$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/9EFBD8C8906011EF851EF771C4F9AE02.roa File: 9EFBD8C8906011EF851EF771C4F9AE02.roa (raw, json) Hash identifier: 73mYITc/mJTokoVqMFJPYjjSwQTtaUdiJr58Vvd3cIw= Subject key identifier: 69:3A:A7:A6:67:FC:0E:29:EB:C4:8C:4A:8B:B2:60:BD:57:36:93:61 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1C8F Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/9EFBD8C8906011EF851EF771C4F9AE02.roa Signing time: Tue 22 Oct 2024 10:30:13 +0000 ROA not before: Tue 22 Oct 2024 10:30:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 197450 IP address blocks: 115.42.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:06:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7311 (0x1c8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Oct 22 10:30:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67177eb5-6af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c5:dd:bc:a5:c8:b9:d7:3b:07:15:0b:3c:77: 68:98:15:5a:04:7f:0c:58:13:73:2e:e1:5c:b2:66: b5:04:f6:12:b3:ee:95:2b:f9:dd:79:a5:8a:51:f7: 6c:c0:b7:07:25:66:af:ef:2c:19:09:d5:e8:73:f3: 0d:ab:21:d5:56:25:0e:75:ca:62:61:9f:d1:ff:0c: 8a:2b:ed:dc:cb:e7:6e:8d:b4:de:04:e0:c9:e4:7e: 68:42:4f:ae:6e:d5:ef:11:60:8e:5f:86:6b:9f:be: 3e:87:52:9d:1b:b5:e1:69:dc:92:70:4e:73:29:04: c6:d9:cd:39:13:73:ea:c1:c5:2e:6d:0d:36:bd:87: ee:65:ed:01:33:31:ae:98:c8:d8:b9:71:69:6e:79: 0d:de:b3:3c:b8:23:67:ff:8a:1e:6d:1e:82:1f:8d: e0:f7:68:bb:7f:a8:88:a7:1c:47:f8:dd:5b:54:4a: 28:7d:5f:50:7d:df:b9:3e:cd:b1:a6:f9:01:51:1a: 1c:54:b3:b2:d3:45:88:69:1f:f8:4c:37:1e:9f:dd: 95:26:8e:1a:86:7f:70:3c:c1:46:b6:23:4d:d1:bb: 0b:a5:9e:d1:44:94:8d:6d:3d:54:28:f8:86:14:d8: 38:b9:36:b9:21:d5:61:af:c7:c0:3a:df:9e:51:57: a6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3A:A7:A6:67:FC:0E:29:EB:C4:8C:4A:8B:B2:60:BD:57:36:93:61 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/9EFBD8C8906011EF851EF771C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.42.70.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:69:66:0b:d9:bc:db:61:f5:67:6b:14:41:ae:d2:f5:32:1e: 04:f4:85:4b:0d:dc:ef:15:f6:e7:75:41:70:0e:7f:6b:b3:28: d2:42:a7:b6:d7:93:37:52:32:47:0a:8a:50:53:af:42:54:12: 0b:d8:eb:9a:f9:24:63:a6:b1:71:50:8e:0e:86:e1:29:3b:28: 03:03:bd:12:85:3a:b0:a8:cd:e9:dc:f1:d4:1c:22:fd:46:7c: f0:87:7f:9b:f6:b4:3c:74:e5:01:40:5f:61:cb:54:89:7c:74: 7b:53:dc:0b:c1:2c:de:61:2e:b2:02:b5:df:b2:a5:43:24:6e: 85:73:34:5e:d5:08:2a:a0:0f:a1:e9:12:d5:52:83:34:04:dc: f7:f3:7a:07:19:79:54:60:7c:eb:c6:d1:44:0e:ac:77:f8:f6: 8e:1c:f9:69:52:58:64:31:d8:19:cb:45:41:d7:15:f4:d6:0e: 83:87:81:f8:1a:77:15:e2:cc:d0:ef:a5:c4:53:6d:7b:6f:df: fb:de:76:d9:11:bf:9b:28:82:6f:f9:a5:b9:03:f1:18:6c:b7: 54:b6:9e:ac:ad:e1:5b:f5:77:d0:ad:e2:35:70:3f:15:0f:3c: f6:69:65:e1:89:ab:79:4a:15:c5:11:88:53:b6:6a:41:48:71: e0:fe:a1:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjQxMDIyMTAzMDEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3N2ViNS02YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsXdvKXIudc7BxULPHdomBVaBH8MWBNzLuFcsma1BPYSs+6VK/ndeaWKUfds wLcHJWav7ywZCdXoc/MNqyHVViUOdcpiYZ/R/wyKK+3cy+dujbTeBODJ5H5oQk+u btXvEWCOX4Zrn74+h1KdG7XhadyScE5zKQTG2c05E3PqwcUubQ02vYfuZe0BMzGu mMjYuXFpbnkN3rM8uCNn/4oebR6CH43g92i7f6iIpxxH+N1bVEoofV9Qfd+5Ps2x pvkBURocVLOy00WIaR/4TDcen92VJo4ahn9wPMFGtiNN0bsLpZ7RRJSNbT1UKPiG FNg4uTa5IdVhr8fAOt+eUVemwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGk6p6Zn /A4p68SMSouyYL1XNpNhMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvOUVGQkQ4Qzg5 MDYwMTFFRjg1MUVGNzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzKkYwDQYJKoZIhvcNAQELBQADggEBADxpZgvZvNth9Wdr FEGu0vUyHgT0hUsN3O8V9ud1QXAOf2uzKNJCp7bXkzdSMkcKilBTr0JUEgvY65r5 JGOmsXFQjg6G4Sk7KAMDvRKFOrCozenc8dQcIv1GfPCHf5v2tDx05QFAX2HLVIl8 dHtT3AvBLN5hLrICtd+ypUMkboVzNF7VCCqgD6HpEtVSgzQE3PfzegcZeVRgfOvG 0UQOrHf49o4c+WlSWGQx2BnLRUHXFfTWDoOHgfgadxXizNDvpcRTbXtv3/vedtkR v5sogm/5pbkD8Rhst1S2nqyt4Vv1d9Ct4jVwPxUPPPZpZeGJq3lKFcURiFO2akFI ceD+oRc= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:17 2024 by rpki-client on console-ams.rpki-client.org