$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa File: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (raw, json) Hash identifier: U7p9aKGEQK29Hcqzz/d/pwnadJpBE++yd4M/suCuGCU= Subject key identifier: 43:51:6A:6A:A2:F0:81:18:4F:A3:05:14:84:21:7F:AE:39:B0:EA:DB Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1CAA Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa Signing time: Sun 06 Aug 2023 15:52:19 +0000 ROA not before: Sun 06 Aug 2023 15:52:19 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 17887 IP address blocks: 180.128.252.0/22 maxlen: 22 180.128.252.0/23 maxlen: 23 180.128.252.0/24 maxlen: 24 180.128.253.0/24 maxlen: 24 180.128.254.0/23 maxlen: 23 180.128.254.0/24 maxlen: 24 180.128.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 16:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7338 (0x1caa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Aug 6 15:52:19 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cfc1b3-8a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b1:58:aa:fe:37:b3:b2:b7:96:b8:41:5b:de: a0:e1:a8:ad:83:07:6b:20:a1:80:61:39:74:db:9b: c8:ab:3b:0e:bf:91:db:b1:ec:17:11:74:7b:0a:59: 5c:4a:91:3e:85:6c:63:2c:f5:98:69:53:d0:d4:c2: 2b:4e:20:63:e9:a2:f9:7a:ab:20:c6:a1:05:e5:d0: 95:dd:0a:3a:0c:34:7c:10:96:72:3c:23:56:56:0e: 97:a7:bb:ff:70:cc:da:71:1f:5a:d5:93:3f:c7:6f: 05:b5:5c:52:49:dc:fa:ab:4d:b3:28:4e:c3:75:d7: 79:35:54:a7:cf:23:e2:88:94:bc:ee:ab:35:99:f7: b0:50:b4:a5:b5:aa:6a:bf:47:dc:ea:c6:3e:dc:c7: 30:9a:63:8c:05:39:6a:d6:88:a8:f2:d8:71:06:a5: ac:8d:b4:d7:28:e7:54:9c:aa:7b:f2:72:93:68:b4: 0f:90:53:60:74:3f:e4:fc:42:a8:aa:e4:e0:f3:32: 4f:63:56:28:18:18:dc:08:f4:5d:85:b6:21:32:d6: 9f:05:11:65:c7:a4:ae:f8:a6:e4:86:5c:01:c8:01: 33:2a:b7:a2:49:97:39:ba:c2:9b:22:73:76:5e:b5: 61:60:b2:79:ef:42:9b:2e:06:7f:ea:e9:d3:d6:fa: 06:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:51:6A:6A:A2:F0:81:18:4F:A3:05:14:84:21:7F:AE:39:B0:EA:DB X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.128.252.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:90:99:f5:31:b9:f7:f0:c2:a4:14:b8:8b:16:31:bd:6e:37: 40:e7:0c:62:67:47:98:f2:35:87:38:89:b8:53:fe:8d:ff:c7: 6c:32:f1:2b:0d:fb:9f:6b:49:c5:0f:b7:c1:a8:be:b8:77:dd: f2:02:df:0d:c4:1a:13:8a:0b:27:73:a8:0d:e5:dc:d7:a8:e1: da:7c:ce:64:2a:33:86:e0:62:49:4b:35:b3:72:25:9a:0d:90: 47:c4:bc:26:af:d9:9f:55:fa:69:20:65:a3:58:21:48:8b:e7: 87:c8:85:45:64:53:72:33:36:d2:0b:61:c9:f1:d7:03:28:66: 5e:d5:ff:d3:d6:77:9a:4c:8f:6c:be:89:f8:1e:4a:d4:f0:8c: a8:7a:8f:b8:c6:34:e6:dd:da:a2:5e:df:06:2f:80:be:32:af: d3:36:dd:66:59:38:b1:d8:6c:f8:fc:2a:9a:ca:0c:23:26:c5: 95:d6:7c:76:a9:9c:5f:2d:5b:98:1c:06:18:87:e5:2b:70:90: b9:5a:5f:14:16:b5:50:e9:f1:f6:06:e1:9f:aa:6c:ca:ea:f3: 30:fd:f4:f3:4a:02:97:65:1c:5a:19:20:9f:34:44:63:62:6d: 85:54:7b:b4:65:7c:38:f0:f0:05:1c:a8:c1:cf:12:4a:c5:2b: 27:03:c9:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjMwODA2MTU1MjE5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNmYzFiMy04YTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7FYqv43s7K3lrhBW96g4aitgwdrIKGAYTl025vIqzsOv5HbsewXEXR7Cllc SpE+hWxjLPWYaVPQ1MIrTiBj6aL5eqsgxqEF5dCV3Qo6DDR8EJZyPCNWVg6Xp7v/ cMzacR9a1ZM/x28FtVxSSdz6q02zKE7Dddd5NVSnzyPiiJS87qs1mfewULSltapq v0fc6sY+3McwmmOMBTlq1oio8thxBqWsjbTXKOdUnKp78nKTaLQPkFNgdD/k/EKo quTg8zJPY1YoGBjcCPRdhbYhMtafBRFlx6Su+KbkhlwByAEzKreiSZc5usKbInN2 XrVhYLJ570KbLgZ/6unT1voGyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFENRamqi 8IEYT6MFFIQhf645sOrbMB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCREQvM0FFMDA0QjRENzc4MTFFNEIzNzc4QjcyQzRGOUFFMDIvNEVCODE0QkE4 RjY3MTFFNkE1MDlDOTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK0gPwwDQYJKoZIhvcNAQELBQADggEBAB+QmfUxuffwwqQU uIsWMb1uN0DnDGJnR5jyNYc4ibhT/o3/x2wy8SsN+59rScUPt8Govrh33fIC3w3E GhOKCydzqA3l3Neo4dp8zmQqM4bgYklLNbNyJZoNkEfEvCav2Z9V+mkgZaNYIUiL 54fIhUVkU3IzNtILYcnx1wMoZl7V/9PWd5pMj2y+ifgeStTwjKh6j7jGNObd2qJe 3wYvgL4yr9M23WZZOLHYbPj8KprKDCMmxZXWfHapnF8tW5gcBhiH5StwkLlaXxQW tVDp8fYG4Z+qbMrq8zD99PNKApdlHFoZIJ80RGNibYVUe7RlfDjw8AUcqMHPEkrF KycDyeA= -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:43 2024 by rpki-client on console-fra.rpki-client.org