$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/0F106C42E9BF11EB9287F045C4F9AE02.roa File: 0F106C42E9BF11EB9287F045C4F9AE02.roa (raw, json) Hash identifier: a6iV+VdvATPTvUTvrvtJWIJfp3l1+BdYBIr8MaPpp8I= Subject key identifier: 78:77:F0:32:B4:63:F6:9B:8B:9D:F1:40:55:50:B2:90:C0:FD:0E:2E Certificate issuer: /CN=A9183B33/serialNumber=E3CD262607CB7434C9898F7AECF6E7C36A34F693 Certificate serial: 0490 Authority key identifier: E3:CD:26:26:07:CB:74:34:C9:89:8F:7A:EC:F6:E7:C3:6A:34:F6:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/480mJgfLdDTJiY967Pbnw2o09pM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/0F106C42E9BF11EB9287F045C4F9AE02.roa Signing time: Tue 09 Apr 2024 01:03:16 +0000 ROA not before: Tue 09 Apr 2024 01:03:16 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9408 IP address blocks: 192.69.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/480mJgfLdDTJiY967Pbnw2o09pM.crl rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/480mJgfLdDTJiY967Pbnw2o09pM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/480mJgfLdDTJiY967Pbnw2o09pM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B33/serialNumber=E3CD262607CB7434C9898F7AECF6E7C36A34F693 Validity Not Before: Apr 9 01:03:16 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=661493d3-1c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:09:0d:95:b3:14:96:86:f7:1e:97:82:a5:a7: 4f:f1:69:d4:49:4c:27:78:56:ee:fe:5b:d9:ef:c4: e4:5c:60:6e:7f:33:21:ad:20:7b:05:18:6d:dc:67: ee:5d:4f:cd:12:7e:01:69:89:41:d1:e6:51:c1:c0: 81:33:d4:f2:59:de:2c:60:d7:87:56:98:fb:4b:8c: a1:f6:3b:fb:41:a6:d1:63:a6:06:89:74:9f:29:57: 63:ba:c6:8c:b2:9f:4d:a6:65:d2:9a:aa:c8:34:64: 5e:ab:76:83:85:a8:2b:1d:0b:2b:2d:b8:f6:8e:41: a7:10:da:e9:7c:4c:c8:03:a2:1b:c3:c8:95:f6:d0: b1:33:6a:a3:4c:99:03:e3:3e:24:44:d5:bb:2d:9e: 1c:1a:97:ac:35:82:ba:f1:83:ea:cf:0f:34:cb:ec: f0:84:ca:50:cf:23:d8:c1:3e:5e:35:b3:ab:4f:6d: b3:bf:bd:6a:be:ab:40:45:16:24:75:28:79:3c:c3: 37:dc:05:04:12:9a:bc:aa:a7:77:cd:c5:0a:dc:00: 3d:5a:6e:05:97:32:76:3a:19:d1:58:a9:11:33:bf: ea:cb:aa:62:e9:8b:55:3a:ef:71:39:e5:89:49:f4: 0c:42:85:41:c4:df:19:3c:27:f9:1d:92:6f:49:2e: 11:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:77:F0:32:B4:63:F6:9B:8B:9D:F1:40:55:50:B2:90:C0:FD:0E:2E X509v3 Authority Key Identifier: keyid:E3:CD:26:26:07:CB:74:34:C9:89:8F:7A:EC:F6:E7:C3:6A:34:F6:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/480mJgfLdDTJiY967Pbnw2o09pM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/480mJgfLdDTJiY967Pbnw2o09pM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B33/B2AB3758E9BD11EB825C7526C4F9AE02/0F106C42E9BF11EB9287F045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.69.116.