$ rpki-client -vvf rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa File: 1E85ABA6231E11EFA893585AC4F9AE02.roa (raw, json) Hash identifier: tT0U7je/lStzl+Gd03/CVrFPBnBeNuZUlfzB9Ibn9Ho= Subject key identifier: 1D:59:91:24:62:06:F1:D3:63:32:22:21:80:8E:82:BE:31:96:06:DB Certificate issuer: /CN=A917DFDA/serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Certificate serial: 04 Authority key identifier: 22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa Signing time: Wed 05 Jun 2024 09:29:34 +0000 ROA not before: Wed 05 Jun 2024 09:29:34 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9934 IP address blocks: 202.37.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DFDA/serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Validity Not Before: Jun 5 09:29:34 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66602ffe-dcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:df:6b:34:2b:bd:e6:8e:ce:06:2e:ab:02:29: f0:42:d2:b0:6b:ef:9d:80:3c:7f:cc:f8:ed:79:1e: 23:ce:e2:62:00:f5:98:e1:fd:6d:29:41:a5:2c:2c: b6:77:7f:8f:3f:54:b1:7e:43:ad:83:c2:7c:bf:a1: 1e:b7:1c:f9:6b:d5:03:f6:1b:74:bb:13:ae:55:15: ba:97:a8:a8:cf:85:95:88:b4:b4:d8:fa:d3:fe:6c: 17:9a:38:10:2f:2e:08:98:7b:a2:64:28:42:5d:68: af:e9:77:a7:78:0e:9a:23:d9:9c:ba:76:ae:95:01: 7f:dc:02:12:54:84:15:01:e6:63:ea:5f:49:2a:f8: 46:14:bd:1d:54:6a:23:b8:93:96:72:d9:85:4b:f4: f7:3c:81:35:fe:bf:fa:6a:0b:0f:89:ae:e5:d3:b3: 4a:8e:26:14:da:f2:91:17:97:5f:ca:58:b8:56:03: 9b:77:2f:f9:ff:22:f9:d2:ce:02:03:3d:fa:e3:34: d2:6c:05:80:87:6c:d1:f8:25:30:06:ef:c9:f3:5a: 2d:d1:f8:6b:60:63:b9:57:eb:99:ac:5a:fb:de:9b: 25:66:1a:24:33:72:4a:ab:e1:c9:08:53:d1:74:15: ea:25:e4:66:8d:a7:bb:c3:96:e7:ab:82:e0:1b:2d: 81:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:59:91:24:62:06:F1:D3:63:32:22:21:80:8E:82:BE:31:96:06:DB X509v3 Authority Key Identifier: keyid:22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.235.0/24 Signature Algorithm: sha256WithRSAEncryption 57:ae:c3:49:89:86:46:ff:19:71:67:ff:76:e0:1a:c3:f9:fc: 46:e7:43:ff:5e:5f:0f:60:8f:db:a5:97:a9:27:0a:3c:58:93: 83:2d:c5:31:6f:ad:93:e6:a4:5b:e5:e4:6a:5f:6b:be:11:ce: 77:47:1b:f9:72:75:17:9f:56:84:84:56:11:00:2c:0e:c1:3b: 6d:85:bc:80:31:31:50:e5:fe:d0:f1:80:b6:35:c0:fe:9a:c9: e5:76:07:8a:9e:06:80:78:72:42:2b:da:6a:59:24:8a:c8:91: 75:c9:e0:a5:00:b9:e8:fa:8d:49:1c:ba:a6:ff:b7:67:fe:91: 3f:97:38:b0:0e:61:e4:2f:f5:db:f7:02:9c:fe:b0:64:4d:8d: 9b:3c:64:0a:ce:81:17:ac:ec:3e:6d:00:ac:50:64:a8:aa:b1: ae:20:32:7e:07:64:3a:31:b4:ef:2d:6c:ec:c1:78:40:a3:6a: e0:cd:cf:de:2f:c0:83:9d:4b:c5:7b:47:b7:47:e6:8d:51:d8: 4f:51:ed:87:5f:7b:a9:24:0c:87:92:cc:e6:ce:bc:3d:6f:84: b8:88:03:30:68:4a:89:4c:2e:ea:31:72:1c:0c:83:0c:ca:5f: 13:bd:69:4c:b6:27:9e:56:2c:a8:b0:bc:40:04:2c:4a:c2:4e: ce:c7:1e:ea -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REZEQTExMC8GA1UEBRMoMjJBRkQ0Q0REOUM0RjRDMzgzNzYyQjNFOTNFRUNGMUFF NkZGOUQxNjAeFw0yNDA2MDUwOTI5MzRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjAyZmZlLWRjZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCg32s0K73mjs4GLqsCKfBC0rBr752APH/M+O15HiPO4mIA9Zjh/W0pQaUsLLZ3 f48/VLF+Q62Dwny/oR63HPlr1QP2G3S7E65VFbqXqKjPhZWItLTY+tP+bBeaOBAv LgiYe6JkKEJdaK/pd6d4Dpoj2Zy6dq6VAX/cAhJUhBUB5mPqX0kq+EYUvR1UaiO4 k5Zy2YVL9Pc8gTX+v/pqCw+JruXTs0qOJhTa8pEXl1/KWLhWA5t3L/n/IvnSzgID PfrjNNJsBYCHbNH4JTAG78nzWi3R+GtgY7lX65msWvvemyVmGiQzckqr4ckIU9F0 Feol5GaNp7vDluerguAbLYHVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHVmRJGIG 8dNjMiIhgI6CvjGWBtswHwYDVR0jBBgwFoAUIq/UzdnE9MODdis+k+7PGub/nRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdERkRBL0FGMkQ1MEU2MjMw MDExRUY5NDVERTM4MkM0RjlBRTAyL0lxX1V6ZG5FOU1PRGRpcy1rLTdQR3ViX25S WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXFfVXpkbkU5TU9EZGlzLWstN1BHdWJfblJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REZEQS9BRjJENTBFNjIzMDAxMUVGOTQ1REUzODJDNEY5QUUwMi8xRTg1QUJBNjIz MUUxMUVGQTg5MzU4NUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMol6zANBgkqhkiG9w0BAQsFAAOCAQEAV67DSYmGRv8ZcWf/ duAaw/n8RudD/15fD2CP26WXqScKPFiTgy3FMW+tk+akW+Xkal9rvhHOd0cb+XJ1 F59WhIRWEQAsDsE7bYW8gDExUOX+0PGAtjXA/prJ5XYHip4GgHhyQivaalkkisiR dcngpQC56PqNSRy6pv+3Z/6RP5c4sA5h5C/12/cCnP6wZE2NmzxkCs6BF6zsPm0A rFBkqKqxriAyfgdkOjG07y1s7MF4QKNq4M3P3i/Ag51LxXtHt0fmjVHYT1Hth197 qSQMh5LM5s68PW+EuIgDMGhKiUwu6jFyHAyDDMpfE71pTLYnnlYsqLC8QAQsSsJO zsce6g== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:29 2024 by rpki-client on console-fra.rpki-client.org