$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/187F92966F0911ED8A7BD268C4F9AE02.roa File: 187F92966F0911ED8A7BD268C4F9AE02.roa (raw, json) Hash identifier: WY+AEtZNGfOw12yKOfvg/F8cjo6zbb8RMRrGslASsW0= Subject key identifier: 33:B2:3C:BB:2D:B3:17:80:5E:CF:D9:EA:DD:82:C6:CE:4D:DF:89:83 Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Certificate serial: 346D Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/187F92966F0911ED8A7BD268C4F9AE02.roa Signing time: Thu 22 Aug 2024 15:00:53 +0000 ROA not before: Thu 22 Aug 2024 15:00:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139879 IP address blocks: 110.38.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13421 (0x346d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Validity Not Before: Aug 22 15:00:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c752a5-09cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fa:5e:2a:00:86:67:f9:48:84:a7:c5:88:26: 86:7b:ad:01:4e:dc:fb:97:d3:91:d7:81:40:f0:a1: 9a:9a:39:31:7d:e8:e7:05:37:bf:2c:33:5d:f9:c5: 2c:89:56:ce:e3:fe:1a:2e:21:e3:24:6b:f1:d8:7d: 6a:c1:fe:88:f9:64:37:dd:99:33:d3:57:35:b6:75: 4e:7f:90:1d:1d:35:03:5a:46:a5:ad:d2:80:af:5f: 45:77:c0:7d:5d:1b:c1:01:72:d2:1e:68:ef:98:81: 3e:d0:c7:0c:e5:c4:97:34:13:45:a5:bb:ab:f1:b6: b7:b9:65:31:17:10:fa:b4:8e:d2:17:de:09:32:e4: 2e:f4:cd:34:ac:4d:92:fc:da:23:05:95:8f:53:98: c3:d0:52:51:94:51:3f:40:2c:4e:bb:78:d9:cb:93: 24:af:1d:95:d7:1c:90:44:40:36:18:57:54:7c:89: 40:17:60:fb:be:3f:15:20:80:06:0e:41:50:6f:04: 64:2e:42:b9:49:43:57:52:2f:da:37:b4:82:00:89: 80:3b:c7:8c:8c:ab:e2:cd:37:e4:7f:c9:a9:a5:1b: fb:94:f5:96:cb:b1:9e:ae:aa:b5:0d:a4:45:00:87: 36:f7:26:44:fc:28:2c:b3:e8:c7:34:6e:16:be:62: 8b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B2:3C:BB:2D:B3:17:80:5E:CF:D9:EA:DD:82:C6:CE:4D:DF:89:83 X509v3 Authority Key Identifier: keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/187F92966F0911ED8A7BD268C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.38.240.0/20 Signature Algorithm: sha256WithRSAEncryption 92:4d:e7:e6:ab:9d:2a:ca:a9:01:78:9e:7a:7a:7d:6d:b5:be: c2:b6:67:84:6a:61:d8:d2:65:ee:0e:05:6b:18:9f:67:7a:32: a7:29:51:0e:fa:d0:ac:bb:0f:07:cf:e7:08:08:eb:f0:95:e2: 1f:39:2c:0b:06:e8:af:49:6b:aa:02:d9:c1:77:20:27:1c:24: 6d:16:bd:68:c0:34:3c:f9:ce:04:2c:bf:27:4c:40:36:bf:31: 19:ad:88:c7:74:1b:8e:f9:27:f4:4b:cd:04:2e:c8:69:f5:c1: e1:64:04:4f:8b:a8:38:9f:ba:0b:bd:2f:21:39:73:80:f2:63: 44:87:51:bd:7e:3d:73:2f:70:79:b2:a7:2c:ec:13:ba:13:88: 94:14:80:91:ac:7a:5d:0b:76:29:4b:d6:45:16:d2:81:06:23: a8:44:5f:6e:c5:26:9d:92:df:20:65:bc:8b:ac:0b:5e:66:ef: b3:6d:c5:52:bc:e8:d2:f3:cc:0d:3c:d2:57:f5:d5:9b:cb:3e: c2:66:c6:b1:9f:fb:74:8b:5c:e9:a9:1c:df:3e:c4:9f:5d:44: 95:9f:74:4c:2b:7a:70:71:31:a2:1a:4e:8c:63:fa:8b:56:6c: 9d:46:cd:ba:20:84:97:c3:b0:6c:ab:6b:04:e3:6e:2e:59:a6: 57:ba:9f:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0 MzEzMEMzRjIwHhcNMjQwODIyMTUwMDUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3NTJhNS0wOWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPpeKgCGZ/lIhKfFiCaGe60BTtz7l9OR14FA8KGamjkxfejnBTe/LDNd+cUs iVbO4/4aLiHjJGvx2H1qwf6I+WQ33Zkz01c1tnVOf5AdHTUDWkalrdKAr19Fd8B9 XRvBAXLSHmjvmIE+0McM5cSXNBNFpbur8ba3uWUxFxD6tI7SF94JMuQu9M00rE2S /NojBZWPU5jD0FJRlFE/QCxOu3jZy5Mkrx2V1xyQREA2GFdUfIlAF2D7vj8VIIAG DkFQbwRkLkK5SUNXUi/aN7SCAImAO8eMjKvizTfkf8mppRv7lPWWy7Gerqq1DaRF AIc29yZE/Cgss+jHNG4WvmKLlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDOyPLst sxeAXs/Z6t2Cxs5N34mDMB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZGQjAvRTU1N0MwMDAxRDkyMTFFMjkzM0EyMUY2MDhCMDJDRDIvMTg3RjkyOTY2 RjA5MTFFRDhBN0JEMjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARuJvAwDQYJKoZIhvcNAQELBQADggEBAJJN5+arnSrKqQF4 nnp6fW21vsK2Z4RqYdjSZe4OBWsYn2d6MqcpUQ760Ky7DwfP5wgI6/CV4h85LAsG 6K9Ja6oC2cF3ICccJG0WvWjANDz5zgQsvydMQDa/MRmtiMd0G475J/RLzQQuyGn1 weFkBE+LqDifugu9LyE5c4DyY0SHUb1+PXMvcHmypyzsE7oTiJQUgJGsel0LdilL 1kUW0oEGI6hEX27FJp2S3yBlvIusC15m77NtxVK86NLzzA080lf11ZvLPsJmxrGf +3SLXOmpHN8+xJ9dRJWfdEwrenBxMaIaToxj+otWbJ1GzboghJfDsGyrawTjbi5Z ple6nxI= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org