$ rpki-client -vvf rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/1FD5F86A393211EF9219871BC4F9AE02.roa File: 1FD5F86A393211EF9219871BC4F9AE02.roa (raw, json) Hash identifier: jnKfsdo1U2S4LHnsFK2WZMt9mRXWSr6kj8WlzIUcDlY= Subject key identifier: 6E:E3:59:9F:62:34:D6:09:F1:0B:EB:40:2A:D0:0B:37:E9:D1:A1:E8 Certificate issuer: /CN=A918E308/serialNumber=D2536918C18B6BC2D91042808BCADFCDB7347531 Certificate serial: 0BE1 Authority key identifier: D2:53:69:18:C1:8B:6B:C2:D9:10:42:80:8B:CA:DF:CD:B7:34:75:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/1FD5F86A393211EF9219871BC4F9AE02.roa Signing time: Sun 22 Sep 2024 18:57:11 +0000 ROA not before: Sun 22 Sep 2024 18:57:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132608 IP address blocks: 202.53.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.crl rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E308/serialNumber=D2536918C18B6BC2D91042808BCADFCDB7347531 Validity Not Before: Sep 22 18:57:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f06886-3df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:c4:95:0e:c7:ff:ab:bb:3b:47:c0:79:ba: 32:03:c9:0b:7e:68:8a:a6:6b:67:80:9f:db:d3:e1: ff:f0:d7:e6:75:07:31:19:6a:94:df:a3:bd:b7:f3: 74:75:cd:26:18:14:6c:e7:34:ca:22:71:36:3d:ec: ed:13:56:e9:e2:ce:c0:25:74:eb:cf:c0:28:e0:91: 7a:bb:a9:ac:49:a3:21:fb:a7:be:92:de:0b:93:6e: 2d:6b:35:ba:5c:25:68:cb:ac:53:5c:fc:07:4e:d6: 82:e0:7d:f5:da:e8:76:db:22:e0:db:e3:be:9e:cc: df:5c:c4:0e:44:7c:72:64:39:de:f3:a8:cb:a8:23: c8:c3:29:40:da:4e:07:82:d9:67:61:d0:16:e2:5a: 47:84:cc:58:a8:01:55:9f:14:d4:f8:bb:03:06:0d: f0:19:25:bb:09:6f:83:e5:ba:3f:af:52:0d:ef:10: 39:b4:f9:33:9b:d5:16:cc:13:72:31:da:40:6f:a6: a4:b8:30:e2:ff:a3:05:11:53:c1:43:e5:9d:21:15: 2c:3d:55:41:50:b6:05:ac:41:e0:1b:2d:a6:e8:d7: f2:0a:8f:ac:19:b5:52:3d:26:27:22:ec:34:4c:53: e4:95:a5:39:8f:3b:f1:1a:91:a4:3d:84:d0:4d:b3: 3f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E3:59:9F:62:34:D6:09:F1:0B:EB:40:2A:D0:0B:37:E9:D1:A1:E8 X509v3 Authority Key Identifier: keyid:D2:53:69:18:C1:8B:6B:C2:D9:10:42:80:8B:CA:DF:CD:B7:34:75:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/0lNpGMGLa8LZEEKAi8rfzbc0dTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0lNpGMGLa8LZEEKAi8rfzbc0dTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E308/C77F7A1206D511EA8A897F4FC4F9AE02/1FD5F86A393211EF9219871BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.53.132.