$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/1514A670A47B11E9867CBF58C4F9AE02.roa File: 1514A670A47B11E9867CBF58C4F9AE02.roa (raw, json) Hash identifier: lTtCRn/BibW7ndFU9Nc5oNZEl+5Hf7PmDYXZp+Nz4tE= Subject key identifier: C7:BA:CB:72:6E:7C:3C:61:FF:AF:FA:FA:E5:45:BE:87:AE:40:D1:E0 Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 35CF Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/1514A670A47B11E9867CBF58C4F9AE02.roa Signing time: Tue 20 Aug 2024 14:30:29 +0000 ROA not before: Tue 20 Aug 2024 14:30:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7700 IP address blocks: 118.201.16.0/21 maxlen: 21 118.201.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13775 (0x35cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Validity Not Before: Aug 20 14:30:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4a885-f780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:1a:86:ec:0e:62:79:cf:38:02:46:f6:20: f4:4e:2d:ee:99:72:20:e5:89:b2:80:67:b0:47:56: 16:ba:12:3f:81:d4:f1:14:0b:c7:87:2f:9c:c5:86: b8:81:6d:94:49:a2:da:aa:99:0b:d1:e5:9e:bd:db: 85:c3:aa:cd:1c:2a:3f:28:ac:a9:e6:11:82:63:73: 15:e5:99:47:61:e7:7f:52:11:15:41:b5:6a:9b:92: b6:10:72:2c:39:08:2b:77:7e:ff:3d:22:ce:d4:e7: 39:aa:76:ab:bf:87:a6:ed:6d:da:cf:f1:a7:a5:03: cb:0d:ac:51:95:22:9d:5c:93:8b:65:d2:47:4b:12: b7:6b:cd:1b:83:56:8a:90:09:1e:0c:98:1b:1a:41: fd:4c:ef:bf:11:59:9d:79:a8:ab:2d:7c:a8:74:f1: 9b:e8:bc:7d:cd:74:e3:10:95:ca:46:1a:34:58:5d: b6:db:40:5f:29:b9:8c:e4:2b:d1:b8:a8:e2:4c:94: bd:77:7f:94:f2:8a:6f:db:d6:53:45:d0:eb:c6:98: 8f:cc:06:52:4f:f3:9e:96:0c:82:c9:c9:e8:c0:f0: 04:04:8d:f3:e1:b5:27:73:56:5a:8d:6b:93:43:f8: b3:67:83:55:8d:96:e1:eb:d4:34:4c:9c:84:6a:20: e1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:BA:CB:72:6E:7C:3C:61:FF:AF:FA:FA:E5:45:BE:87:AE:40:D1:E0 X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/1514A670A47B11E9867CBF58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.201.16.0/20 Signature Algorithm: sha256WithRSAEncryption 80:dc:2a:69:ee:cc:98:94:cb:f7:a2:a1:b5:13:af:f9:97:f0: 30:9e:d8:0b:e6:27:cb:8b:76:92:93:4f:9b:ed:76:c0:37:94: 6c:e9:e4:d0:b1:01:56:a2:05:99:e5:00:f0:01:4c:a4:aa:ba: 31:d3:9f:16:8c:ee:c8:ea:98:5f:df:41:13:7a:8b:a5:f7:b4: 7c:ec:be:7f:fd:5c:d5:8c:65:ef:65:e2:1e:af:26:3b:35:c1: de:59:b0:21:ef:ac:ab:f7:74:62:19:09:90:18:27:c1:be:58: e5:7c:e1:14:8f:b0:d3:e2:c6:f7:b5:11:67:4b:13:9f:68:a0: 95:2b:dd:19:8e:f2:97:dd:61:50:c8:5a:cb:1d:22:ef:d0:5b: 8b:61:bf:76:b6:d1:15:e4:8b:ea:79:bb:d8:ce:80:4c:e0:26: c0:b5:d9:0c:91:51:8c:0b:c5:b4:a8:2e:9e:b8:c9:bc:bc:fd: 26:b8:be:8c:37:df:02:27:97:98:7c:2f:f9:3d:8f:0f:d8:c7: 73:c1:80:43:73:f6:c2:75:1f:27:5f:b1:9d:44:e0:7c:5c:6c: cc:36:8c:fa:5d:90:92:f7:44:1a:75:41:e4:ed:c9:b8:ff:ab: 8a:d6:2c:ed:57:1b:ee:19:6f:a0:b6:f3:de:35:93:02:d4:22: 49:72:0a:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjQwODIwMTQzMDI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YTg4NS1mNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/wahuwOYnnPOAJG9iD0Ti3umXIg5YmygGewR1YWuhI/gdTxFAvHhy+cxYa4 gW2USaLaqpkL0eWevduFw6rNHCo/KKyp5hGCY3MV5ZlHYed/UhEVQbVqm5K2EHIs OQgrd37/PSLO1Oc5qnarv4em7W3az/GnpQPLDaxRlSKdXJOLZdJHSxK3a80bg1aK kAkeDJgbGkH9TO+/EVmdeairLXyodPGb6Lx9zXTjEJXKRho0WF2220BfKbmM5CvR uKjiTJS9d3+U8opv29ZTRdDrxpiPzAZST/OelgyCycnowPAEBI3z4bUnc1ZajWuT Q/izZ4NVjZbh69Q0TJyEaiDhSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMe6y3Ju fDxh/6/6+uVFvoeuQNHgMB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvMTUxNEE2NzBB NDdCMTFFOTg2N0NCRjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAR2yRAwDQYJKoZIhvcNAQELBQADggEBAIDcKmnuzJiUy/ei obUTr/mX8DCe2AvmJ8uLdpKTT5vtdsA3lGzp5NCxAVaiBZnlAPABTKSqujHTnxaM 7sjqmF/fQRN6i6X3tHzsvn/9XNWMZe9l4h6vJjs1wd5ZsCHvrKv3dGIZCZAYJ8G+ WOV84RSPsNPixve1EWdLE59ooJUr3RmO8pfdYVDIWssdIu/QW4thv3a20RXki+p5 u9jOgEzgJsC12QyRUYwLxbSoLp64yby8/Sa4vow33wInl5h8L/k9jw/Yx3PBgENz 9sJ1HydfsZ1E4HxcbMw2jPpdkJL3RBp1QeTtybj/q4rWLO1XG+4Zb6C28941kwLU IklyCro= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org