fc:a7:dc:e1: 30:60:88:2b:df:a3:ff:3d:2d:43:32:79:ad:40:0f:28:dc:c3: 3d:cb:2a:98:20:95:94:05:df:c3:68:60:8d:9c:11:6f:be:f9: 88:75:35:21:5d:43:c3:ba:6b:88:b3:7c:93:6a:eb:b5:32:dd: 35:fc:d3:79:0d:6e:53:c5:40:31:f6:94:36:6c:7f:53:db:40: 06:df:24:81:67:71:06:68:26:19:ff:8d:bf:56:20:8a:bc:76: 98:69:ca:bd:2b:ee:eb:c5:e1:a8:7e:ec:12:4c:35:e6:16:09: f3:12:f5:4c:9b:1f:66:68:75:6a:36:16:73:43:ee:37:a4:c8: 64:82:d8:0c:72:cc:d7:39:b0:08:ed:e1:f7:f4:15:2e:f7:ad: bf:71:ae:db:e2:70:7e:2c:e4:f7:ed:1a:f7:40:4b:eb:c7:4c: 34:33:ed:7e:09:9f:63:a4:b1:4f:89:4b:52:68:72:cf:cb:5d: f6:9e:d5:b4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURCNzUyNDVFMEY5 N0I4N0M3NEQwHhcNMjQwNDEwMTMwNDA1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2OGU0NC0xOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oCfFymALbZcjMKmijZyo+cYogmXjDcYoOJJjPzRAxkrupn0vuV3bLDz5FtC jx4soSli0d18DKILqUPGZ14zJKtJW+JcEc4pHaFK+q/kUxyAL6TKQH5EdfNS7Mng KjmjxOUbdRmn61ozMSw5E4IrCKUXsXsKlpbECiFM+xpJ3oMzM5NavJ3TEFJmSVIL 8XGP6N3v1QQpJwT/Vn5xuffHoqH2X87/tyE1quzOrIpXeHcNn8MWdkOKmVehsqI8 +Q0nEjctg686mlpHnxACZRPk9lxp65/dByTLzryZ1qTbv9Gs4BnbmKwpYzJzs/TH 5OSGjAQR9Z1RePBOaev2W2lBjwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOFVQpjs 08nTHp2XzOWpO5qpjTylMB8GA1UdIwQYMBaAFE3ruOEiK+Dj8jrtt1JF4Pl7h8dN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE3Ni9BQUJBMzQ5ODFE OEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJcjRPUHlPdTIzVWtYZy1YdUh4 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RldTQ0U0lyNE9QeU91MjNVa1hnLVh1SHgwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNzYvQUFCQTM0OTgxRDhCMTFFMkFBNzU2QUU2MDhCMDJDRDIvNjdBRkNEMzZG NzM5MTFFRThCRUMwQTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBATKThAwDQQCAAIwBwMFACQF2YAwDQYJKoZIhvcNAQELBQAD ggEBAFGPOhmhmQImX1xU9gC57LIs5sAeu4BdBjI0OhiPi41RndxDfFWNks7hTn18 AdNrhRDMN31bxs/22LLFcmXiRKMlLjGk/Kfc4TBgiCvfo/89LUMyea1ADyjcwz3L KpgglZQF38NoYI2cEW+++Yh1NSFdQ8O6a4izfJNq67Uy3TX803kNblPFQDH2lDZs f1PbQAbfJIFncQZoJhn/jb9WIIq8dphpyr0r7uvF4ah+7BJMNeYWCfMS9UybH2Zo dWo2FnND7jekyGSC2AxyzNc5sAjt4ff0FS73rb9xrtvicH4s5PftGvdAS+vHTDQz 7X4Jn2OksU+JS1Jocs/LXfae1bQ= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:05 2024 by rpki-client on console-fra.rpki-client.org