$ rpki-client -vvf rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/BA4B22643AC911EBB83D7F0EC4F9AE02.roa File: BA4B22643AC911EBB83D7F0EC4F9AE02.roa (raw, json) Hash identifier: t6myFT0odZeu9TrRixQY/ET/i2ndL/dKBSxIwnFXM9Y= Subject key identifier: 74:5D:14:41:53:F8:2B:F1:29:1B:41:43:26:99:8D:0E:33:D8:32:E3 Certificate issuer: /CN=A917C23C/serialNumber=AC32E99CB092E62E3ACA187463DA99E73D5AAF3E Certificate serial: 0617 Authority key identifier: AC:32:E9:9C:B0:92:E6:2E:3A:CA:18:74:63:DA:99:E7:3D:5A:AF:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDLpnLCS5i46yhh0Y9qZ5z1arz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/BA4B22643AC911EBB83D7F0EC4F9AE02.roa Signing time: Thu 16 Nov 2023 23:20:53 +0000 ROA not before: Thu 16 Nov 2023 23:20:53 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24323 IP address blocks: 116.206.44.0/22 maxlen: 22 116.206.44.0/24 maxlen: 24 116.206.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/rDLpnLCS5i46yhh0Y9qZ5z1arz4.crl rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/rDLpnLCS5i46yhh0Y9qZ5z1arz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDLpnLCS5i46yhh0Y9qZ5z1arz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1559 (0x617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C23C/serialNumber=AC32E99CB092E62E3ACA187463DA99E73D5AAF3E Validity Not Before: Nov 16 23:20:53 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6556a3d5-7779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:b2:df:be:d6:14:10:ff:f4:67:5a:3a:3a: 95:b5:cd:b5:78:56:1b:d5:fc:78:47:5c:1e:79:2d: 10:ea:a5:1c:67:66:63:eb:e3:65:6f:7a:f2:3e:1a: 73:ef:6d:cf:c1:66:6b:60:ac:f2:49:2b:27:c9:75: b8:b7:17:58:e4:55:3e:81:3f:88:5f:4e:58:91:9f: 21:ee:e0:79:8b:37:de:f3:47:4f:69:c5:c9:5c:7c: b7:90:e6:cd:15:0f:2c:45:96:f4:ce:14:b3:09:e9: 78:6b:63:e7:e9:31:9f:59:9f:c2:cd:21:14:c4:85: 4d:22:c6:56:f9:b5:10:8a:d0:e0:ad:04:b2:25:25: 5e:34:83:a9:1c:56:40:90:ca:1f:40:ed:ab:bf:77: 29:14:e5:ef:e4:08:bd:29:43:40:b2:f7:16:03:86: 20:91:83:cf:81:76:ca:8e:47:b8:37:f7:17:9c:64: a3:6d:e1:9e:c0:2f:40:80:f2:5b:94:fb:ab:62:a5: e4:c4:ea:d3:23:4a:cc:bf:e8:41:13:0e:98:bf:c5: 2f:70:ed:df:6d:cf:34:f9:ba:4d:8c:b6:99:20:42: f2:4b:72:fe:e4:e8:85:77:22:5d:1d:20:c0:cf:d3: 08:0e:57:43:48:86:f9:08:2a:f0:f2:27:68:c9:b6: d4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:5D:14:41:53:F8:2B:F1:29:1B:41:43:26:99:8D:0E:33:D8:32:E3 X509v3 Authority Key Identifier: keyid:AC:32:E9:9C:B0:92:E6:2E:3A:CA:18:74:63:DA:99:E7:3D:5A:AF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/rDLpnLCS5i46yhh0Y9qZ5z1arz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDLpnLCS5i46yhh0Y9qZ5z1arz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/BA4B22643AC911EBB83D7F0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.206.44.0/22 