$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/A2C8B57074B711EB8491BC63C4F9AE02.roa File: A2C8B57074B711EB8491BC63C4F9AE02.roa (raw, json) Hash identifier: f4Nb70DFVEDtxBNhflIcmdj1De7oL7oNb+VI5wy+7A8= Subject key identifier: 07:14:08:B8:B6:27:DE:46:2A:87:26:DC:96:C0:54:70:5F:78:C4:AB Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 1714 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/A2C8B57074B711EB8491BC63C4F9AE02.roa Signing time: Thu 20 Jun 2024 17:26:36 +0000 ROA not before: Thu 20 Jun 2024 17:26:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134963 IP address blocks: 203.198.4.0/24 maxlen: 24 203.198.7.0/24 maxlen: 24 218.102.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5908 (0x1714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Jun 20 17:26:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6674664c-b8ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:fc:f6:ff:26:4d:f3:df:b5:67:73:3e:b7: d1:f5:10:f7:59:9f:52:1d:d5:bb:81:2c:eb:d2:0f: 75:71:25:01:36:8d:b2:e3:0c:95:0f:ea:a2:41:31: 24:30:f7:4f:06:8c:96:24:6d:db:41:3c:76:48:0e: c3:83:2c:fd:22:d6:18:95:15:f4:a4:d2:1b:07:78: 35:86:b2:9e:2b:5c:f5:94:99:53:9f:cb:81:d2:f0: 90:4a:40:ec:72:d2:ed:38:bd:6e:a4:71:ec:ea:ee: 9d:6f:7e:23:dc:4a:ee:e3:1a:04:74:b6:d0:b9:ef: 69:f2:be:24:f6:1a:6a:76:16:28:0e:a1:25:72:cc: 79:38:61:98:7a:b6:3e:cc:65:33:b1:50:5c:bc:c6: 19:b1:30:ac:28:1c:10:15:1a:2e:2a:8a:22:31:47: 56:63:98:76:a2:fe:35:66:bf:b8:91:98:a3:36:29: 11:3e:00:f7:6d:ea:b6:b5:7d:83:e9:b1:61:a8:df: a9:c5:24:3c:89:45:9d:a9:2f:0e:03:ab:4c:01:ce: 84:61:be:4f:c7:d8:33:7d:de:96:5d:07:3b:62:3c: 26:88:a3:fb:b3:c7:00:02:c7:46:14:c0:5c:60:d7: d0:10:1d:9c:00:c7:a0:54:d4:77:c9:57:aa:85:df: 4f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:14:08:B8:B6:27:DE:46:2A:87:26:DC:96:C0:54:70:5F:78:C4:AB X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/A2C8B57074B711EB8491BC63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.198.4.0/24 203.198.7.0/24 218.102.23.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:aa:55:4d:dd:3f:50:3a:01:07:60:c9:1f:25:d5:e8:93:75: 8d:aa:ce:d3:04:ab:2e:25:52:c2:c1:fe:e9:c4:20:78:a6:92: 6a:ad:67:f2:2f:97:a8:23:7f:ed:22:c8:5f:4f:f2:05:23:2c: 47:f1:d2:ce:58:e2:bc:63:a2:f0:35:1c:21:99:d0:62:ff:22: b6:df:1f:b0:41:b7:f3:d9:bf:8b:b1:7c:bc:db:6f:71:ad:52: 73:bd:dc:55:47:78:fc:50:ed:97:78:fc:51:29:a1:87:4a:e0: 16:e8:e2:34:a1:95:5b:62:93:25:d2:e7:47:98:38:95:cd:a3: 82:08:a7:9a:f4:82:22:b0:da:a5:ea:54:4e:68:c3:1e:8f:cb: 63:49:8f:60:f1:70:ef:2c:b6:a5:9a:3f:72:60:09:8e:60:c9: 39:19:e3:fd:9e:11:42:ed:96:44:ec:7b:6c:e6:76:da:14:0d: c3:5b:d6:8d:34:ea:0d:9e:c3:2e:af:23:05:c1:6a:6a:1e:6a: 40:d8:33:d5:fa:aa:0f:19:2c:80:04:f3:87:68:8a:5c:0a:33: 0f:4b:75:7d:81:aa:64:69:63:2b:29:98:c5:6e:8d:9a:88:23: 43:1e:53:89:18:0a:ca:de:68:78:b0:e7:d5:4e:c4:2f:3e:bc: 54:aa:db:f7 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICFxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjQwNjIwMTcyNjM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0NjY0Yy1iOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgf89v8mTfPftWdzPrfR9RD3WZ9SHdW7gSzr0g91cSUBNo2y4wyVD+qiQTEk MPdPBoyWJG3bQTx2SA7Dgyz9ItYYlRX0pNIbB3g1hrKeK1z1lJlTn8uB0vCQSkDs ctLtOL1upHHs6u6db34j3Eru4xoEdLbQue9p8r4k9hpqdhYoDqElcsx5OGGYerY+ zGUzsVBcvMYZsTCsKBwQFRouKooiMUdWY5h2ov41Zr+4kZijNikRPgD3beq2tX2D 6bFhqN+pxSQ8iUWdqS8OA6tMAc6EYb5Px9gzfd6WXQc7YjwmiKP7s8cAAsdGFMBc YNfQEB2cAMegVNR3yVeqhd9PNwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAcUCLi2 J95GKocm3JbAVHBfeMSrMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvQTJDOEI1NzA3 NEI3MTFFQjg0OTFCQzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADLxgQDBADLxgcDBADaZhcwDQYJKoZIhvcNAQELBQADggEB AAqqVU3dP1A6AQdgyR8l1eiTdY2qztMEqy4lUsLB/unEIHimkmqtZ/Ivl6gjf+0i yF9P8gUjLEfx0s5Y4rxjovA1HCGZ0GL/IrbfH7BBt/PZv4uxfLzbb3GtUnO93FVH ePxQ7Zd4/FEpoYdK4Bbo4jShlVtikyXS50eYOJXNo4IIp5r0giKw2qXqVE5owx6P y2NJj2DxcO8stqWaP3JgCY5gyTkZ4/2eEULtlkTse2zmdtoUDcNb1o006g2ewy6v IwXBamoeakDYM9X6qg8ZLIAE84doilwKMw9LdX2BqmRpYyspmMVujZqII0MeU4kY CsreaHiw59VOxC8+vFSq2/c= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:09 2024 by rpki-client on console-fra.rpki-client.org