$ rpki-client -vvf rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/4978358A70E011EF8CDC2330C4F9AE02.roa File: 4978358A70E011EF8CDC2330C4F9AE02.roa (raw, json) Hash identifier: /IC83So1FOtOVI6FyVgutegfCW2Brl2xGyqxsuNtGWE= Subject key identifier: D5:CF:FC:4D:A4:3C:36:C5:47:C2:EF:E8:A9:F3:F2:B2:49:5A:BE:0F Certificate issuer: /CN=A91911EB/serialNumber=BE3F813B202FFB0A382F737968EE166598E0E8AB Certificate serial: 0A Authority key identifier: BE:3F:81:3B:20:2F:FB:0A:38:2F:73:79:68:EE:16:65:98:E0:E8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/4978358A70E011EF8CDC2330C4F9AE02.roa Signing time: Thu 12 Sep 2024 08:23:28 +0000 ROA not before: Thu 12 Sep 2024 08:23:28 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136737 IP address blocks: 203.158.208.0/24 maxlen: 24 203.158.209.0/24 maxlen: 24 203.158.210.0/24 maxlen: 24 203.158.211.0/24 maxlen: 24 203.158.212.0/24 maxlen: 24 203.158.213.0/24 maxlen: 24 203.158.214.0/24 maxlen: 24 203.158.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.crl rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91911EB/serialNumber=BE3F813B202FFB0A382F737968EE166598E0E8AB Validity Not Before: Sep 12 08:23:28 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66e2a500-dc88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ca:87:69:0e:4a:0b:49:dc:29:7c:28:9f:49: c1:60:65:f5:74:a9:34:39:62:a6:17:87:78:61:75: 96:f3:3b:2b:06:cf:b2:7a:b9:04:1a:17:0d:6d:1d: fc:ce:28:4a:7a:f6:46:af:eb:ba:76:d7:7f:c7:dd: 06:bd:f4:f5:9a:a6:88:aa:f3:15:59:39:65:4a:90: 42:ee:06:73:77:80:d5:63:fc:13:6c:5a:0f:81:c0: cd:87:ac:03:f1:69:e6:d0:25:05:0f:1b:fd:a5:07: fb:6f:8b:a4:de:1e:3c:a7:ad:95:f7:8d:f8:49:6a: 79:ba:99:a2:06:03:ff:b0:a1:07:aa:a6:70:e8:ce: 52:b9:04:07:e8:e5:ef:6b:cc:c0:e2:85:34:c9:30: 16:e2:b7:d4:42:a9:2e:5d:43:8c:d2:1f:bf:46:ae: 50:24:d0:05:67:e5:8d:fe:45:df:cc:bd:e2:f3:b6: f7:b2:d5:ea:93:00:c0:9b:02:88:5b:6e:54:c6:c4: ee:35:0c:a1:6c:d5:76:6f:de:11:4a:14:bb:89:e8: fb:9e:22:35:2d:1e:08:f3:ba:8a:98:eb:71:66:b9: bc:70:bb:5a:7a:0a:48:11:11:d3:e3:55:63:9e:7e: 72:2e:51:2f:5c:f3:4a:86:7b:10:16:95:53:13:ec: 2f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CF:FC:4D:A4:3C:36:C5:47:C2:EF:E8:A9:F3:F2:B2:49:5A:BE:0F X509v3 Authority Key Identifier: keyid:BE:3F:81:3B:20:2F:FB:0A:38:2F:73:79:68:EE:16:65:98:E0:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/4978358A70E011EF8CDC2330C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.158.208.0/21 Signature Algorithm: