$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa File: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (raw, json) Hash identifier: Exd4hWo7RjQZYiSVZdpWrDDgrfmW84G9O8hG7MRZr3A= Subject key identifier: 06:A2:F9:13:D0:54:9E:FC:14:8F:92:4F:EE:2D:8F:BC:8D:5C:6D:3F Certificate issuer: /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Certificate serial: 06FB Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa Signing time: Sun 30 Jun 2024 23:06:49 +0000 ROA not before: Sun 30 Jun 2024 23:06:49 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133448 IP address blocks: 119.42.33.0/24 maxlen: 24 119.42.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Validity Not Before: Jun 30 23:06:49 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681e508-4145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:98:cc:d3:fd:1f:4d:73:f0:4a:a6:24:7d:48: e4:2f:7c:23:60:49:c6:c2:7a:80:bd:b2:cc:82:29: 6c:13:92:b0:cc:a5:4e:ec:3b:40:c4:2f:52:1b:bb: bd:ec:7d:ff:a5:1f:1b:3f:5b:b0:fd:ee:3f:61:10: f3:aa:95:a5:c7:bd:be:38:99:98:04:15:df:a6:58: 9a:1d:6f:99:fb:48:41:62:6f:e1:aa:d6:ee:a5:84: 48:23:3e:61:28:b5:cb:38:e0:8e:c4:4a:00:ce:f3: b2:9d:ca:b5:52:48:1a:fa:ca:d6:22:92:87:62:6b: 4c:b8:77:e0:79:f7:a6:be:10:63:84:ae:cc:2a:13: 40:5e:99:af:e9:00:9b:fd:eb:af:37:9b:d5:8d:e0: 94:fe:7d:7c:c8:50:fb:32:97:8a:1b:f1:d5:c5:60: 1b:73:e5:f1:7c:82:ca:2d:8c:06:5c:76:b3:2c:dc: ed:0e:5c:7a:5e:5a:fd:34:a3:c7:24:2c:ae:0a:3f: 16:88:9a:d8:a4:50:87:4f:92:33:f6:92:47:41:aa: bd:95:2b:1f:e1:c4:ee:76:0b:e6:8f:2a:d2:84:38: f5:5b:a8:90:a3:3b:ec:40:00:e4:eb:b2:08:6e:fa: 2c:98:06:e4:65:33:c6:a9:83:e8:88:b3:14:c7:f7: d3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A2:F9:13:D0:54:9E:FC:14:8F:92:4F:EE:2D:8F:BC:8D:5C:6D:3F X509v3 Authority Key Identifier: keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.42.33.0/24 119.42.35.0/24 Signature Algorithm: sha256WithRSAEncryption 82:14:fa:d0:7f:69:13:5f:f2:5d:7f:58:f9:ed:c7:87:67:41: 6f:31:1b:7c:57:8e:e4:4d:6a:45:2c:53:45:db:84:c1:d3:78: 69:fc:42:bd:02:76:10:d9:7c:4a:7f:1a:a1:b4:a0:2c:02:4b: ff:be:9a:66:a8:16:8f:ef:7b:7d:68:76:ee:3a:13:e0:fc:5d: 2d:31:35:15:ec:04:26:0a:c1:63:d7:c4:d1:b9:90:f4:de:93: e3:a9:fd:d0:fc:c5:5c:3f:c0:95:da:4a:05:3a:86:45:70:82: 5a:df:37:0d:16:00:e2:ac:86:ec:c2:43:ec:10:28:7e:e0:58: 6e:b8:71:28:e1:62:d6:73:40:3d:ee:f3:66:5d:32:35:43:f5: 36:b4:76:65:c1:38:ea:32:cd:fe:aa:ea:1b:60:1c:7b:c6:2c: 48:7d:96:b1:6e:17:da:f6:44:07:42:38:dc:4c:09:5b:72:80: 07:cb:52:71:79:cf:a8:64:21:ce:12:71:bd:d2:d2:83:60:ee: ce:13:bc:2b:24:83:9f:ed:bc:98:9f:39:1b:75:fe:b1:e4:7b: af:fe:82:c3:2b:4c:52:97:46:b2:aa:6a:d1:64:83:b0:27:cf: 96:8e:a1:85:07:51:10:d7:ae:a5:94:d1:0e:3c:b2:9c:6e:a6: bb:60:62:e7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVFNzcxMTAvBgNVBAUTKEI3ODFBMkU3RDkxRURDQThCMDMwREUzRUE4OUZBNEZB RjE3OTFGMjEwHhcNMjQwNjMwMjMwNjQ5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxZTUwOC00MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5jM0/0fTXPwSqYkfUjkL3wjYEnGwnqAvbLMgilsE5KwzKVO7DtAxC9SG7u9 7H3/pR8bP1uw/e4/YRDzqpWlx72+OJmYBBXfpliaHW+Z+0hBYm/hqtbupYRIIz5h KLXLOOCOxEoAzvOyncq1Ukga+srWIpKHYmtMuHfgefemvhBjhK7MKhNAXpmv6QCb /euvN5vVjeCU/n18yFD7MpeKG/HVxWAbc+XxfILKLYwGXHazLNztDlx6Xlr9NKPH JCyuCj8WiJrYpFCHT5Iz9pJHQaq9lSsf4cTudgvmjyrShDj1W6iQozvsQADk67II bvosmAbkZTPGqYPoiLMUx/fTqQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAai+RPQ VJ78FI+ST+4tj7yNXG0/MB8GA1UdIwQYMBaAFLeBoufZHtyosDDePqifpPrxeR8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUU3Ny9EOUJFMDdCQTBD RUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNLaXdNTjQtcUotay12RjVI eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q0R2k1OWtlM0tpd01ONC1xSi1rLXZGNUh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVFNzcvRDlCRTA3QkEwQ0VEMTFFQkE3RjExMTVCQzRGOUFFMDIvN0JBQjlBRjAx QjNEMTFFRTkwM0JCNTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB3KiEDBAB3KiMwDQYJKoZIhvcNAQELBQADggEBAIIU+tB/ aRNf8l1/WPntx4dnQW8xG3xXjuRNakUsU0XbhMHTeGn8Qr0CdhDZfEp/GqG0oCwC S/++mmaoFo/ve31odu46E+D8XS0xNRXsBCYKwWPXxNG5kPTek+Op/dD8xVw/wJXa SgU6hkVwglrfNw0WAOKshuzCQ+wQKH7gWG64cSjhYtZzQD3u82ZdMjVD9Ta0dmXB OOoyzf6q6htgHHvGLEh9lrFuF9r2RAdCONxMCVtygAfLUnF5z6hkIc4Scb3S0oNg 7s4TvCskg5/tvJifORt1/rHke6/+gsMrTFKXRrKqatFkg7Anz5aOoYUHURDXrqWU 0Q48spxuprtgYuc= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:56 2024 by rpki-client on console-ams.rpki-client.org