$ rpki-client -vvf rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/F8672B3EBB5D11EEB6706D74C4F9AE02.roa File: F8672B3EBB5D11EEB6706D74C4F9AE02.roa (raw, json) Hash identifier: Yh/0O+/9sJ9Bo7kh2InfCjfpVJvuhcPwhFDv9ZgEWQg= Subject key identifier: 2A:76:F0:1B:A0:4F:81:56:DD:1F:AE:4D:8F:D7:14:A2:98:92:41:1F Certificate issuer: /CN=A918134E/serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Certificate serial: 04 Authority key identifier: 65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/F8672B3EBB5D11EEB6706D74C4F9AE02.roa Signing time: Thu 25 Jan 2024 08:54:37 +0000 ROA not before: Thu 25 Jan 2024 08:54:37 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141438 IP address blocks: 203.145.32.0/23 maxlen: 23 203.145.32.0/24 maxlen: 24 203.145.33.0/24 maxlen: 24 2001:df3:2640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918134E/serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Validity Not Before: Jan 25 08:54:37 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65b221cc-efbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:26:fc:16:66:cb:b8:47:9a:ea:c6:c5:fa:2a: f3:d0:58:29:b3:e0:5c:3d:06:ec:8a:f6:ea:54:35: 92:65:2a:cb:b9:65:99:30:4f:78:59:96:e0:1e:90: 95:8e:5a:bc:c8:95:58:86:0f:76:5b:58:7c:c2:1a: 5a:b7:ae:65:a7:92:0d:81:c3:34:95:02:02:0b:38: 06:3c:b3:4e:cb:a6:35:8c:69:2a:fb:bb:fb:78:66: f1:7e:3f:35:2c:d9:f1:c2:8f:4a:0d:d6:cc:2b:46: ad:33:e2:56:5e:45:70:75:01:8b:9a:e9:c7:52:30: 3e:e8:a3:ac:33:99:7c:d6:18:67:33:45:7e:d0:c4: e6:ab:f2:f8:97:e7:d0:e6:4d:ab:59:e4:f9:06:1c: 1e:3b:3f:28:08:0f:f0:28:15:03:d0:02:08:76:55: a3:83:b5:41:43:d9:9a:b9:e0:f0:97:50:b0:3c:76: f6:e0:5e:69:39:e6:fa:1c:5d:70:a8:f7:4d:59:de: 22:3e:6f:bc:bd:21:70:c9:92:bf:4f:c9:85:75:87: 1f:93:e2:ce:b6:d7:18:ed:95:21:39:24:56:1a:34: 6f:e0:27:9e:ce:4b:6a:4f:4b:f8:11:eb:f3:5a:63: 10:95:89:83:ba:5f:29:73:c1:1e:27:28:91:8b:82: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:76:F0:1B:A0:4F:81:56:DD:1F:AE:4D:8F:D7:14:A2:98:92:41:1F X509v3 Authority Key Identifier: keyid:65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/F8672B3EBB5D11EEB6706D74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.32.0/23 IPv6: 2001:df3:2640::/48 Signature Algorithm: sha256WithRSAEncryption 44:70:22:41:9a:21:d2:bc:15:b4:98:22:f4:6d:bd:14:63:be: 66:34:ce:05:e6:a5:c6:b1:ed:9b:21:3e:aa:e6:6e:81:2d:98: 16:64:b4:c9:42:3a:88:9c:0a:3c:e7:3c:b8:62:0b:70:5d:bd: f0:9f:37:a6:e8:d3:4f:b6:b0:c2:f9:b4:09:08:86:67:01:bb: 0c:8d:0c:3b:ac:ac:67:90:6d:8b:d1:97:78:4c:36:00:83:73: 09:2b:4b:98:58:96:27:89:0c:7f:ba:3d:7f:a7:a2:35:81:17: ce:05:ba:1e:d8:93:17:46:e2:94:92:84:6f:c8:81:5e:20:ce: 66:b5:92:f5:9a:54:80:89:05:61:81:29:12:34:c6:04:e5:21: a8:30:9e:b5:1e:6d:37:9c:d8:88:09:d4:40:7d:13:53:e0:d9: b2:88:9e:7d:42:3b:87:55:d4:c8:1a:c6:19:c9:82:fd:9b:11: 4d:01:96:89:23:85:30:c4:9d:d8:2b:99:a0:83:eb:02:99:b2: 1f:c7:0f:d2:75:40:4d:c1:a3:14:41:04:b1:c7:5c:c3:67:a9: 10:af:c2:10:46:55:e4:83:60:61:1c:c9:46:b3:61:3c:d9:76: 6a:b6:a5:f5:8b:b4:79:d1:74:31:f4:eb:c0:aa:bb:c4:3d:d2: 47:e1:25:e0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTM0RTExMC8GA1UEBRMoNjUzODgxOUYzQkY0OTMyQ0EwODJDMTQ2QUYyRkVBQ0JF Rjg3OENCODAeFw0yNDAxMjUwODU0MzdaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjIyMWNjLWVmYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAJvwWZsu4R5rqxsX6KvPQWCmz4Fw9BuyK9upUNZJlKsu5ZZkwT3hZluAekJWO WrzIlViGD3ZbWHzCGlq3rmWnkg2BwzSVAgILOAY8s07LpjWMaSr7u/t4ZvF+PzUs 2fHCj0oN1swrRq0z4lZeRXB1AYua6cdSMD7oo6wzmXzWGGczRX7QxOar8viX59Dm TatZ5PkGHB47PygID/AoFQPQAgh2VaODtUFD2Zq54PCXULA8dvbgXmk55vocXXCo 901Z3iI+b7y9IXDJkr9PyYV1hx+T4s621xjtlSE5JFYaNG/gJ57OS2pPS/gR6/Na YxCViYO6XylzwR4nKJGLgkFfAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUKnbwG6BP gVbdH65Nj9cUopiSQR8wHwYDVR0jBBgwFoAUZTiBnzv0kyyggsFGry/qy++HjLgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMzRFLzJCRkYxNDEyQkI1 RDExRUU4MzMwMjA3M0M0RjlBRTAyL1pUaUJuenYwa3l5Z2dzRkdyeV9xeS0tSGpM Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlRpQm56djBreXlnZ3NGR3J5X3F5LS1IakxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTM0RS8yQkZGMTQxMkJCNUQxMUVFODMzMDIwNzNDNEY5QUUwMi9GODY3MkIzRUJC NUQxMUVFQjY3MDZENzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcuRIDAPBAIAAjAJAwcAIAEN8yZAMA0GCSqGSIb3DQEBCwUA A4IBAQBEcCJBmiHSvBW0mCL0bb0UY75mNM4F5qXGse2bIT6q5m6BLZgWZLTJQjqI nAo85zy4YgtwXb3wnzem6NNPtrDC+bQJCIZnAbsMjQw7rKxnkG2L0Zd4TDYAg3MJ K0uYWJYniQx/uj1/p6I1gRfOBboe2JMXRuKUkoRvyIFeIM5mtZL1mlSAiQVhgSkS NMYE5SGoMJ61Hm03nNiICdRAfRNT4NmyiJ59QjuHVdTIGsYZyYL9mxFNAZaJI4Uw xJ3YK5mgg+sCmbIfxw/SdUBNwaMUQQSxx1zDZ6kQr8IQRlXkg2BhHMlGs2E82XZq tqX1i7R50XQx9OvAqrvEPdJH4SXg -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org