$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/A9D92784B0CA11E59BE6876FC4F9AE02.roa File: A9D92784B0CA11E59BE6876FC4F9AE02.roa (raw, json) Hash identifier: AfCIFlmq8DuQBiRlDgGTHO+ifcfq/EWKe3MQ5sPJrSg= Subject key identifier: 61:00:A5:57:18:82:45:F0:DA:FF:F3:DC:2A:01:5E:A3:F0:4F:32:72 Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Certificate serial: 34A5 Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/A9D92784B0CA11E59BE6876FC4F9AE02.roa Signing time: Thu 24 Oct 2024 14:30:38 +0000 ROA not before: Thu 24 Oct 2024 14:30:38 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55531 IP address blocks: 118.179.150.0/24 maxlen: 24 118.179.217.0/24 maxlen: 24 118.179.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13477 (0x34a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Validity Not Before: Oct 24 14:30:38 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671a5a0e-1391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c8:dd:1d:da:7d:be:b8:c1:df:f0:d1:ba:c0: a1:ce:fa:bd:bb:9f:9f:77:38:7c:99:aa:f2:6c:0a: 15:31:67:bc:13:85:1c:cf:9f:65:75:47:51:98:65: 2b:cd:77:ad:9a:d5:18:33:49:4a:ae:c0:d2:9f:70: 51:97:f7:84:9b:89:73:aa:25:b0:ba:1c:f2:82:19: 59:aa:40:fb:ee:f1:1e:d4:73:6e:f5:23:da:77:8f: 95:8d:dc:f4:5a:ba:45:e0:52:fd:ff:8c:d1:ad:1d: 00:1f:26:8e:bf:ea:ee:60:78:b4:45:d1:c9:5c:1c: 4f:b2:f4:3b:7e:ee:eb:b2:63:76:f7:90:b6:07:81: ff:c1:e8:80:63:1e:63:5d:26:f3:f1:d8:30:f8:29: 87:e4:75:76:5f:53:ec:c8:c0:08:f8:b7:68:1d:f4: 03:25:38:5a:4b:bd:99:28:b9:74:6d:b5:d5:21:1b: 31:4b:a1:0f:09:42:ae:f2:13:03:bf:4a:b4:59:87: 12:b9:09:15:28:0e:9a:17:21:6b:fc:5a:24:f4:b6: 0e:6f:35:17:64:be:d3:94:eb:84:90:07:4a:68:56: 26:d9:c1:fb:af:75:7b:84:ea:d3:0b:8c:28:51:d3: 76:36:d6:65:e4:8d:1e:5c:7e:3a:d6:24:32:0a:6c: ff:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:00:A5:57:18:82:45:F0:DA:FF:F3:DC:2A:01:5E:A3:F0:4F:32:72 X509v3 Authority Key Identifier: keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/A9D92784B0CA11E59BE6876FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.179.150.0/24 118.179.217.0-118.179.218.255 Signature Algorithm: sha256WithRSAEncryption c3:58:df:81:72:ba:fb:cf:c4:b7:53:d7:9e:d1:1d:8d:f0:8e: 88:fd:e3:c6:7a:13:6d:5f:3a:9f:44:35:ef:36:d1:fd:8d:ce: 68:44:dc:d8:11:56:81:b0:1f:5b:f2:60:aa:e7:aa:d1:e3:e0: 6a:2f:4e:41:d7:2b:4c:40:da:d4:2d:b9:4f:2a:5c:39:21:f8: 84:4f:28:0d:59:1f:b4:6a:53:40:7f:19:d4:49:76:72:dd:0c: f4:1d:8d:84:5c:9d:a7:69:61:ac:68:3e:df:54:44:57:21:e5: d6:13:45:19:51:8b:3c:85:0d:07:94:be:83:b6:87:39:07:a0: 63:15:2f:d5:a5:75:bd:94:a9:b8:63:c7:1d:70:75:44:a5:e8: ae:34:2a:17:4e:bd:3d:5a:6b:57:2c:e3:b7:66:18:6c:db:ca: 1a:ab:23:d6:d0:03:1f:53:b2:af:86:3d:09:1c:70:c5:a9:88: b6:39:68:c1:55:4b:3d:9b:04:69:59:c3:67:c4:4e:f8:56:58: 5d:a7:77:c8:e6:0f:6b:66:a7:9d:16:75:51:59:6e:bf:ce:d3: b4:ec:b7:92:d1:dd:c0:06:42:8e:1d:55:cb:5c:58:51:b4:9b: 21:e9:66:13:23:6c:e5:40:8e:d4:6b:ac:03:0b:19:20:2a:a9: c8:2f:4f:b9 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGREUxMTAvBgNVBAUTKDk2NjlDRDVCM0Q4NzM1ODE1QTY1RDY1OUYyNzQxQjQz RTY0NzMyQjIwHhcNMjQxMDI0MTQzMDM4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhNWEwZS0xMzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sjdHdp9vrjB3/DRusChzvq9u5+fdzh8marybAoVMWe8E4Ucz59ldUdRmGUr zXetmtUYM0lKrsDSn3BRl/eEm4lzqiWwuhzyghlZqkD77vEe1HNu9SPad4+Vjdz0 WrpF4FL9/4zRrR0AHyaOv+ruYHi0RdHJXBxPsvQ7fu7rsmN295C2B4H/weiAYx5j XSbz8dgw+CmH5HV2X1PsyMAI+LdoHfQDJThaS72ZKLl0bbXVIRsxS6EPCUKu8hMD v0q0WYcSuQkVKA6aFyFr/Fok9LYObzUXZL7TlOuEkAdKaFYm2cH7r3V7hOrTC4wo UdN2NtZl5I0eXH461iQyCmz/WQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGEApVcY gkXw2v/z3CoBXqPwTzJyMB8GA1UdIwQYMBaAFJZpzVs9hzWBWmXWWfJ0G0PmRzKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUZERS9DQzQ1RUNBODFE ODQxMUUyOTU2RDAzREIwOEIwMkNEMi9sbW5OV3oySE5ZRmFaZFpaOG5RYlEtWkhN ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xtbk5XejJITllGYVpkWlo4blFiUS1aSE1ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGREUvQ0M0NUVDQTgxRDg0MTFFMjk1NkQwM0RCMDhCMDJDRDIvQTlEOTI3ODRC MENBMTFFNTlCRTY4NzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAB2s5YwDAMEAHaz2QMEAHaz2jANBgkqhkiG9w0BAQsFAAOC AQEAw1jfgXK6+8/Et1PXntEdjfCOiP3jxnoTbV86n0Q17zbR/Y3OaETc2BFWgbAf W/Jgqueq0ePgai9OQdcrTEDa1C25TypcOSH4hE8oDVkftGpTQH8Z1El2ct0M9B2N hFydp2lhrGg+31REVyHl1hNFGVGLPIUNB5S+g7aHOQegYxUv1aV1vZSpuGPHHXB1 RKXorjQqF069PVprVyzjt2YYbNvKGqsj1tADH1Oyr4Y9CRxwxamItjlowVVLPZsE aVnDZ8RO+FZYXad3yOYPa2annRZ1UVluv87TtOy3ktHdwAZCjh1Vy1xYUbSbIelm EyNs5UCO1GusAwsZICqpyC9PuQ== -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:39 2024 by rpki-client on console-fra.rpki-client.org