$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa File: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (raw, json) Hash identifier: sli6IC2z9YJ/HvCCp5rnJrdg1q/2CMI1k/lxId4QY58= Subject key identifier: 02:17:AC:F4:CF:EF:24:16:F0:36:2A:17:17:74:90:98:3F:2D:EC:17 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1C5E Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa Signing time: Mon 28 Oct 2024 14:40:43 +0000 ROA not before: Mon 28 Oct 2024 14:40:43 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58470 IP address blocks: 119.30.105.0/24 maxlen: 24 2401::/36 maxlen: 36 2401:0:6f00::/40 maxlen: 40 2401:0:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7262 (0x1c5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Oct 28 14:40:43 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671fa26b-b8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:5d:cd:fa:0f:85:ab:59:a5:12:3b:a7:5c: e2:45:e2:7d:fc:5f:e0:07:9a:76:4e:33:5f:8b:7a: 2e:99:51:9b:09:7b:e3:2b:a0:c3:78:3a:55:be:84: 88:de:05:71:2b:63:ef:ca:98:cb:86:3c:16:77:ef: b7:8f:d9:84:3f:e4:cc:e8:c0:75:57:61:fe:e0:b9: 9b:b1:a0:b9:41:3a:18:97:98:bc:51:9f:c4:b7:75: 75:ae:25:e5:4e:f6:6b:1a:f1:48:1a:fe:3e:ea:22: 3c:2f:43:0f:56:28:fe:84:67:f9:e0:15:b8:65:7c: da:63:d8:01:ee:2d:8d:c8:a3:bc:c9:58:75:93:4a: 1b:f6:97:42:a0:fb:c1:cd:bf:f6:0d:1a:e7:1a:ef: 73:ac:f5:08:71:bd:0a:bd:96:13:5e:bc:80:2f:88: 7e:27:74:8c:c0:41:08:5e:a0:2a:d6:85:2e:54:32: 23:0a:46:ce:ed:1e:2f:e3:bf:4d:5b:25:8b:71:8a: 0e:e6:c8:b8:67:1e:fe:9d:2a:9a:c5:12:fb:26:40: 11:9f:50:a9:36:96:1f:a5:aa:33:7c:25:d1:61:0b: fd:90:d1:1b:8a:c8:c6:f1:2d:e4:ee:a6:af:c7:c4: 5b:0c:bc:d0:b5:34:99:e6:c0:e9:15:f2:84:97:6f: 70:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:17:AC:F4:CF:EF:24:16:F0:36:2A:17:17:74:90:98:3F:2D:EC:17 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.105.0/24 IPv6: 2401::/36 2401:0:6f00::/40 2401:0:c000::/40 Signature Algorithm: sha256WithRSAEncryption b6:e0:11:83:c4:a0:57:ac:36:65:e5:7c:a9:8d:5f:ff:fd:87: 86:c2:a7:3d:74:e6:29:e2:ae:de:a3:95:a4:63:67:69:f3:b5: ff:f2:2f:ff:a9:72:42:fa:f2:eb:a1:bb:82:c8:e6:39:8c:f5: f6:cb:ed:2e:fd:19:2a:56:51:3d:89:7e:85:af:eb:aa:02:2a: 00:47:0f:f5:c9:f6:b3:41:54:7d:a4:19:10:7c:6e:57:b6:7b: 72:78:19:c2:f5:7e:c9:05:32:cd:9b:30:e1:2d:11:68:dc:73: 5b:8f:05:30:ea:7e:f8:0d:97:28:6f:9f:99:68:2b:ae:fb:4f: e0:bc:49:34:db:d5:29:7b:be:97:29:b2:95:b6:9b:16:12:b2: 72:f8:3f:32:2a:88:8d:ea:ac:51:fe:79:38:60:9f:ab:23:e3: 94:51:39:74:5a:7a:b6:7b:0b:e8:0d:7c:7c:1e:94:ba:20:fb: 57:37:9b:b6:ab:d4:17:34:ff:92:72:46:48:80:46:e7:68:d2: 1b:de:45:b7:9a:6a:f2:88:90:a1:8b:3d:e4:5f:09:12:fa:19: af:fc:a2:8b:3d:81:94:8b:4c:ba:38:89:98:54:3b:b8:20:db: 7c:99:d5:48:4e:35:e7:39:41:79:c8:3a:78:47:67:e6:c1:ad: 23:46:90:9d -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICHF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjQxMDI4MTQ0MDQzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmYTI2Yi1iOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJFdzfoPhatZpRI7p1ziReJ9/F/gB5p2TjNfi3oumVGbCXvjK6DDeDpVvoSI 3gVxK2PvypjLhjwWd++3j9mEP+TM6MB1V2H+4LmbsaC5QToYl5i8UZ/Et3V1riXl TvZrGvFIGv4+6iI8L0MPVij+hGf54BW4ZXzaY9gB7i2NyKO8yVh1k0ob9pdCoPvB zb/2DRrnGu9zrPUIcb0KvZYTXryAL4h+J3SMwEEIXqAq1oUuVDIjCkbO7R4v479N WyWLcYoO5si4Zx7+nSqaxRL7JkARn1CpNpYfpaozfCXRYQv9kNEbisjG8S3k7qav x8RbDLzQtTSZ5sDpFfKEl29wAwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFAIXrPTP 7yQW8DYqFxd0kJg/LewXMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNzc3RjVDRUU4 QUE2MTFFQTk0QkMwRDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMAwEAgABMAYDBAB3HmkwHgQCAAIwGAMGBCQBAAAAAwYAJAEAAG8DBgAkAQAA wDANBgkqhkiG9w0BAQsFAAOCAQEAtuARg8SgV6w2ZeV8qY1f//2HhsKnPXTmKeKu 3qOVpGNnafO1//Iv/6lyQvry66G7gsjmOYz19svtLv0ZKlZRPYl+ha/rqgIqAEcP 9cn2s0FUfaQZEHxuV7Z7cngZwvV+yQUyzZsw4S0RaNxzW48FMOp++A2XKG+fmWgr rvtP4LxJNNvVKXu+lymylbabFhKycvg/MiqIjeqsUf55OGCfqyPjlFE5dFp6tnsL 6A18fB6UuiD7VzebtqvUFzT/knJGSIBG52jSG95Ft5pq8oiQoYs95F8JEvoZr/yi iz2BlItMujiJmFQ7uCDbfJnVSE415zlBecg6eEdn5sGtI0aQnQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:21 2024 by rpki-client on console-ams.rpki-client.org