$ rpki-client -vvf rpki.apnic.net/member_repository/A9122C94/6AE202A6A1D011EB92A2DF29C4F9AE02/DFA876BAA1D011EB909F3352C4F9AE02.roa File: DFA876BAA1D011EB909F3352C4F9AE02.roa (raw, json) Hash identifier: oVudccPOaDYuUIVgempDTFWRQaGpPoQZX7ZN4yh9LeQ= Subject key identifier: F8:62:D0:FF:9B:44:0D:BC:2D:87:E0:F3:DD:52:95:62:1F:AB:F1:91 Certificate issuer: /CN=A9122C94/serialNumber=91772A9A6C39719F8A6E6971636D484EDE43A650 Certificate serial: 04E7 Authority key identifier: 91:77:2A:9A:6C:39:71:9F:8A:6E:69:71:63:6D:48:4E:DE:43:A6:50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kXcqmmw5cZ-KbmlxY21ITt5DplA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122C94/6AE202A6A1D011EB92A2DF29C4F9AE02/DFA876BAA1D011EB909F3352C4F9AE02.roa Signing time: Sat 30 Sep 2023 22:40:17 +0000 ROA not before: Sat 30 Sep 2023 22:40:17 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133066 IP address blocks: 64.224.144.0/20 maxlen: 20 64.224.144.0/24 maxlen: 24 64.224.145.0/24 maxlen: 24 64.224.146.0/24 maxlen: 24 64.224.147.0/24 maxlen: 24 64.224.148.0/24 maxlen: 24 64.224.149.0/24 maxlen: 24 64.224.150.0/24 maxlen: 24 64.224.151.0/24 maxlen: 24 64.224.152.0/24 maxlen: 24 64.224.153.0/24 maxlen: 24 64.224.154.0/24 maxlen: 24 64.224.155.0/24 maxlen: 24 64.224.156.0/24 maxlen: 24 64.224.157.0/24 maxlen: 24 64.224.158.0/24 maxlen: 24 64.224.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122C94/6AE202A6A1D011EB92A2DF29C4F9AE02/kXcqmmw5cZ-KbmlxY21ITt5DplA.crl rsync://rpki.apnic.net/member_repository/A9122C94/6AE202A6A1D011EB92A2DF29C4F9AE02/kXcqmmw5cZ-KbmlxY21ITt5DplA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kXcqmmw5cZ-KbmlxY21ITt5DplA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1255 (0x4e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122C94/serialNumber=91772A9A6C39719F8A6E6971636D484EDE43A650 Validity Not Before: Sep 30 22:40:17 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6518a3d0-047a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:41:a2:63:ca:1f:df:f1:fb:b7:06:e3:26:7c: e4:42:a2:44:05:d8:08:e1:87:88:7a:28:a3:f2:61: 84:68:47:55:ab:1a:bb:77:fd:31:4c:64:8f:67:3d: 92:4d:f3:c4:95:1b:4e:7a:ee:5c:1d:c8:75:c6:e4: 40:ce:f3:8d:06:99:50:0e:8a:50:c7:99:42:ba:ce: 7c:2f:24:ea:8c:94:7a:a9:13:7e:b3:3a:87:86:3f: fc:1e:08:d3:34:2a:76:67:74:ee:86:be:b3:01:08: 6b:64:c4:7d:2b:53:af:95:65:0b:68:20:6b:41:8e: 49:38:87:17:d1:5b:7a:82:09:2a:89:05:c4:61:b9: 26:92:e2:68:ae:9e:50:4b:b9:d0:3a:f3:67:65:4f: 42:8d:6d:c4:e4:57:11:93:af:ca:56:fa:e3:08:84: 5a:55:d1:7e:1b:43:b3:04:9f:04:91:af:96:ff:09: e6:74:d2:6c:b7:71:6a:dc:c8:e4:a5:7d:5f:85:3c: 0f:86:31:d1:bb:16:a3:4d:fe:0a:9b:e5:c6:e2:a7: 77:6c:f3:22:fd:74:4e:4a:08:4c:33:6e:fc:b9:7b: eb:59:2e:0f:9e:fd:7b:36:d8:ae:dc:77:6d:cb:48: 5a:db:85:a0:04:46:d1:f2:ad:60:6f:95:fc:8a:c9: 50:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:62:D0:FF:9B:44:0D:BC:2D:87:E0:F3:DD:52:95:62:1F:AB:F1:91 X509v3 Authority Key Identifier: