$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa File: 99B6039C215311EA86E1E020C4F9AE02.roa (raw, json) Hash identifier: FBjiENDexTIY9F8hqJiP3C+uJeH57VnMwir8al3nYvk= Subject key identifier: AC:0A:F5:A1:F6:19:74:97:13:5B:4E:76:3D:8A:07:AD:E3:DD:FB:01 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 0F99 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa Signing time: Wed 22 May 2024 18:26:38 +0000 ROA not before: Wed 22 May 2024 18:26:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9825 IP address blocks: 202.59.208.0/22 maxlen: 22 202.59.208.0/24 maxlen: 24 202.59.209.0/24 maxlen: 24 202.59.210.0/24 maxlen: 24 202.59.211.0/24 maxlen: 24 2001:de8:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3993 (0xf99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: May 22 18:26:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664e38de-9574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:23:d6:b0:8c:ba:d5:1a:08:36:05:fa:7b:e9: b7:a8:12:c9:7d:be:db:cb:7b:31:b8:7c:80:ea:56: dd:de:c8:24:98:43:79:d1:f3:5c:5d:de:1c:e4:60: e8:44:27:a5:6e:8e:49:0c:83:05:95:72:61:86:b7: 2c:43:23:ad:bc:e7:98:09:3b:7a:82:fd:d7:47:38: db:13:ec:8f:74:40:32:6e:05:d0:ae:82:ed:23:9d: e5:de:56:d8:ad:9a:25:7a:95:5c:b4:a0:dd:c9:63: 34:8c:af:e6:01:ce:0c:c8:aa:e7:a4:98:5f:cf:83: ab:5c:92:a2:25:22:f3:62:47:8e:1a:7f:33:ae:df: 7a:4e:a7:9d:cf:e1:90:b8:f9:5f:6a:6c:88:e5:40: 86:cd:1c:7f:04:ca:6c:44:ca:d2:c2:5a:e2:18:8c: ad:66:a4:54:93:f0:0d:c4:e0:39:a3:96:fa:b5:fe: da:a0:9c:2f:f4:5e:51:75:a7:ce:62:ba:2a:8f:47: c4:9c:52:39:cb:97:ae:63:ec:f0:4f:99:96:b6:13: 4a:34:85:0f:dd:8b:a4:7c:e0:14:f0:80:f9:ae:b0: 7c:04:c4:e7:89:ec:9d:0a:88:3d:b0:8c:c9:bd:c6: f0:86:6e:8c:05:fa:ca:34:bc:6e:f2:11:10:32:d4: ac:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0A:F5:A1:F6:19:74:97:13:5B:4E:76:3D:8A:07:AD:E3:DD:FB:01 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.59.208.0/22 IPv6: 2001:de8:b::/48 Signature Algorithm: sha256WithRSAEncryption 79:4f:89:06:6f:4a:52:bf:60:f3:f2:88:9f:d7:67:8f:ea:73: c1:0a:b7:50:e1:13:d8:b8:b8:b1:08:c4:79:7f:83:da:7e:79: b7:c0:70:21:38:79:2f:82:9c:e2:0f:f5:93:a5:fc:cc:7d:58: cf:88:19:7a:69:de:ca:91:f8:ad:4a:4a:c2:1b:55:80:b7:6c: 17:53:79:32:89:b7:fd:fd:40:cf:f4:bc:5c:92:39:89:76:3b: cd:b1:d8:36:86:0a:6b:41:47:32:52:de:c9:c0:4d:61:4f:64: 1e:f9:3a:32:8c:4c:89:8c:73:5f:0f:c5:53:0b:39:9f:94:dc: a5:d5:34:56:b4:a6:75:77:01:24:52:1f:ae:67:f9:ce:c1:59: 85:65:51:e7:20:87:a5:b2:f1:05:65:be:b6:16:60:4e:9b:6c: 8e:90:45:93:78:66:42:d9:1e:14:54:9e:68:a6:40:79:4f:88: 87:5b:59:d2:e1:61:3a:81:35:30:c0:fe:e8:da:58:7c:b5:16: 98:5d:27:e8:03:69:26:2e:90:3e:19:e8:37:a2:4b:bd:46:34: 13:46:22:3c:dd:3c:ab:59:24:f0:ba:55:fc:39:f1:1c:78:f3: 1a:ad:ee:e4:2b:7d:b9:32:35:de:17:45:5a:9a:a5:ae:69:1e: 7c:07:a8:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICD5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjQwNTIyMTgyNjM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlMzhkZS05NTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yPWsIy61RoINgX6e+m3qBLJfb7by3sxuHyA6lbd3sgkmEN50fNcXd4c5GDo RCelbo5JDIMFlXJhhrcsQyOtvOeYCTt6gv3XRzjbE+yPdEAybgXQroLtI53l3lbY rZolepVctKDdyWM0jK/mAc4MyKrnpJhfz4OrXJKiJSLzYkeOGn8zrt96Tqedz+GQ uPlfamyI5UCGzRx/BMpsRMrSwlriGIytZqRUk/ANxOA5o5b6tf7aoJwv9F5RdafO Yroqj0fEnFI5y5euY+zwT5mWthNKNIUP3YukfOAU8ID5rrB8BMTnieydCog9sIzJ vcbwhm6MBfrKNLxu8hEQMtSsOQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKwK9aH2 GXSXE1tOdj2KB63j3fsBMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEzNkIvRjdDODdFODQzQTdCMTFFOUFDQkM2QTE4QzRGOUFFMDIvOTlCNjAzOUMy MTUzMTFFQTg2RTFFMDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKO9AwDwQCAAIwCQMHACABDegACzANBgkqhkiG9w0BAQsF AAOCAQEAeU+JBm9KUr9g8/KIn9dnj+pzwQq3UOET2Li4sQjEeX+D2n55t8BwITh5 L4Kc4g/1k6X8zH1Yz4gZemneypH4rUpKwhtVgLdsF1N5Mom3/f1Az/S8XJI5iXY7 zbHYNoYKa0FHMlLeycBNYU9kHvk6MoxMiYxzXw/FUws5n5TcpdU0VrSmdXcBJFIf rmf5zsFZhWVR5yCHpbLxBWW+thZgTptsjpBFk3hmQtkeFFSeaKZAeU+Ih1tZ0uFh OoE1MMD+6NpYfLUWmF0n6ANpJi6QPhnoN6JLvUY0E0YiPN08q1kk8LpV/DnxHHjz Gq3u5Ct9uTI13hdFWpqlrmkefAeoWA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org