$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/BCAE303EF6C611EE8AA17A87C4F9AE02.roa File: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (raw, json) Hash identifier: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ= Subject key identifier: 2D:56:70:9C:50:11:FC:97:C0:C5:DA:F0:8D:41:E8:0F:2B:09:C3:32 Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 014D Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/BCAE303EF6C611EE8AA17A87C4F9AE02.roa Signing time: Tue 19 Nov 2024 03:06:54 +0000 ROA not before: Tue 19 Nov 2024 03:06:54 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137471 IP address blocks: 119.15.0.0/22 maxlen: 22 119.15.4.0/22 maxlen: 22 119.15.8.0/24 maxlen: 24 119.15.9.0/24 maxlen: 24 119.15.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Nov 19 03:06:54 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673c00ce-e6ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e3:3b:ee:af:54:c7:be:29:2c:3b:95:e3:8a: 0d:7b:a5:26:2d:26:0e:fa:44:45:51:24:a2:36:ce: 86:c1:ce:46:e4:7e:44:5a:4f:c0:4b:b5:e5:04:28: b6:1a:c1:bc:62:b0:74:74:f1:84:2d:5f:f6:03:e3: 53:1c:41:a4:a8:e6:6c:84:29:ec:cf:56:b5:fd:1d: 28:68:c4:6e:08:b8:53:33:39:94:70:02:1a:52:fc: e8:d2:59:5c:0c:b9:84:c7:81:71:14:ac:8e:9b:49: fb:52:3f:d5:a1:4c:29:89:4e:19:15:2a:19:b5:13: e0:f3:e6:1c:ce:ed:dc:a2:be:25:83:44:b9:a3:22: a5:c2:ff:d2:fc:aa:9e:ea:fa:f5:f8:83:83:0d:d3: f2:8d:1a:76:a4:19:b3:de:22:85:a3:c7:81:70:a8: 61:e3:ae:e3:8a:16:73:87:fa:24:4f:bf:95:4c:6b: 58:0c:66:6d:63:2a:6d:1a:a1:34:ab:28:2d:3f:35: 63:40:b1:87:0d:84:49:4e:15:de:14:f0:69:ab:55: bf:16:08:3e:48:37:2c:4d:0f:7a:f2:46:73:0d:52: 46:78:f4:ff:61:01:3f:42:c8:db:3c:98:c2:38:08: 0a:ef:9f:10:de:d0:a7:fc:65:3c:7f:1c:9c:b0:6b: 0a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:56:70:9C:50:11:FC:97:C0:C5:DA:F0:8D:41:E8:0F:2B:09:C3:32 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/BCAE303EF6C611EE8AA17A87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.0.0-119.15.9.255 119.15.13.0/24 Signature Algorithm: sha256WithRSAEncryption 48:62:d6:2c:cf:44:d7:a4:c5:37:85:a9:ef:97:a0:79:57:da: e6:26:95:7d:f0:34:b9:17:37:35:c5:bb:c7:42:e7:82:31:a4: 96:84:2b:f1:ee:3b:37:5c:7d:47:0a:5b:da:42:3b:96:7a:8c: 8f:ed:4f:33:94:13:72:42:18:12:d3:2c:73:cb:d3:64:98:de: 5a:18:45:0e:82:77:34:75:87:0c:18:db:97:80:6a:14:91:9c: 1c:ad:0d:5b:ae:47:b3:08:d2:c8:4b:5f:6f:25:da:79:57:ae: f0:cf:c0:40:11:84:17:bf:06:8a:33:b7:c3:8d:4c:b3:b2:cd: ba:48:04:39:ef:da:34:c4:75:73:ff:33:50:29:70:81:a3:1d: a1:04:7f:11:d0:f1:85:8a:9c:ff:69:57:86:fb:ef:43:83:f5: 94:ec:88:53:71:13:77:d7:93:67:00:3b:80:19:7e:29:90:cd: c1:36:ba:a4:09:13:f9:1d:df:3f:66:bd:d3:63:f4:66:56:fe: c6:a6:3a:79:4a:a6:c7:ef:d3:55:75:8e:a4:d7:74:ea:85:53: 38:84:1e:4f:1f:56:9c:5d:2a:03:97:90:a3:2d:07:b0:7b:bc: dd:df:67:89:3f:9a:f1:59:68:f3:86:9f:bb:2b:2d:a0:e2:c6: d0:0d:38:fa -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjQxMTE5MDMwNjU0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNjMDBjZS1lNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eM77q9Ux74pLDuV44oNe6UmLSYO+kRFUSSiNs6Gwc5G5H5EWk/AS7XlBCi2 GsG8YrB0dPGELV/2A+NTHEGkqOZshCnsz1a1/R0oaMRuCLhTMzmUcAIaUvzo0llc DLmEx4FxFKyOm0n7Uj/VoUwpiU4ZFSoZtRPg8+Yczu3cor4lg0S5oyKlwv/S/Kqe 6vr1+IODDdPyjRp2pBmz3iKFo8eBcKhh467jihZzh/okT7+VTGtYDGZtYyptGqE0 qygtPzVjQLGHDYRJThXeFPBpq1W/Fgg+SDcsTQ968kZzDVJGePT/YQE/QsjbPJjC OAgK758Q3tCn/GU8fxycsGsKWwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFC1WcJxQ EfyXwMXa8I1B6A8rCcMyMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY0QTcvQzgwNTVGRDZDOTI1MTFFRDgwOTM2MTQ5QzRGOUFFMDIvQkNBRTMwM0VG NkM2MTFFRThBQTE3QTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMwCwMDAHcPAwQBdw8IAwQAdw8NMA0GCSqGSIb3DQEBCwUAA4IB AQBIYtYsz0TXpMU3hanvl6B5V9rmJpV98DS5Fzc1xbvHQueCMaSWhCvx7js3XH1H ClvaQjuWeoyP7U8zlBNyQhgS0yxzy9NkmN5aGEUOgnc0dYcMGNuXgGoUkZwcrQ1b rkezCNLIS19vJdp5V67wz8BAEYQXvwaKM7fDjUyzss26SAQ579o0xHVz/zNQKXCB ox2hBH8R0PGFipz/aVeG++9Dg/WU7IhTcRN315NnADuAGX4pkM3BNrqkCRP5Hd8/ Zr3TY/RmVv7Gpjp5SqbH79NVdY6k13TqhVM4hB5PH1acXSoDl5CjLQewe7zd32eJ P5rxWWjzhp+7Ky2g4sbQDTj6 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org