$ rpki-client -vvf rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/FDE510BCC2E511EBBDB1B180C4F9AE02.roa File: FDE510BCC2E511EBBDB1B180C4F9AE02.roa (raw, json) Hash identifier: UGq/FTCZQ7FhckK2ZxCO/5YcR0nz7NOxc2RauGEBdPo= Subject key identifier: 2B:22:67:76:F0:FB:E9:18:12:B8:B1:49:BB:83:11:74:86:0E:A1:07 Certificate issuer: /CN=A9191FA5/serialNumber=AB11E809F2BC66B0D1E60B8A31F86B5B82E00E39 Certificate serial: 34C1 Authority key identifier: AB:11:E8:09:F2:BC:66:B0:D1:E6:0B:8A:31:F8:6B:5B:82:E0:0E:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/FDE510BCC2E511EBBDB1B180C4F9AE02.roa Signing time: Wed 26 Jun 2024 15:00:57 +0000 ROA not before: Wed 26 Jun 2024 15:00:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 17495 IP address blocks: 203.124.128.0/20 maxlen: 24 203.124.144.0/20 maxlen: 24 203.124.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.crl rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191FA5/serialNumber=AB11E809F2BC66B0D1E60B8A31F86B5B82E00E39 Validity Not Before: Jun 26 15:00:57 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=667c2d29-c8f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8a:11:21:2d:c4:b2:01:9a:6a:f2:b6:06:6d: 83:35:f4:e2:f3:45:9b:f3:ba:f8:ff:1c:b3:df:6c: ea:ca:43:11:46:98:9c:bd:3a:d7:43:06:0a:51:01: 41:78:a2:5d:ff:94:1b:ed:d4:19:21:ae:a1:c6:59: ff:65:71:4f:49:e1:28:43:27:90:00:ae:f3:2f:7b: 1b:96:ff:30:7c:9b:84:bb:fd:81:47:00:a6:47:f3: 6a:c7:3e:6a:f6:1e:30:aa:0c:9f:43:66:d9:96:74: b8:00:4a:de:29:ab:83:1d:1a:c0:e3:ba:80:8e:11: 9b:51:e2:22:77:a4:22:1f:52:a7:d8:6c:f2:0e:d4: b3:cf:b8:20:e8:8a:95:ae:37:71:c4:57:15:1b:b0: 0c:99:f2:65:0f:45:f6:d4:58:67:ac:ec:28:41:88: 27:eb:28:f6:51:09:56:0b:9d:a7:19:ce:32:2e:f2: fb:51:2f:68:57:62:8a:76:ad:a0:74:71:99:55:be: a0:6b:36:5b:55:80:ee:d6:de:8f:ae:e6:a3:22:8e: b9:af:a1:37:23:95:c7:b8:cb:d1:64:4d:77:28:fa: f9:b1:1c:be:48:fb:59:c9:f8:0d:7e:22:7c:44:3c: d8:ff:c0:5e:b0:75:71:ca:c2:8f:d9:15:4e:56:16: 6d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:22:67:76:F0:FB:E9:18:12:B8:B1:49:BB:83:11:74:86:0E:A1:07 X509v3 Authority Key Identifier: keyid:AB:11:E8:09:F2:BC:66:B0:D1:E6:0B:8A:31:F8:6B:5B:82:E0:0E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/FDE510BCC2E511EBBDB1B180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.124.128.0-203.124.175.255 Signature Algorithm: sha256WithRSAEncryption 