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:63:ed:eb:1e:14:cd:94:9b:5b:86:ff:f0:7b:56:94:00:fe: 7e:ee:96:3f:a7:a9:b2:c6:37:29:ec:ec:b0:27:b1:29:c0:bd: 75:03:b2:f9:8b:c2:98:b5:86:4e:97:f2:2a:67:0a:14:98:6e: 33:04:2d:7c:7e:6c:46:b1:95:03:50:b8:af:06:f1:6a:20:41: 16:06:00:23:ba:1c:71:a8:58:44:4f:8d:6a:bd:0d:ad:cd:ae: 13:bf:30:3f:6d:67:c7:d0:64:cc:a9:3e:71:2b:31:25:8c:90: 2d:28:c0:9e:30:2f:58:18:dc:6f:60:10:15:76:7a:b6:e3:e8: 9b:b8:29:1e:28:bf:39:42:dd:9a:86:80:33:8d:ff:7c:60:97: b7:3d:bc:c9:85:55:77:f3:b7:15:64:ac:0f:5a:e3:c0:e7:01: 29:0a:cc:14:d0:e2:e4:a7:40:d8:b7:76:d9:40:23:33:cf:64: 64:d6:17:9e:04:1d:4b:9b:98:38:80:d8:ff:17:c8:5e:69:e0: 9b:87:52:08:a5:e7:59:8d:04:bd:11:24:4b:94:bf:42:b2:8d: 1f:42:9a:43:4a:a4:b4:60:31:c9:b2:c8:ea:c2:bc:66:e0:1f: 8e:f3:db:cd:7d:b9:8e:cf:29:2b:7d:4a:fd:bf:3e:b7:60:3d: 0c:b4:d1:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCMzMxMTAvBgNVBAUTKEUzQ0QyNjI2MDdDQjc0MzRDOTg5OEY3QUVDRjZFN0Mz NkEzNEY2OTMwHhcNMjQwNDA5MDEwMzE2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0OTNkMy0xYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgkNlbMUlob3HpeCpadP8WnUSUwneFbu/lvZ78TkXGBufzMhrSB7BRht3Gfu XU/NEn4BaYlB0eZRwcCBM9TyWd4sYNeHVpj7S4yh9jv7QabRY6YGiXSfKVdjusaM sp9NpmXSmqrINGReq3aDhagrHQsrLbj2jkGnENrpfEzIA6Ibw8iV9tCxM2qjTJkD 4z4kRNW7LZ4cGpesNYK68YPqzw80y+zwhMpQzyPYwT5eNbOrT22zv71qvqtARRYk dSh5PMM33AUEEpq8qqd3zcUK3AA9Wm4FlzJ2OhnRWKkRM7/qy6pi6YtVOu9xOeWJ SfQMQoVBxN8ZPCf5HZJvSS4RCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHh38DK0 Y/abi53xQFVQspDA/Q4uMB8GA1UdIwQYMBaAFOPNJiYHy3Q0yYmPeuz258NqNPaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0IzMy9CMkFCMzc1OEU5 QkQxMUVCODI1Qzc1MjZDNEY5QUUwMi80ODBtSmdmTGREVEppWTk2N1BibncybzA5 cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQ4MG1KZ2ZMZERUSmlZOTY3UGJudzJvMDlwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNCMzMvQjJBQjM3NThFOUJEMTFFQjgyNUM3NTI2QzRGOUFFMDIvMEYxMDZDNDJF OUJGMTFFQjkyODdGMDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADARXQwDQYJKoZIhvcNAQELBQADggEBAC5j7eseFM2Um1uG //B7VpQA/n7ulj+nqbLGNyns7LAnsSnAvXUDsvmLwpi1hk6X8ipnChSYbjMELXx+ bEaxlQNQuK8G8WogQRYGACO6HHGoWERPjWq9Da3NrhO/MD9tZ8fQZMypPnErMSWM kC0owJ4wL1gY3G9gEBV2erbj6Ju4KR4ovzlC3ZqGgDON/3xgl7c9vMmFVXfztxVk rA9a48DnASkKzBTQ4uSnQNi3dtlAIzPPZGTWF54EHUubmDiA2P8XyF5p4JuHUgil 51mNBL0RJEuUv0KyjR9CmkNKpLRgMcmyyOrCvGbgH47z2819uY7PKSt9Sv2/Prdg PQy00WI= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:28 2024 by rpki-client on console-ams.rpki-client.org