$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/5C696C684ABB11EFB64F1B36C4F9AE02.roa File: 5C696C684ABB11EFB64F1B36C4F9AE02.roa (raw, json) Hash identifier: WFRTP7bzWeDnSHdUjuXa9Fy5r44ua3wCOU6T8RP4HCU= Subject key identifier: 2F:2D:DF:FD:55:4C:75:9B:88:29:19:21:23:3C:D5:6C:F9:4E:B4:9F Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 36D0 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/5C696C684ABB11EFB64F1B36C4F9AE02.roa Signing time: Thu 25 Jul 2024 19:23:25 +0000 ROA not before: Thu 25 Jul 2024 19:23:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141031 IP address blocks: 111.88.0.0/24 maxlen: 24 111.88.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14032 (0x36d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Jul 25 19:23:25 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66a2a62c-6937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:23:0f:f0:c7:da:81:96:45:af:3d:a3:65:c8: 4c:cd:ea:24:b8:ed:2d:e6:b6:7b:67:ce:5c:9f:19: aa:9d:fb:ca:21:9e:1b:c5:30:67:12:28:ab:df:af: d4:8b:d1:59:18:34:8a:9d:84:53:58:a2:3b:c7:a8: eb:72:6a:01:3d:70:f6:21:94:11:ee:1e:25:a7:34: 4d:38:f6:14:06:6c:3e:75:02:51:cc:fa:e5:ab:ec: 6c:97:47:b9:83:98:ad:fb:bb:fc:f0:30:b7:21:7c: 43:25:55:af:46:60:48:7c:04:14:d2:5f:f0:3e:06: 1b:f2:93:2b:30:0d:05:8f:30:90:68:80:7b:69:b2: 5d:e1:93:59:c3:cd:17:5f:c6:f9:c4:bd:f4:59:69: 21:38:d7:41:2c:b2:a8:a8:8a:5b:d7:90:4f:bb:11: 53:b9:7c:bf:b9:04:4a:6f:7e:c9:e8:00:85:92:ed: a0:d4:97:fa:58:88:8f:4c:00:d7:8e:e2:11:ae:6b: 0d:d2:85:18:3e:92:29:26:36:59:1d:d8:05:2e:94: 98:e5:15:bb:89:3e:da:cd:5a:81:ac:38:fe:b4:f6: 0f:55:df:5a:4d:a5:85:95:3b:ed:f0:03:60:99:17: 4c:f2:d2:f8:58:2b:36:79:f4:e4:b2:7c:92:4e:2f: 7b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2D:DF:FD:55:4C:75:9B:88:29:19:21:23:3C:D5:6C:F9:4E:B4:9F X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/5C696C684ABB11EFB64F1B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.88.0.0/23 Signature Algorithm: sha256WithRSAEncryption bb:b8:2c:8d:ba:26:1e:da:a6:93:23:1b:8b:ca:4b:c4:fd:98: 65:60:4c:b9:79:0a:fc:7f:83:3f:31:2d:81:1f:15:b1:19:ea: 85:65:88:29:dd:90:8b:5a:92:90:37:26:5c:35:73:de:d6:35: 8c:d5:d5:32:1e:86:5f:ca:bb:76:7e:17:18:38:2a:1f:3b:d6: 85:a7:d8:a8:82:85:41:58:70:6c:a8:c3:e4:a2:34:97:f5:ec: f9:fb:9e:9b:ff:87:ea:2c:cf:bf:36:c2:b0:21:b3:c5:c6:7e: 23:a8:1d:be:ec:2c:a8:91:d0:26:ba:c3:5a:6a:2f:bf:61:17: e7:ae:2d:1e:db:09:cc:2e:e0:6a:52:8e:2f:a1:c6:07:76:68: 2c:8f:a6:58:32:24:b0:b6:f5:90:5f:77:17:d7:e1:e2:8a:cb: 58:3b:9e:ce:42:d8:b6:9b:36:18:60:e2:28:5b:b9:e5:fa:3d: 9c:ba:9b:4f:0c:cb:2a:c5:1a:60:18:b5:da:41:1f:26:b7:05: 08:5d:b0:5c:23:81:c8:8a:1a:a2:b0:5f:f2:51:a2:7f:8f:16: fa:2a:24:14:99:e5:97:65:8d:52:2a:93:82:8c:19:9a:e1:23: b0:0a:85:c2:e6:28:47:55:df:a3:b9:2a:93:cd:6a:fe:a5:f2: 75:ca:ba:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjQwNzI1MTkyMzI1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEyYTYyYy02OTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iMP8MfagZZFrz2jZchMzeokuO0t5rZ7Z85cnxmqnfvKIZ4bxTBnEiir36/U i9FZGDSKnYRTWKI7x6jrcmoBPXD2IZQR7h4lpzRNOPYUBmw+dQJRzPrlq+xsl0e5 g5it+7v88DC3IXxDJVWvRmBIfAQU0l/wPgYb8pMrMA0FjzCQaIB7abJd4ZNZw80X X8b5xL30WWkhONdBLLKoqIpb15BPuxFTuXy/uQRKb37J6ACFku2g1Jf6WIiPTADX juIRrmsN0oUYPpIpJjZZHdgFLpSY5RW7iT7azVqBrDj+tPYPVd9aTaWFlTvt8ANg mRdM8tL4WCs2efTksnySTi97LwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC8t3/1V THWbiCkZISM81Wz5TrSfMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvNUM2OTZDNjg0 QUJCMTFFRkI2NEYxQjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFvWAAwDQYJKoZIhvcNAQELBQADggEBALu4LI26Jh7appMj G4vKS8T9mGVgTLl5Cvx/gz8xLYEfFbEZ6oVliCndkItakpA3Jlw1c97WNYzV1TIe hl/Ku3Z+Fxg4Kh871oWn2KiChUFYcGyow+SiNJf17Pn7npv/h+osz782wrAhs8XG fiOoHb7sLKiR0Ca6w1pqL79hF+euLR7bCcwu4GpSji+hxgd2aCyPplgyJLC29ZBf dxfX4eKKy1g7ns5C2LabNhhg4ihbueX6PZy6m08MyyrFGmAYtdpBHya3BQhdsFwj gciKGqKwX/JRon+PFvoqJBSZ5ZdljVIqk4KMGZrhI7AKhcLmKEdV36O5KpPNav6l 8nXKuqA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org