$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/6DEFE6D8A14611EF93AB8E21C4F9AE02.roa File: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (raw, json) Hash identifier: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs= Subject key identifier: 89:BC:3A:6C:50:C5:0C:6F:31:75:E8:EA:12:50:47:FB:FB:6F:C9:BF Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: 08 Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/6DEFE6D8A14611EF93AB8E21C4F9AE02.roa Signing time: Tue 19 Nov 2024 06:29:37 +0000 ROA not before: Tue 19 Nov 2024 06:29:37 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 133091 IP address blocks: 203.12.139.0/24 maxlen: 24 203.12.141.0/24 maxlen: 24 203.12.142.0/24 maxlen: 24 203.12.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: Nov 19 06:29:37 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=673c3051-d3b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:97:9d:2c:8b:66:d8:ec:56:16:95:dc:9e:64: 4d:24:24:c0:4d:be:94:42:f2:75:f4:56:54:a5:1a: ac:07:5f:c7:88:30:98:a0:d9:29:c5:c8:6a:73:79: 60:00:8d:e2:1c:a2:8c:ff:85:da:a4:84:cb:6d:a4: 42:cd:ec:c5:0d:43:e5:42:af:48:b0:57:02:1f:79: 8e:37:00:51:04:11:0c:7c:67:69:f4:b5:35:84:f9: 04:c5:ed:0a:27:b1:db:6d:48:36:81:d7:6b:4a:4f: e8:4c:07:33:43:c0:84:bb:9d:18:9c:a2:87:be:55: d6:dd:64:e3:9c:a1:2a:52:d8:b5:63:2e:28:a7:27: 7f:3c:af:13:28:f1:08:b2:92:2e:5c:d7:b5:82:ea: a0:87:e2:64:a2:b5:37:73:ee:26:d9:ea:34:80:b1: 1b:30:27:94:00:49:97:c7:da:dc:fe:d4:8c:22:54: e1:28:8c:e8:b7:fb:f1:74:2a:4c:3a:17:eb:6e:9a: 66:99:7e:b6:23:ef:9c:c0:a9:aa:a8:ab:5e:c3:c8: 1a:65:4d:b4:33:6b:44:29:1a:53:b9:4a:c5:3a:11: 69:89:41:37:50:fc:25:74:e5:44:ff:84:c4:26:d6: aa:6c:65:71:3e:a9:eb:d0:43:34:37:4c:fc:bc:5c: 7b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BC:3A:6C:50:C5:0C:6F:31:75:E8:EA:12:50:47:FB:FB:6F:C9:BF X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/6DEFE6D8A14611EF93AB8E21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.139.0/24 203.12.141.0-203.12.143.255 Signature Algorithm: sha256WithRSAEncryption b8:9f:3f:f3:a4:d2:38:ff:67:c8:e2:f6:2c:c4:c1:6e:05:f9: 67:a8:a4:30:49:10:1d:96:ea:0c:97:1d:2a:cb:0f:40:d5:d8: c9:d5:90:2f:0b:9a:cc:9e:f3:78:ac:06:9a:f5:e7:44:a4:77: 12:eb:4f:db:c0:cf:08:ec:18:e1:2d:b0:52:97:fa:b5:66:41: ab:aa:9d:99:88:e0:d7:3a:b1:ed:ce:77:f0:e8:3a:53:e7:88: 0e:61:d7:fa:07:bb:ef:31:6c:67:c3:f2:17:2d:5e:30:fa:78: a5:cf:10:53:c3:2e:66:49:c2:d7:2c:53:aa:07:b9:31:de:31: 48:34:e8:2b:28:fa:3c:a7:b5:6d:72:8e:74:e6:ce:79:2b:fd: b4:48:3a:e3:62:56:2b:b7:37:7e:07:c1:87:55:5f:cf:56:bc: 96:99:03:69:85:ed:90:45:f1:55:1a:16:43:d1:ba:4c:78:e9: 44:7f:2b:e9:c1:79:e8:a2:ff:0a:6e:b9:eb:18:23:cf:7a:ac: c7:e5:8d:6e:ac:7f:be:9e:36:1b:bc:f5:01:d9:c4:77:34:51: 2e:33:b4:9d:d7:2b:92:a2:d7:a2:42:25:d7:c2:e8:98:08:46: 94:bd:d0:12:a6:ea:3d:f7:bf:63:c8:82:15:15:ef:49:2b:27: a9:3e:86:f3 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU4RjExMC8GA1UEBRMoRDNDOUQyRDc3OUY2Njg0MzA5NzEyQkIzMENGQTE5OTI5 MEUxQjhENjAeFw0yNDExMTkwNjI5MzdaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2MzMDUxLWQzYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsl50si2bY7FYWldyeZE0kJMBNvpRC8nX0VlSlGqwHX8eIMJig2SnFyGpzeWAA jeIcooz/hdqkhMttpELN7MUNQ+VCr0iwVwIfeY43AFEEEQx8Z2n0tTWE+QTF7Qon sdttSDaB12tKT+hMBzNDwIS7nRicooe+VdbdZOOcoSpS2LVjLiinJ388rxMo8Qiy ki5c17WC6qCH4mSitTdz7ibZ6jSAsRswJ5QASZfH2tz+1IwiVOEojOi3+/F0Kkw6 F+tummaZfrYj75zAqaqoq17DyBplTbQza0QpGlO5SsU6EWmJQTdQ/CV05UT/hMQm 1qpsZXE+qevQQzQ3TPy8XHtVAgMBAAGjggKjMIICnzAdBgNVHQ4EFgQUibw6bFDF DG8xdejqElBH+/tvyb8wHwYDVR0jBBgwFoAU08nS13n2aEMJcSuzDPoZkpDhuNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERThGLzBCNTQzQjBBQTE0 NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDhuUzEzbjJhRU1KY1N1ekRQb1prcERodU5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REU4Ri8wQjU0M0IwQUExNDYxMUVGQTEyQTZFMUZDNEY5QUUwMi82REVGRTZEOEEx NDYxMUVGOTNBQjhFMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQe MBwwGgQCAAEwFAMEAMsMizAMAwQAywyNAwQEywyAMA0GCSqGSIb3DQEBCwUAA4IB AQC4nz/zpNI4/2fI4vYsxMFuBflnqKQwSRAdluoMlx0qyw9A1djJ1ZAvC5rMnvN4 rAaa9edEpHcS60/bwM8I7BjhLbBSl/q1ZkGrqp2ZiODXOrHtznfw6DpT54gOYdf6 B7vvMWxnw/IXLV4w+nilzxBTwy5mScLXLFOqB7kx3jFINOgrKPo8p7Vtco505s55 K/20SDrjYlYrtzd+B8GHVV/PVryWmQNphe2QRfFVGhZD0bpMeOlEfyvpwXnoov8K brnrGCPPeqzH5Y1urH++njYbvPUB2cR3NFEuM7Sd1yuSoteiQiXXwuiYCEaUvdAS puo9979jyIIVFe9JKyepPobz -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org