$ rpki-client -vvf rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa File: 294CEBA68FDD11EDBC45E84DC4F9AE02.roa (raw, json) Hash identifier: 15zFPVo2UCRlQU2iKbG369RG8kW7thCKoADpnFjU/KE= Subject key identifier: 6A:9C:D3:C7:80:50:D0:52:E6:34:97:5D:56:BC:3A:4A:58:56:16:76 Certificate issuer: /CN=A9157A68/serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Certificate serial: 06A0 Authority key identifier: 65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa Signing time: Fri 02 Jun 2023 23:36:05 +0000 ROA not before: Fri 02 Jun 2023 23:36:04 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 141366 IP address blocks: 45.249.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157A68/serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Validity Not Before: Jun 2 23:36:04 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a7ce4-7d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:8a:c3:11:08:24:33:7d:76:c7:25:63:81: e0:51:3b:c4:80:86:48:0f:4e:ce:3a:8d:41:80:1b: 18:8e:f2:58:12:4e:f3:8c:b1:61:db:84:39:d3:07: 76:ba:57:50:37:9e:49:a1:6f:4b:e9:4e:9d:9e:b5: d6:2a:12:27:86:f8:ac:93:4a:b4:e3:c1:6c:61:85: 2c:5b:f9:e8:c5:13:08:18:70:29:48:75:29:bc:79: 89:00:6f:c4:25:3f:4c:59:a6:ea:35:e8:61:78:74: 52:7b:09:87:4a:fa:5a:43:d7:3e:a6:29:22:60:7f: eb:37:23:c4:bb:fd:94:68:e1:da:56:49:90:95:54: 96:40:78:56:d4:34:bc:7c:41:8e:08:de:a4:31:35: a8:ea:2c:56:11:59:37:bd:ce:12:41:7d:87:92:26: 85:3d:ed:fc:c7:4f:fb:e6:df:0c:cb:4c:a7:b2:ef: d1:ab:f1:ee:4c:81:9a:41:03:8b:fb:d1:dd:39:cc: 8c:7d:c1:04:5c:cd:82:6e:01:fc:cb:83:e2:55:e3: cf:1f:f7:8d:0c:0f:1d:57:63:aa:1b:36:8e:e6:b1: c1:f5:12:0e:40:78:43:5e:8d:72:d0:6c:e9:28:fb: 36:9f:3e:ef:71:78:e3:0f:d9:42:98:63:dd:71:c5: ba:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9C:D3:C7:80:50:D0:52:E6:34:97:5D:56:BC:3A:4A:58:56:16:76 X509v3 Authority Key Identifier: keyid:65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/294CEBA68FDD11EDBC45E84DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.99.0/24 Signature Algorithm: sha256WithRSAEncryption 55:78:42:db:66:fe:59:75:e3:a2:3c:6f:4f:31:ca:b1:70:90: f1:04:47:6b:48:ed:ff:87:e0:bd:cf:cd:0d:40:39:da:e1:db: 10:e8:1e:20:8c:ed:c2:fb:e7:83:a5:0d:1a:88:fe:08:89:ee: 34:98:09:8e:28:8e:d3:f3:69:1d:26:b7:01:a2:22:be:94:20: fe:18:00:04:ae:88:38:d5:25:f7:4d:04:0c:d3:38:82:a5:24: b8:37:8f:ed:5a:37:6d:53:37:b7:8e:93:db:ad:be:51:47:98: 81:de:cc:48:4b:53:af:45:ca:b9:88:89:af:72:1b:ff:02:6d: 71:de:75:23:bc:64:ea:b2:db:fb:51:8c:4e:56:23:78:57:f7: b1:fd:c5:de:b9:fd:5f:30:3e:62:5b:93:04:75:ab:d4:0b:ab: ae:52:8b:0f:62:10:05:71:ea:e5:46:66:d1:71:7a:44:bf:06: ac:1b:b4:1a:ff:a8:a8:1c:3c:5d:23:0b:c0:4d:86:f5:94:20: c6:f8:24:67:47:f7:d5:2a:c6:e3:fb:df:12:fe:a8:e1:50:cc: 9d:e5:09:65:4e:8d:09:4a:ad:2d:cc:d9:0e:4e:d4:32:5a:b0: c7:7f:14:3b:c9:18:05:03:17:4a:c5:8a:4e:cf:97:70:31:d7: cc:b7:db:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBNjgxMTAvBgNVBAUTKDY1QjdBRDk2NzVCMzgwOUVDRTA0QUYzMDFDMkVCNzAz N0ZGMDJCQkIwHhcNMjMwNjAyMjMzNjA0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhN2NlNC03ZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyGKwxEIJDN9dsclY4HgUTvEgIZID07OOo1BgBsYjvJYEk7zjLFh24Q50wd2 uldQN55JoW9L6U6dnrXWKhInhvisk0q048FsYYUsW/noxRMIGHApSHUpvHmJAG/E JT9MWabqNehheHRSewmHSvpaQ9c+pikiYH/rNyPEu/2UaOHaVkmQlVSWQHhW1DS8 fEGOCN6kMTWo6ixWEVk3vc4SQX2HkiaFPe38x0/75t8My0ynsu/Rq/HuTIGaQQOL +9HdOcyMfcEEXM2CbgH8y4PiVePPH/eNDA8dV2OqGzaO5rHB9RIOQHhDXo1y0Gzp KPs2nz7vcXjjD9lCmGPdccW6awIDAQABo4IClTCCApEwHQYDVR0OBBYEFGqc08eA UNBS5jSXXVa8OkpYVhZ2MB8GA1UdIwQYMBaAFGW3rZZ1s4CezgSvMBwutwN/8Cu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0E2OC80QjM2QjlCOERC REExMUVBOUE4RDI4NDBDNEY5QUUwMi9aYmV0bG5XemdKN09CSzh3SEM2M0EzX3dL N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1piZXRsbld6Z0o3T0JLOHdIQzYzQTNfd0s3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdBNjgvNEIzNkI5QjhEQkRBMTFFQTlBOEQyODQwQzRGOUFFMDIvMjk0Q0VCQTY4 RkREMTFFREJDNDVFODREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAt+WMwDQYJKoZIhvcNAQELBQADggEBAFV4Qttm/ll146I8 b08xyrFwkPEER2tI7f+H4L3PzQ1AOdrh2xDoHiCM7cL754OlDRqI/giJ7jSYCY4o jtPzaR0mtwGiIr6UIP4YAASuiDjVJfdNBAzTOIKlJLg3j+1aN21TN7eOk9utvlFH mIHezEhLU69FyrmIia9yG/8CbXHedSO8ZOqy2/tRjE5WI3hX97H9xd65/V8wPmJb kwR1q9QLq65Siw9iEAVx6uVGZtFxekS/BqwbtBr/qKgcPF0jC8BNhvWUIMb4JGdH 99UqxuP73xL+qOFQzJ3lCWVOjQlKrS3M2Q5O1DJasMd/FDvJGAUDF0rFik7Pl3Ax 18y32wI= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:15 2024 by rpki-client on console-ams.rpki-client.org