$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/87F433B2234C11EBA94AE637C4F9AE02.roa File: 87F433B2234C11EBA94AE637C4F9AE02.roa (raw, json) Hash identifier: 8IA0ohDjbOIDbTIwzd4DAazOGIPH0d9I4v3XbQLDu3w= Subject key identifier: BE:F3:55:5D:B2:9B:F0:B8:A0:21:00:F5:3C:47:49:80:C5:83:A8:62 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1C63 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/87F433B2234C11EBA94AE637C4F9AE02.roa Signing time: Mon 30 Sep 2024 16:24:18 +0000 ROA not before: Mon 30 Sep 2024 16:24:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141031 IP address blocks: 113.203.192.0/24 maxlen: 24 113.203.194.0/24 maxlen: 24 113.203.196.0/24 maxlen: 24 113.203.197.0/24 maxlen: 24 113.203.198.0/24 maxlen: 24 113.203.199.0/24 maxlen: 24 118.103.224.0/24 maxlen: 24 118.103.225.0/24 maxlen: 24 2406:d00:ee00::/48 maxlen: 48 2406:d00:ee01::/48 maxlen: 48 2406:d00:ee0a::/48 maxlen: 48 2406:d00:ee0b::/48 maxlen: 48 2406:d00:ee55::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7267 (0x1c63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 30 16:24:18 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fad0b1-87a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8d:50:1f:d5:71:a5:fc:dc:2b:b7:a7:84:d0: c6:04:6a:87:18:62:73:a0:e2:cb:8f:65:34:6d:94: 55:9e:fb:75:48:27:9d:99:68:f4:c7:f8:12:de:9c: d4:ce:a8:6e:f3:bf:67:21:9d:32:bf:cd:56:bf:d4: f8:cd:3c:b1:cc:b5:1e:d6:b6:c7:32:c8:93:1c:99: 28:ca:f1:21:95:bb:49:68:8e:4a:4f:8b:4c:81:3a: 83:a8:0e:52:31:fc:31:f1:42:00:2f:81:a7:53:21: 0a:68:67:16:25:80:01:1b:9f:2e:c2:98:79:48:5d: fb:8b:d7:fc:2c:7e:7e:28:d4:d4:37:48:13:a6:73: e3:92:78:69:c4:29:36:56:03:5e:83:2f:4f:43:45: a4:d5:01:5e:3a:06:a9:8e:37:8d:9b:c3:c7:50:6f: 70:95:44:1f:ff:72:b4:b3:1e:4e:fc:32:f7:13:ef: 48:df:45:f6:ca:1b:80:1b:9a:1f:4a:e1:94:9b:f6: a5:a4:71:e4:fd:6b:bc:22:df:15:87:98:1a:6b:8a: dc:80:5f:e4:bb:4a:36:73:cb:2c:ea:6f:5c:61:42: 34:0e:d5:b5:90:f2:b5:1c:be:38:07:ec:f9:e0:f2: a4:eb:be:82:67:56:9e:77:40:c3:ab:97:46:96:07: 00:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F3:55:5D:B2:9B:F0:B8:A0:21:00:F5:3C:47:49:80:C5:83:A8:62 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/87F433B2234C11EBA94AE637C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.203.192.0/24 113.203.194.0/24 113.203.196.0/22 118.103.224.0/23 IPv6: 2406:d00:ee00::/47 2406:d00:ee0a::/47 2406:d00:ee55::/48 Signature Algorithm: sha256WithRSAEncryption 45:50:69:37:1f:c5:36:a6:fa:35:de:d5:8c:3a:b6:81:1b:05: de:99:0f:3e:0e:cf:07:e6:74:e8:b3:8f:18:cf:d4:b9:ea:d4: 2a:a7:94:83:cb:b9:54:1b:90:34:b7:df:99:87:49:c1:16:c0: e7:cc:7e:d4:8e:85:6c:f9:b2:54:03:04:31:7c:a1:8e:a5:6f: 22:d7:43:6b:42:4b:0c:b5:2c:19:6c:40:f7:d8:fd:76:8b:d2: 24:b3:50:d3:e3:68:c6:e9:ae:0f:5c:4a:40:b2:f7:a1:09:48: 53:f3:a9:ee:52:5d:01:28:ec:2b:7e:a2:f3:7f:f4:d7:78:72: ca:2d:e5:fb:3c:73:38:cb:6b:9b:4f:e9:d4:1f:36:3a:9f:60: e4:f8:c1:14:d0:ac:86:30:c7:eb:03:5c:df:21:1b:98:01:fd: 7d:49:fa:73:3e:c4:ed:22:6e:c0:1f:38:ec:07:55:63:2e:c7: f7:9e:c1:7c:b0:05:f9:99:4e:0c:45:06:ae:ca:6e:08:25:bc: 7f:6c:f8:0c:1b:05:cc:c8:d5:97:ca:fe:85:60:ad:39:71:12: fb:eb:af:46:0b:dd:6a:0e:f4:8f:0b:8b:c5:44:67:43:dd:f1: 9b:b4:71:9d:81:6e:19:3b:3e:16:e8:30:ff:85:09:87:fc:08: 94:b8:6c:cf -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICHGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjQwOTMwMTYyNDE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZDBiMS04N2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6o1QH9VxpfzcK7enhNDGBGqHGGJzoOLLj2U0bZRVnvt1SCedmWj0x/gS3pzU zqhu879nIZ0yv81Wv9T4zTyxzLUe1rbHMsiTHJkoyvEhlbtJaI5KT4tMgTqDqA5S Mfwx8UIAL4GnUyEKaGcWJYABG58uwph5SF37i9f8LH5+KNTUN0gTpnPjknhpxCk2 VgNegy9PQ0Wk1QFeOgapjjeNm8PHUG9wlUQf/3K0sx5O/DL3E+9I30X2yhuAG5of SuGUm/alpHHk/Wu8It8Vh5gaa4rcgF/ku0o2c8ss6m9cYUI0DtW1kPK1HL44B+z5 4PKk676CZ1aed0DDq5dGlgcACwIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFL7zVV2y m/C4oCEA9TxHSYDFg6hiMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvODdGNDMzQjIy MzRDMTFFQkE5NEFFNjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMB4EAgABMBgDBABxy8ADBABxy8IDBAJxy8QDBAF2Z+AwIQQCAAIwGwMHASQG DQDuAAMHASQGDQDuCgMHACQGDQDuVTANBgkqhkiG9w0BAQsFAAOCAQEARVBpNx/F Nqb6Nd7VjDq2gRsF3pkPPg7PB+Z06LOPGM/UuerUKqeUg8u5VBuQNLffmYdJwRbA 58x+1I6FbPmyVAMEMXyhjqVvItdDa0JLDLUsGWxA99j9dovSJLNQ0+NoxumuD1xK QLL3oQlIU/Op7lJdASjsK36i83/013hyyi3l+zxzOMtrm0/p1B82Op9g5PjBFNCs hjDH6wNc3yEbmAH9fUn6cz7E7SJuwB847AdVYy7H957BfLAF+ZlODEUGrspuCCW8 f2z4DBsFzMjVl8r+hWCtOXES++uvRgvdag70jwuLxURnQ93xm7RxnYFuGTs+Fugw /4UJh/wIlLhszw== -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:21 2024 by rpki-client on console-ams.rpki-client.org