$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/1A7891D4FA3011E9BF5A291EC4F9AE02.roa File: 1A7891D4FA3011E9BF5A291EC4F9AE02.roa (raw, json) Hash identifier: YQYm5l+2t2Nmgpk7xKTDog8BjmEeY7pPx/VepC3HU8k= Subject key identifier: A9:AF:45:58:C5:4C:A1:5F:07:EC:08:77:88:60:32:AA:7C:D8:6B:A4 Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Certificate serial: 34A1 Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/1A7891D4FA3011E9BF5A291EC4F9AE02.roa Signing time: Thu 24 Oct 2024 14:30:34 +0000 ROA not before: Thu 24 Oct 2024 14:30:34 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132846 IP address blocks: 118.179.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13473 (0x34a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Validity Not Before: Oct 24 14:30:34 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671a5a0a-745a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:84:f2:ab:42:d3:d0:75:b4:11:3b:98:f1: 2a:b4:76:2c:68:7f:bd:65:38:b5:7d:0b:74:bd:73: a8:f3:db:4e:25:a2:91:2a:c3:ab:ac:3a:dd:c1:dd: 24:d5:e6:f7:12:8f:19:39:62:32:0c:ed:35:12:d3: 40:f0:60:4b:3f:6f:d9:5a:28:03:76:64:50:90:96: de:ed:bd:a8:ad:f2:f8:94:69:4f:0e:83:a3:52:8a: 2c:e1:4a:66:36:a5:b9:b0:cc:9d:b7:d2:76:e6:2e: 1a:c3:24:58:ed:0b:ec:9c:9b:99:91:b3:5c:e5:ab: ca:ea:4e:42:57:77:23:c3:fd:c4:80:b7:50:97:7a: f9:e0:9d:7e:b1:fc:7b:f7:c0:6d:dd:d5:b9:cf:fe: 46:00:26:d6:04:b7:00:14:87:84:97:13:0a:60:f9: 95:17:b7:4e:d2:cd:e6:e7:cb:58:82:56:45:e9:41: 38:eb:16:4c:18:3c:d2:5a:48:55:8b:c4:a6:b5:d1: b1:c8:73:0e:a4:ec:7a:47:51:2d:35:69:fb:bf:15: 50:55:6f:a0:df:26:48:32:79:6f:a3:bd:2e:f1:d3: d2:7d:55:bb:bc:bd:94:23:7b:a8:b1:f4:ab:ce:09: e4:2d:f4:ae:5b:a1:8b:a1:39:8e:85:44:7f:3f:e8: e6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:AF:45:58:C5:4C:A1:5F:07:EC:08:77:88:60:32:AA:7C:D8:6B:A4 X509v3 Authority Key Identifier: keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/1A7891D4FA3011E9BF5A291EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.179.144.0/23 Signature Algorithm: sha256WithRSAEncryption 18:9b:85:a1:e0:0e:0f:b1:48:65:b2:9e:fb:9c:ce:8f:44:b5: 6d:84:d9:c7:90:1c:a7:7a:a9:7b:bc:00:79:c2:06:f1:c7:04: d3:58:cf:39:ba:3e:d1:e3:75:e0:f8:65:6d:ac:d5:fa:f1:de: 61:1d:0d:10:a2:ac:2b:c0:e0:13:0e:8f:26:dd:82:c4:a6:c3: 6c:ed:47:d0:c9:f3:7f:74:a9:a5:1f:0d:87:06:cf:9d:14:89: 59:67:af:30:04:c3:6c:34:ed:1c:c5:e6:30:a0:68:d7:f7:97: 81:c2:0c:87:bf:36:ca:3f:64:31:e2:a7:f9:78:8a:93:7b:74: 46:55:51:d2:31:3d:1d:9c:72:52:b4:5a:cc:f3:b3:ac:1a:c7: 42:ff:a1:b8:c3:65:24:48:ee:d1:db:45:76:88:86:84:4e:c8: 68:a0:79:73:8c:f5:4f:35:2f:55:72:fd:96:14:40:dc:ea:1e: 3c:88:96:ff:ea:c4:39:4f:f6:00:70:a3:31:75:ee:06:05:91: 47:9c:93:44:b5:d6:79:5d:4b:de:e0:d9:2c:c4:ec:31:af:bc: 76:83:66:d0:44:ed:1c:99:f1:54:d0:59:e5:fa:df:0a:89:a1: 79:40:73:97:f1:0e:7e:27:23:55:19:3c:1a:aa:3f:11:39:80: c7:f8:99:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGREUxMTAvBgNVBAUTKDk2NjlDRDVCM0Q4NzM1ODE1QTY1RDY1OUYyNzQxQjQz RTY0NzMyQjIwHhcNMjQxMDI0MTQzMDM0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhNWEwYS03NDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxGE8qtC09B1tBE7mPEqtHYsaH+9ZTi1fQt0vXOo89tOJaKRKsOrrDrdwd0k 1eb3Eo8ZOWIyDO01EtNA8GBLP2/ZWigDdmRQkJbe7b2orfL4lGlPDoOjUoos4Upm NqW5sMydt9J25i4awyRY7QvsnJuZkbNc5avK6k5CV3cjw/3EgLdQl3r54J1+sfx7 98Bt3dW5z/5GACbWBLcAFIeElxMKYPmVF7dO0s3m58tYglZF6UE46xZMGDzSWkhV i8SmtdGxyHMOpOx6R1EtNWn7vxVQVW+g3yZIMnlvo70u8dPSfVW7vL2UI3uosfSr zgnkLfSuW6GLoTmOhUR/P+jmqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKmvRVjF TKFfB+wId4hgMqp82GukMB8GA1UdIwQYMBaAFJZpzVs9hzWBWmXWWfJ0G0PmRzKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUZERS9DQzQ1RUNBODFE ODQxMUUyOTU2RDAzREIwOEIwMkNEMi9sbW5OV3oySE5ZRmFaZFpaOG5RYlEtWkhN ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xtbk5XejJITllGYVpkWlo4blFiUS1aSE1ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGREUvQ0M0NUVDQTgxRDg0MTFFMjk1NkQwM0RCMDhCMDJDRDIvMUE3ODkxRDRG QTMwMTFFOUJGNUEyOTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF2s5AwDQYJKoZIhvcNAQELBQADggEBABibhaHgDg+xSGWy nvuczo9EtW2E2ceQHKd6qXu8AHnCBvHHBNNYzzm6PtHjdeD4ZW2s1frx3mEdDRCi rCvA4BMOjybdgsSmw2ztR9DJ8390qaUfDYcGz50UiVlnrzAEw2w07RzF5jCgaNf3 l4HCDIe/Nso/ZDHip/l4ipN7dEZVUdIxPR2cclK0Wszzs6wax0L/objDZSRI7tHb RXaIhoROyGigeXOM9U81L1Vy/ZYUQNzqHjyIlv/qxDlP9gBwozF17gYFkUeck0S1 1nldS97g2SzE7DGvvHaDZtBE7RyZ8VTQWeX63wqJoXlAc5fxDn4nI1UZPBqqPxE5 gMf4mUw= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:39 2024 by rpki-client on console-fra.rpki-client.org