$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa File: A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa (raw, json) Hash identifier: 0JdU+wW3DbLqDAlaRW55sQz+ueavKSofaRZwuHvmJ1Y= Subject key identifier: 46:98:F5:F2:CB:E2:97:DE:48:13:D7:1C:EA:B9:99:8B:BF:DF:E1:6E Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 09DA Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa Signing time: Thu 12 Oct 2023 20:28:08 +0000 ROA not before: Thu 12 Oct 2023 20:28:08 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136758 IP address blocks: 58.84.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2522 (0x9da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: Oct 12 20:28:08 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652856d8-6526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:84:aa:37:72:ab:35:e9:ec:02:16:33:c9:2c: f9:a2:f7:a2:a0:69:2a:c1:6d:56:d0:60:af:01:08: fa:74:4a:f1:7a:b7:b1:42:15:4d:ca:1f:a4:78:db: d8:38:3a:54:6c:96:d9:98:ab:82:fe:28:73:75:bb: d1:dd:a2:4e:74:70:09:26:27:9f:a3:31:13:92:2c: 78:66:c3:43:38:1b:80:5f:f8:67:b9:9e:a7:14:b8: 77:67:7d:3a:a1:3e:8f:9f:34:f1:ef:cd:c0:11:6c: dc:dd:af:6b:32:f3:2e:04:53:6c:c9:66:6c:1e:60: db:14:bc:db:30:65:69:fe:93:80:87:b4:fc:72:c3: 53:1c:65:eb:e2:b3:a1:e1:9c:97:31:0c:7d:12:fc: bd:61:56:73:3f:66:f7:14:eb:04:c9:d9:6a:a6:70: e9:f1:1b:d3:8d:9d:57:bb:79:07:97:68:a1:a9:01: c9:34:33:4e:96:15:ba:33:9d:38:c1:07:3f:6e:6e: 52:9e:32:a4:7e:ee:1a:df:bb:f9:e9:5e:5f:de:19: c2:40:4f:02:92:64:e8:6a:f3:c1:59:12:b7:f8:50: 13:f7:1f:22:85:fb:4d:fb:78:25:aa:ff:de:21:68: 85:90:08:da:2a:f6:5f:ce:98:87:17:e3:13:26:47: 1d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:98:F5:F2:CB:E2:97:DE:48:13:D7:1C:EA:B9:99:8B:BF:DF:E1:6E X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.5.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:dd:d6:51:0f:d5:2b:8d:03:9d:76:f9:bc:87:69:75:46:00: 47:da:cf:fe:5a:69:eb:3f:09:66:6a:db:f3:8a:dd:98:dd:63: 4d:8a:4d:54:e8:da:5a:f6:5f:06:1a:7f:53:1d:82:ce:2d:b2: 13:b0:a5:3c:4f:67:b3:13:be:fb:b1:a0:fe:73:97:4c:61:70: 01:67:b2:f5:b5:61:a3:a3:ab:a1:7d:3a:4b:3f:d3:82:d7:96: 78:7a:ba:46:a7:b3:22:90:e9:6e:80:03:e1:00:a0:3b:f2:02: 0e:2f:52:de:95:20:db:ba:7f:0a:9e:5c:42:f9:ca:65:19:75: 52:c8:aa:9c:c3:ba:fc:be:50:c3:8e:09:e1:d3:48:3a:41:52: 3b:97:d5:8a:87:4b:06:18:fd:81:57:a3:1a:1c:55:b7:11:c8: b1:7d:f5:fa:46:22:a1:9c:04:0e:25:3e:7a:76:55:ef:19:51: 5f:19:f8:d0:e5:2c:4c:b8:9b:b1:38:f8:79:b0:08:26:84:e1: 77:07:d1:d8:ae:96:0b:41:c1:88:18:ee:d4:f8:3a:3d:f4:5a: 0f:4e:4e:d5:17:d9:ce:9f:4a:4f:87:66:10:8e:85:d9:75:a1: b9:b7:6a:5b:11:59:72:e3:e0:84:75:18:59:d5:2a:d8:8b:10: e6:1c:ca:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjMxMDEyMjAyODA4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4NTZkOC02NTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YSqN3KrNensAhYzySz5oveioGkqwW1W0GCvAQj6dErxerexQhVNyh+keNvY ODpUbJbZmKuC/ihzdbvR3aJOdHAJJiefozETkix4ZsNDOBuAX/hnuZ6nFLh3Z306 oT6PnzTx783AEWzc3a9rMvMuBFNsyWZsHmDbFLzbMGVp/pOAh7T8csNTHGXr4rOh 4ZyXMQx9Evy9YVZzP2b3FOsEydlqpnDp8RvTjZ1Xu3kHl2ihqQHJNDNOlhW6M504 wQc/bm5SnjKkfu4a37v56V5f3hnCQE8CkmToavPBWRK3+FAT9x8ihftN+3glqv/e IWiFkAjaKvZfzpiHF+MTJkcdzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEaY9fLL 4pfeSBPXHOq5mYu/3+FuMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI1REMvNDYxMkQ1MUU0MzE2MTFFQUIyNjI3ODFEQzRGOUFFMDIvQTJERTVCNDRB RTFDMTFFQUE0NkRBRjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6VAUwDQYJKoZIhvcNAQELBQADggEBADrd1lEP1SuNA512 +byHaXVGAEfaz/5aaes/CWZq2/OK3ZjdY02KTVTo2lr2XwYaf1Mdgs4tshOwpTxP Z7MTvvuxoP5zl0xhcAFnsvW1YaOjq6F9Oks/04LXlnh6ukansyKQ6W6AA+EAoDvy Ag4vUt6VINu6fwqeXEL5ymUZdVLIqpzDuvy+UMOOCeHTSDpBUjuX1YqHSwYY/YFX oxocVbcRyLF99fpGIqGcBA4lPnp2Ve8ZUV8Z+NDlLEy4m7E4+HmwCCaE4XcH0diu lgtBwYgY7tT4Oj30Wg9OTtUX2c6fSk+HZhCOhdl1obm3alsRWXLj4IR1GFnVKtiL EOYcyoY= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:11 2024 by rpki-client on console-ams.rpki-client.org