$ rpki-client -vvf rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/E5E0FAAC020D11EF9DEBCD65C4F9AE02.roa File: E5E0FAAC020D11EF9DEBCD65C4F9AE02.roa (raw, json) Hash identifier: ocuR2Hl1fEV1kEiOTalZsois6FYQCpb4hxRd/pLXgjo= Subject key identifier: 7A:31:45:67:F4:3E:D1:B0:9C:8B:DD:CF:C4:D3:1C:84:C7:4B:47:0A Certificate issuer: /CN=A919690C/serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Certificate serial: 08B9 Authority key identifier: 2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/E5E0FAAC020D11EF9DEBCD65C4F9AE02.roa Signing time: Wed 24 Apr 2024 07:40:19 +0000 ROA not before: Wed 24 Apr 2024 07:40:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 206283 IP address blocks: 119.160.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919690C/serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Validity Not Before: Apr 24 07:40:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6628b762-5e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:01:98:f4:2c:d5:16:76:fc:ce:0a:32:0d:02: cc:fb:96:7e:c2:cf:a7:f8:30:b3:74:db:d5:67:3b: f0:44:7b:4e:34:f1:0b:48:48:94:e4:e0:6b:16:aa: 8c:dc:cc:ea:90:3f:35:a5:50:fe:d3:40:2d:95:d7: 93:26:2f:b9:ee:b5:0a:df:d7:70:1a:81:0d:5d:4b: ae:d1:19:79:0d:c8:ca:a0:a3:a0:7a:b5:a4:54:cf: 30:ce:6a:5c:b3:37:6a:45:5a:af:7b:ba:ec:53:fe: 23:68:dc:38:ab:b6:bf:96:eb:f8:93:fa:17:41:00: ed:16:0b:2d:d7:39:4e:5e:33:ad:3b:7f:cc:11:12: 87:29:6c:e3:c4:02:5a:00:8e:c9:36:09:4d:14:0c: 72:4d:ab:01:7b:6a:be:10:45:61:d0:23:72:0c:5a: 70:2d:2c:5e:80:19:4a:3c:ed:59:31:7e:ed:e6:6d: ed:6f:58:5c:8e:14:a1:ae:d4:b8:fa:89:0e:36:af: e7:97:4a:c9:5c:71:74:b0:bc:21:71:84:53:3d:94: a8:cd:4d:6d:c8:6b:fc:15:42:14:de:bc:2f:4d:1e: d7:7b:37:7b:fc:d0:1d:3e:c9:5c:42:97:40:50:28: 11:0a:41:81:ee:37:ea:4b:0d:42:03:0e:e5:39:97: 51:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:31:45:67:F4:3E:D1:B0:9C:8B:DD:CF:C4:D3:1C:84:C7:4B:47:0A X509v3 Authority Key Identifier: keyid:2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/E5E0FAAC020D11EF9DEBCD65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.160.239.0/24 Signature Algorithm: sha256WithRSAEncryption ac:97:e2:5c:c6:0e:b0:c2:72:5c:0e:75:d1:06:fd:14:8b:57: 19:93:de:03:e4:d3:d3:e6:70:f2:01:84:54:a2:d0:56:2c:54: 4e:88:92:89:74:df:a7:e6:b3:61:0b:e9:15:98:aa:af:7b:7f: d7:be:2e:75:a0:9c:bd:d7:ba:a0:63:0f:5e:ac:fa:ef:2c:db: ec:36:be:62:b5:bf:81:cd:58:d9:88:1e:1d:bf:0f:79:08:05: 7b:e9:9f:b6:66:47:f2:a4:e0:08:2a:c5:5f:09:a4:7a:cd:b3: 74:5a:71:ad:ed:af:80:94:fd:d8:c8:cf:98:ed:3c:84:08:ea: b9:65:f1:f9:33:e1:0a:66:a9:59:a9:47:a1:db:c3:86:a5:54: 98:8b:0e:9c:80:e1:a0:4d:dd:4d:21:80:5e:45:da:0a:cc:bd: c3:f6:a5:1f:87:af:d4:18:75:2d:c4:a5:0c:fc:e4:0d:b2:e5: e2:55:5b:81:ab:21:7d:78:49:b8:0e:d3:d0:4e:82:e4:77:e6: fe:86:2c:e3:96:6d:bc:a4:83:1e:96:c0:3b:a9:9e:43:e2:0a: 35:ed:d6:c8:9f:7d:c3:08:eb:66:b6:7a:b2:4e:63:4e:9f:7b: 2d:34:43:8d:88:72:88:dd:bf:e0:1a:ce:79:ea:3a:e3:d3:75: 7d:95:47:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5MEMxMTAvBgNVBAUTKDJENTg5ODkwNDhDMjE5RjAxMDg4QUU3MkJGQUUwOTcw REY1REE2MzYwHhcNMjQwNDI0MDc0MDE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI4Yjc2Mi01ZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QGY9CzVFnb8zgoyDQLM+5Z+ws+n+DCzdNvVZzvwRHtONPELSEiU5OBrFqqM 3MzqkD81pVD+00AtldeTJi+57rUK39dwGoENXUuu0Rl5DcjKoKOgerWkVM8wzmpc szdqRVqve7rsU/4jaNw4q7a/luv4k/oXQQDtFgst1zlOXjOtO3/MERKHKWzjxAJa AI7JNglNFAxyTasBe2q+EEVh0CNyDFpwLSxegBlKPO1ZMX7t5m3tb1hcjhShrtS4 +okONq/nl0rJXHF0sLwhcYRTPZSozU1tyGv8FUIU3rwvTR7Xezd7/NAdPslcQpdA UCgRCkGB7jfqSw1CAw7lOZdRDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHoxRWf0 PtGwnIvdz8TTHITHS0cKMB8GA1UdIwQYMBaAFC1YmJBIwhnwEIiucr+uCXDfXaY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjkwQy9EM0Q1ODQ4QzhG QkExMUVBQTM0QUMwNzJDNEY5QUUwMi9MVmlZa0VqQ0dmQVFpSzV5djY0SmNOOWRw alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWaVlrRWpDR2ZBUWlLNXl2NjRKY045ZHBqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY5MEMvRDNENTg0OEM4RkJBMTFFQUEzNEFDMDcyQzRGOUFFMDIvRTVFMEZBQUMw MjBEMTFFRjlERUJDRDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3oO8wDQYJKoZIhvcNAQELBQADggEBAKyX4lzGDrDCclwO ddEG/RSLVxmT3gPk09PmcPIBhFSi0FYsVE6Ikol036fms2EL6RWYqq97f9e+LnWg nL3XuqBjD16s+u8s2+w2vmK1v4HNWNmIHh2/D3kIBXvpn7ZmR/Kk4AgqxV8JpHrN s3Raca3tr4CU/djIz5jtPIQI6rll8fkz4QpmqVmpR6Hbw4alVJiLDpyA4aBN3U0h gF5F2grMvcP2pR+Hr9QYdS3EpQz85A2y5eJVW4GrIX14SbgO09BOguR35v6GLOOW bbykgx6WwDupnkPiCjXt1siffcMI62a2erJOY06fey00Q42Icojdv+AaznnqOuPT dX2VR10= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:43 2024 by rpki-client on console-fra.rpki-client.org