$ rpki-client -vvf rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/1629BA5A414311EE8E969116C4F9AE02.roa File: 1629BA5A414311EE8E969116C4F9AE02.roa (raw, json) Hash identifier: ZuckVDBkHWjtjgORAisHfpeFoPo31ZjupHmSg5374TY= Subject key identifier: 36:A0:2D:34:37:77:89:AA:D9:C3:DA:F1:74:BE:9E:08:C4:10:22:9D Certificate issuer: /CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Certificate serial: 0A7E Authority key identifier: 2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/1629BA5A414311EE8E969116C4F9AE02.roa Signing time: Fri 10 May 2024 20:59:22 +0000 ROA not before: Fri 10 May 2024 20:59:22 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17918 IP address blocks: 117.53.160.0/20 maxlen: 24 119.77.0.0/18 maxlen: 24 202.44.98.0/23 maxlen: 24 202.129.128.0/19 maxlen: 24 203.22.104.0/23 maxlen: 24 2404:8600::/32 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Validity Not Before: May 10 20:59:22 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663e8aa9-254c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:94:32:b2:50:4d:04:04:38:6a:66:3c:bd:f0: 05:02:46:c9:24:98:5f:85:ac:f1:e8:62:8c:8b:44: 1f:40:ec:80:73:75:e0:ea:31:77:c4:c3:c0:53:f2: 4f:cb:b1:e3:5b:cb:82:aa:91:c2:82:a1:53:92:b3: c4:56:88:af:aa:09:b4:b3:24:f3:83:81:64:28:37: e2:e1:59:f7:81:db:4f:a8:09:7d:72:ec:8e:f8:05: 2e:b1:43:30:3b:ce:98:8f:3b:54:1d:4e:8f:9e:2d: 5f:a3:93:d2:c6:25:72:86:dc:e8:d8:06:c6:b4:b1: b4:ec:cd:75:b2:37:39:f5:9b:2a:cd:a6:1a:37:3f: 71:d0:73:7d:e6:d5:2c:9b:da:aa:97:78:28:57:fe: 67:80:6f:e1:5f:80:bf:82:6d:e8:da:2c:5f:37:3d: 6a:7b:28:8e:e5:89:76:05:eb:40:47:3b:5f:29:78: 41:eb:89:a8:df:9e:0f:97:d1:1d:51:cc:a9:ab:97: 86:72:e1:65:0f:dd:3c:b7:c6:1e:c7:65:13:60:12: 91:63:5b:97:66:59:17:67:f0:e1:7b:f8:0a:40:4b: 1f:30:0f:91:ac:e4:a9:4c:1d:32:f7:5c:fe:4f:6d: 76:97:d2:f2:c3:8a:cb:dc:18:62:55:4b:79:92:eb: db:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A0:2D:34:37:77:89:AA:D9:C3:DA:F1:74:BE:9E:08:C4:10:22:9D X509v3 Authority Key Identifier: keyid:2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/1629BA5A414311EE8E969116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.53.160.0/20 119.77.0.0/18 202.44.98.0/23 202.129.128.0/19 203.22.104.0/23 IPv6: 2404:8600::/32 Signature Algorithm: sha256WithRSAEncryption b5:15:44:cb:51:f5:a6:3c:43:dc:cc:f3:c8:ff:85:c5:1f:6f: 4f:bc:90:5e:22:81:73:7a:31:ca:7b:dc:10:bf:94:8c:cb:25: d1:bc:33:0c:db:94:74:cb:4f:a3:1d:0c:e3:4a:47:2f:37:60: b2:9d:3e:1b:0f:f8:7b:ab:8c:43:b9:62:ec:92:eb:a9:37:af: 7f:67:16:e4:99:64:2d:e8:09:57:cc:b7:a6:a3:5c:38:fc:ea: a0:11:4b:12:bc:b0:3b:70:f2:01:af:2a:2f:36:dd:06:87:b6: f3:a3:08:16:cf:06:2d:c3:e8:f6:0c:2f:e7:b6:17:75:84:50: 41:f2:4e:bc:f9:bc:23:6c:59:5a:9d:d2:12:34:8f:5c:ff:67: 6a:6e:12:c9:09:02:22:c2:52:a1:d3:5c:1f:a4:91:d1:f2:05: cc:4e:60:6a:d9:b6:9e:62:bb:0a:e1:70:3c:27:81:78:8b:ed: ed:ba:49:15:1e:0d:a8:ec:b7:b6:b9:07:36:8d:80:e8:30:42: 0d:bc:f9:b5:38:42:6f:21:a3:0a:b5:07:46:1c:d2:ee:20:f7: 13:16:42:7b:74:12:ac:85:38:60:27:6f:2a:bd:dc:3b:c3:c6: ea:dc:af:88:1b:7b:12:71:54:8f:4a:44:3d:bd:2b:8e:0e:85: af:11:22:fa -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxOUExMTAvBgNVBAUTKDJFNUJDQkM2NjFBRkYxRkVENThCMEZGNEI1ODNEQ0Y1 RUMxQTM3NEEwHhcNMjQwNTEwMjA1OTIyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlOGFhOS0yNTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5QyslBNBAQ4amY8vfAFAkbJJJhfhazx6GKMi0QfQOyAc3Xg6jF3xMPAU/JP y7HjW8uCqpHCgqFTkrPEVoivqgm0syTzg4FkKDfi4Vn3gdtPqAl9cuyO+AUusUMw O86YjztUHU6Pni1fo5PSxiVyhtzo2AbGtLG07M11sjc59ZsqzaYaNz9x0HN95tUs m9qql3goV/5ngG/hX4C/gm3o2ixfNz1qeyiO5Yl2BetARztfKXhB64mo354Pl9Ed Ucypq5eGcuFlD908t8Yex2UTYBKRY1uXZlkXZ/Dhe/gKQEsfMA+RrOSpTB0y91z+ T212l9Lyw4rL3BhiVUt5kuvbyQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFDagLTQ3 d4mq2cPa8XS+ngjEECKdMB8GA1UdIwQYMBaAFC5by8Zhr/H+1YsP9LWD3PXsGjdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTE5QS8wNDkwOTA5QTQz MUIxMUVBQjAxOTc3MkNDNEY5QUUwMi9MbHZMeG1HdjhmN1Zpd18wdFlQYzlld2FO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xsdkx4bUd2OGY3Vml3XzB0WVBjOWV3YU4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxOUEvMDQ5MDkwOUE0MzFCMTFFQUIwMTk3NzJDQzRGOUFFMDIvMTYyOUJBNUE0 MTQzMTFFRThFOTY5MTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAR1NaADBAZ3TQADBAHKLGIDBAXKgYADBAHLFmgwDQQCAAIw BwMFACQEhgAwDQYJKoZIhvcNAQELBQADggEBALUVRMtR9aY8Q9zM88j/hcUfb0+8 kF4igXN6Mcp73BC/lIzLJdG8MwzblHTLT6MdDONKRy83YLKdPhsP+HurjEO5YuyS 66k3r39nFuSZZC3oCVfMt6ajXDj86qARSxK8sDtw8gGvKi823QaHtvOjCBbPBi3D 6PYML+e2F3WEUEHyTrz5vCNsWVqd0hI0j1z/Z2puEskJAiLCUqHTXB+kkdHyBcxO YGrZtp5iuwrhcDwngXiL7e26SRUeDajst7a5BzaNgOgwQg28+bU4Qm8howq1B0Yc 0u4g9xMWQnt0EqyFOGAnbyq93DvDxurcr4gbexJxVI9KRD29K44Oha8RIvo= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org