$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa File: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (raw, json) Hash identifier: U4XP+q4YcB/6cfAS39rgiX5WO5DuizysSejbMFJaGr0= Subject key identifier: 4C:1E:D6:5A:D3:65:A9:15:EA:10:2B:53:7F:5C:C6:EB:A0:C5:C4:28 Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: D5 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa Signing time: Fri 03 May 2024 06:49:37 +0000 ROA not before: Fri 03 May 2024 06:49:37 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 116.197.148.0/24 maxlen: 24 116.197.150.0/24 maxlen: 24 116.197.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: May 3 06:49:37 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66348901-3616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f5:8a:7e:ca:5e:b8:6c:2f:82:e4:ef:bc:64: bd:28:d1:61:b5:ac:cd:4e:ad:07:ef:1b:a4:88:6b: 86:b2:13:f5:45:66:36:f8:0c:6f:75:85:77:04:1c: 78:0f:e1:08:64:a6:47:31:1b:1f:ec:eb:84:ca:5d: de:e1:69:67:f8:b1:f7:a3:5e:e1:b4:c0:15:f8:04: ad:16:9c:34:9c:f3:3b:b3:f2:8e:d9:5f:50:4d:1d: cd:74:bc:56:d9:8b:03:a8:d8:00:4c:61:12:08:9e: 90:51:52:38:fe:4c:8a:98:46:e0:2b:8e:c7:4c:11: 87:59:aa:17:62:1c:61:58:67:b8:b5:c3:9f:85:d3: f1:eb:82:0a:4e:d5:a5:37:82:b2:d7:37:10:f3:56: cc:ce:85:c4:63:c7:43:ce:03:b4:a8:7a:77:89:eb: 14:c7:75:50:02:19:5f:f5:82:9e:a1:8f:8f:99:34: 00:af:b7:11:25:81:f4:3c:0b:36:5b:c3:bc:6e:95: f0:4c:ac:b3:95:b8:9d:07:5b:23:9d:93:20:d3:3d: 17:50:2c:cd:58:39:e0:75:4d:98:fe:bf:e7:10:e8: 09:16:ae:73:1e:0c:24:55:9f:c2:8b:ec:97:4d:3a: d1:76:c4:51:86:54:df:45:07:98:8d:2a:6a:dd:16: b3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1E:D6:5A:D3:65:A9:15:EA:10:2B:53:7F:5C:C6:EB:A0:C5:C4:28 X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.197.148.0/24 116.197.150.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:24:aa:8d:56:af:0c:8e:08:f1:b1:21:32:07:e7:24:e1:d9: 1b:21:2d:0e:f3:9e:b4:be:2b:9c:19:8b:e7:a4:e5:03:86:f2: 80:1e:be:fd:cb:cd:71:61:2c:6b:55:cf:d6:96:a5:4e:14:71: 5b:46:49:93:c1:e7:e3:f8:4b:fc:50:4b:a7:0a:7a:38:dd:9c: a2:d6:0a:f0:4f:45:17:2c:5d:85:be:da:af:41:7d:d1:bd:dc: 10:0e:34:bf:ad:73:2a:b5:c4:b4:18:9d:27:da:46:90:d3:f9: 50:64:c0:b4:b7:77:3c:23:83:a0:98:28:e2:35:56:38:c1:e2: 74:83:a1:9d:ee:39:38:22:07:29:5d:75:af:10:53:2e:e7:45: e6:cd:72:4e:ec:35:84:7c:18:7b:eb:bf:1b:2f:86:0f:1a:ac: 51:85:55:ed:87:e1:6f:fd:65:db:9b:2d:95:56:a4:14:42:54: 07:43:7d:fe:6f:e2:6a:9a:7d:80:ea:53:30:68:f2:3f:44:76: 1a:c6:99:35:5a:0a:b1:9d:ac:90:a7:d4:6e:94:69:f4:b9:df: c2:de:32:c9:56:93:9a:6f:47:5d:ee:d3:08:d8:d8:b3:30:ac: 20:1f:ff:1c:fe:39:3c:a4:5f:bf:6d:fb:34:97:8a:1c:01:11: 36:b8:40:51 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjQwNTAzMDY0OTM3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0ODkwMS0zNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufWKfspeuGwvguTvvGS9KNFhtazNTq0H7xukiGuGshP1RWY2+AxvdYV3BBx4 D+EIZKZHMRsf7OuEyl3e4Wln+LH3o17htMAV+AStFpw0nPM7s/KO2V9QTR3NdLxW 2YsDqNgATGESCJ6QUVI4/kyKmEbgK47HTBGHWaoXYhxhWGe4tcOfhdPx64IKTtWl N4Ky1zcQ81bMzoXEY8dDzgO0qHp3iesUx3VQAhlf9YKeoY+PmTQAr7cRJYH0PAs2 W8O8bpXwTKyzlbidB1sjnZMg0z0XUCzNWDngdU2Y/r/nEOgJFq5zHgwkVZ/Ci+yX TTrRdsRRhlTfRQeYjSpq3RazTQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEwe1lrT ZakV6hArU39cxuugxcQoMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY2NEYvMUUwODU0QUVERDdEMTFFRDkxQTA0NjREQzRGOUFFMDIvRDFEREZERUNE RDk4MTFFREIyQkJCQTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0xZQDBAF0xZYwDQYJKoZIhvcNAQELBQADggEBAGokqo1W rwyOCPGxITIH5yTh2RshLQ7znrS+K5wZi+ek5QOG8oAevv3LzXFhLGtVz9aWpU4U cVtGSZPB5+P4S/xQS6cKejjdnKLWCvBPRRcsXYW+2q9BfdG93BAONL+tcyq1xLQY nSfaRpDT+VBkwLS3dzwjg6CYKOI1VjjB4nSDoZ3uOTgiByldda8QUy7nRebNck7s NYR8GHvrvxsvhg8arFGFVe2H4W/9ZdubLZVWpBRCVAdDff5v4mqafYDqUzBo8j9E dhrGmTVaCrGdrJCn1G6UafS538LeMslWk5pvR13u0wjY2LMwrCAf/xz+OTykX79t +zSXihwBETa4QFE= -----END CERTIFICATE-----Generated at Sun May 5 08:21:04 2024 by rpki-client on console-ams.rpki-client.org