$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/63C97CBAC49E11EBAC936D7AC4F9AE02.roa File: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (raw, json) Hash identifier: Iw9+JOdav50YSnSQXp9Mgjc+tFnSJTCmgJVv03j+03E= Subject key identifier: 24:1B:7D:11:BD:CD:CE:2C:85:73:5C:3C:70:BC:CF:32:38:AD:9B:B6 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 258E Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/63C97CBAC49E11EBAC936D7AC4F9AE02.roa Signing time: Fri 28 Jun 2024 16:33:51 +0000 ROA not before: Fri 28 Jun 2024 16:33:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4657 IP address blocks: 202.156.4.0/24 maxlen: 24 202.156.8.0/24 maxlen: 24 202.156.9.0/24 maxlen: 24 202.156.10.0/24 maxlen: 24 202.156.16.0/20 maxlen: 24 202.156.32.0/19 maxlen: 24 2404:e800:de00::/48 maxlen: 48 2404:e800:de00::/64 maxlen: 64 2404:e800:de00:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9614 (0x258e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jun 28 16:33:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667ee5ee-e169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:4d:4a:39:6a:16:3b:fb:82:e1:63:57:52:3a: 06:ed:21:9b:a1:2a:dc:ac:2f:ec:c6:ac:52:2e:2b: de:4c:6f:c0:af:07:0b:b5:ea:70:5f:29:cc:b1:ef: 88:73:8b:3c:f0:66:9e:5f:12:11:b0:25:5f:e1:85: 18:48:af:6d:f5:74:41:3c:0d:09:9e:61:59:69:d1: f0:ae:db:91:a8:64:13:e0:92:29:c2:e8:ef:b1:09: e8:5f:5e:61:fc:b1:9e:cb:66:da:bd:5d:81:5e:41: a6:bd:05:dd:f1:78:76:8a:b1:a7:3c:32:66:54:33: ed:4b:49:75:29:26:66:bb:b7:0b:6e:f1:12:90:b5: 32:7a:8f:ec:c5:2f:61:4f:f5:57:16:38:3e:20:88: d5:a3:04:a8:dc:e6:b5:68:8a:2d:47:bc:14:ba:2c: 0a:10:b8:c4:3e:a5:a0:36:39:e9:33:91:13:72:4f: cd:84:7b:66:89:80:c1:54:c0:6d:8c:1d:a1:ef:f6: bd:1b:6b:2d:ff:26:1c:2a:47:45:c7:ae:01:b3:73: 8c:ae:23:33:94:e7:fa:dd:36:bb:2e:6f:ca:7b:0f: 20:d9:f2:1d:05:5f:82:24:ab:38:fb:e2:3e:bf:4d: f0:5b:f3:b4:86:78:e0:57:cc:4f:88:ed:92:5b:f4: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1B:7D:11:BD:CD:CE:2C:85:73:5C:3C:70:BC:CF:32:38:AD:9B:B6 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/63C97CBAC49E11EBAC936D7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.156.4.0/24 202.156.8.0-202.156.10.255 202.156.16.0-202.156.63.255 IPv6: 2404:e800:de00::/48 Signature Algorithm: sha256WithRSAEncryption 3f:5b:98:a4:58:62:bb:c7:88:5a:28:bb:a7:b1:0d:aa:ca:4f: 45:4d:dd:db:c6:4c:52:63:d7:ba:f2:83:c4:9d:87:ff:ba:b9: ef:8a:5e:8a:66:d4:0d:d4:a5:52:04:56:ab:f8:17:2e:3a:5e: 42:d5:49:2b:4a:67:7a:e8:a3:83:0e:60:98:06:d4:6f:4b:57: 0c:e0:6f:3d:6d:57:0d:f5:7e:b4:2e:1a:22:c2:f8:7f:08:4d: fe:79:9a:e5:24:85:ac:01:53:7a:57:f8:92:b8:72:75:db:b0: 1c:b0:e5:93:65:5f:92:7f:4b:a1:81:76:27:82:57:0e:f4:4a: 9c:11:94:7d:c3:53:ba:22:a6:59:bf:72:7a:6e:a2:b9:a9:0b: a6:1c:76:82:23:9e:a6:e9:43:f9:e1:8f:fa:fd:c4:c7:41:e4: 5d:35:61:f1:6e:24:b0:fc:24:52:2e:f9:25:8b:27:79:6a:c8: bf:56:1d:5e:b0:27:b3:2b:8c:13:38:1a:2f:88:00:c7:41:da: 23:f2:80:eb:c5:1e:22:fd:19:6f:4b:4b:80:e4:77:25:a1:89: ea:94:77:47:cd:fe:ee:ad:4f:c4:11:d5:ba:7d:df:3b:9d:74: 76:fd:d5:7c:6e:6f:4a:0c:39:bd:0f:d0:cd:79:c4:01:90:09: 58:2e:05:95 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICJY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjQwNjI4MTYzMzUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdlZTVlZS1lMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+U1KOWoWO/uC4WNXUjoG7SGboSrcrC/sxqxSLiveTG/ArwcLtepwXynMse+I c4s88GaeXxIRsCVf4YUYSK9t9XRBPA0JnmFZadHwrtuRqGQT4JIpwujvsQnoX15h /LGey2bavV2BXkGmvQXd8Xh2irGnPDJmVDPtS0l1KSZmu7cLbvESkLUyeo/sxS9h T/VXFjg+IIjVowSo3Oa1aIotR7wUuiwKELjEPqWgNjnpM5ETck/NhHtmiYDBVMBt jB2h7/a9G2st/yYcKkdFx64Bs3OMriMzlOf63Ta7Lm/Kew8g2fIdBV+CJKs4++I+ v03wW/O0hnjgV8xPiO2SW/Qk5QIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFCQbfRG9 zc4shXNcPHC8zzI4rZu2MB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVFNTMvMzg1MTE4NDA0NTg4MTFFNTlCMkQ4MzcxQzRGOUFFMDIvNjNDOTdDQkFD NDlFMTFFQkFDOTM2RDdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCgEAgABMCIDBADKnAQwDAMEA8qcCAMEAMqcCjAMAwQEypwQAwQGypwAMA8E AgACMAkDBwAkBOgA3gAwDQYJKoZIhvcNAQELBQADggEBAD9bmKRYYrvHiFoou6ex DarKT0VN3dvGTFJj17ryg8Sdh/+6ue+KXopm1A3UpVIEVqv4Fy46XkLVSStKZ3ro o4MOYJgG1G9LVwzgbz1tVw31frQuGiLC+H8ITf55muUkhawBU3pX+JK4cnXbsByw 5ZNlX5J/S6GBdieCVw70SpwRlH3DU7oiplm/cnpuormpC6YcdoIjnqbpQ/nhj/r9 xMdB5F01YfFuJLD8JFIu+SWLJ3lqyL9WHV6wJ7MrjBM4Gi+IAMdB2iPygOvFHiL9 GW9LS4DkdyWhieqUd0fN/u6tT8QR1bp93zuddHb91Xxub0oMOb0P0M15xAGQCVgu BZU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org