$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa File: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (raw, json) Hash identifier: P1qwhAicU6zPENCwTGFasnrb3+NFivcUL5Wq4dABBCM= Subject key identifier: 75:93:7A:23:7F:5A:5A:D1:CD:AB:5D:A3:DD:27:7E:47:0C:36:3A:43 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: B0 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa Signing time: Wed 07 Aug 2024 05:47:00 +0000 ROA not before: Wed 07 Aug 2024 05:47:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4768 IP address blocks: 202.37.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Aug 7 05:47:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b30a54-5a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:bd:ce:34:8a:92:f4:46:8c:5d:eb:05:98:a5: 14:b2:96:60:02:4b:c2:d6:37:e1:0e:d1:4d:14:ba: f7:80:34:ef:c2:cb:d9:25:b7:aa:4e:eb:43:eb:92: e4:cd:fa:89:6d:21:10:ed:4e:d9:2f:a0:2e:1d:96: 5e:ba:75:2b:8f:5d:97:cc:97:00:09:1a:25:a4:c4: 41:02:f2:8e:c6:b0:d6:33:21:0e:20:69:58:1b:01: 3e:2f:22:73:10:ca:d1:aa:e4:4d:ff:bb:c9:ef:af: 25:c3:6a:06:bd:85:e8:0a:b6:ea:95:e4:e8:e5:f9: 9e:d2:3f:04:68:d8:af:13:c7:56:14:aa:bb:b5:bf: 50:a8:82:ed:ac:7a:0b:10:1f:05:92:ee:dc:25:40: ef:18:54:be:71:1e:88:e1:2c:d1:3d:36:0f:eb:d7: 2d:13:44:f1:56:2b:2e:9b:67:ad:6a:1f:54:88:17: b9:98:ef:e2:33:28:30:c8:e9:19:d0:b1:82:04:35: 78:46:bb:fb:96:a0:38:0c:25:65:c9:c7:83:8d:08: a6:90:f0:66:ad:b2:6f:08:2b:32:05:a9:2c:68:36: 84:1d:cf:a9:1f:08:ba:82:58:29:5b:ee:e8:4b:c1: 53:2c:81:ec:e8:aa:16:1a:2d:ee:f7:2c:ab:45:b4: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:93:7A:23:7F:5A:5A:D1:CD:AB:5D:A3:DD:27:7E:47:0C:36:3A:43 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.138.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:bb:3a:a3:02:2d:7c:f9:e1:0c:3e:59:ba:0e:81:19:77:01: 83:81:fd:7a:ed:5a:25:1c:70:a4:ff:bd:ba:b0:74:82:55:4a: 3d:e6:9e:68:e0:5a:08:8a:f4:1e:84:33:de:08:ab:60:9a:b1: 20:41:7f:45:18:0c:51:aa:a7:24:9b:46:e3:b3:e9:45:08:ab: 59:c7:92:6f:fc:ca:6f:69:ba:d2:89:b7:c8:92:2b:03:84:a5: 53:8b:43:5d:63:ce:e7:a8:67:bc:23:59:a4:73:d1:4b:d1:30: ba:65:c5:3b:bd:df:95:78:b8:89:2a:93:91:e3:df:7c:bf:12: 83:e6:bd:24:25:70:84:15:bc:58:d9:04:55:62:d5:48:f6:aa: 49:0a:68:fb:8f:81:57:e5:6a:02:2a:2e:dd:0f:53:71:30:df: 7e:78:89:eb:b6:1c:ee:c3:bf:d3:e0:09:99:2f:cd:0d:6e:be: fe:0f:b0:b8:98:d1:80:34:d2:14:21:af:20:89:aa:b7:57:af: cd:a1:2d:d6:3d:1f:33:0b:8f:25:35:87:79:43:bd:93:d6:a6: f0:23:10:eb:3d:a6:3a:27:5a:1e:ec:74:24:2f:8e:f2:5e:57: 30:6f:a2:11:55:b7:2c:7b:42:d9:38:57:a8:f9:4d:3d:2f:f6: b4:cb:37:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjQwODA3MDU0NzAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzMGE1NC01YTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8r3ONIqS9EaMXesFmKUUspZgAkvC1jfhDtFNFLr3gDTvwsvZJbeqTutD65Lk zfqJbSEQ7U7ZL6AuHZZeunUrj12XzJcACRolpMRBAvKOxrDWMyEOIGlYGwE+LyJz EMrRquRN/7vJ768lw2oGvYXoCrbqleTo5fme0j8EaNivE8dWFKq7tb9QqILtrHoL EB8Fku7cJUDvGFS+cR6I4SzRPTYP69ctE0TxVisum2etah9UiBe5mO/iMygwyOkZ 0LGCBDV4Rrv7lqA4DCVlyceDjQimkPBmrbJvCCsyBaksaDaEHc+pHwi6glgpW+7o S8FTLIHs6KoWGi3u9yyrRbS2ewIDAQABo4IClTCCApEwHQYDVR0OBBYEFHWTeiN/ WlrRzatdo90nfkcMNjpDMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFBQTEvODExNEM3OUM0ODZFMTFFRUE5NjA5NDJDQzRGOUFFMDIvRTZFQjJCMTA0 ODZFMTFFRUI0RDVGRjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJYowDQYJKoZIhvcNAQELBQADggEBAAy7OqMCLXz54Qw+ WboOgRl3AYOB/XrtWiUccKT/vbqwdIJVSj3mnmjgWgiK9B6EM94Iq2CasSBBf0UY DFGqpySbRuOz6UUIq1nHkm/8ym9putKJt8iSKwOEpVOLQ11jzueoZ7wjWaRz0UvR MLplxTu935V4uIkqk5Hj33y/EoPmvSQlcIQVvFjZBFVi1Uj2qkkKaPuPgVflagIq Lt0PU3Ew3354ieu2HO7Dv9PgCZkvzQ1uvv4PsLiY0YA00hQhryCJqrdXr82hLdY9 HzMLjyU1h3lDvZPWpvAjEOs9pjonWh7sdCQvjvJeVzBvohFVtyx7Qtk4V6j5TT0v 9rTLN/Y= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:00 2024 by rpki-client on console-fra.rpki-client.org