keyid:91:77:2A:9A:6C:39:71:9F:8A:6E:69:71:63:6D:48:4E:DE:43:A6:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122C94/6AE202A6A1D011EB92A2DF29C4F9AE02/kXcqmmw5cZ-KbmlxY21ITt5DplA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kXcqmmw5cZ-KbmlxY21ITt5DplA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122C94/6AE202A6A1D011EB92A2DF29C4F9AE02/DFA876BAA1D011EB909F3352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.224.144.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:e4:7f:f7:56:58:07:85:25:82:ab:71:d4:63:7f:68:d2:a9: 47:af:55:a6:9d:bb:95:b8:52:f3:ff:02:83:75:89:72:1f:85: d9:fd:bc:e9:35:ce:82:f8:90:0c:d5:cf:db:75:8e:14:57:f8: fe:cf:6e:33:2d:a2:a4:4e:f7:41:ce:56:94:bd:e7:34:53:48: dd:22:a4:ac:67:62:75:2e:31:5f:65:9d:8e:9b:68:c7:d4:59: 8e:c8:48:1e:43:66:2d:25:1b:56:29:c3:ff:91:b2:35:3c:4d: 86:ce:81:42:ca:0f:22:29:ab:f8:ee:22:a0:1b:9c:5f:34:8b: f1:4c:4e:aa:c3:ae:b2:d0:0a:09:2b:eb:2b:3f:53:bd:9c:e6: 5d:2a:f4:6f:49:e6:14:e8:f6:8a:c9:e8:ec:92:3f:c4:93:37: 5d:ae:3c:ac:eb:6b:41:4a:fc:3d:10:15:48:d3:d7:1e:70:28: 8b:99:86:a3:ed:c7:cb:79:80:fa:82:cc:5c:21:4b:78:cb:48: 61:c0:94:49:a9:c6:dd:77:4b:fe:d4:8d:1d:83:ec:83:2a:02: 4e:d9:4a:bd:d1:54:48:4f:c5:1d:04:64:3c:51:56:1d:52:52: 80:e4:16:9c:12:fd:38:2f:53:4a:e7:9c:73:c9:0c:c3:d3:a8: 1d:e8:10:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJDOTQxMTAvBgNVBAUTKDkxNzcyQTlBNkMzOTcxOUY4QTZFNjk3MTYzNkQ0ODRF REU0M0E2NTAwHhcNMjMwOTMwMjI0MDE3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE4YTNkMC0wNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkGiY8of3/H7twbjJnzkQqJEBdgI4YeIeiij8mGEaEdVqxq7d/0xTGSPZz2S TfPElRtOeu5cHch1xuRAzvONBplQDopQx5lCus58LyTqjJR6qRN+szqHhj/8HgjT NCp2Z3Tuhr6zAQhrZMR9K1OvlWULaCBrQY5JOIcX0Vt6ggkqiQXEYbkmkuJorp5Q S7nQOvNnZU9CjW3E5FcRk6/KVvrjCIRaVdF+G0OzBJ8Eka+W/wnmdNJst3Fq3Mjk pX1fhTwPhjHRuxajTf4Km+XG4qd3bPMi/XROSghMM278uXvrWS4Pnv17Ntiu3Hdt y0ha24WgBEbR8q1gb5X8islQaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPhi0P+b RA28LYfg891SlWIfq/GRMB8GA1UdIwQYMBaAFJF3KppsOXGfim5pcWNtSE7eQ6ZQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkM5NC82QUUyMDJBNkEx RDAxMUVCOTJBMkRGMjlDNEY5QUUwMi9rWGNxbW13NWNaLUtibWx4WTIxSVR0NURw bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tYY3FtbXc1Y1otS2JtbHhZMjFJVHQ1RHBsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJDOTQvNkFFMjAyQTZBMUQwMTFFQjkyQTJERjI5QzRGOUFFMDIvREZBODc2QkFB MUQwMTFFQjkwOUYzMzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARA4JAwDQYJKoZIhvcNAQELBQADggEBAC3kf/dWWAeFJYKr cdRjf2jSqUevVaadu5W4UvP/AoN1iXIfhdn9vOk1zoL4kAzVz9t1jhRX+P7PbjMt oqRO90HOVpS95zRTSN0ipKxnYnUuMV9lnY6baMfUWY7ISB5DZi0lG1Ypw/+RsjU8 TYbOgULKDyIpq/juIqAbnF80i/FMTqrDrrLQCgkr6ys/U72c5l0q9G9J5hTo9orJ 6OySP8STN12uPKzra0FK/D0QFUjT1x5wKIuZhqPtx8t5gPqCzFwhS3jLSGHAlEmp xt13S/7UjR2D7IMqAk7ZSr3RVEhPxR0EZDxRVh1SUoDkFpwS/TgvU0rnnHPJDMPT qB3oEKI= -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:08 2024 by rpki-client on console-ams.rpki-client.org