$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa File: 43CE5D5A236911EEAC33285DC4F9AE02.roa (raw, json) Hash identifier: YuiwbgR3zXrhn6atY6Svsl1gSuOdJzz2sPUCmfCfO0g= Subject key identifier: EF:3C:98:D5:E5:67:87:A1:3F:15:2F:39:03:53:63:78:0C:80:07:41 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 8E Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa Signing time: Tue 05 Dec 2023 05:35:42 +0000 ROA not before: Tue 05 Dec 2023 05:35:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9328 IP address blocks: 161.152.0.0/16 maxlen: 16 192.112.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Dec 5 05:35:42 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656eb6ae-94f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4c:f0:63:8c:98:34:f2:8a:b2:a6:cd:a0:44: c6:a5:b5:7d:96:64:50:5b:d9:d1:47:42:25:51:be: 2f:20:ec:b5:a6:04:74:45:df:9d:aa:65:04:fb:fd: 3f:9d:bb:74:d0:5c:0d:d5:69:97:59:b4:29:58:9a: 30:9c:18:70:36:6d:2a:17:3b:d2:12:b3:d5:3b:c1: 4f:e7:14:b6:ad:20:77:00:14:a4:e8:05:4f:d4:cc: fe:d4:fe:98:7a:2b:99:f5:ce:d7:5c:b7:49:21:81: 27:28:36:77:55:32:88:c9:6c:0c:71:aa:d2:cb:ac: 6b:48:e6:b7:da:b4:72:db:c8:e5:41:15:e8:61:6e: 17:28:0c:4c:7c:79:47:2d:14:c6:fc:72:a2:b2:e7: 12:0b:c8:8c:7c:22:a3:fe:f6:61:3d:78:2f:ad:65: 47:d2:e3:97:d6:0b:47:ba:c7:ef:f1:4a:a3:37:5a: 08:aa:92:3e:cb:68:01:22:53:ac:e9:b3:6f:15:b5: 3b:43:4a:8d:16:4f:dc:5d:cd:cc:ed:ee:16:60:7b: 02:2a:d1:3e:11:c6:b5:60:30:8e:d6:0d:9f:36:04: f3:08:0c:85:d5:42:dd:c9:94:68:68:5d:b6:90:8f: 69:8e:13:82:d1:e2:2f:1b:01:ff:79:be:28:d9:a9: 8f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:3C:98:D5:E5:67:87:A1:3F:15:2F:39:03:53:63:78:0C:80:07:41 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/43CE5D5A236911EEAC33285DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.152.0.0/16 192.112.215.0/24 Signature Algorithm: sha256WithRSAEncryption 36:b7:3f:b9:d0:e9:92:a5:9e:9d:6c:83:76:0e:da:e2:6e:8e: ab:f4:aa:70:86:ac:0b:e1:08:57:fc:b7:60:fa:6f:bf:7b:70: be:99:ff:c5:09:81:99:b2:e4:7b:a4:a7:30:d4:a8:fd:17:53: 94:3b:08:d9:7d:7a:4b:e5:9c:ac:ac:19:58:42:1e:35:c5:93: ac:dc:e3:46:34:04:d5:72:0c:94:ce:56:e1:44:3f:f0:ba:e6: 1f:54:46:1f:c7:2d:81:64:07:d2:5e:74:21:95:cd:23:55:23: c8:e1:3f:8d:7c:40:8b:7e:d3:8a:2d:6b:a7:3f:5d:73:bd:75: 8f:d0:7c:7e:d4:f9:c8:fd:ba:22:f6:7c:e2:ee:c7:79:57:c9: 57:4f:29:3f:0e:d0:94:d5:db:59:5c:9b:72:48:fe:92:9e:69: 0e:8c:15:ef:df:35:44:45:89:6a:6a:27:9d:bf:3c:67:e1:ac: 2f:ec:b4:71:f1:4f:18:0a:4b:13:02:94:dd:1b:50:55:c3:a0: 83:3c:1a:bf:a0:14:f0:dd:de:76:c3:fc:6f:69:54:80:49:a9: d2:a4:a0:09:14:f3:5b:51:8f:a5:6c:d4:0a:66:85:04:73:a6: 9d:b6:ee:6e:dd:8e:fa:34:b1:1a:ac:dd:32:82:d1:60:ab:9c: 34:8c:f1:cd -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjMxMjA1MDUzNTQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlYjZhZS05NGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0zwY4yYNPKKsqbNoETGpbV9lmRQW9nRR0IlUb4vIOy1pgR0Rd+dqmUE+/0/ nbt00FwN1WmXWbQpWJownBhwNm0qFzvSErPVO8FP5xS2rSB3ABSk6AVP1Mz+1P6Y eiuZ9c7XXLdJIYEnKDZ3VTKIyWwMcarSy6xrSOa32rRy28jlQRXoYW4XKAxMfHlH LRTG/HKisucSC8iMfCKj/vZhPXgvrWVH0uOX1gtHusfv8UqjN1oIqpI+y2gBIlOs 6bNvFbU7Q0qNFk/cXc3M7e4WYHsCKtE+Eca1YDCO1g2fNgTzCAyF1ULdyZRoaF22 kI9pjhOC0eIvGwH/eb4o2amPUwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFO88mNXl Z4ehPxUvOQNTY3gMgAdBMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkREMTUvQkRBREE4NjBDQzUyMTFFREE4MjkxRDEwQzRGOUFFMDIvNDNDRTVENUEy MzY5MTFFRUFDMzMyODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwChmAMEAMBw1zANBgkqhkiG9w0BAQsFAAOCAQEANrc/udDp kqWenWyDdg7a4m6Oq/SqcIasC+EIV/y3YPpvv3twvpn/xQmBmbLke6SnMNSo/RdT lDsI2X16S+WcrKwZWEIeNcWTrNzjRjQE1XIMlM5W4UQ/8LrmH1RGH8ctgWQH0l50 IZXNI1UjyOE/jXxAi37Tii1rpz9dc711j9B8ftT5yP26IvZ84u7HeVfJV08pPw7Q lNXbWVybckj+kp5pDowV7981REWJamonnb88Z+GsL+y0cfFPGApLEwKU3RtQVcOg gzwav6AU8N3edsP8b2lUgEmp0qSgCRTzW1GPpWzUCmaFBHOmnbbubt2O+jSxGqzd MoLRYKucNIzxzQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:29 2024 by rpki-client on console-fra.rpki-client.org