$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa File: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (raw, json) Hash identifier: jF4bRTQ1bhj8ogQbDSaGxO9z7G4aPx9aLlwCJEOU1qE= Subject key identifier: 17:B1:26:76:17:4E:3E:56:09:88:90:87:87:5F:00:F7:A5:B1:CE:F1 Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 1716 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa Signing time: Thu 20 Jun 2024 17:26:38 +0000 ROA not before: Thu 20 Jun 2024 17:26:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 20940 IP address blocks: 203.198.20.0/24 maxlen: 24 219.76.11.0/24 maxlen: 24 2404:c800:8203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:36:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5910 (0x1716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Jun 20 17:26:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6674664e-4d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e2:f9:f5:db:70:ab:a8:22:5d:19:04:2d:a1: 91:ff:d8:d6:9f:29:29:85:2b:50:9f:83:9e:a8:b2: a9:f3:d5:db:f3:71:bb:f3:e6:f8:39:c7:2c:16:03: 19:78:c7:94:3f:b8:c7:2d:0e:0a:ef:23:49:50:8e: d6:bb:7c:28:04:52:74:34:f1:c0:4a:b8:5d:ae:f6: 8b:3e:c8:9c:59:b3:71:7a:68:b7:18:d8:65:d7:d2: 5b:a2:55:96:20:69:f8:aa:83:dc:c6:c1:b4:be:05: 2a:99:2a:07:a3:f1:ca:fb:db:d3:7f:e4:93:56:53: d4:0a:46:f0:b2:11:71:b3:f6:8e:8a:40:35:fd:a2: 29:9b:86:fb:73:e9:1b:f3:39:e8:30:96:3f:aa:46: 76:cc:81:68:83:ae:e5:e1:64:29:24:84:ca:f5:3b: 1b:a6:11:15:91:02:2a:92:10:27:ae:e1:6f:d7:0e: e6:60:9b:92:4c:50:58:ab:2c:48:5a:72:c4:e7:d3: 4f:38:1c:0c:6b:3c:ff:5a:1d:75:e4:e4:47:21:e7: 5d:8b:06:0f:20:c6:f9:2b:bc:47:6e:1a:58:bc:ab: b3:5b:d4:49:05:09:1b:14:52:63:c9:be:49:8f:18: 15:f9:d6:4a:ec:51:8c:57:18:0e:fd:10:60:8e:0d: 82:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B1:26:76:17:4E:3E:56:09:88:90:87:87:5F:00:F7:A5:B1:CE:F1 X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.198.20.0/24 219.76.11.0/24 IPv6: 2404:c800:8203::/48 Signature Algorithm: sha256WithRSAEncryption 50:9e:6c:e2:b0:93:8c:b6:1c:db:95:37:99:5f:9b:ba:90:16: f2:7b:53:6c:0f:74:30:b1:64:78:0b:5d:4b:9e:c4:53:84:f0: d8:8c:d9:74:5e:5c:bf:7b:77:e4:58:91:89:f3:7b:a8:cd:41: f5:ec:f4:86:09:aa:ca:1e:01:3e:26:7f:3a:28:e1:e1:91:7d: d4:c4:79:99:1c:1f:ec:3f:f9:51:af:7b:50:e8:c1:35:da:2a: 6b:d6:5e:3e:fe:81:c3:d5:24:35:54:50:7e:de:6b:2e:cc:13: c1:32:fe:39:6f:7e:37:1f:a7:65:dc:df:6f:30:a3:2a:73:62: 94:f4:08:68:2d:3c:f7:7e:e2:ed:cd:4d:b2:ce:20:29:76:95: 1e:fa:95:62:d6:f1:f9:f0:4e:7c:9e:57:e1:2a:40:92:3c:e5: 3e:54:15:78:da:ea:fd:29:f0:f5:73:e7:26:a4:7f:43:25:30: 47:cc:c0:ff:b5:bc:d4:73:30:7b:09:87:f3:44:aa:00:b8:e9: d3:e2:be:01:a9:7f:fc:b8:8b:53:2f:0f:97:19:63:50:c0:f4: d3:f3:8c:3d:cd:c5:94:9c:58:02:fe:23:94:ff:6a:31:f3:70: e0:27:21:60:47:b0:51:bd:32:ed:98:be:05:f7:10:9b:ae:05: 80:27:6f:d1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICFxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjQwNjIwMTcyNjM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0NjY0ZS00ZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOL59dtwq6giXRkELaGR/9jWnykphStQn4OeqLKp89Xb83G78+b4OccsFgMZ eMeUP7jHLQ4K7yNJUI7Wu3woBFJ0NPHASrhdrvaLPsicWbNxemi3GNhl19JbolWW IGn4qoPcxsG0vgUqmSoHo/HK+9vTf+STVlPUCkbwshFxs/aOikA1/aIpm4b7c+kb 8znoMJY/qkZ2zIFog67l4WQpJITK9TsbphEVkQIqkhAnruFv1w7mYJuSTFBYqyxI WnLE59NPOBwMazz/Wh115ORHIeddiwYPIMb5K7xHbhpYvKuzW9RJBQkbFFJjyb5J jxgV+dZK7FGMVxgO/RBgjg2CFQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBexJnYX Tj5WCYiQh4dfAPelsc7xMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvMDdFRTgyN0FE RkVFMTFFN0IwRTcxRDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADLxhQDBADbTAswDwQCAAIwCQMHACQEyACCAzANBgkqhkiG 9w0BAQsFAAOCAQEAUJ5s4rCTjLYc25U3mV+bupAW8ntTbA90MLFkeAtdS57EU4Tw 2IzZdF5cv3t35FiRifN7qM1B9ez0hgmqyh4BPiZ/Oijh4ZF91MR5mRwf7D/5Ua97 UOjBNdoqa9ZePv6Bw9UkNVRQft5rLswTwTL+OW9+Nx+nZdzfbzCjKnNilPQIaC08 937i7c1Nss4gKXaVHvqVYtbx+fBOfJ5X4SpAkjzlPlQVeNrq/Snw9XPnJqR/QyUw R8zA/7W81HMwewmH80SqALjp0+K+Aal//LiLUy8PlxljUMD00/OMPc3FlJxYAv4j lP9qMfNw4CchYEewUb0y7Zi+BfcQm64FgCdv0Q== -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:22 2024 by rpki-client on console-ams.rpki-client.org