$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/F645F318500C11EBA2295426C4F9AE02.roa File: F645F318500C11EBA2295426C4F9AE02.roa (raw, json) Hash identifier: vTiBrFeykLoAAno6j63zPiaanON6q+9HworjyQsWnj8= Subject key identifier: DF:60:7D:36:38:EC:D7:02:C2:70:27:D8:6D:B2:F3:61:F6:12:19:89 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2A1F Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/F645F318500C11EBA2295426C4F9AE02.roa Signing time: Mon 28 Aug 2023 14:30:26 +0000 ROA not before: Mon 28 Aug 2023 14:30:26 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9244 IP address blocks: 152.104.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10783 (0x2a1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Aug 28 14:30:26 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ecaf82-0ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:12:03:e8:e9:03:bb:e3:d9:0c:d3:f0:de: 30:34:6a:42:66:df:cf:1d:8f:b6:ce:50:73:ec:33: 63:56:85:09:5f:c5:9c:dd:a0:99:d3:96:82:55:8a: 06:5d:0f:e4:19:8e:a4:b8:81:3b:41:64:13:c4:c6: 24:6c:50:6c:3a:72:2a:94:dd:06:68:62:02:eb:25: d3:0f:bf:7e:ad:cd:e8:c9:85:82:2d:32:93:b7:08: b3:72:39:60:44:6f:44:db:9f:2e:11:14:92:93:fa: f1:6f:d0:75:83:ef:33:eb:cb:6c:f8:2e:42:d8:5f: 21:74:a1:5c:9d:f9:3e:37:3f:9b:23:39:9d:5a:7f: b0:8c:d0:7d:eb:6a:45:2f:a0:7c:68:15:27:da:15: f7:5b:45:5b:3a:a1:6e:fb:cb:58:50:b5:9e:4d:eb: 51:10:15:96:e7:e2:b6:41:ae:b4:02:f6:3c:b2:fd: 21:76:5f:8f:e6:35:8f:d7:3c:30:74:4f:9f:ef:78: 50:e4:2b:df:c4:0c:fa:81:f8:67:06:9d:28:e9:24: 0f:ae:c9:d4:e7:12:fc:c4:38:b2:28:1e:99:80:e4: 23:50:07:82:c9:04:52:44:58:7e:2d:2b:ab:fd:97: ec:aa:48:31:7e:bb:a4:d4:b7:76:18:b7:d5:ac:b4: 76:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:60:7D:36:38:EC:D7:02:C2:70:27:D8:6D:B2:F3:61:F6:12:19:89 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/F645F318500C11EBA2295426C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.104.96.0/19 Signature Algorithm: sha256WithRSAEncryption b0:fe:47:02:3b:b0:dd:49:40:78:17:1c:c9:0b:d8:14:a4:56: b8:ee:e4:c4:f9:62:d3:1e:e2:40:84:81:1c:58:15:ac:21:37: 7f:05:76:81:71:3b:b8:a5:0d:a2:85:14:67:81:2e:4b:1c:37: 61:fb:27:71:80:a7:bf:67:4b:b8:6b:05:0b:9c:a3:5a:70:7b: 2d:36:5d:10:af:03:d1:13:68:b7:df:a7:7c:5a:11:e4:2b:a2: 7e:24:05:d7:b3:04:48:d9:17:08:63:00:67:5d:b4:31:8a:38: c2:fe:89:27:80:46:10:0c:11:86:4c:20:42:8d:c0:5a:c1:7d: 5d:cf:cc:05:9c:3d:93:da:fe:47:57:97:c3:20:1c:d7:82:01: 8d:f4:3b:18:c6:7b:0d:10:a4:d4:2f:2a:80:87:bd:a5:1e:d4: c8:1c:a0:35:07:35:4e:04:26:83:8b:56:e3:b0:a4:14:91:0f: c3:8d:5a:bd:55:8a:ad:2f:f1:6f:c3:7e:51:5b:5f:2f:6e:f5: 5b:4e:f8:eb:25:e4:73:60:c3:32:29:2c:0f:61:20:b3:5a:14: ce:71:e4:b1:46:25:a5:fe:85:9a:3a:14:04:61:49:53:bd:7f: 44:26:11:5a:d2:f9:48:cf:de:a1:2b:75:c7:87:87:52:cc:7f: af:69:10:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjMwODI4MTQzMDI2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjYWY4Mi0wYWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreASA+jpA7vj2QzT8N4wNGpCZt/PHY+2zlBz7DNjVoUJX8Wc3aCZ05aCVYoG XQ/kGY6kuIE7QWQTxMYkbFBsOnIqlN0GaGIC6yXTD79+rc3oyYWCLTKTtwizcjlg RG9E258uERSSk/rxb9B1g+8z68ts+C5C2F8hdKFcnfk+Nz+bIzmdWn+wjNB962pF L6B8aBUn2hX3W0VbOqFu+8tYULWeTetREBWW5+K2Qa60AvY8sv0hdl+P5jWP1zww dE+f73hQ5CvfxAz6gfhnBp0o6SQPrsnU5xL8xDiyKB6ZgOQjUAeCyQRSRFh+LSur /Zfsqkgxfruk1Ld2GLfVrLR2UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN9gfTY4 7NcCwnAn2G2y82H2EhmJMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0MjIvM0U3NDUzNjhFRDU1MTFFMzgwNzJDNTdFNTkxMUVBMzIvRjY0NUYzMTg1 MDBDMTFFQkEyMjk1NDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWYaGAwDQYJKoZIhvcNAQELBQADggEBALD+RwI7sN1JQHgX HMkL2BSkVrju5MT5YtMe4kCEgRxYFawhN38FdoFxO7ilDaKFFGeBLkscN2H7J3GA p79nS7hrBQuco1pwey02XRCvA9ETaLffp3xaEeQron4kBdezBEjZFwhjAGddtDGK OML+iSeARhAMEYZMIEKNwFrBfV3PzAWcPZPa/kdXl8MgHNeCAY30OxjGew0QpNQv KoCHvaUe1MgcoDUHNU4EJoOLVuOwpBSRD8ONWr1Viq0v8W/DflFbXy9u9VtO+Osl 5HNgwzIpLA9hILNaFM5x5LFGJaX+hZo6FARhSVO9f0QmEVrS+UjP3qErdceHh1LM f69pEJc= -----END CERTIFICATE-----Generated at Fri May 31 16:40:57 2024 by rpki-client on console-ams.rpki-client.org