$ rpki-client -vvf rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/E1769D329EF711EABE23195AC4F9AE02.roa File: E1769D329EF711EABE23195AC4F9AE02.roa (raw, json) Hash identifier: mFLSduXVt+Cg8oOMmJS9llC9LQD3WPgUnGy/oB2O8sY= Subject key identifier: 22:35:31:FA:C2:23:A8:C0:FC:4F:D5:83:A0:A4:CB:92:E2:3C:5A:6B Certificate issuer: /CN=A911B468/serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Certificate serial: 0D97 Authority key identifier: 83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/E1769D329EF711EABE23195AC4F9AE02.roa Signing time: Tue 02 Jan 2024 18:36:30 +0000 ROA not before: Tue 02 Jan 2024 18:36:30 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135006 IP address blocks: 59.152.32.0/24 maxlen: 24 59.152.33.0/24 maxlen: 24 59.152.34.0/24 maxlen: 24 59.152.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3479 (0xd97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B468/serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Validity Not Before: Jan 2 18:36:30 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659457ad-6baf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:26:6a:5e:68:3d:72:c9:63:85:ff:5b:5d:9d: 8f:db:40:da:e1:11:c8:85:df:27:a8:6a:c2:df:92: e3:e0:e1:ea:73:e8:c9:77:dc:34:49:ec:46:9d:64: 29:6c:b4:43:48:f4:47:c7:31:f2:c4:db:93:24:0a: ce:2c:49:2e:d1:18:7e:b0:ec:b6:7d:ff:9e:b6:5a: 9a:14:1a:76:de:33:00:66:79:22:44:8d:46:d1:37: 8d:ca:4f:7a:5f:42:0f:c4:d9:6e:ff:51:44:af:60: e9:36:a1:e3:40:71:ff:bf:cd:31:22:16:68:f2:a9: 64:88:b0:20:53:b9:29:7e:37:d0:91:ff:4f:38:fc: e4:39:27:be:a5:a0:6b:28:0f:85:93:1a:49:45:3e: 67:9b:83:74:1f:c6:85:58:12:2b:90:33:fe:a2:29: e7:91:53:71:0d:96:ec:43:dc:32:ec:8c:0d:75:e0: 48:40:71:1d:15:e3:82:33:d5:07:75:07:38:7a:12: 3c:dc:fe:23:f6:95:a2:8d:66:e4:d2:07:89:72:e8: 57:67:25:68:d4:1d:7c:2a:f5:05:b4:51:38:53:34: c6:fc:b2:b0:74:12:05:fd:c8:67:05:df:db:a1:13: 2a:93:68:19:f0:03:3b:4b:e5:4a:cd:96:c5:7f:38: be:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:35:31:FA:C2:23:A8:C0:FC:4F:D5:83:A0:A4:CB:92:E2:3C:5A:6B X509v3 Authority Key Identifier: keyid:83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/E1769D329EF711EABE23195AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.32.0/22 Signature Algorithm: sha256WithRSAEncryption 25:ee:c5:e3:e0:f5:a2:1d:35:60:e7:27:ac:63:bf:0b:4a:40: 29:89:7e:6d:61:46:a1:78:da:c5:83:4e:e8:f4:fe:1c:31:ae: e0:42:c6:b9:5a:d3:7d:a5:14:8a:7c:e7:53:02:c5:fa:d5:21: 90:23:c2:11:8f:e8:94:6a:3f:0d:d6:b9:ea:88:10:fc:c4:89: 41:2d:db:bc:33:1c:b6:25:72:37:30:52:19:bb:c5:fc:34:b7: 2e:ab:3f:e0:47:6e:23:1d:8a:1a:b8:46:1c:cc:8e:a8:f4:93: 0a:8e:ee:38:90:c4:c0:0b:c1:3a:2e:b1:bf:8f:19:ae:4f:58: e2:7f:a8:1f:2b:26:3e:29:78:cb:2b:d0:58:07:e7:dd:fd:5b: ac:df:4c:9f:ac:78:7f:eb:1f:98:63:05:05:78:39:1f:74:ad: 29:7e:cb:4f:5e:6a:01:34:29:76:bc:e8:21:ce:c2:e0:de:1c: 84:5c:42:29:42:f9:40:e7:9d:86:f4:62:d0:ca:d0:a6:2a:fd: 2d:af:8f:46:be:aa:b9:28:b6:db:0d:d8:bc:9e:b2:d7:a2:5b: f0:f6:e5:72:ba:79:5f:2c:c1:fc:a5:d7:1b:95:fa:6e:3c:7d: e0:c5:ea:bc:f4:97:f4:b3:e2:f8:50:ab:2f:c5:20:a4:7c:09: fa:4b:61:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0NjgxMTAvBgNVBAUTKDgzQkM3REQ1RDE0MjdFODMzNDBEMkRGNkMzM0I2MjNE NDNEN0VDQTQwHhcNMjQwMTAyMTgzNjMwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0NTdhZC02YmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyZqXmg9csljhf9bXZ2P20Da4RHIhd8nqGrC35Lj4OHqc+jJd9w0SexGnWQp bLRDSPRHxzHyxNuTJArOLEku0Rh+sOy2ff+etlqaFBp23jMAZnkiRI1G0TeNyk96 X0IPxNlu/1FEr2DpNqHjQHH/v80xIhZo8qlkiLAgU7kpfjfQkf9POPzkOSe+paBr KA+FkxpJRT5nm4N0H8aFWBIrkDP+oinnkVNxDZbsQ9wy7IwNdeBIQHEdFeOCM9UH dQc4ehI83P4j9pWijWbk0geJcuhXZyVo1B18KvUFtFE4UzTG/LKwdBIF/chnBd/b oRMqk2gZ8AM7S+VKzZbFfzi+pQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCI1MfrC I6jA/E/Vg6Cky5LiPFprMB8GA1UdIwQYMBaAFIO8fdXRQn6DNA0t9sM7Yj1D1+yk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQ2OC84MTIyNjAyODkx MUIxMUU5OTMwMEZFNTdDNEY5QUUwMi9nN3g5MWRGQ2ZvTTBEUzMyd3p0aVBVUFg3 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3eDkxZEZDZm9NMERTMzJ3enRpUFVQWDdLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0NjgvODEyMjYwMjg5MTFCMTFFOTkzMDBGRTU3QzRGOUFFMDIvRTE3NjlEMzI5 RUY3MTFFQUJFMjMxOTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI7mCAwDQYJKoZIhvcNAQELBQADggEBACXuxePg9aIdNWDn J6xjvwtKQCmJfm1hRqF42sWDTuj0/hwxruBCxrla032lFIp851MCxfrVIZAjwhGP 6JRqPw3WueqIEPzEiUEt27wzHLYlcjcwUhm7xfw0ty6rP+BHbiMdihq4RhzMjqj0 kwqO7jiQxMALwTousb+PGa5PWOJ/qB8rJj4peMsr0FgH5939W6zfTJ+seH/rH5hj BQV4OR90rSl+y09eagE0KXa86CHOwuDeHIRcQilC+UDnnYb0YtDK0KYq/S2vj0a+ qrkottsN2LyesteiW/D25XK6eV8swfyl1xuV+m48feDF6rz0l/Sz4vhQqy/FIKR8 CfpLYcM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:56 2024 by rpki-client on console-ams.rpki-client.org