$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/0D08636C75D611EB920B5162C4F9AE02.roa File: 0D08636C75D611EB920B5162C4F9AE02.roa (raw, json) Hash identifier: t4b6owy4NRrP0RobCmaoRMjmGrWzoOMmUErgUnimxkk= Subject key identifier: 4B:82:12:AD:79:71:8E:5D:5B:34:A5:87:88:4D:C8:3F:88:73:89:5D Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1425 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/0D08636C75D611EB920B5162C4F9AE02.roa Signing time: Thu 24 Aug 2023 17:34:25 +0000 ROA not before: Thu 24 Aug 2023 17:34:25 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135026 IP address blocks: 119.8.16.0/24 maxlen: 24 119.8.17.0/24 maxlen: 24 119.8.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 17:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5157 (0x1425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Aug 24 17:34:25 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64e794a1-7e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:46:48:93:1c:47:5e:1d:cc:39:dd:07:26: 84:96:c3:3e:22:a0:19:b1:4f:8b:0d:33:ea:e2:9c: fe:f7:91:dc:3c:e6:2a:70:a0:10:67:f3:e5:16:de: 44:e8:3d:48:1a:c7:e4:27:03:9b:6e:a1:88:ac:a1: 35:5e:0c:6d:17:5c:98:4b:c5:2f:31:d9:97:03:22: db:f1:15:72:24:c9:60:69:85:7e:40:40:95:ec:35: 7d:c4:25:59:52:53:05:4c:16:64:84:6c:99:a6:7f: 65:ab:89:4f:18:01:2a:7e:a0:fd:f8:fb:d4:40:f2: e6:0a:c8:23:c2:84:89:53:98:da:e6:28:0e:a8:4f: df:f3:b1:5f:21:91:dd:21:fd:2c:4e:b2:53:af:4d: b5:33:71:6e:5c:58:d6:8d:cc:5c:1d:55:6a:a4:e1: b1:ff:7b:f2:93:45:48:4b:2a:42:4b:74:46:8f:b3: f9:1c:fa:34:dc:67:eb:7b:af:bb:54:6d:b2:1e:74: ee:81:da:63:92:aa:4d:3d:c9:9f:7a:25:e4:27:5c: cc:da:6e:d9:63:76:e1:c7:31:c0:33:92:9c:34:48: 96:22:b5:11:6c:1e:0d:d5:f0:9c:f0:41:c9:e6:4f: d8:d0:e6:62:17:9b:a6:1c:5e:34:9b:53:c4:23:e3: ed:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:82:12:AD:79:71:8E:5D:5B:34:A5:87:88:4D:C8:3F:88:73:89:5D X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/0D08636C75D611EB920B5162C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.8.16.0/23 119.8.20.0/24 Signature Algorithm: sha256WithRSAEncryption ab:b6:b9:2d:e9:10:c6:fe:6f:ef:73:bb:d8:21:6b:e5:6e:57: ae:a8:37:a5:7c:c9:b3:c4:9c:c3:ba:14:88:af:e6:7f:b2:4c: 53:8a:f7:05:47:ce:61:d8:e5:ba:f7:04:79:b7:02:47:33:7a: a7:2e:fe:88:e9:be:1f:91:a8:2e:c5:d7:e4:fc:1b:0b:2b:2e: d4:e1:63:c9:34:ab:d2:a9:cd:8e:ec:6c:04:0d:5e:16:be:4f: 3d:fa:8a:6e:97:4b:fd:d2:2c:28:01:68:15:7f:82:6a:1e:39: 3b:43:5d:b0:9e:d2:a6:95:9b:f2:39:7c:1a:0c:7b:54:15:3e: 22:57:32:98:b3:cf:7e:d8:20:c9:1e:db:97:b2:c6:80:d4:14: e1:cb:0d:32:a7:6a:72:47:db:98:0d:01:17:e4:2e:23:33:ba: a8:ac:ad:ed:e9:a6:25:87:fe:57:5e:67:1b:56:93:7e:ee:59: c5:17:3e:44:8e:45:c5:f7:07:7b:34:c5:75:b6:0d:7a:1d:a9: f9:2b:3b:35:d6:81:0c:18:ec:03:25:97:cf:5d:3b:ed:c5:e4: ea:1c:32:84:43:01:6a:6e:ce:84:12:05:60:48:c9:ac:d2:33: e7:6b:7c:e2:1a:e1:94:16:39:ea:06:7a:81:9d:12:11:32:d1: 9f:aa:75:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjMwODI0MTczNDI1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3OTRhMS03ZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubpGSJMcR14dzDndByaElsM+IqAZsU+LDTPq4pz+95HcPOYqcKAQZ/PlFt5E 6D1IGsfkJwObbqGIrKE1XgxtF1yYS8UvMdmXAyLb8RVyJMlgaYV+QECV7DV9xCVZ UlMFTBZkhGyZpn9lq4lPGAEqfqD9+PvUQPLmCsgjwoSJU5ja5igOqE/f87FfIZHd If0sTrJTr021M3FuXFjWjcxcHVVqpOGx/3vyk0VISypCS3RGj7P5HPo03Gfre6+7 VG2yHnTugdpjkqpNPcmfeiXkJ1zM2m7ZY3bhxzHAM5KcNEiWIrURbB4N1fCc8EHJ 5k/Y0OZiF5umHF40m1PEI+PtdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEuCEq15 cY5dWzSlh4hNyD+Ic4ldMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvMEQwODYzNkM3 NUQ2MTFFQjkyMEI1MTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAF3CBADBAB3CBQwDQYJKoZIhvcNAQELBQADggEBAKu2uS3p EMb+b+9zu9gha+VuV66oN6V8ybPEnMO6FIiv5n+yTFOK9wVHzmHY5br3BHm3Akcz eqcu/ojpvh+RqC7F1+T8GwsrLtThY8k0q9KpzY7sbAQNXha+Tz36im6XS/3SLCgB aBV/gmoeOTtDXbCe0qaVm/I5fBoMe1QVPiJXMpizz37YIMke25eyxoDUFOHLDTKn anJH25gNARfkLiMzuqisre3ppiWH/ldeZxtWk37uWcUXPkSORcX3B3s0xXW2DXod qfkrOzXWgQwY7AMll89dO+3F5OocMoRDAWpuzoQSBWBIyazSM+drfOIa4ZQWOeoG eoGdEhEy0Z+qdcc= -----END CERTIFICATE-----Generated at Wed Apr 24 18:36:01 2024 by rpki-client on console-ams.rpki-client.org