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:18:09:46:ed:56:6b:42:8b:25:17:d4:f8:b5:35:54:c3:44: e8:b5:69:f5:ab:47:05:05:a0:58:88:7c:98:e7:fb:f6:fa:d6: 0f:20:a8:ac:f3:41:22:bf:86:88:70:a6:ff:4b:d6:77:fd:98: 4f:fb:eb:bf:9c:4e:e8:7e:59:55:68:95:cb:c9:03:53:79:ca: a1:26:f3:ef:0e:df:ee:1b:4d:23:72:8a:a7:e6:5d:95:1e:be: 9c:0a:b5:0e:d8:fa:10:84:d2:85:15:16:eb:de:89:9b:d4:6d: cc:7c:cb:ed:ea:4c:2c:b0:56:bf:b3:3a:8c:b7:f9:72:e4:bc: c1:a4:a0:39:4a:90:01:25:ba:89:e8:4e:61:4f:e4:9b:84:36: ff:d6:a2:0d:3b:58:49:2b:f7:04:88:47:d9:44:2f:a8:7d:87: b9:cd:3d:c8:35:fd:a4:85:3c:e1:32:f5:f6:83:69:e6:26:ae: 71:8e:c3:74:b2:d0:95:54:0d:55:5f:7f:be:ba:86:70:d2:48: 7f:86:57:70:b5:86:71:f5:30:05:d5:93:1f:93:d0:75:3f:26: fb:51:8d:1d:a6:b3:97:06:c2:68:4d:4b:85:91:82:89:82:14: 04:d6:d8:3a:83:ae:bc:34:c3:a7:01:63:16:6b:d8:9c:86:d0: b2:1d:6d:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUzMDgxMTAvBgNVBAUTKEQyNTM2OTE4QzE4QjZCQzJEOTEwNDI4MDhCQ0FERkNE QjczNDc1MzEwHhcNMjQwOTIyMTg1NzExWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwNjg4Ni0zZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05bElQ7H/6u7O0fAeboyA8kLfmiKpmtngJ/b0+H/8NfmdQcxGWqU36O9t/N0 dc0mGBRs5zTKInE2PeztE1bp4s7AJXTrz8Ao4JF6u6msSaMh+6e+kt4Lk24tazW6 XCVoy6xTXPwHTtaC4H312uh22yLg2+O+nszfXMQORHxyZDne86jLqCPIwylA2k4H gtlnYdAW4lpHhMxYqAFVnxTU+LsDBg3wGSW7CW+D5bo/r1IN7xA5tPkzm9UWzBNy MdpAb6akuDDi/6MFEVPBQ+WdIRUsPVVBULYFrEHgGy2m6NfyCo+sGbVSPSYnIuw0 TFPklaU5jzvxGpGkPYTQTbM/ewIDAQABo4IClTCCApEwHQYDVR0OBBYEFG7jWZ9i NNYJ8QvrQCrQCzfp0aHoMB8GA1UdIwQYMBaAFNJTaRjBi2vC2RBCgIvK3823NHUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTMwOC9DNzdGN0ExMjA2 RDUxMUVBOEE4OTdGNEZDNEY5QUUwMi8wbE5wR01HTGE4TFpFRUtBaThyZnpiYzBk VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBsTnBHTUdMYThMWkVFS0FpOHJmemJjMGRURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUzMDgvQzc3RjdBMTIwNkQ1MTFFQThBODk3RjRGQzRGOUFFMDIvMUZENUY4NkEz OTMyMTFFRjkyMTk4NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKNYQwDQYJKoZIhvcNAQELBQADggEBAI0YCUbtVmtCiyUX 1Pi1NVTDROi1afWrRwUFoFiIfJjn+/b61g8gqKzzQSK/hohwpv9L1nf9mE/767+c Tuh+WVVolcvJA1N5yqEm8+8O3+4bTSNyiqfmXZUevpwKtQ7Y+hCE0oUVFuveiZvU bcx8y+3qTCywVr+zOoy3+XLkvMGkoDlKkAEluonoTmFP5JuENv/Wog07WEkr9wSI R9lEL6h9h7nNPcg1/aSFPOEy9faDaeYmrnGOw3Sy0JVUDVVff766hnDSSH+GV3C1 hnH1MAXVkx+T0HU/JvtRjR2ms5cGwmhNS4WRgomCFATW2DqDrrw0w6cBYxZr2JyG 0LIdbc8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org