Signature Algorithm: sha256WithRSAEncryption 96:9a:98:bd:61:42:ce:ba:eb:3c:96:bc:d0:fa:fa:3f:12:6e: 1c:0b:05:e0:29:2c:ea:aa:6e:33:34:1a:13:a7:dd:1a:26:a4: d6:86:1f:b5:ed:b0:a4:61:ae:2e:3b:40:48:38:3c:50:e9:99: 21:e9:56:81:2f:3f:f1:f8:0e:ad:28:0c:50:11:a0:8c:3e:7c: 22:9e:d3:78:7d:7f:e8:88:02:91:2d:69:a0:bb:cf:d0:9c:4c: ac:37:6b:8a:16:a5:50:0a:25:6e:78:ac:3b:f4:b4:e8:83:5d: 20:99:6e:01:f4:26:42:b8:69:8e:c2:6a:9f:86:0c:0b:61:f7: 5e:35:16:7c:49:2a:a0:7d:51:9f:b4:ff:f1:c7:4c:f9:00:df: 95:a0:45:87:b2:61:00:bb:06:ce:4d:03:6e:49:e7:d5:a6:c2: a1:44:c1:89:1f:7a:27:59:f8:a4:5d:46:d2:49:da:59:ab:0a: 45:0c:59:1a:7e:e8:7a:00:b5:d1:07:5d:28:1a:a4:a1:e5:2a: a6:6d:dc:09:8a:70:be:25:7b:d6:2b:5b:a1:6a:22:36:08:b6: 18:99:fb:ba:a3:c8:25:b5:51:30:c6:56:ef:23:50:6a:5f:c9: 83:e4:f5:7e:38:38:e7:fc:7c:82:b4:eb:a9:86:66:a8:64:99: fb:5c:b1:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MyM0MxMTAvBgNVBAUTKEFDMzJFOTlDQjA5MkU2MkUzQUNBMTg3NDYzREE5OUU3 M0Q1QUFGM0UwHhcNMjMxMTE2MjMyMDUzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2YTNkNS03Nzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPey377WFBD/9GdaOjqVtc21eFYb1fx4R1weeS0Q6qUcZ2Zj6+Nlb3ryPhpz 723PwWZrYKzySSsnyXW4txdY5FU+gT+IX05YkZ8h7uB5izfe80dPacXJXHy3kObN FQ8sRZb0zhSzCel4a2Pn6TGfWZ/CzSEUxIVNIsZW+bUQitDgrQSyJSVeNIOpHFZA kMofQO2rv3cpFOXv5Ai9KUNAsvcWA4YgkYPPgXbKjke4N/cXnGSjbeGewC9AgPJb lPurYqXkxOrTI0rMv+hBEw6Yv8UvcO3fbc80+bpNjLaZIELyS3L+5OiFdyJdHSDA z9MIDldDSIb5CCrw8idoybbUrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHRdFEFT +CvxKRtBQyaZjQ4z2DLjMB8GA1UdIwQYMBaAFKwy6ZywkuYuOsoYdGPamec9Wq8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzIzQy8wOTA3NDRDMjNB M0YxMUVCQjYzQjc1NTFDNEY5QUUwMi9yRExwbkxDUzVpNDZ5aGgwWTlxWjV6MWFy ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JETHBuTENTNWk0NnloaDBZOXFaNXoxYXJ6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MyM0MvMDkwNzQ0QzIzQTNGMTFFQkI2M0I3NTUxQzRGOUFFMDIvQkE0QjIyNjQz QUM5MTFFQkI4M0Q3RjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0ziwwDQYJKoZIhvcNAQELBQADggEBAJaamL1hQs666zyW vND6+j8SbhwLBeApLOqqbjM0GhOn3RompNaGH7XtsKRhri47QEg4PFDpmSHpVoEv P/H4Dq0oDFARoIw+fCKe03h9f+iIApEtaaC7z9CcTKw3a4oWpVAKJW54rDv0tOiD XSCZbgH0JkK4aY7Cap+GDAth9141FnxJKqB9UZ+0//HHTPkA35WgRYeyYQC7Bs5N A25J59WmwqFEwYkfeidZ+KRdRtJJ2lmrCkUMWRp+6HoAtdEHXSgapKHlKqZt3AmK cL4le9YrW6FqIjYIthiZ+7qjyCW1UTDGVu8jUGpfyYPk9X44OOf8fIK066mGZqhk mftcsSI= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:16 2024 by rpki-client on console-ams.rpki-client.org