$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DCC31BA8182F11EE82A0FC48C4F9AE02.roa File: DCC31BA8182F11EE82A0FC48C4F9AE02.roa (raw, json) Hash identifier: NyRhFKoeq17kmMX8OQZh3mkXOb3bkuMOT5GFnj9SEJ0= Subject key identifier: A4:01:9C:BB:BA:B7:9C:75:EC:C2:4A:C8:78:64:11:40:BD:DB:38:10 Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 9D Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DCC31BA8182F11EE82A0FC48C4F9AE02.roa Signing time: Wed 03 Apr 2024 07:08:44 +0000 ROA not before: Wed 03 Apr 2024 07:08:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 17161 IP address blocks: 168.168.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: Apr 3 07:08:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660d007c-272e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:e2:3f:8a:7c:fa:4d:c2:3e:38:86:32:a2: 62:dc:66:bf:1e:52:2f:d2:37:b4:20:21:89:73:ec: c1:4a:57:5d:e2:c9:77:91:1d:9e:1e:ad:14:5e:f3: 2f:71:ff:20:77:a6:5f:91:10:b5:57:c8:b3:94:ef: 78:4d:33:93:63:df:3e:38:93:ba:2f:1d:c9:6e:14: 2f:3a:52:3c:d7:fb:76:13:2e:28:7b:8a:94:4b:45: ac:6a:95:54:21:46:e4:b2:46:6e:29:5f:96:2e:47: 06:4f:d8:95:07:4c:6f:77:b5:c6:02:11:16:1b:bf: 46:2e:03:e6:d0:6f:4f:b7:0d:8f:07:70:5a:09:6e: df:e9:ef:c9:52:6e:62:9d:b9:21:a1:bd:81:99:1d: 04:a0:84:a7:8b:0c:e4:db:f3:7b:35:93:0f:14:a7: 01:96:8b:73:38:4b:0b:fd:8d:38:5d:ce:95:18:da: ad:b0:a1:72:55:43:f4:24:01:c9:d0:b4:6d:c6:49: 89:7c:2e:f7:57:91:01:c8:b3:0a:ac:e2:22:0f:38: 6f:c4:ff:d3:38:a3:c8:87:28:f5:a7:e4:1c:62:74: c5:e5:71:18:67:38:62:19:1c:40:91:a2:89:87:fa: 15:87:1a:b5:09:0f:b3:f4:db:e2:9c:ab:36:9c:d1: 03:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:01:9C:BB:BA:B7:9C:75:EC:C2:4A:C8:78:64:11:40:BD:DB:38:10 X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DCC31BA8182F11EE82A0FC48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.168.254.0/23 Signature Algorithm: sha256WithRSAEncryption 25:31:de:d8:ad:3a:c9:e3:d0:9e:c7:4b:1a:c8:83:ae:d6:d0: 41:ef:b1:25:00:8b:2d:87:71:8b:30:c8:72:4b:1f:b3:66:04: 15:73:25:2d:c0:38:3b:a2:07:a9:45:da:95:36:0a:5e:43:2f: 88:a2:c9:8c:08:39:be:d9:9d:ba:0f:97:16:9f:57:f5:9f:73: 74:b0:c9:fa:41:a4:de:43:3c:f3:61:c2:15:b5:b1:5a:1d:2d: e3:27:0a:3f:87:b9:cc:a3:26:d8:81:5b:94:00:a3:dd:18:b4: ad:69:c1:82:8e:44:11:b8:b0:a8:dc:af:e9:0d:5d:e5:12:5e: 34:96:c3:7e:c8:cb:00:06:ba:14:cc:79:ac:9d:64:00:14:9b: 08:49:5a:e9:fb:5d:2d:2d:dc:7f:92:67:81:4e:26:f5:60:bb: cb:91:96:3f:9b:c2:69:ed:96:71:db:53:46:44:89:16:f0:58: a0:f8:e1:d3:51:c1:aa:17:33:ac:41:d9:21:91:68:68:73:47: 72:6b:ea:00:ee:b2:14:2d:fc:19:c4:79:6a:33:41:17:88:3b: 23:ba:c3:37:54:5d:56:c5:7a:26:c1:46:a5:e7:9c:c2:b2:6b: 53:fe:f5:6b:ed:48:95:73:af:57:6b:c5:ba:2f:0e:8e:11:44: 43:74:61:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjQwNDAzMDcwODQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBkMDA3Yy0yNzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0G/iP4p8+k3CPjiGMqJi3Ga/HlIv0je0ICGJc+zBSldd4sl3kR2eHq0UXvMv cf8gd6ZfkRC1V8izlO94TTOTY98+OJO6Lx3JbhQvOlI81/t2Ey4oe4qUS0WsapVU IUbkskZuKV+WLkcGT9iVB0xvd7XGAhEWG79GLgPm0G9Ptw2PB3BaCW7f6e/JUm5i nbkhob2BmR0EoISniwzk2/N7NZMPFKcBlotzOEsL/Y04Xc6VGNqtsKFyVUP0JAHJ 0LRtxkmJfC73V5EByLMKrOIiDzhvxP/TOKPIhyj1p+QcYnTF5XEYZzhiGRxAkaKJ h/oVhxq1CQ+z9NvinKs2nNED9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKQBnLu6 t5x17MJKyHhkEUC92zgQMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvRENDMzFCQTgx ODJGMTFFRTgyQTBGQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGoqP4wDQYJKoZIhvcNAQELBQADggEBACUx3titOsnj0J7H SxrIg67W0EHvsSUAiy2HcYswyHJLH7NmBBVzJS3AODuiB6lF2pU2Cl5DL4iiyYwI Ob7ZnboPlxafV/Wfc3SwyfpBpN5DPPNhwhW1sVodLeMnCj+HucyjJtiBW5QAo90Y tK1pwYKORBG4sKjcr+kNXeUSXjSWw37IywAGuhTMeaydZAAUmwhJWun7XS0t3H+S Z4FOJvVgu8uRlj+bwmntlnHbU0ZEiRbwWKD44dNRwaoXM6xB2SGRaGhzR3Jr6gDu shQt/BnEeWozQReIOyO6wzdUXVbFeibBRqXnnMKya1P+9WvtSJVzr1drxbovDo4R REN0YUw= -----END CERTIFICATE-----Generated at Thu Jun 13 08:01:41 2024 by rpki-client on console-ams.rpki-client.org