$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa File: 71B685ACF7E511EEBC67981CC4F9AE02.roa (raw, json) Hash identifier: xS6KKVico6q7YAydoXRQP98J8XdPbnXHA9bQvEcQ3gg= Subject key identifier: EA:D9:E2:31:60:77:FC:4B:AB:7A:8E:AB:3B:41:74:97:E1:04:A3:34 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 4D Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa Signing time: Thu 05 Sep 2024 07:20:17 +0000 ROA not before: Thu 05 Sep 2024 07:20:17 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7637 IP address blocks: 202.137.64.0/19 maxlen: 19 203.10.72.0/23 maxlen: 23 203.17.215.0/24 maxlen: 24 203.27.47.0/24 maxlen: 24 203.30.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Sep 5 07:20:17 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d95bb0-cab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a8:89:76:41:fc:89:2d:ba:08:e0:f2:d6:f2: e8:57:89:3e:5a:2b:dc:85:c5:47:95:8e:07:b8:c8: 30:3e:fc:10:9b:14:66:07:c3:fd:9e:63:04:ce:26: a9:93:21:3e:74:29:bc:73:17:4a:af:96:67:f5:f7: 2b:a3:66:f8:0d:6c:37:24:b8:ff:2a:13:a8:57:05: b9:01:3f:e0:01:1d:7c:8b:b4:05:81:e6:aa:e2:2f: b0:39:ae:06:f4:3c:67:e4:88:82:73:9e:0a:67:aa: 14:a0:e7:8a:20:bf:90:0c:fb:f3:52:52:89:20:e9: 99:b3:35:1c:26:a0:e6:39:4a:21:2b:31:63:5e:28: ab:bf:5d:dd:77:a1:4b:ef:66:69:0f:5e:9b:ad:d4: 8b:16:3e:9b:17:ae:fb:99:dd:a4:83:37:21:92:ed: c1:aa:b2:3e:e5:07:49:00:a8:b3:78:61:1a:62:2d: 1d:91:ab:44:6a:06:f5:a1:6b:cd:5c:2c:1c:cd:b3: 33:ce:42:9d:39:e3:f5:13:46:44:22:1c:4d:19:3c: 81:2c:98:ec:15:8c:be:f6:57:6e:09:95:f5:86:22: 34:ea:b1:0b:3b:aa:0e:9a:f2:b5:1d:6d:5d:50:0c: 28:d5:ee:18:5a:b3:99:57:d1:06:b6:09:f6:a8:23: b7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D9:E2:31:60:77:FC:4B:AB:7A:8E:AB:3B:41:74:97:E1:04:A3:34 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.137.64.0/19 203.10.72.0/23 203.17.215.0/24 203.27.47.0/24 203.30.97.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:3e:3f:b5:a4:89:e3:05:b0:11:a4:fe:8d:b8:3c:34:f5:09: 0e:ad:85:46:5d:e8:cc:35:c3:bd:f4:44:25:c9:c3:fa:83:bf: 58:1e:2f:e9:25:63:26:33:01:f8:b2:c6:f3:31:8a:53:f7:ae: f5:70:73:8d:af:ed:77:f5:29:c2:61:35:25:8e:78:d1:d5:8a: 7d:2f:32:7a:79:5a:19:69:cc:b0:c8:d1:15:4b:34:78:a5:d9: b0:a1:f9:f1:87:22:a0:aa:cc:b3:b0:a6:f6:a9:b5:1e:43:88: 9e:85:7c:da:fd:6d:2c:7f:80:d8:54:c1:97:9c:bd:5a:a1:ff: de:cf:6e:95:92:a1:37:e4:aa:4c:54:70:67:01:eb:ed:c7:d1: 92:7f:aa:34:f3:69:02:b4:c4:98:f3:65:cc:92:08:ea:9e:e0: 98:22:f8:f6:ab:86:8c:75:8e:0b:2b:72:a8:08:ba:45:b8:ce: 7c:8d:b3:3c:79:bc:57:a1:65:17:83:80:8b:07:c6:b0:7a:cd: 9e:0b:0b:10:0c:4d:16:2d:0f:b2:a1:40:44:25:57:5b:d9:32: 52:c2:f4:cc:44:31:2d:7a:ef:ed:a0:7e:d2:3f:89:18:08:3d: 61:37:35:0f:73:7a:07:84:1c:94:d3:26:05:46:aa:2e:aa:de: 1b:ea:92:11 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ2OTExMC8GA1UEBRMoMkIyQURBQzU5RUNDRjYzODRGQzVFMzYzRjA2N0MzQjlF MjlFOTlBMTAeFw0yNDA5MDUwNzIwMTdaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDk1YmIwLWNhYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeqIl2QfyJLboI4PLW8uhXiT5aK9yFxUeVjge4yDA+/BCbFGYHw/2eYwTOJqmT IT50KbxzF0qvlmf19yujZvgNbDckuP8qE6hXBbkBP+ABHXyLtAWB5qriL7A5rgb0 PGfkiIJzngpnqhSg54ogv5AM+/NSUokg6ZmzNRwmoOY5SiErMWNeKKu/Xd13oUvv ZmkPXput1IsWPpsXrvuZ3aSDNyGS7cGqsj7lB0kAqLN4YRpiLR2Rq0RqBvWha81c LBzNszPOQp054/UTRkQiHE0ZPIEsmOwVjL72V24JlfWGIjTqsQs7qg6a8rUdbV1Q DCjV7hhas5lX0Qa2CfaoI7d1AgMBAAGjggKtMIICqTAdBgNVHQ4EFgQU6tniMWB3 /Eureo6rO0F0l+EEozQwHwYDVR0jBBgwFoAUKyraxZ7M9jhPxeNj8GfDueKemaEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDY5L0ZGOTRFNzEyRjdF MzExRUVCOUExMjkxQUM0RjlBRTAyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1h RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3lyYXhaN005amhQeGVOajhHZkR1ZUtlbWFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi83MUI2ODVBQ0Y3 RTUxMUVFQkM2Nzk4MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA3BggrBgEFBQcBBwEB/wQo MCYwJAQCAAEwHgMEBcqJQAMEAcsKSAMEAMsR1wMEAMsbLwMEAMseYTANBgkqhkiG 9w0BAQsFAAOCAQEALz4/taSJ4wWwEaT+jbg8NPUJDq2FRl3ozDXDvfREJcnD+oO/ WB4v6SVjJjMB+LLG8zGKU/eu9XBzja/td/UpwmE1JY540dWKfS8yenlaGWnMsMjR FUs0eKXZsKH58YcioKrMs7Cm9qm1HkOInoV82v1tLH+A2FTBl5y9WqH/3s9ulZKh N+SqTFRwZwHr7cfRkn+qNPNpArTEmPNlzJII6p7gmCL49quGjHWOCytyqAi6RbjO fI2zPHm8V6FlF4OAiwfGsHrNngsLEAxNFi0PsqFARCVXW9kyUsL0zEQxLXrv7aB+ 0j+JGAg9YTc1D3N6B4QclNMmBUaqLqreG+qSEQ== -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:08 2024 by rpki-client on console-fra.rpki-client.org