$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa File: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (raw, json) Hash identifier: Roh1KCgx2d7yViTiJmXnrmApOZZvqG65uAQZz4WGMkU= Subject key identifier: 3D:8D:19:9D:D2:41:13:E9:9D:B1:EC:A3:8F:48:39:30:CB:C2:94:33 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1B8C Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa Signing time: Fri 20 Oct 2023 14:40:39 +0000 ROA not before: Fri 20 Oct 2023 14:40:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 58470 IP address blocks: 119.30.105.0/24 maxlen: 24 2401::/36 maxlen: 36 2401:0:6f00::/40 maxlen: 40 2401:0:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 14:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7052 (0x1b8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Oct 20 14:40:39 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65329166-f475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c5:58:41:fb:cf:dc:8d:ad:dc:70:22:ca:c1: 96:aa:c4:50:cb:b2:29:8c:bb:55:1b:70:3f:86:64: 79:96:0a:19:bd:c2:f7:3f:17:89:53:8b:01:a5:9a: e6:56:6a:fe:e6:67:bd:a7:f1:18:08:2c:02:71:0b: 77:57:69:cb:ab:2c:21:d5:de:af:0e:3a:34:a4:b7: 24:0d:b0:79:14:cc:c2:8b:24:53:34:54:67:75:fe: 24:f3:7a:2c:04:bc:95:04:2d:bb:6a:e5:8a:36:09: de:cf:03:4d:6a:2d:54:ce:4c:9a:7e:be:23:bf:8b: 52:93:d1:1f:16:4b:d2:fe:83:5e:de:e6:bd:03:c3: 2c:1e:14:15:b9:64:11:19:bb:54:69:3e:62:35:0f: e9:36:d3:d8:01:4c:ca:a2:95:a3:17:88:1b:6a:68: 65:c8:d5:96:3a:13:48:01:2d:61:18:7e:7e:73:dc: 5d:55:44:b6:56:b7:d4:a1:6b:88:6e:9d:0d:43:d4: 47:bf:6f:f3:57:cf:01:0a:44:e8:57:fe:5c:d7:fd: a5:5e:52:62:99:19:34:00:7e:ae:ae:80:27:15:08: a8:3f:e8:e6:d3:40:a3:40:51:fa:85:c0:13:90:83: ad:ab:d7:6e:da:47:52:8c:16:0b:82:93:30:39:c8: 82:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:8D:19:9D:D2:41:13:E9:9D:B1:EC:A3:8F:48:39:30:CB:C2:94:33 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.105.0/24 IPv6: 2401::/36 2401:0:6f00::/40 2401:0:c000::/40 Signature Algorithm: sha256WithRSAEncryption 98:e9:1a:4b:61:f4:d9:17:f1:ea:62:44:ca:af:ba:d9:5a:a6: 42:c2:49:7d:ce:3a:c8:dd:1c:ce:b9:1f:96:45:80:50:d3:f5: 54:5b:60:f5:4a:be:c0:57:0d:43:96:28:8e:77:47:cd:9e:f8: fd:a3:c5:71:34:ba:6b:5e:b4:a3:0a:af:1d:b5:d8:b9:ef:4b: 8a:7a:69:b0:ca:fb:8f:26:da:d7:f4:e6:b3:3d:9f:4c:5c:f6: 26:e8:7c:91:f1:3a:3a:2b:c2:d1:cd:d2:07:ef:c8:71:88:a4: 73:60:5a:e0:d9:4e:61:22:39:cc:a3:8b:d7:be:ab:e6:d7:fc: 6d:d9:f8:4d:b3:89:13:d2:83:d1:67:4a:10:40:92:2d:32:4a: 73:4b:5f:45:2e:93:aa:36:1e:d9:5b:62:dc:e9:c9:47:52:30: 4c:00:d8:a4:13:d3:13:51:4c:2b:e7:44:de:3d:40:af:0f:91: 3c:86:d6:21:dd:e5:f5:6d:48:33:a5:de:7d:d1:f6:01:d6:75: ff:db:25:b3:fd:d0:48:3b:ac:aa:50:de:f0:5a:79:3e:68:e9: e8:31:16:21:e7:15:94:1c:88:28:22:57:67:70:fd:ce:51:52: 62:a1:a5:d9:aa:7f:f8:df:93:5b:a2:e5:fe:82:40:4e:70:e5: 63:6b:cd:f3 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICG4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjMxMDIwMTQ0MDM5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyOTE2Ni1mNDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMVYQfvP3I2t3HAiysGWqsRQy7IpjLtVG3A/hmR5lgoZvcL3PxeJU4sBpZrm Vmr+5me9p/EYCCwCcQt3V2nLqywh1d6vDjo0pLckDbB5FMzCiyRTNFRndf4k83os BLyVBC27auWKNgnezwNNai1Uzkyafr4jv4tSk9EfFkvS/oNe3ua9A8MsHhQVuWQR GbtUaT5iNQ/pNtPYAUzKopWjF4gbamhlyNWWOhNIAS1hGH5+c9xdVUS2VrfUoWuI bp0NQ9RHv2/zV88BCkToV/5c1/2lXlJimRk0AH6uroAnFQioP+jm00CjQFH6hcAT kIOtq9du2kdSjBYLgpMwOciCHQIDAQABo4ICtTCCArEwHQYDVR0OBBYEFD2NGZ3S QRPpnbHso49IOTDLwpQzMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNzc3RjVDRUU4 QUE2MTFFQTk0QkMwRDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMAwEAgABMAYDBAB3HmkwHgQCAAIwGAMGBCQBAAAAAwYAJAEAAG8DBgAkAQAA wDANBgkqhkiG9w0BAQsFAAOCAQEAmOkaS2H02Rfx6mJEyq+62VqmQsJJfc46yN0c zrkflkWAUNP1VFtg9Uq+wFcNQ5YojndHzZ74/aPFcTS6a160owqvHbXYue9Linpp sMr7jyba1/Tmsz2fTFz2Juh8kfE6OivC0c3SB+/IcYikc2Ba4NlOYSI5zKOL176r 5tf8bdn4TbOJE9KD0WdKEECSLTJKc0tfRS6TqjYe2Vti3OnJR1IwTADYpBPTE1FM K+dE3j1Arw+RPIbWId3l9W1IM6XefdH2AdZ1/9sls/3QSDusqlDe8Fp5Pmjp6DEW IecVlByIKCJXZ3D9zlFSYqGl2ap/+N+TW6Ll/oJATnDlY2vN8w== -----END CERTIFICATE-----Generated at Sun May 26 16:40:10 2024 by rpki-client on console-fra.rpki-client.org