$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/711F090E8AB411EA89D83541C4F9AE02.roa File: 711F090E8AB411EA89D83541C4F9AE02.roa (raw, json) Hash identifier: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c= Subject key identifier: AD:E7:F7:C3:83:91:EF:A6:0C:FE:70:9D:F4:98:B2:D7:E8:25:AB:E4 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1C57 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/711F090E8AB411EA89D83541C4F9AE02.roa Signing time: Mon 28 Oct 2024 14:40:37 +0000 ROA not before: Mon 28 Oct 2024 14:40:37 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 17557 IP address blocks: 202.61.59.0/24 maxlen: 24 202.61.60.0/24 maxlen: 24 202.61.61.0/24 maxlen: 24 202.61.62.0/24 maxlen: 24 202.61.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7255 (0x1c57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Oct 28 14:40:37 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671fa265-5300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b5:9a:52:f0:1f:01:f9:49:35:ae:bc:95:10: a9:f1:26:49:cc:ae:34:40:d6:53:57:b7:e2:04:c6: d7:4e:8c:97:86:8a:65:e7:9a:76:b4:a9:f8:6f:09: ea:dc:80:10:42:c6:7d:b8:8e:96:33:21:2c:c3:d9: 30:fd:b8:7e:f7:23:aa:bd:f7:47:0b:0f:fc:99:5b: 39:0c:ec:83:94:73:d8:0b:ad:1d:73:b7:50:bd:1a: 68:9f:3c:a9:64:bd:dc:67:39:3c:f2:3a:88:d9:b6: a9:ea:c1:98:57:37:e0:39:12:90:1f:12:b7:c2:1d: a9:c2:5b:47:7b:1a:ec:38:8d:4f:54:d7:2c:fd:67: 3c:24:7a:7e:52:3a:42:20:bf:af:da:22:6c:86:64: 48:93:79:b8:85:a4:f4:60:43:fa:2a:6f:66:e7:ff: 20:ac:bd:95:45:ea:2f:38:07:84:a5:bc:c9:7f:e8: 14:e3:aa:44:44:83:9e:3a:e0:74:9f:71:47:a8:7a: dd:aa:bf:6e:fe:12:02:b4:54:3f:26:fd:05:fa:d4: 95:26:4b:de:da:2b:f0:c4:2a:ce:0a:6c:9e:a6:53: f6:f5:7e:1c:1a:43:d7:21:ca:f0:1e:a4:e5:fa:01: c5:a9:7f:bb:4c:c1:0d:9b:6b:41:52:75:88:36:fb: 64:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:E7:F7:C3:83:91:EF:A6:0C:FE:70:9D:F4:98:B2:D7:E8:25:AB:E4 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/711F090E8AB411EA89D83541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.61.59.0-202.61.63.255 Signature Algorithm: sha256WithRSAEncryption 7a:63:14:36:f8:7c:86:a9:49:37:72:40:20:51:36:4d:71:ed: 89:42:88:c9:75:93:79:54:05:a1:80:f1:04:f0:01:ee:e7:88: ce:4c:82:f3:c1:29:73:8c:60:6a:3f:af:d7:a2:f3:97:37:72: a9:0a:d8:84:db:c9:c4:01:31:80:27:2c:4c:3b:37:a1:68:f8: 4c:3d:f4:82:e9:12:51:cf:0b:2b:24:19:b0:3e:79:3e:1e:c7: f2:ff:37:cd:69:fb:f8:94:d5:73:15:68:55:c4:88:00:d0:78: 8a:c3:06:4d:9a:0a:d7:af:7f:be:ca:7d:24:2a:18:59:d8:8b: fc:c7:ad:fc:d4:a1:a5:5f:d7:d2:fc:67:20:3b:0f:a3:4f:a7: 76:38:ba:c8:6d:94:97:20:24:ac:f3:8f:72:90:f0:27:65:2f: a1:4a:b5:ef:dd:29:e4:3b:5f:ad:c5:f1:46:68:ec:1c:e6:4e: c9:3d:c1:40:5b:30:31:b2:40:5b:d7:68:61:41:ea:65:f9:c2: 84:6d:a7:b0:2b:5b:a6:9f:a5:91:fe:68:f5:28:b2:a5:c0:ac: a1:7a:38:03:2f:f6:d9:f8:32:75:e3:13:9d:c3:ea:98:a8:30: d4:bd:66:ba:85:c3:99:a8:95:6e:52:5d:9b:7f:e6:b1:b4:17: 65:1b:3f:1d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICHFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjQxMDI4MTQ0MDM3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmYTI2NS01MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LWaUvAfAflJNa68lRCp8SZJzK40QNZTV7fiBMbXToyXhopl55p2tKn4bwnq 3IAQQsZ9uI6WMyEsw9kw/bh+9yOqvfdHCw/8mVs5DOyDlHPYC60dc7dQvRponzyp ZL3cZzk88jqI2bap6sGYVzfgORKQHxK3wh2pwltHexrsOI1PVNcs/Wc8JHp+UjpC IL+v2iJshmRIk3m4haT0YEP6Km9m5/8grL2VReovOAeEpbzJf+gU46pERIOeOuB0 n3FHqHrdqr9u/hICtFQ/Jv0F+tSVJkve2ivwxCrOCmyeplP29X4cGkPXIcrwHqTl +gHFqX+7TMENm2tBUnWINvtkmQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFK3n98OD ke+mDP5wnfSYstfoJavkMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNzExRjA5MEU4 QUI0MTFFQTg5RDgzNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMo9OwMEBso9ADANBgkqhkiG9w0BAQsFAAOCAQEAemMU Nvh8hqlJN3JAIFE2TXHtiUKIyXWTeVQFoYDxBPAB7ueIzkyC88Epc4xgaj+v16Lz lzdyqQrYhNvJxAExgCcsTDs3oWj4TD30gukSUc8LKyQZsD55Ph7H8v83zWn7+JTV cxVoVcSIANB4isMGTZoK169/vsp9JCoYWdiL/Met/NShpV/X0vxnIDsPo0+ndji6 yG2UlyAkrPOPcpDwJ2UvoUq1790p5DtfrcXxRmjsHOZOyT3BQFswMbJAW9doYUHq ZfnChG2nsCtbpp+lkf5o9SiypcCsoXo4Ay/22fgydeMTncPqmKgw1L1muoXDmaiV blJdm3/msbQXZRs/HQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:21 2024 by rpki-client on console-ams.rpki-client.org