$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/0D08636C75D611EB920B5162C4F9AE02.roa File: 0D08636C75D611EB920B5162C4F9AE02.roa (raw, json) Hash identifier: j6prxSOt5QlgU/NV/soMWbDX95ZjTIwaOn33GpJLHDk= Subject key identifier: 93:2A:48:07:D9:72:17:27:EC:02:09:91:2E:A5:21:32:F6:D4:47:3E Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 155F Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/0D08636C75D611EB920B5162C4F9AE02.roa Signing time: Fri 12 Jul 2024 17:54:51 +0000 ROA not before: Fri 12 Jul 2024 17:54:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135026 IP address blocks: 119.8.16.0/24 maxlen: 24 119.8.17.0/24 maxlen: 24 119.8.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5471 (0x155f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jul 12 17:54:51 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66916deb-0cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:30:18:63:71:3c:d6:81:67:70:ca:c6:d9:c5: 92:5c:4c:af:af:16:1b:78:db:4b:53:62:59:32:13: 57:f8:ed:a2:32:40:bd:a7:0f:1e:30:ad:ee:5e:d7: 26:7c:92:0a:0f:5f:4e:30:63:2e:0f:d2:fc:c1:1d: 84:72:8e:91:6a:1f:1d:bc:c1:9c:8a:b9:ba:c3:1b: f8:82:90:5d:8d:0e:6f:d9:d0:34:b4:97:4d:0a:3d: 7c:8d:3b:6b:d9:e2:98:50:e1:71:6e:e6:fe:ab:c5: 77:34:b6:61:8d:5c:cd:28:46:08:64:4f:c7:6d:dd: 67:54:4f:dd:e1:c9:58:18:57:ae:06:d7:1d:de:97: 6d:2d:e8:3c:3d:67:65:bc:e4:7b:f3:14:3e:db:43: e7:16:70:9c:95:e4:ac:7f:a7:0b:9f:30:41:80:93: b2:a5:a6:ce:32:24:90:2e:ee:cf:04:b3:a0:da:49: 14:0b:21:f5:c0:6b:ef:94:0d:e5:c6:1a:fe:df:58: f5:19:58:b1:a4:7b:b9:d6:27:47:39:a3:50:0a:86: 15:84:da:3a:14:0a:60:b0:31:0e:33:19:f6:eb:da: f0:4f:0d:5c:30:c2:38:2d:73:28:e3:a2:33:86:09: f1:4c:26:ff:2a:92:f7:2b:b8:59:6e:db:0d:75:9a: aa:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2A:48:07:D9:72:17:27:EC:02:09:91:2E:A5:21:32:F6:D4:47:3E X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/0D08636C75D611EB920B5162C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.8.16.0/23 119.8.20.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:10:80:a2:e6:be:21:78:52:ad:83:20:2a:3d:32:59:c4:3a: 53:c3:cb:8d:e9:2a:5d:58:0e:cb:2e:e2:32:2c:28:10:45:b4: 89:81:b2:df:1b:87:91:50:51:d2:4f:bb:1c:0a:35:9e:9d:be: d2:02:f3:2f:55:06:2c:85:a0:14:6b:2a:5c:62:5b:29:74:16: 83:99:c0:e2:4f:7a:27:fa:cc:34:26:f6:37:a9:c8:e5:29:19: f9:50:ab:81:72:ef:83:ef:e2:8d:5a:f4:48:d7:b7:37:c4:77: a3:46:45:5a:8b:2c:69:08:a6:6b:0c:31:de:e9:10:86:ba:73: 0c:a0:ca:90:a7:14:95:2a:d1:f0:49:e1:89:46:65:3f:cd:2c: de:ac:15:19:b0:78:f0:84:1a:97:06:4e:03:8f:99:7c:05:c1: 69:8f:b8:3f:eb:dc:88:06:81:62:98:30:2f:db:e1:4f:34:66: 3c:94:05:fd:02:f7:a1:f1:81:7e:4a:fc:53:de:a3:f1:55:f4: db:80:e9:c3:bb:2e:92:5b:3c:7e:ce:6a:ab:0c:e4:fa:e6:05: 7f:7f:78:cb:b9:d8:28:e1:0c:b1:bc:26:4d:53:fb:72:4c:13: b2:ec:cb:d9:aa:53:a6:17:17:44:e6:a9:38:15:b8:e7:2d:a3: e2:6f:0d:80 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjQwNzEyMTc1NDUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxNmRlYi0wY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjAYY3E81oFncMrG2cWSXEyvrxYbeNtLU2JZMhNX+O2iMkC9pw8eMK3uXtcm fJIKD19OMGMuD9L8wR2Eco6Rah8dvMGcirm6wxv4gpBdjQ5v2dA0tJdNCj18jTtr 2eKYUOFxbub+q8V3NLZhjVzNKEYIZE/Hbd1nVE/d4clYGFeuBtcd3pdtLeg8PWdl vOR78xQ+20PnFnCcleSsf6cLnzBBgJOypabOMiSQLu7PBLOg2kkUCyH1wGvvlA3l xhr+31j1GVixpHu51idHOaNQCoYVhNo6FApgsDEOMxn269rwTw1cMMI4LXMo46Iz hgnxTCb/KpL3K7hZbtsNdZqqXwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJMqSAfZ chcn7AIJkS6lITL21Ec+MB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvMEQwODYzNkM3 NUQ2MTFFQjkyMEI1MTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAF3CBADBAB3CBQwDQYJKoZIhvcNAQELBQADggEBAF4QgKLm viF4Uq2DICo9MlnEOlPDy43pKl1YDssu4jIsKBBFtImBst8bh5FQUdJPuxwKNZ6d vtIC8y9VBiyFoBRrKlxiWyl0FoOZwOJPeif6zDQm9jepyOUpGflQq4Fy74Pv4o1a 9EjXtzfEd6NGRVqLLGkIpmsMMd7pEIa6cwygypCnFJUq0fBJ4YlGZT/NLN6sFRmw ePCEGpcGTgOPmXwFwWmPuD/r3IgGgWKYMC/b4U80ZjyUBf0C96HxgX5K/FPeo/FV 9NuA6cO7LpJbPH7OaqsM5PrmBX9/eMu52CjhDLG8Jk1T+3JME7Lsy9mqU6YXF0Tm qTgVuOcto+JvDYA= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:21 2024 by rpki-client on console-ams.rpki-client.org