$ rpki-client -vvf rpki.apnic.net/member_repository/A914284F/93085C80D7AE11EBA5EB316CC4F9AE02/C6E2CBD4558011EDA4773D7FC4F9AE02.roa File: C6E2CBD4558011EDA4773D7FC4F9AE02.roa (raw, json) Hash identifier: uNq0QpwIqft6l+P+6Kr1hZ6PT/drQw5jIwJZrCfNjqY= Subject key identifier: 30:58:B2:44:EB:93:C1:36:7B:D9:3A:49:19:B5:EC:C0:C5:36:0F:CB Certificate issuer: /CN=A914284F/serialNumber=27B7AA8E511E70D8A30BB36D02CAF085790C99C3 Certificate serial: 04AE Authority key identifier: 27:B7:AA:8E:51:1E:70:D8:A3:0B:B3:6D:02:CA:F0:85:79:0C:99:C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J7eqjlEecNijC7NtAsrwhXkMmcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914284F/93085C80D7AE11EBA5EB316CC4F9AE02/C6E2CBD4558011EDA4773D7FC4F9AE02.roa Signing time: Sat 03 Feb 2024 01:13:45 +0000 ROA not before: Sat 03 Feb 2024 01:13:45 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141468 IP address blocks: 156.16.0.0/16 maxlen: 16 158.40.0.0/16 maxlen: 17 158.40.0.0/24 maxlen: 24 158.40.1.0/24 maxlen: 24 158.40.2.0/23 maxlen: 24 158.40.4.0/23 maxlen: 24 158.40.6.0/23 maxlen: 24 158.40.8.0/23 maxlen: 24 158.40.10.0/23 maxlen: 23 158.40.12.0/22 maxlen: 22 158.40.16.0/20 maxlen: 20 158.40.32.0/19 maxlen: 19 158.40.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914284F/93085C80D7AE11EBA5EB316CC4F9AE02/J7eqjlEecNijC7NtAsrwhXkMmcM.crl rsync://rpki.apnic.net/member_repository/A914284F/93085C80D7AE11EBA5EB316CC4F9AE02/J7eqjlEecNijC7NtAsrwhXkMmcM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J7eqjlEecNijC7NtAsrwhXkMmcM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914284F/serialNumber=27B7AA8E511E70D8A30BB36D02CAF085790C99C3 Validity Not Before: Feb 3 01:13:45 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd9349-291b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:ca:29:77:f4:fe:fd:8f:47:c1:9b:94:bd: 1d:b2:c8:17:94:cd:e1:6b:66:85:fd:22:cf:db:af: 49:c8:8b:c9:36:07:ae:3e:d1:4d:2d:b8:09:02:09: 04:de:4c:11:76:2a:81:f7:da:04:d9:5f:a4:2e:d2: 22:9f:fe:2d:36:82:bc:0f:79:af:7e:17:27:c6:4d: 81:18:9b:02:76:ca:d1:25:68:3f:88:2d:71:66:85: c7:dd:ea:68:a9:c2:50:ce:e5:97:8b:3e:35:20:ad: fe:9c:d9:59:6e:48:83:6a:63:b3:ea:54:ba:40:15: 88:51:0c:87:69:3a:ec:cc:4f:69:44:05:28:a7:26: 47:b0:93:3c:c8:1e:bf:5d:d8:90:8d:6c:95:90:fe: 56:46:04:57:00:c0:1f:cf:c8:44:c5:5a:92:32:a6: 99:0b:0d:bf:2d:47:57:4e:ee:e3:8a:2d:f2:ac:5f: a0:74:44:67:9b:f6:d8:7b:38:b2:85:58:01:23:1f: 8e:3e:7e:59:49:c6:d5:ba:01:8e:e7:5f:46:85:7d: 35:e2:30:4d:57:37:e3:76:50:a2:10:b2:8c:a0:5d: 16:d6:53:49:f7:5e:57:0a:f7:7a:64:39:f0:46:f6: c1:98:8b:b3:ff:97:99:c7:f5:7e:8e:8c:7f:ec:6f: ff:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:58:B2:44:EB:93:C1:36:7B:D9:3A:49:19:B5:EC:C0:C5:36:0F:CB X509v3 Authority Key Identifier: keyid:27:B7:AA:8E:51:1E:70:D8:A3:0B:B3:6D:02:CA:F0:85:79:0C:99:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914284F/93085C80D7AE11EBA5EB316CC4F9AE02/J7eqjlEecNijC7NtAsrwhXkMmcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J7eqjlEecNijC7NtAsrwhXkMmcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914284F/93085C80D7AE11EBA5EB316CC4F9AE02/C6E2CBD4558011EDA4773D7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.16.0.0/16 158.