$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/C276060084F011EF9D52F573C4F9AE02.roa File: C276060084F011EF9D52F573C4F9AE02.roa (raw, json) Hash identifier: hxIYLbruoqfDi/xrn9CXp1sbfMBKSVxgZzJC+/gZxDY= Subject key identifier: E8:4B:6B:F5:E2:EB:51:06:98:5A:62:87:DF:35:B0:6B:64:AF:20:20 Certificate issuer: /CN=A919F525/serialNumber=FBFF88ADE9936689B324145BFE63B74D57AAAC0B Certificate serial: 14 Authority key identifier: FB:FF:88:AD:E9:93:66:89:B3:24:14:5B:FE:63:B7:4D:57:AA:AC:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_-IremTZomzJBRb_mO3TVeqrAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/C276060084F011EF9D52F573C4F9AE02.roa Signing time: Wed 23 Oct 2024 00:07:59 +0000 ROA not before: Wed 23 Oct 2024 00:07:59 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 17542 IP address blocks: 202.36.134.0/24 maxlen: 24 202.36.135.0/24 maxlen: 24 202.50.206.0/24 maxlen: 24 202.50.207.0/24 maxlen: 24 202.50.220.0/24 maxlen: 24 202.50.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/-_-IremTZomzJBRb_mO3TVeqrAs.crl rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/-_-IremTZomzJBRb_mO3TVeqrAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_-IremTZomzJBRb_mO3TVeqrAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525/serialNumber=FBFF88ADE9936689B324145BFE63B74D57AAAC0B Validity Not Before: Oct 23 00:07:59 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67183e5f-8fcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:97:5a:38:5e:82:98:37:cb:ac:1b:68:52:c4: 1b:8b:7d:68:6d:de:2a:29:2c:01:fa:af:99:54:5e: 34:76:45:fd:05:ca:c6:c7:8e:44:d8:39:39:b1:77: 46:19:c7:f0:03:ab:cf:b9:93:5d:6d:45:2a:fb:35: d4:58:64:74:c1:c9:ed:82:8e:75:21:3a:6b:2a:b8: 66:38:0a:82:01:75:b5:95:36:92:a6:be:66:a1:6a: ba:cf:f8:ca:df:9c:35:3f:6c:f0:3e:73:bf:1e:c8: fe:56:38:df:86:56:6d:03:94:87:41:d7:0e:ca:75: 0d:61:0e:8e:1d:ed:60:13:79:fa:64:02:20:fe:8c: de:87:59:a1:90:0c:36:30:88:c0:91:36:5a:38:5d: 3e:58:c9:c4:3d:e6:f9:4d:39:ad:ad:c4:99:6e:97: e5:ae:36:21:2e:e9:07:9f:80:10:09:fc:93:09:8a: 5c:8e:90:9c:d4:5d:b0:a6:bd:d8:ef:03:42:8a:ad: 7e:a5:e7:86:2b:3b:55:7d:97:61:16:b1:89:00:8c: 8d:79:f3:78:36:53:18:80:ce:4c:7b:5a:47:3a:4e: c9:80:04:c6:d3:09:63:b7:55:62:4f:ce:dc:9d:6b: 2f:c2:f8:92:55:1e:71:65:31:98:3c:c3:fa:86:58: 48:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4B:6B:F5:E2:EB:51:06:98:5A:62:87:DF:35:B0:6B:64:AF:20:20 X509v3 Authority Key Identifier: keyid:FB:FF:88:AD:E9:93:66:89:B3:24:14:5B:FE:63:B7:4D:57:AA:AC:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/-_-IremTZomzJBRb_mO3TVeqrAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_-IremTZomzJBRb_mO3TVeqrAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/C276060084F011EF9D52F573C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.134.0/23 202.50.206.0/23 202.50.220.0/24 202.50.222.