$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/58C00854905211EC90E6100FC4F9AE02.roa File: 58C00854905211EC90E6100FC4F9AE02.roa (raw, json) Hash identifier: QtSrx3oUF/ad9/RO+OgA9B79y6pDw1XGRWidX/XgA/o= Subject key identifier: 48:98:C5:19:E6:1B:4D:A1:CA:20:B2:58:D3:9B:67:9B:C5:CA:A0:B2 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 02D5 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/58C00854905211EC90E6100FC4F9AE02.roa Signing time: Wed 31 Jan 2024 03:34:47 +0000 ROA not before: Wed 31 Jan 2024 03:34:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 6453 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 725 (0x2d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jan 31 03:34:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65b9bfd6-8fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cb:ac:5d:4b:7e:ab:1e:bc:b6:cd:39:c1:41: 6d:4b:7d:04:d4:a1:33:b1:67:c9:fe:a2:cc:43:dc: 12:4d:02:c0:36:36:2a:db:db:f7:e2:5c:3e:da:99: 7f:f4:42:93:30:71:0a:32:3d:32:bb:25:c6:1a:99: 32:71:e6:77:e9:4a:d2:53:7b:f9:c9:18:ae:a1:08: 40:38:41:bc:8c:4c:4d:f4:17:ed:65:e9:6c:53:8c: 35:c4:4f:9c:0b:37:d8:53:ba:ab:12:59:2e:07:a7: d9:ba:94:8e:0f:f8:79:36:32:59:70:8b:b3:47:8d: b8:ea:46:ea:e1:d7:04:bc:a5:b3:f2:18:93:29:c6: 82:6b:64:1a:cb:86:41:94:56:64:68:2a:19:35:bc: 06:86:04:db:49:0e:63:18:d9:70:d8:13:18:75:fb: 0a:4f:b9:a8:87:de:de:78:52:fa:e4:65:77:17:30: 4b:cc:cb:ba:c6:1e:20:da:53:1d:81:8d:89:b5:79: ad:19:dd:14:ec:85:60:32:e6:6a:e9:fa:03:0f:fe: c9:48:7d:5e:1f:01:bd:6b:59:50:95:6d:3d:83:73: a8:74:f8:8c:0a:d1:99:31:0c:ea:2a:c4:5c:71:94: 78:31:66:1d:43:a6:24:01:b1:8d:37:d9:3d:14:5e: 42:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:98:C5:19:E6:1B:4D:A1:CA:20:B2:58:D3:9B:67:9B:C5:CA:A0:B2 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/58C00854905211EC90E6100FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption a9:f3:3c:85:f4:9f:8b:e5:ea:93:6a:bc:4b:61:54:c4:64:41: 50:dd:5d:1f:6c:c5:7e:12:e4:63:2b:28:6e:cb:38:40:b2:e1: 57:00:3a:47:5b:8c:7a:a2:23:10:d8:09:8b:0e:1c:b5:9e:62: 73:52:c6:77:ff:62:91:e6:18:14:53:1a:c0:7e:f1:2f:07:03: 72:8b:44:c9:94:69:2f:e5:df:ed:ce:d6:cb:aa:3a:3e:f2:48: 8f:30:9d:8c:f1:ba:e9:bd:c7:29:53:01:47:9a:e6:9e:3a:f5: 8d:c9:f6:6b:07:ac:b2:f2:2c:79:51:e7:4f:d3:76:5a:80:19: 22:e9:38:6f:da:49:e8:ad:82:af:f8:b3:33:c4:44:0e:13:1e: 8f:3f:c3:59:74:cb:25:1d:ef:38:53:ae:36:35:9b:99:57:d5: 01:24:1c:e1:df:18:cd:97:2d:4b:17:53:8b:31:89:e4:72:cc: ed:51:63:55:70:86:17:16:18:84:1e:2d:7e:a2:cc:75:15:78: 30:51:db:04:de:a2:24:07:d2:c8:85:de:88:2f:74:a0:a6:0f: e9:36:d3:c8:00:bd:7a:d4:87:1d:75:56:fe:1f:fc:c1:b5:0a: 93:c4:9f:1f:f4:e5:02:12:f9:59:10:77:c4:af:2f:9c:93:e9: fe:0b:ca:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjQwMTMxMDMzNDQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YmZkNi04ZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8usXUt+qx68ts05wUFtS30E1KEzsWfJ/qLMQ9wSTQLANjYq29v34lw+2pl/ 9EKTMHEKMj0yuyXGGpkyceZ36UrSU3v5yRiuoQhAOEG8jExN9BftZelsU4w1xE+c CzfYU7qrElkuB6fZupSOD/h5NjJZcIuzR4246kbq4dcEvKWz8hiTKcaCa2Qay4ZB lFZkaCoZNbwGhgTbSQ5jGNlw2BMYdfsKT7moh97eeFL65GV3FzBLzMu6xh4g2lMd gY2JtXmtGd0U7IVgMuZq6foDD/7JSH1eHwG9a1lQlW09g3OodPiMCtGZMQzqKsRc cZR4MWYdQ6YkAbGNN9k9FF5CAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEiYxRnm G02hyiCyWNObZ5vFyqCyMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvNThDMDA4NTQ5 MDUyMTFFQzkwRTYxMDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK2/xQwDQYJKoZIhvcNAQELBQADggEBAKnzPIX0n4vl6pNq vEthVMRkQVDdXR9sxX4S5GMrKG7LOECy4VcAOkdbjHqiIxDYCYsOHLWeYnNSxnf/ YpHmGBRTGsB+8S8HA3KLRMmUaS/l3+3O1suqOj7ySI8wnYzxuum9xylTAUea5p46 9Y3J9msHrLLyLHlR50/TdlqAGSLpOG/aSeitgq/4szPERA4THo8/w1l0yyUd7zhT rjY1m5lX1QEkHOHfGM2XLUsXU4sxieRyzO1RY1VwhhcWGIQeLX6izHUVeDBR2wTe oiQH0siF3ogvdKCmD+k208gAvXrUhx11Vv4f/MG1CpPEnx/05QIS+VkQd8SvL5yT 6f4LyvY= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:04 2024 by rpki-client on console-fra.rpki-client.org