$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/8DFE2984EAD811ECA1ED8915C4F9AE02.roa File: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (raw, json) Hash identifier: dOS+EBN8T4gv4pfAW5HZ87ld30CEjTabsXZtn+f9BiY= Subject key identifier: 3E:B1:63:C8:1C:DF:72:7F:3A:C4:08:B9:61:D3:1E:B0:59:A5:2D:8D Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 3431 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/8DFE2984EAD811ECA1ED8915C4F9AE02.roa Signing time: Sat 02 Nov 2024 14:51:01 +0000 ROA not before: Sat 02 Nov 2024 14:51:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38211 IP address blocks: 203.135.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13361 (0x3431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: Nov 2 14:51:01 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67263c55-f87d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:36:39:66:a8:bd:96:c8:b1:5c:da:a5:3b:43: 68:31:9f:83:60:a5:f4:fb:de:08:48:25:3e:17:07: 7f:4f:24:c8:b9:dd:e4:31:3c:3d:49:e1:87:1d:e2: 86:de:02:2c:3c:72:35:2f:ba:4b:51:25:86:a1:d0: c5:b5:8c:3c:93:28:0c:85:73:7f:30:0c:87:9a:5d: 13:17:cf:5c:eb:0b:d8:16:2f:05:19:8c:41:63:72: 18:50:50:73:f3:41:f0:ed:57:c3:45:96:a1:9f:13: bc:f7:b3:61:b1:cc:91:80:6a:ce:36:c1:14:5e:45: 56:24:39:e4:29:8a:0d:51:62:1b:34:55:bc:0d:1b: 75:1c:20:df:30:84:88:79:42:94:03:6f:be:1c:cb: 80:2e:ae:07:03:a6:cf:13:94:0e:23:dd:e9:fd:cd: da:1a:96:a0:69:5d:d0:ef:55:47:ac:67:51:48:5d: e2:7b:64:3c:d8:69:a8:c6:82:b0:74:c3:7b:2a:68: 81:1b:18:ce:bc:f1:76:54:78:73:02:39:0c:79:34: ef:64:98:23:2b:a7:1c:44:34:5e:2e:f9:0b:14:e3: f0:ca:24:b7:c1:36:fb:1c:df:6d:c0:cb:e9:bb:f9: 45:15:dc:17:e2:c7:ea:52:ae:ec:c0:6b:a7:28:1b: af:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B1:63:C8:1C:DF:72:7F:3A:C4:08:B9:61:D3:1E:B0:59:A5:2D:8D X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/8DFE2984EAD811ECA1ED8915C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.135.176.0/21 Signature Algorithm: sha256WithRSAEncryption 51:64:ff:fb:c9:33:1e:91:60:21:9a:c7:e8:0c:dc:b0:64:67: ba:a4:a5:8d:7c:ab:1e:40:d3:5a:d7:9f:10:ca:8b:19:7d:14: cd:9d:2b:5b:cf:3a:14:83:8e:1d:ca:e8:b2:78:2c:b4:34:a8: c3:70:3a:b9:32:b0:c4:46:e7:3b:9c:a6:01:8a:37:15:ce:04: 4f:c5:e7:5e:98:88:6a:0f:d7:37:84:c0:84:05:9c:dc:4d:51: 83:30:33:de:69:f2:59:5f:15:08:06:d3:d4:4e:7c:3f:8d:69: 22:1f:84:a6:93:37:47:16:b2:75:75:dc:92:1d:85:aa:4c:1e: 81:00:4e:7a:03:b7:78:85:42:82:d8:6c:1b:3a:13:20:c3:b9: ac:65:c5:51:6e:1c:dd:73:ee:3d:db:52:2c:c4:6a:8a:b2:e6: 5a:a3:23:f1:ea:ac:c6:fe:c1:b8:ca:14:7d:3e:53:a8:cf:05: 99:d8:66:c4:e1:31:2e:0c:01:71:59:c8:fc:39:9f:3a:22:2b: 2b:f4:77:46:f2:97:91:e2:0e:94:e1:0b:54:82:69:7d:91:be: 9a:f8:c9:99:ee:83:cc:47:a9:ec:6f:e9:b5:15:4e:41:8c:d1: cc:98:9b:8d:f8:c2:be:d8:3a:08:0b:86:e4:7c:1f:75:c4:8b: 1c:0e:c1:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjQxMTAyMTQ1MTAxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2M2M1NS1mODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9DY5Zqi9lsixXNqlO0NoMZ+DYKX0+94ISCU+Fwd/TyTIud3kMTw9SeGHHeKG 3gIsPHI1L7pLUSWGodDFtYw8kygMhXN/MAyHml0TF89c6wvYFi8FGYxBY3IYUFBz 80Hw7VfDRZahnxO897NhscyRgGrONsEUXkVWJDnkKYoNUWIbNFW8DRt1HCDfMISI eUKUA2++HMuALq4HA6bPE5QOI93p/c3aGpagaV3Q71VHrGdRSF3ie2Q82GmoxoKw dMN7KmiBGxjOvPF2VHhzAjkMeTTvZJgjK6ccRDReLvkLFOPwyiS3wTb7HN9twMvp u/lFFdwX4sfqUq7swGunKBuvcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD6xY8gc 33J/OsQIuWHTHrBZpS2NMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdGQkMvMzczMDgzODAxRDkzMTFFMjhBQkU5RUY2MDhCMDJDRDIvOERGRTI5ODRF QUQ4MTFFQ0ExRUQ4OTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLh7AwDQYJKoZIhvcNAQELBQADggEBAFFk//vJMx6RYCGa x+gM3LBkZ7qkpY18qx5A01rXnxDKixl9FM2dK1vPOhSDjh3K6LJ4LLQ0qMNwOrky sMRG5zucpgGKNxXOBE/F516YiGoP1zeEwIQFnNxNUYMwM95p8llfFQgG09ROfD+N aSIfhKaTN0cWsnV13JIdhapMHoEATnoDt3iFQoLYbBs6EyDDuaxlxVFuHN1z7j3b UizEaoqy5lqjI/HqrMb+wbjKFH0+U6jPBZnYZsThMS4MAXFZyPw5nzoiKyv0d0by l5HiDpThC1SCaX2Rvpr4yZnug8xHqexv6bUVTkGM0cyYm434wr7YOggLhuR8H3XE ixwOwbU= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org