$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/59F5C224337811EAAD3FAA39C4F9AE02.roa File: 59F5C224337811EAAD3FAA39C4F9AE02.roa (raw, json) Hash identifier: lT8qBPvbdAAaZR2l5tCH5Zho//9dzWtAo3mhZHmExF0= Subject key identifier: D1:A0:7D:36:E5:87:B4:5A:3A:75:99:33:48:52:35:9F:B1:D6:8E:82 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3416 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/59F5C224337811EAAD3FAA39C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:02:41 +0000 ROA not before: Tue 30 Jul 2024 16:02:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24521 IP address blocks: 119.82.240.0/24 maxlen: 24 119.82.241.0/24 maxlen: 24 119.82.242.0/24 maxlen: 24 119.82.243.0/24 maxlen: 24 119.82.244.0/24 maxlen: 24 119.82.245.0/24 maxlen: 24 119.82.246.0/24 maxlen: 24 119.82.247.0/24 maxlen: 24 175.184.236.0/22 maxlen: 22 175.184.236.0/24 maxlen: 24 175.184.237.0/24 maxlen: 24 175.184.238.0/24 maxlen: 24 175.184.239.0/24 maxlen: 24 2403:ba00::/32 maxlen: 32 2403:ba00:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13334 (0x3416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jul 30 16:02:41 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a90ea1-3079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:bd:25:82:8b:24:11:9e:b8:9f:65:b3:64: 2a:f3:c2:04:1a:6e:9d:0d:0c:bf:4f:07:43:8a:14: 87:57:20:35:6b:d4:29:4a:8a:da:39:34:5e:54:c1: f7:e3:b2:6a:a1:75:ea:67:70:04:14:ec:ac:c1:7e: 76:9b:82:1c:b4:13:b4:b2:1d:92:c6:b7:99:17:85: 14:0d:86:fd:1b:8e:38:f0:a2:f8:85:e8:a5:ae:35: be:37:a1:d8:07:d7:ce:30:9c:c9:04:93:5d:08:b4: f7:c8:2e:75:d2:35:0a:4c:ec:0e:5f:84:d8:83:b4: f1:f3:53:19:20:93:0d:f4:9d:d9:6e:9e:0f:a9:1b: bf:4c:0c:ea:65:cd:c6:3d:19:1d:63:58:ff:2a:c7: 36:8d:c1:55:2f:20:88:35:23:0e:80:61:6f:5e:df: 12:dd:16:1d:dc:e4:1c:f0:e4:6c:c9:be:bd:51:03: 44:ea:2f:e1:a5:71:1e:fc:72:08:a6:35:b6:bd:05: ab:d4:67:cf:eb:ac:24:c6:cc:24:18:c7:4e:64:59: 66:f7:c0:20:e7:e7:ea:2e:95:9c:9a:67:f2:d0:de: 1d:6f:1f:25:cf:b3:b5:0a:2f:49:43:a4:7c:e7:fb: bd:6b:97:e5:98:54:2d:d6:6a:c4:ee:bc:11:69:c9: a4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A0:7D:36:E5:87:B4:5A:3A:75:99:33:48:52:35:9F:B1:D6:8E:82 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/59F5C224337811EAAD3FAA39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.82.240.0/21 175.184.236.0/22 IPv6: 2403:ba00::/32 Signature Algorithm: sha256WithRSAEncryption b7:b9:10:54:fa:81:e3:c1:24:d4:5d:78:c9:01:14:c4:5b:29: b3:ec:7f:04:46:30:a2:94:78:cd:97:a9:80:aa:58:68:1b:44: a2:22:cb:2f:0b:d5:71:bb:59:69:b3:33:08:75:2e:2f:51:3d: 4f:8c:17:93:7f:0f:f0:48:a7:99:b8:c1:42:6f:5d:6f:98:6b: bc:b4:5e:90:44:ad:38:31:5e:4a:7e:b4:0b:50:be:8c:61:b9: 09:c0:a9:03:a1:fa:93:81:2e:44:92:c1:ce:79:5d:ea:3e:ec: f1:6c:4a:e0:a9:d5:86:cf:99:00:9d:d3:74:d4:74:7b:54:0a: d3:04:d8:28:5e:37:80:d6:e8:7c:92:b5:7f:2f:66:a5:45:72: b8:74:66:3c:5c:b5:5a:ac:79:2a:e5:9b:eb:c4:81:e2:23:d5: 8a:18:a9:bc:88:c1:55:80:dd:ed:12:a6:b1:aa:d3:94:1b:59: 5f:b6:9a:33:a5:c9:5f:ad:97:4d:a6:22:ed:77:8a:37:dd:db: 7a:64:1c:1e:2c:50:23:ba:8b:6f:4b:50:b5:d7:64:54:65:10: 0b:da:ad:b2:f3:1e:d8:e7:ae:27:8d:90:0b:f5:47:e9:8e:8a: 2e:30:16:59:85:a8:02:64:cc:4f:af:18:96:9f:8d:22:49:b3: 98:ad:2e:26 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwNzMwMTYwMjQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVhMS0zMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugy9JYKLJBGeuJ9ls2Qq88IEGm6dDQy/TwdDihSHVyA1a9QpSoraOTReVMH3 47JqoXXqZ3AEFOyswX52m4IctBO0sh2SxreZF4UUDYb9G4448KL4heilrjW+N6HY B9fOMJzJBJNdCLT3yC510jUKTOwOX4TYg7Tx81MZIJMN9J3Zbp4PqRu/TAzqZc3G PRkdY1j/Ksc2jcFVLyCINSMOgGFvXt8S3RYd3OQc8ORsyb69UQNE6i/hpXEe/HII pjW2vQWr1GfP66wkxswkGMdOZFlm98Ag5+fqLpWcmmfy0N4dbx8lz7O1Ci9JQ6R8 5/u9a5flmFQt1mrE7rwRacmkMQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNGgfTbl h7RaOnWZM0hSNZ+x1o6CMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNTlGNUMyMjQz Mzc4MTFFQUFEM0ZBQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAN3UvADBAKvuOwwDQQCAAIwBwMFACQDugAwDQYJKoZIhvcN AQELBQADggEBALe5EFT6gePBJNRdeMkBFMRbKbPsfwRGMKKUeM2XqYCqWGgbRKIi yy8L1XG7WWmzMwh1Li9RPU+MF5N/D/BIp5m4wUJvXW+Ya7y0XpBErTgxXkp+tAtQ voxhuQnAqQOh+pOBLkSSwc55Xeo+7PFsSuCp1YbPmQCd03TUdHtUCtME2CheN4DW 6HyStX8vZqVFcrh0ZjxctVqseSrlm+vEgeIj1YoYqbyIwVWA3e0SprGq05QbWV+2 mjOlyV+tl02mIu13ijfd23pkHB4sUCO6i29LULXXZFRlEAvarbLzHtjnrieNkAv1 R+mOii4wFlmFqAJkzE+vGJafjSJJs5itLiY= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:09 2024 by rpki-client on console-fra.rpki-client.org