02:73:fc:c6:65:42:34:c4:97:43:c5:0e:37:a1:94:5d:06:62: 9b:82:8f:37:8b:93:06:b1:6d:5d:c8:0e:77:e6:d4:a3:56:59: 86:e3:1c:1b:ae:f9:ce:56:e2:b2:5c:54:8b:a9:4f:1d:b8:03: 45:8b:cc:dd:65:b1:7b:01:50:1e:9c:53:bc:e9:90:88:ab:d6: fe:f4:d2:a6:55:7e:9d:38:c0:e7:e4:c4:ea:e0:d8:4b:1b:03: 3c:d1:df:75:9f:49:7d:06:eb:88:05:bf:41:24:7f:d1:f9:55: f9:76:64:9f:e8:04:c8:cf:12:9d:61:14:84:ef:96:a7:99:6c: ad:1b:bd:85:06:f6:f7:10:a6:ed:bf:7b:05:c8:a5:0e:ee:f1: de:90:be:e4:18:97:5c:47:91:64:10:ed:1b:5c:4c:db:b5:c8: 9a:96:55:f1:50:49:f1:01:db:8e:1f:2b:69:02:72:13:42:32: 3e:ee:d2:0f:7d:e1:95:46:70:8f:47:01:5c:34:32:ea:48:b7: 4d:f4:d6:c9:49:77:e6:1c:3e:49:14:ce:2b:f0:94:5e:3e:1a: c2:68:63:9a:b7:07:c9:fc:31:cc:6d:8c:f7:6c:e8:7a:af:ff: 4f:e4:c7:f0:9f:e4:ba:de:8b:c2:ac:48:a6:37:01:3e:84:ef: c4:bc:28:e4 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFGQTUxMTAvBgNVBAUTKEFCMTFFODA5RjJCQzY2QjBEMUU2MEI4QTMxRjg2QjVC ODJFMDBFMzkwHhcNMjQwNjI2MTUwMDU3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjMmQyOS1jOGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4oRIS3EsgGaavK2Bm2DNfTi80Wb87r4/xyz32zqykMRRpicvTrXQwYKUQFB eKJd/5Qb7dQZIa6hxln/ZXFPSeEoQyeQAK7zL3sblv8wfJuEu/2BRwCmR/Nqxz5q 9h4wqgyfQ2bZlnS4AEreKauDHRrA47qAjhGbUeIid6QiH1Kn2GzyDtSzz7gg6IqV rjdxxFcVG7AMmfJlD0X21FhnrOwoQYgn6yj2UQlWC52nGc4yLvL7US9oV2KKdq2g dHGZVb6gazZbVYDu1t6PruajIo65r6E3I5XHuMvRZE13KPr5sRy+SPtZyfgNfiJ8 RDzY/8BesHVxysKP2RVOVhZtUQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFCsiZ3bw ++kYErixSbuDEXSGDqEHMB8GA1UdIwQYMBaAFKsR6AnyvGaw0eYLijH4a1uC4A45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUZBNS8wODA1NkNFNDFE ODcxMUUyOUREM0M2REUwOEIwMkNEMi9xeEhvQ2ZLOFpyRFI1Z3VLTWZoclc0TGdE amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F4SG9DZks4WnJEUjVndUtNZmhyVzRMZ0Rqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFGQTUvMDgwNTZDRTQxRDg3MTFFMjlERDNDNkRFMDhCMDJDRDIvRkRFNTEwQkND MkU1MTFFQkJEQjFCMTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEB8t8gAMEBMt8oDANBgkqhkiG9w0BAQsFAAOCAQEAAnP8 xmVCNMSXQ8UON6GUXQZim4KPN4uTBrFtXcgOd+bUo1ZZhuMcG675zlbislxUi6lP HbgDRYvM3WWxewFQHpxTvOmQiKvW/vTSplV+nTjA5+TE6uDYSxsDPNHfdZ9JfQbr iAW/QSR/0flV+XZkn+gEyM8SnWEUhO+Wp5lsrRu9hQb29xCm7b97BcilDu7x3pC+ 5BiXXEeRZBDtG1xM27XImpZV8VBJ8QHbjh8raQJyE0IyPu7SD33hlUZwj0cBXDQy 6ki3TfTWyUl35hw+SRTOK/CUXj4awmhjmrcHyfwxzG2M92zoeq//T+TH8J/kut6L wqxIpjcBPoTvxLwo5A== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org