$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa File: 989BBF70904F11EC8B118911C4F9AE02.roa (raw, json) