$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/BC187B74F62711E9AC18E63BC4F9AE02.roa File: BC187B74F62711E9AC18E63BC4F9AE02.roa (raw, json) Hash identifier: 7aAuqtC29hzav+bw8l6s+4Sz/NtX59EW2GUY8BRn6X4= Subject key identifier: 0D:62:9E:C0:58:BE:F5:FD:EE:1A:9D:48:61:5A:5D:FD:08:88:19:84 Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 35CB Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/BC187B74F62711E9AC18E63BC4F9AE02.roa Signing time: Tue 20 Aug 2024 14:30:26 +0000 ROA not before: Tue 20 Aug 2024 14:30:26 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 56289 IP address blocks: 203.127.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13771 (0x35cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Validity Not Before: Aug 20 14:30:26 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4a882-d99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e7:67:73:6d:fc:5f:7a:93:71:6b:ed:d8:77: 0c:01:c4:f5:f7:88:90:ec:2c:f4:e4:7a:73:c6:ec: f8:3b:07:3c:0b:f2:f7:e1:64:d4:82:64:ea:2e:be: a1:b2:21:21:e3:8f:1f:3e:e2:dc:be:65:29:7b:09: cb:1f:f2:20:67:65:93:2b:26:df:ef:e9:b2:13:e4: 83:31:76:7c:e4:c6:a2:42:53:35:50:ad:10:89:e9: 7a:a2:17:59:97:b4:3b:9c:d9:1b:79:bd:5a:47:9f: 65:08:7c:75:66:21:59:a7:1f:29:ce:33:00:33:ec: e4:8b:86:cf:4a:5e:8f:f3:b3:21:26:37:69:6b:f5: 97:ad:d7:71:5d:cf:36:0f:ed:87:5f:67:2f:01:06: e5:e0:c7:30:f3:97:36:21:42:0f:53:a3:63:85:c6: d1:cd:a0:45:e5:02:4a:68:a9:34:b9:1d:6c:23:3d: 75:1b:4f:29:3e:e4:40:74:6d:f5:d2:d1:49:d5:66: b9:81:ca:c3:fc:41:af:47:1f:db:3b:43:9f:66:d7: 5e:45:8f:ad:82:18:ea:62:25:ff:34:09:77:28:83: bb:5c:8c:77:99:50:6f:35:ef:19:d6:89:6e:ae:bc: b3:97:c3:5c:24:cf:42:83:f9:de:7b:f6:09:ee:0d: 2d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:62:9E:C0:58:BE:F5:FD:EE:1A:9D:48:61:5A:5D:FD:08:88:19:84 X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/BC187B74F62711E9AC18E63BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.127.2.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ab:df:78:df:cf:0d:91:52:86:3e:0e:29:08:a4:d0:fd:b9: 60:e1:98:99:13:db:de:00:02:06:f0:a9:9e:86:2a:60:f9:a5: 3d:ba:4d:a8:a3:5d:46:02:ba:f2:dd:fe:16:7e:64:c8:fa:dc: ca:79:f6:f9:ce:33:c0:4a:ae:d3:b4:b2:23:59:5c:d1:1a:17: 5e:ec:e4:d0:fd:90:c8:f2:97:cb:36:fe:34:e4:c2:b0:2d:cd: b7:7c:37:e0:fb:73:6b:d7:b0:33:b5:af:b9:0e:c4:a1:8a:0b: 00:c0:3b:f1:08:5c:70:0e:5b:6c:8e:68:f9:32:85:e5:8e:69: d4:95:4f:a3:b9:c8:98:8e:5f:f7:0c:00:53:13:90:a0:8e:02: bf:9d:9e:04:5c:28:86:68:ba:24:5c:c3:20:bf:10:e8:46:c2: 08:81:90:19:33:e5:e3:10:0e:2c:56:ab:d6:8c:54:ec:cd:f9: 5e:34:1c:79:af:ab:70:7f:19:6b:b6:7e:a2:d0:5c:df:81:b0: b0:5d:4c:5f:58:5b:dd:b8:c3:34:ee:2d:1d:94:84:71:48:8f: d5:bd:35:bb:f2:8f:c6:b9:8b:54:64:34:d7:58:c5:3d:2a:cd: 68:e6:e0:44:7e:61:a4:e2:1b:22:24:e5:2f:da:ed:f3:b1:72: 32:46:79:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjQwODIwMTQzMDI2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YTg4Mi1kOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+dnc238X3qTcWvt2HcMAcT194iQ7Cz05Hpzxuz4Owc8C/L34WTUgmTqLr6h siEh448fPuLcvmUpewnLH/IgZ2WTKybf7+myE+SDMXZ85MaiQlM1UK0Qiel6ohdZ l7Q7nNkbeb1aR59lCHx1ZiFZpx8pzjMAM+zki4bPSl6P87MhJjdpa/WXrddxXc82 D+2HX2cvAQbl4Mcw85c2IUIPU6NjhcbRzaBF5QJKaKk0uR1sIz11G08pPuRAdG31 0tFJ1Wa5gcrD/EGvRx/bO0OfZtdeRY+tghjqYiX/NAl3KIO7XIx3mVBvNe8Z1olu rryzl8NcJM9Cg/nee/YJ7g0tpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA1insBY vvX97hqdSGFaXf0IiBmEMB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvQkMxODdCNzRG NjI3MTFFOUFDMThFNjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLfwIwDQYJKoZIhvcNAQELBQADggEBACur33jfzw2RUoY+ DikIpND9uWDhmJkT294AAgbwqZ6GKmD5pT26TaijXUYCuvLd/hZ+ZMj63Mp59vnO M8BKrtO0siNZXNEaF17s5ND9kMjyl8s2/jTkwrAtzbd8N+D7c2vXsDO1r7kOxKGK CwDAO/EIXHAOW2yOaPkyheWOadSVT6O5yJiOX/cMAFMTkKCOAr+dngRcKIZouiRc wyC/EOhGwgiBkBkz5eMQDixWq9aMVOzN+V40HHmvq3B/GWu2fqLQXN+BsLBdTF9Y W924wzTuLR2UhHFIj9W9Nbvyj8a5i1RkNNdYxT0qzWjm4ER+YaTiGyIk5S/a7fOx cjJGeZI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org