$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa File: 495324CA39CB11EBB2F08020C4F9AE02.roa (raw, json) Hash identifier: osiy8r5wOcZwc+hzXjUSDPKHDtxSKkSDsBR1kqJAjV4= Subject key identifier: BB:13:94:4F:5D:82:4D:41:0D:4F:CD:3A:72:41:E0:4C:F8:F7:0A:FC Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 09CE Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa Signing time: Fri 26 Apr 2024 21:09:56 +0000 ROA not before: Fri 26 Apr 2024 21:09:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55720 IP address blocks: 203.25.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 26 21:09:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c1824-bee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b4:08:c1:70:00:56:90:6f:09:be:c1:4f:b6: 94:b2:4a:d1:a4:ab:8b:00:82:0a:af:d3:0b:d6:8d: 41:37:6a:06:52:39:61:31:35:d0:bb:74:41:25:ec: 22:1c:4b:4d:db:93:3a:fd:7a:b8:f8:28:cb:d0:8e: 33:82:8c:89:50:9d:ce:79:d2:59:81:a7:16:ec:2f: ac:01:02:88:9a:33:cb:77:4b:08:43:ad:0c:a9:31: 72:c0:56:a0:5c:bf:13:5e:1a:e2:85:88:96:bf:29: 2d:5f:c3:73:6e:f3:1b:f5:c0:64:b1:c1:ca:61:ee: af:b1:a3:ed:0e:3d:0f:fe:57:af:31:c4:c7:48:40: f6:d9:20:8f:d2:0b:36:14:e8:58:14:2c:8e:da:1f: d1:33:6e:64:9d:3e:df:ab:35:d7:1f:54:96:cf:83: 68:e3:37:88:4a:b9:fe:74:45:57:d8:4d:7b:6d:7f: 19:3c:05:62:e6:ca:41:7c:cb:50:6e:98:60:28:38: 27:50:c3:af:c5:8e:c8:ea:c1:3e:0b:2f:c9:85:35: 12:81:64:27:b4:ff:10:5e:e0:9b:b9:f0:a1:d1:51: 15:78:52:d6:21:f4:aa:4f:6a:e6:ae:43:c5:61:36: be:72:cf:30:34:be:c0:84:03:37:f3:7b:71:35:32: 10:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:13:94:4F:5D:82:4D:41:0D:4F:CD:3A:72:41:E0:4C:F8:F7:0A:FC X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.25.119.0/24 Signature Algorithm: sha256WithRSAEncryption 35:60:27:48:38:93:85:f7:23:bb:28:9b:cd:60:ea:e4:99:46: 5d:72:99:13:bd:55:b3:b8:8a:88:d6:d4:63:1f:0c:28:61:54: cd:bc:f6:b4:1c:f6:c4:dd:35:6b:7f:da:d9:e5:51:dc:70:fe: 99:98:d0:cb:56:59:b5:2c:b5:fa:09:91:82:d6:ea:48:4d:6d: dd:ee:0f:2c:70:2f:de:db:cc:4a:92:f8:3e:7e:60:e6:0a:fb: 8d:e0:d1:2c:db:bd:a3:ce:9e:6e:a9:50:5c:b1:c6:e9:eb:2a: 89:c0:4b:48:11:1b:41:d9:01:ac:46:ac:a4:04:d7:83:46:05: a7:35:e1:63:8e:90:f4:26:f1:5a:3d:70:eb:77:b8:20:64:22: 6c:1a:f7:af:c6:36:57:68:07:fd:0a:c9:9b:1e:06:d1:d0:fc: 52:cd:2a:5a:89:a7:0b:1d:65:aa:2f:e3:78:d8:ea:09:d3:d4: d1:ed:3f:0e:21:52:cd:20:5b:76:f1:2a:71:49:a2:75:75:ef: c9:9d:04:35:42:94:dc:1c:8e:56:88:ff:f3:6f:3a:3a:ea:54: 52:d8:db:17:40:91:d9:67:5d:2c:f6:52:f6:b9:43:35:57:48: ad:10:34:8d:87:71:65:10:24:e3:60:4e:30:fc:7b:a3:d0:85: 3f:c7:67:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjQwNDI2MjEwOTU2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjMTgyNC1iZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77QIwXAAVpBvCb7BT7aUskrRpKuLAIIKr9ML1o1BN2oGUjlhMTXQu3RBJewi HEtN25M6/Xq4+CjL0I4zgoyJUJ3OedJZgacW7C+sAQKImjPLd0sIQ60MqTFywFag XL8TXhrihYiWvyktX8NzbvMb9cBkscHKYe6vsaPtDj0P/levMcTHSED22SCP0gs2 FOhYFCyO2h/RM25knT7fqzXXH1SWz4No4zeISrn+dEVX2E17bX8ZPAVi5spBfMtQ bphgKDgnUMOvxY7I6sE+Cy/JhTUSgWQntP8QXuCbufCh0VEVeFLWIfSqT2rmrkPF YTa+cs8wNL7AhAM383txNTIQ+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLsTlE9d gk1BDU/NOnJB4Ez49wr8MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvNDk1MzI0Q0Ez OUNCMTFFQkIyRjA4MDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGXcwDQYJKoZIhvcNAQELBQADggEBADVgJ0g4k4X3I7so m81g6uSZRl1ymRO9VbO4iojW1GMfDChhVM289rQc9sTdNWt/2tnlUdxw/pmY0MtW WbUstfoJkYLW6khNbd3uDyxwL97bzEqS+D5+YOYK+43g0SzbvaPOnm6pUFyxxunr KonAS0gRG0HZAaxGrKQE14NGBac14WOOkPQm8Vo9cOt3uCBkImwa96/GNldoB/0K yZseBtHQ/FLNKlqJpwsdZaov43jY6gnT1NHtPw4hUs0gW3bxKnFJonV178mdBDVC lNwcjlaI//NvOjrqVFLY2xdAkdlnXSz2Uva5QzVXSK0QNI2HcWUQJONgTjD8e6PQ hT/HZ68= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:41 2024 by rpki-client on console-fra.rpki-client.org