$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa File: 70970B107C9811EEA876DA2DC4F9AE02.roa (raw, json) Hash identifier: aHmcIpJIE1GcUyI4Yny/qSd6Or3byAxj4bJ8cE5T4kk= Subject key identifier: 83:46:A0:61:52:59:C1:CB:A7:77:04:9B:46:01:20:EF:5A:3A:F3:1B Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0381 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa Signing time: Sat 15 Jun 2024 05:11:05 +0000 ROA not before: Sat 15 Jun 2024 05:11:05 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 200017 IP address blocks: 203.32.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jun 15 05:11:05 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666d2269-0f21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:86:ec:09:78:27:49:6e:44:08:e2:2d:9d:c7: 8f:a2:22:5a:11:69:b4:8d:fa:00:c9:65:d4:73:d3: 28:44:cc:8f:08:22:0c:c4:74:e1:e4:75:44:19:16: 2f:92:d2:6b:55:78:22:24:c4:39:ea:36:8f:f5:a1: fd:08:44:6f:c3:3e:ea:8b:36:c3:e4:e9:3e:af:c9: 73:5e:74:e5:89:fb:7f:d4:f1:ae:37:c4:6a:b4:ca: af:ab:52:b1:0d:5b:c2:7e:25:9a:e7:de:7a:2c:b2: cb:c4:89:4f:bf:c1:b6:50:8e:b4:3c:f7:46:97:20: 04:3d:e9:f9:6a:36:d9:1c:7d:3e:5f:c3:da:a6:7c: a5:6c:bd:57:ec:94:20:6f:a2:f6:e8:9c:4a:36:7d: 99:6e:c3:6c:e2:f5:69:b1:7c:ec:5f:37:31:cc:ee: 4e:e5:4a:4b:28:b2:a7:88:b5:30:c1:a4:b0:c9:5c: a6:a3:e5:61:0f:4e:77:84:1b:78:8c:0e:c6:a1:3e: 15:aa:c7:83:51:03:a2:25:75:2a:e2:ea:4f:e9:63: d7:e6:ef:26:68:b6:2e:18:fb:9a:b1:d0:d0:77:b6: e8:66:5b:57:7a:5d:de:9e:ef:ac:a1:8e:25:0a:b5: 00:e5:3d:92:f0:3d:c6:5b:a7:76:3e:82:2f:13:19: 7a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:46:A0:61:52:59:C1:CB:A7:77:04:9B:46:01:20:EF:5A:3A:F3:1B X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.40.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:c8:8a:ff:27:d2:9d:6b:6a:7a:e3:05:37:63:a0:d9:7b:52: 94:cf:c2:46:37:7c:dc:94:c0:20:8b:48:51:9d:28:4e:84:db: 13:c1:57:b0:b4:93:ed:c2:13:31:85:ec:61:a1:a4:90:c1:5b: ab:78:9b:d4:0b:25:c6:6c:4f:97:4d:50:63:c5:5f:28:85:9c: dc:b2:a3:4f:8c:10:87:f5:77:ea:7d:a4:ad:fb:f3:19:45:ae: 8c:90:39:56:07:e1:e9:91:ac:60:41:c1:98:9a:48:4c:30:d3: 93:c6:ac:2e:b1:51:3d:dc:4a:e2:61:18:25:b2:2a:a1:95:28: 54:46:28:4c:9d:61:91:75:b0:ba:51:1d:79:e1:e3:fc:2e:63: 0e:3d:ee:be:89:52:5c:fc:17:d2:7a:77:fa:6d:a5:89:20:fb: 17:62:99:69:56:4e:27:9b:aa:ff:f2:27:51:50:07:39:b5:10: 5f:ad:db:db:d2:e1:a1:f8:1b:9d:f5:86:6f:c1:3e:8b:46:6d: f1:72:03:69:f3:54:d8:c9:df:a4:0d:87:a1:63:e4:bf:18:0c: c3:be:be:67:78:e1:dc:a4:59:46:c5:ec:34:9f:e8:40:a3:56: 0c:09:a5:ad:c6:3d:b2:f5:6b:eb:53:38:ed:d9:92:5f:6d:2c: 01:77:42:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjQwNjE1MDUxMTA1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZkMjI2OS0wZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IbsCXgnSW5ECOItncePoiJaEWm0jfoAyWXUc9MoRMyPCCIMxHTh5HVEGRYv ktJrVXgiJMQ56jaP9aH9CERvwz7qizbD5Ok+r8lzXnTlift/1PGuN8RqtMqvq1Kx DVvCfiWa5956LLLLxIlPv8G2UI60PPdGlyAEPen5ajbZHH0+X8PapnylbL1X7JQg b6L26JxKNn2ZbsNs4vVpsXzsXzcxzO5O5UpLKLKniLUwwaSwyVymo+VhD053hBt4 jA7GoT4VqseDUQOiJXUq4upP6WPX5u8maLYuGPuasdDQd7boZltXel3enu+soY4l CrUA5T2S8D3GW6d2PoIvExl6swIDAQABo4IClTCCApEwHQYDVR0OBBYEFINGoGFS WcHLp3cEm0YBIO9aOvMbMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvNzA5NzBCMTA3 Qzk4MTFFRUE4NzZEQTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLICgwDQYJKoZIhvcNAQELBQADggEBAF7Iiv8n0p1ranrj BTdjoNl7UpTPwkY3fNyUwCCLSFGdKE6E2xPBV7C0k+3CEzGF7GGhpJDBW6t4m9QL JcZsT5dNUGPFXyiFnNyyo0+MEIf1d+p9pK378xlFroyQOVYH4emRrGBBwZiaSEww 05PGrC6xUT3cSuJhGCWyKqGVKFRGKEydYZF1sLpRHXnh4/wuYw497r6JUlz8F9J6 d/ptpYkg+xdimWlWTiebqv/yJ1FQBzm1EF+t29vS4aH4G531hm/BPotGbfFyA2nz VNjJ36QNh6Fj5L8YDMO+vmd44dykWUbF7DSf6ECjVgwJpa3GPbL1a+tTOO3Zkl9t LAF3Qns= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org