$ rpki-client -vvf rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/0458A9A409FB11EA8742F60AC4F9AE02.roa File: 0458A9A409FB11EA8742F60AC4F9AE02.roa (raw, json) Hash identifier: 3MU65ygEf1r2eIYg+fVLMHTs4lWxF35EpdxMw38lBRc= Subject key identifier: 5C:BB:5B:FC:0F:D2:6F:9A:64:F0:17:66:A2:E3:F2:3D:4D:7C:5A:0B Certificate issuer: /CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Certificate serial: 33FF Authority key identifier: DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/0458A9A409FB11EA8742F60AC4F9AE02.roa Signing time: Tue 20 Aug 2024 15:01:24 +0000 ROA not before: Tue 20 Aug 2024 15:01:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45268 IP address blocks: 202.45.159.0/24 maxlen: 24 203.201.48.0/24 maxlen: 24 203.201.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13311 (0x33ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Validity Not Before: Aug 20 15:01:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c4afc4-5cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3e:d5:fb:8e:c7:f8:69:97:d0:c1:1e:85:2f: 3f:8e:9f:9a:eb:81:1a:90:60:49:5a:87:06:00:70: d6:c0:a8:5a:48:17:51:55:9a:72:93:90:9a:2a:af: a2:71:f9:54:06:d5:e8:5b:05:63:c9:2c:12:2b:bc: bd:dd:e1:bb:90:38:cf:b5:a5:d2:09:18:24:4e:b4: 6e:74:56:fa:fe:78:55:13:be:d0:74:21:3b:ec:f9: 6c:62:b7:02:ae:19:17:e1:b9:6c:7a:32:00:6e:2c: 87:4a:cd:59:8a:00:1e:50:d4:81:9e:58:7b:86:ad: e9:36:23:5a:47:34:a6:92:df:0f:c8:55:ff:d4:9d: 65:01:7a:39:36:11:6f:a7:89:b0:e6:82:43:11:f7: 78:8a:87:d9:4f:fc:08:26:e8:d9:1d:ca:cb:90:94: ef:f1:24:75:de:e0:61:ed:e6:19:86:76:84:1d:79: 27:a7:2c:a6:5d:10:3a:24:95:94:2c:4e:1c:ee:d1: 1e:18:45:c6:7e:19:0a:e7:bf:5a:a4:5e:69:61:b3: c2:aa:55:2f:f4:50:61:cc:e4:e0:31:03:19:f2:9f: 1a:a1:8f:df:3f:b7:b7:2e:d0:8b:56:41:1a:c2:86: 2a:51:b9:d7:bd:98:d0:ff:22:3d:36:88:b9:b3:75: e3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BB:5B:FC:0F:D2:6F:9A:64:F0:17:66:A2:E3:F2:3D:4D:7C:5A:0B X509v3 Authority Key Identifier: keyid:DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/0458A9A409FB11EA8742F60AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.159.0/24 203.201.48.0/23 Signature Algorithm: sha256WithRSAEncryption 07:fb:af:af:e1:22:9d:ec:09:9b:8f:6b:c4:31:19:b5:b2:d8: cd:ff:58:ec:b3:1d:d8:94:d0:68:81:6b:98:7b:f5:33:dc:eb: f9:be:3a:8b:d4:69:53:9c:01:81:e6:8b:7f:ac:8c:44:48:38: ef:7b:f9:12:f2:8a:a1:0c:fb:f0:d1:46:ee:2e:b8:4e:39:6a: c8:9b:ba:eb:3e:b9:3c:43:83:53:32:09:13:a2:8d:35:a7:21: d7:03:78:8a:21:6e:5f:04:a9:cb:d8:6c:8d:15:50:6f:09:59: ba:34:c1:88:64:f0:17:d2:0f:ac:9c:77:5f:41:26:3f:17:ee: ab:93:78:2e:32:ae:6f:04:54:d0:6b:e5:6d:1d:dd:53:57:6e: 1c:e4:59:31:b4:39:ef:3e:e7:f7:9a:4e:3b:03:cb:a9:30:9e: 74:ca:7a:11:12:70:c2:3f:27:f5:6e:31:e9:2d:41:0f:11:a3: e5:cf:5b:30:a7:45:3a:fd:a3:a1:d4:29:3d:e4:1a:03:8b:3e: 7e:2a:c2:a7:85:f0:52:8b:52:06:0c:4c:0d:f3:29:32:1c:0a: be:88:b5:00:8d:8e:c7:7f:80:11:f8:d9:ba:5b:43:21:dc:37: f0:01:a4:af:0e:8f:82:7b:4e:f6:cf:ce:92:30:dc:0e:25:4c: 0b:d4:b7:9a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICM/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM3NzQxMTAvBgNVBAUTKERCMThBN0NBNDQ2MjFCNTY1M0MyMDA0Mzk0NzZCM0Yy QTM4MDg1M0UwHhcNMjQwODIwMTUwMTI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YWZjNC01Y2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1j7V+47H+GmX0MEehS8/jp+a64EakGBJWocGAHDWwKhaSBdRVZpyk5CaKq+i cflUBtXoWwVjySwSK7y93eG7kDjPtaXSCRgkTrRudFb6/nhVE77QdCE77PlsYrcC rhkX4blsejIAbiyHSs1ZigAeUNSBnlh7hq3pNiNaRzSmkt8PyFX/1J1lAXo5NhFv p4mw5oJDEfd4iofZT/wIJujZHcrLkJTv8SR13uBh7eYZhnaEHXknpyymXRA6JJWU LE4c7tEeGEXGfhkK579apF5pYbPCqlUv9FBhzOTgMQMZ8p8aoY/fP7e3LtCLVkEa woYqUbnXvZjQ/yI9Noi5s3Xj2QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFy7W/wP 0m+aZPAXZqLj8j1NfFoLMB8GA1UdIwQYMBaAFNsYp8pEYhtWU8IAQ5R2s/KjgIU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzc3NC81Nzk4ODdCNjFE OTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcxWlR3Z0JEbEhhejhxT0Fo VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4aW55a1JpRzFaVHdnQkRsSGF6OHFPQWhUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM3NzQvNTc5ODg3QjYxRDk5MTFFMjlFMkYwOTg0MDhCMDJDRDIvMDQ1OEE5QTQw OUZCMTFFQTg3NDJGNjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKLZ8DBAHLyTAwDQYJKoZIhvcNAQELBQADggEBAAf7r6/h Ip3sCZuPa8QxGbWy2M3/WOyzHdiU0GiBa5h79TPc6/m+OovUaVOcAYHmi3+sjERI OO97+RLyiqEM+/DRRu4uuE45asibuus+uTxDg1MyCROijTWnIdcDeIohbl8EqcvY bI0VUG8JWbo0wYhk8BfSD6ycd19BJj8X7quTeC4yrm8EVNBr5W0d3VNXbhzkWTG0 Oe8+5/eaTjsDy6kwnnTKehEScMI/J/VuMektQQ8Ro+XPWzCnRTr9o6HUKT3kGgOL Pn4qwqeF8FKLUgYMTA3zKTIcCr6ItQCNjsd/gBH42bpbQyHcN/ABpK8Oj4J7TvbP zpIw3A4lTAvUt5o= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:23 2024 by rpki-client on console-ams.rpki-client.org