sha256WithRSAEncryption 33:19:bf:f4:8e:ee:e3:68:c6:65:46:ea:26:0a:80:87:43:73: a1:aa:a9:5e:25:4c:53:7d:29:72:09:35:b3:be:59:e7:a9:d9: 18:c1:84:20:64:1f:9f:2e:b2:05:5f:c0:ef:de:05:b0:c9:a0: 46:cc:63:a8:4d:07:14:74:3f:45:14:3c:aa:12:2e:ce:85:91: 4d:3c:19:8e:62:b2:e0:42:41:13:cc:cf:b1:3f:1d:b2:2b:e3: ed:54:db:9d:c5:3f:be:28:c1:5e:35:b2:aa:c8:ab:d6:19:54: f6:0c:1c:19:20:c6:71:9e:ee:65:20:84:12:7d:27:b2:1e:0d: 4d:1a:f8:c7:fa:b1:5e:b5:36:d2:f6:3e:fa:ce:42:2d:78:c5: 24:cc:db:fe:ff:a8:31:ea:95:fc:85:d1:ec:92:a3:fc:e6:46: c0:02:87:4a:62:06:d8:61:57:fa:72:94:89:fe:c5:da:6f:f0: 8c:f0:6a:a2:fa:9d:af:5f:e7:99:44:02:53:13:99:3e:d9:50: 66:61:0d:74:3a:e1:32:e5:79:f7:a0:52:26:99:12:e3:a9:c4: 9d:e4:10:4d:04:c4:a3:da:af:94:43:9f:4c:04:1c:b2:07:1d: 2e:41:33:a0:38:7c:97:14:34:67:a1:1b:df:72:5a:4f:59:3e: 03:54:6e:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTFFQjExMC8GA1UEBRMoQkUzRjgxM0IyMDJGRkIwQTM4MkY3Mzc5NjhFRTE2NjU5 OEUwRThBQjAeFw0yNDA5MTIwODIzMjhaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTJhNTAwLWRjODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIyodpDkoLSdwpfCifScFgZfV0qTQ5YqYXh3hhdZbzOysGz7J6uQQaFw1tHfzO KEp69kav67p213/H3Qa99PWapoiq8xVZOWVKkELuBnN3gNVj/BNsWg+BwM2HrAPx aebQJQUPG/2lB/tvi6TeHjynrZX3jfhJanm6maIGA/+woQeqpnDozlK5BAfo5e9r zMDihTTJMBbit9RCqS5dQ4zSH79GrlAk0AVn5Y3+Rd/MveLztvey1eqTAMCbAohb blTGxO41DKFs1XZv3hFKFLuJ6PueIjUtHgjzuoqY63Fmubxwu1p6CkgREdPjVWOe fnIuUS9c80qGexAWlVMT7C9zAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1c/8TaQ8 NsVHwu/oqfPysklavg8wHwYDVR0jBBgwFoAUvj+BOyAv+wo4L3N5aO4WZZjg6Ksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxMUVCL0VEQTk3MkIyNjlB MjExRUZBRTNBQjM1QUM0RjlBRTAyL3ZqLUJPeUF2LXdvNEwzTjVhTzRXWlpqZzZL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdmotQk95QXYtd280TDNONWFPNFdaWmpnNktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTFFQi9FREE5NzJCMjY5QTIxMUVGQUUzQUIzNUFDNEY5QUUwMi80OTc4MzU4QTcw RTAxMUVGOENEQzIzMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8ue0DANBgkqhkiG9w0BAQsFAAOCAQEAMxm/9I7u42jGZUbq JgqAh0NzoaqpXiVMU30pcgk1s75Z56nZGMGEIGQfny6yBV/A794FsMmgRsxjqE0H FHQ/RRQ8qhIuzoWRTTwZjmKy4EJBE8zPsT8dsivj7VTbncU/vijBXjWyqsir1hlU 9gwcGSDGcZ7uZSCEEn0nsh4NTRr4x/qxXrU20vY++s5CLXjFJMzb/v+oMeqV/IXR 7JKj/OZGwAKHSmIG2GFX+nKUif7F2m/wjPBqovqdr1/nmUQCUxOZPtlQZmENdDrh MuV596BSJpkS46nEneQQTQTEo9qvlEOfTAQcsgcdLkEzoDh8lxQ0Z6Eb33JaT1k+ A1RuYQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:27 2024 by rpki-client on console-fra.rpki-client.org