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ac:4e:a2:ff:a7:8d:bb:d9:df:0c:f0:ba:be:d8:a2:56:18: 0a:c8:69:73:4d:c5:12:89:60:93:fb:3e:f7:1f:1c:89:50:ff: be:64:26:df:68:b2:b7:b9:3e:53:57:8b:31:8e:14:65:37:eb: 0f:de:4a:f8:04:a3:81:18:fe:82:5f:a8:7c:11:54:51:6c:c3: c5:0e:41:08:af:34:b5:7b:00:69:80:36:f7:22:ab:f9:74:a2: a8:a8:f1:4a:b4:07:4b:29:fa:01:fd:be:af:fb:23:56:dd:ef: 35:76:f5:40:91:b6:10:20:2a:59:14:9c:1b:cc:dc:f3:d5:42: 4f:72:ca:1e:21:b9:e5:08:35:e7:2e:94:8f:49:cd:7c:fb:6f: 1c:58:a0:db:d1:ff:55:a6:25:a4:ac:49:0e:f8:61:3d:98:b0: a9:c8:d4:1a:54:f8:45:50:ba:78:d0:8f:76:b4:15:43:a1:0c: 8c:04:cb:be:da:76:ad:87:f3:85:40:90:4f:46:b5:73:c3:cd: bc:52:ba:c6:4d:5d:00:64:81:99:7e:cc:c5:8a:5f:01:ec:a4: 3c:73:e1:34:b4:a7:89:7c:16:57:78:2c:ed:53:74:0a:9d:ff: 96:fd:c9:d7:50:5f:ca:4e:32:88:40:61:13:81:44:6e:6c:04: 5d:41:7b:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoRkJGRjg4QURFOTkzNjY4OUIzMjQxNDVCRkU2M0I3NEQ1 N0FBQUMwQjAeFw0yNDEwMjMwMDA3NTlaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTgzZTVmLThmY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCel1o4XoKYN8usG2hSxBuLfWht3iopLAH6r5lUXjR2Rf0FysbHjkTYOTmxd0YZ x/ADq8+5k11tRSr7NdRYZHTBye2CjnUhOmsquGY4CoIBdbWVNpKmvmaharrP+Mrf nDU/bPA+c78eyP5WON+GVm0DlIdB1w7KdQ1hDo4d7WATefpkAiD+jN6HWaGQDDYw iMCRNlo4XT5YycQ95vlNOa2txJlul+WuNiEu6QefgBAJ/JMJilyOkJzUXbCmvdjv A0KKrX6l54YrO1V9l2EWsYkAjI1583g2UxiAzkx7Wkc6TsmABMbTCWO3VWJPztyd ay/C+JJVHnFlMZg8w/qGWEi9AgMBAAGjggKnMIICozAdBgNVHQ4EFgQU6Etr9eLr UQaYWmKH3zWwa2SvICAwHwYDVR0jBBgwFoAU+/+IremTZomzJBRb/mO3TVeqrAsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0VBMDIzNDFDODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyLy1fLUlyZW1UWm9tekpCUmJfbU8zVFZlcXJB cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV8tSXJlbVRab216SkJSYl9tTzNUVmVxckFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FQTAyMzQxQzg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9DMjc2MDYwMDg0 RjAxMUVGOUQ1MkY1NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAcokhgMEAcoyzgMEAMoy3AMEAMoy3jANBgkqhkiG9w0BAQsF AAOCAQEAk6xOov+njbvZ3wzwur7YolYYCshpc03FEolgk/s+9x8ciVD/vmQm32iy t7k+U1eLMY4UZTfrD95K+ASjgRj+gl+ofBFUUWzDxQ5BCK80tXsAaYA29yKr+XSi qKjxSrQHSyn6Af2+r/sjVt3vNXb1QJG2ECAqWRScG8zc89VCT3LKHiG55Qg15y6U j0nNfPtvHFig29H/VaYlpKxJDvhhPZiwqcjUGlT4RVC6eNCPdrQVQ6EMjATLvtp2 rYfzhUCQT0a1c8PNvFK6xk1dAGSBmX7MxYpfAeykPHPhNLSniXwWV3gs7VN0Cp3/ lv3J11Bfyk4yiEBhE4FEbmwEXUF7/w== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:23 2024 by rpki-client on console-fra.rpki-client.org