$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/DEF977A6E53611EB81682769C4F9AE02.roa File: DEF977A6E53611EB81682769C4F9AE02.roa (raw, json) Hash identifier: hs6gBEHf+NcXloE+gZDvY1hGrieoi7+2YWZ5lbTwNRY= Subject key identifier: F8:61:36:84:3B:E3:EF:F5:81:F0:5D:6B:A6:66:D4:60:F4:21:59:D7 Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 1277 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/DEF977A6E53611EB81682769C4F9AE02.roa Signing time: Wed 24 Jul 2024 17:35:16 +0000 ROA not before: Wed 24 Jul 2024 17:35:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 141886 IP address blocks: 203.12.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4727 (0x1277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Jul 24 17:35:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a13b54-fcbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:09:77:68:2c:63:3b:3a:24:64:9d:6e:43:1e: 12:9e:89:2e:ac:ef:98:cd:35:e6:58:67:e5:9d:57: 8b:c4:24:2d:4c:8a:87:48:78:21:d2:a1:87:0a:5f: be:e3:65:fa:35:34:38:3f:bb:c8:f7:9c:91:f4:47: 94:ae:29:7c:08:d2:5a:31:48:83:94:22:96:79:ef: ba:ed:99:0d:e5:08:7b:a2:d7:05:a8:e9:7f:45:92: 73:7d:c8:66:a5:20:12:80:df:09:6d:19:cd:02:77: 5f:91:0b:d2:da:c4:3a:cc:79:10:a0:3e:ff:98:53: 58:37:f5:96:e0:0a:75:8d:15:68:e0:cb:6f:f8:72: 5e:91:8c:89:d1:3c:44:20:d8:9e:b5:48:03:c9:50: 75:29:58:9b:78:37:ea:fd:29:c7:5a:63:36:3f:17: 3e:9e:7e:8d:c5:83:a0:43:72:9b:39:23:f9:85:fa: 39:05:b5:5f:49:f8:a1:78:dd:30:32:50:51:be:fc: 0e:c1:65:2e:e0:7c:c6:0b:e9:d5:47:e3:ce:44:f9: e6:ed:e6:62:ae:c7:02:39:72:ed:60:ec:8f:84:61: f8:dd:12:04:8d:a0:aa:e7:d1:fb:ab:1d:2c:c5:25: 44:2b:81:38:2f:a9:a7:6e:cf:90:e4:8d:32:ea:d4: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:61:36:84:3B:E3:EF:F5:81:F0:5D:6B:A6:66:D4:60:F4:21:59:D7 X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/DEF977A6E53611EB81682769C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.42.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:b4:03:c6:c2:b9:e3:93:1c:dc:1f:13:db:e7:10:1f:a4:61: fb:c5:a0:6f:d8:5d:eb:e0:6f:85:35:0f:96:f9:2d:f4:f3:b5: 23:48:bf:a7:37:f7:2a:c9:ae:70:0f:d9:33:f2:8c:c0:4e:61: 1e:ba:da:c1:21:7c:ec:4e:f8:63:83:e4:42:37:6a:62:4c:7e: 44:c8:42:15:67:af:09:81:0f:05:bc:41:61:fc:de:c1:73:4d: 95:49:48:5c:4d:fd:57:a0:7d:a2:a2:bd:89:04:79:59:71:e4: a6:bb:f6:8a:89:e1:70:ab:be:55:b3:85:74:23:13:02:5c:6d: 6e:71:84:8e:5f:8c:a1:82:c7:19:3f:fa:fe:86:20:da:bb:c6: 17:6f:70:a2:25:72:60:71:0a:19:0c:17:3f:ae:c3:ee:5e:a5: a8:38:79:f6:a0:f8:5a:dd:03:e3:34:4e:6e:4c:0b:cf:5b:d0: bb:cf:17:6d:bd:94:b7:7a:9f:06:76:b8:58:25:e9:ff:f3:f3: c8:d6:10:0e:55:5c:e1:bf:1a:dd:83:e2:a8:ec:e1:36:86:0d: 50:33:87:b1:1e:4e:07:8e:8d:5c:45:c9:b5:19:12:97:bf:17: b2:cc:74:b7:84:9a:de:c5:3e:e9:d7:60:77:68:24:7b:2a:f5: b6:5a:ae:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjQwNzI0MTczNTE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExM2I1NC1mY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gl3aCxjOzokZJ1uQx4SnokurO+YzTXmWGflnVeLxCQtTIqHSHgh0qGHCl++ 42X6NTQ4P7vI95yR9EeUril8CNJaMUiDlCKWee+67ZkN5Qh7otcFqOl/RZJzfchm pSASgN8JbRnNAndfkQvS2sQ6zHkQoD7/mFNYN/WW4Ap1jRVo4Mtv+HJekYyJ0TxE INietUgDyVB1KVibeDfq/SnHWmM2Pxc+nn6NxYOgQ3KbOSP5hfo5BbVfSfiheN0w MlBRvvwOwWUu4HzGC+nVR+PORPnm7eZirscCOXLtYOyPhGH43RIEjaCq59H7qx0s xSVEK4E4L6mnbs+Q5I0y6tRB6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPhhNoQ7 4+/1gfBda6Zm1GD0IVnXMB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvREVGOTc3QTZF NTM2MTFFQjgxNjgyNzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLDCowDQYJKoZIhvcNAQELBQADggEBAB+0A8bCueOTHNwf E9vnEB+kYfvFoG/YXevgb4U1D5b5LfTztSNIv6c39yrJrnAP2TPyjMBOYR662sEh fOxO+GOD5EI3amJMfkTIQhVnrwmBDwW8QWH83sFzTZVJSFxN/VegfaKivYkEeVlx 5Ka79oqJ4XCrvlWzhXQjEwJcbW5xhI5fjKGCxxk/+v6GINq7xhdvcKIlcmBxChkM Fz+uw+5epag4efag+FrdA+M0Tm5MC89b0LvPF229lLd6nwZ2uFgl6f/z88jWEA5V XOG/Gt2D4qjs4TaGDVAzh7EeTgeOjVxFybUZEpe/F7LMdLeEmt7FPunXYHdoJHsq 9bZaroY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org