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:8c:f8:bd:6f:3c:dc:b9:e5:f8:b5:6a:8c:b7:a6:9b:9d:df: bd:c4:0e:4a:64:34:ae:c8:b2:ac:16:b7:24:11:ca:8f:bb:89: db:ce:e5:08:22:50:fa:43:34:05:86:fe:d5:02:54:ae:8f:cb: e4:72:87:58:43:38:d9:7a:a7:21:35:97:0d:7a:55:bd:7f:66: 17:70:10:b4:9d:c0:98:48:9d:2b:db:a6:d6:48:b9:d9:3a:70: 6e:51:4b:4f:cf:a2:b8:55:04:b8:80:20:ae:f0:d8:33:48:30: d1:0b:41:6f:ce:36:a3:7f:2a:8c:2d:1f:d7:37:a8:63:c3:72: 5d:4a:38:86:7e:8b:5e:f4:6d:7e:70:21:dc:23:a3:fb:ea:2b: 83:e8:6b:ed:5b:62:e7:86:fe:53:b7:43:33:43:36:9f:07:0e: f8:2b:df:b0:cd:02:a0:4a:0b:62:29:3e:3d:66:93:b6:42:93: 33:58:a9:bb:d3:46:5f:14:b7:43:79:03:7d:bd:ec:ef:26:f7: 3b:8c:7b:c8:0e:dd:8b:6f:3f:7e:fb:52:12:13:44:f0:a8:bf: 15:a1:8e:aa:97:86:e5:67:78:96:5d:ac:93:ca:e9:34:10:61: 2e:4f:0d:34:e7:c7:14:29:c2:b8:2d:0b:a1:98:a1:20:79:0f: 9c:20:cc:36 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI4NEYxMTAvBgNVBAUTKDI3QjdBQThFNTExRTcwRDhBMzBCQjM2RDAyQ0FGMDg1 NzkwQzk5QzMwHhcNMjQwMjAzMDExMzQ1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkOTM0OS0yOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujTKKXf0/v2PR8GblL0dssgXlM3ha2aF/SLP269JyIvJNgeuPtFNLbgJAgkE 3kwRdiqB99oE2V+kLtIin/4tNoK8D3mvfhcnxk2BGJsCdsrRJWg/iC1xZoXH3epo qcJQzuWXiz41IK3+nNlZbkiDamOz6lS6QBWIUQyHaTrszE9pRAUopyZHsJM8yB6/ XdiQjWyVkP5WRgRXAMAfz8hExVqSMqaZCw2/LUdXTu7jii3yrF+gdERnm/bYeziy hVgBIx+OPn5ZScbVugGO519GhX014jBNVzfjdlCiELKMoF0W1lNJ915XCvd6ZDnw RvbBmIuz/5eZx/V+jox/7G//cwIDAQABo4ICmTCCApUwHQYDVR0OBBYEFDBYskTr k8E2e9k6SRm17MDFNg/LMB8GA1UdIwQYMBaAFCe3qo5RHnDYowuzbQLK8IV5DJnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjg0Ri85MzA4NUM4MEQ3 QUUxMUVCQTVFQjMxNkNDNEY5QUUwMi9KN2VxamxFZWNOaWpDN050QXNyd2hYa01t Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0o3ZXFqbEVlY05pakM3TnRBc3J3aFhrTW1jTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI4NEYvOTMwODVDODBEN0FFMTFFQkE1RUIzMTZDQzRGOUFFMDIvQzZFMkNCRDQ1 NTgwMTFFREE0NzczRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQcBAf8E FDASMBAEAgABMAoDAwCcEAMDAJ4oMA0GCSqGSIb3DQEBCwUAA4IBAQBzjPi9bzzc ueX4tWqMt6abnd+9xA5KZDSuyLKsFrckEcqPu4nbzuUIIlD6QzQFhv7VAlSuj8vk codYQzjZeqchNZcNelW9f2YXcBC0ncCYSJ0r26bWSLnZOnBuUUtPz6K4VQS4gCCu 8NgzSDDRC0FvzjajfyqMLR/XN6hjw3JdSjiGfote9G1+cCHcI6P76iuD6GvtW2Ln hv5Tt0MzQzafBw74K9+wzQKgSgtiKT49ZpO2QpMzWKm700ZfFLdDeQN9vezvJvc7 jHvIDt2Lbz9++1ISE0TwqL8VoY6ql4blZ3iWXayTyuk0EGEuTw0058cUKcK4LQuh mKEgeQ+cIMw2 -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:23 2024 by rpki-client on console-ams.rpki-client.org