$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/BC94C436F62711E9AC18E63BC4F9AE02.roa File: BC94C436F62711E9AC18E63BC4F9AE02.roa (raw, json) Hash identifier: zl8I1nLXVEMXy4xPxHVaxiTzKWrGzc5RbUQuJSuZOc0= Subject key identifier: F9:0C:77:16:93:A4:53:DF:EC:57:81:E4:89:AD:B5:B4:67:A8:B6:E0 Certificate issuer: /CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Certificate serial: 35CD Authority key identifier: AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/BC94C436F62711E9AC18E63BC4F9AE02.roa Signing time: Tue 20 Aug 2024 14:30:28 +0000 ROA not before: Tue 20 Aug 2024 14:30:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 6619 IP address blocks: 203.126.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13773 (0x35cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C/serialNumber=AF8F0CFB47FBFCC7C4933C473CDB36442B5051CE Validity Not Before: Aug 20 14:30:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4a884-d6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:fe:31:8e:c1:2a:b5:99:fc:92:8c:a0:4d: 92:dd:90:5e:6d:4d:8d:ea:d8:9f:46:a2:0b:96:3c: ba:fc:2a:5e:89:cc:41:81:bc:48:4b:69:76:35:60: a9:ac:15:19:4d:83:81:bb:2c:fe:be:9f:44:fa:5a: 13:c6:b5:86:de:73:db:03:11:30:04:6c:a6:27:87: 2f:c3:0f:c7:de:05:89:84:86:0a:41:88:e1:0f:4f: 84:98:ff:44:a6:d2:97:68:7c:8d:ca:e9:4b:6e:1c: e4:7c:c7:de:91:6b:82:06:ac:af:9b:a0:14:b8:25: b1:7b:9b:cd:df:c6:a7:16:27:07:74:a1:21:5a:7e: 45:7a:e7:38:f5:f8:2a:17:89:99:0b:42:33:9d:23: 4e:76:f9:6d:e9:81:23:2a:c5:68:b1:38:9e:60:ce: c8:09:fa:f6:c5:12:64:fd:cf:e0:c5:3a:ea:fd:d5: 4c:97:c6:16:bd:e8:8a:99:c0:fb:50:f0:9c:61:8d: aa:75:03:9b:29:9c:ad:20:83:a6:81:6c:ce:91:fb: ae:58:f8:5b:ed:4d:c7:46:ed:31:06:eb:e2:64:89: 0d:e1:2e:f5:71:32:79:ca:c7:13:1f:b0:3e:f6:0b: 99:1b:15:3c:e4:7b:ec:65:fd:14:7c:ea:16:07:cf: 53:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:0C:77:16:93:A4:53:DF:EC:57:81:E4:89:AD:B5:B4:67:A8:B6:E0 X509v3 Authority Key Identifier: keyid:AF:8F:0C:FB:47:FB:FC:C7:C4:93:3C:47:3C:DB:36:44:2B:50:51:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/r48M-0f7_MfEkzxHPNs2RCtQUc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r48M-0f7_MfEkzxHPNs2RCtQUc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/6907C3E21D8311E29B35A5D808B02CD2/BC94C436F62711E9AC18E63BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.126.64.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:2d:11:b0:fa:0e:51:f0:cc:f2:79:e5:6c:9e:b3:8b:22:2a: 50:ee:f3:3c:35:ee:28:c8:56:78:65:41:51:06:be:d7:08:7b: 4e:10:0f:8b:7e:f9:4f:c0:1b:95:ce:d2:a9:d8:d7:08:82:60: d8:c3:87:43:04:a5:8d:df:cf:68:f4:19:fa:64:8f:18:07:95: 22:ff:7c:7e:f0:99:a6:53:0a:90:ea:4b:a5:66:8f:35:2b:c9: 6f:63:bd:c5:16:50:82:14:8a:ff:84:3f:ab:ca:40:37:4d:ee: 6d:0e:10:5b:68:1a:6d:68:84:0a:63:b1:2f:6f:f8:7b:7f:1b: 40:9e:c0:ae:ae:a0:bd:9c:65:45:3e:58:45:7c:bf:e3:68:8c: 85:54:1b:d0:19:6f:92:25:e5:6c:17:3a:61:f8:da:4b:ae:40: 94:1a:55:07:da:f5:7d:83:e0:44:ec:56:48:1f:7b:ab:98:cc: bc:ed:c2:3e:77:57:f4:c9:6c:80:f6:17:97:72:7e:66:fd:6e: 81:09:6a:f9:33:28:7f:cc:c3:a5:e1:fc:2a:30:f0:48:a3:f5: af:7e:67:a9:12:77:06:ec:98:3e:71:59:90:ea:94:53:65:c1: 4e:65:c6:d4:72:84:19:73:4d:8d:a4:02:c1:ac:e9:dc:11:56: fe:8a:83:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEFGOEYwQ0ZCNDdGQkZDQzdDNDkzM0M0NzNDREIzNjQ0 MkI1MDUxQ0UwHhcNMjQwODIwMTQzMDI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YTg4NC1kNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEH+MY7BKrWZ/JKMoE2S3ZBebU2N6tifRqILljy6/CpeicxBgbxIS2l2NWCp rBUZTYOBuyz+vp9E+loTxrWG3nPbAxEwBGymJ4cvww/H3gWJhIYKQYjhD0+EmP9E ptKXaHyNyulLbhzkfMfekWuCBqyvm6AUuCWxe5vN38anFicHdKEhWn5Feuc49fgq F4mZC0IznSNOdvlt6YEjKsVosTieYM7ICfr2xRJk/c/gxTrq/dVMl8YWveiKmcD7 UPCcYY2qdQObKZytIIOmgWzOkfuuWPhb7U3HRu0xBuviZIkN4S71cTJ5yscTH7A+ 9guZGxU85HvsZf0UfOoWB89TuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPkMdxaT pFPf7FeB5ImttbRnqLbgMB8GA1UdIwQYMBaAFK+PDPtH+/zHxJM8RzzbNkQrUFHO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy82OTA3QzNFMjFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi9yNDhNLTBmN19NZkVrenhIUE5zMlJDdFFV YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0OE0tMGY3X01mRWt6eEhQTnMyUkN0UVVjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNjkwN0MzRTIxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvQkM5NEM0MzZG NjI3MTFFOUFDMThFNjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLfkAwDQYJKoZIhvcNAQELBQADggEBADstEbD6DlHwzPJ5 5Wyes4siKlDu8zw17ijIVnhlQVEGvtcIe04QD4t++U/AG5XO0qnY1wiCYNjDh0ME pY3fz2j0GfpkjxgHlSL/fH7wmaZTCpDqS6VmjzUryW9jvcUWUIIUiv+EP6vKQDdN 7m0OEFtoGm1ohApjsS9v+Ht/G0CewK6uoL2cZUU+WEV8v+NojIVUG9AZb5Il5WwX OmH42kuuQJQaVQfa9X2D4ETsVkgfe6uYzLztwj53V/TJbID2F5dyfmb9boEJavkz KH/Mw6Xh/Cow8Eij9a9+Z6kSdwbsmD5xWZDqlFNlwU5lxtRyhBlzTY2kAsGs6dwR Vv6Kgws= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:37 2024 by rpki-client on console-fra.rpki-client.org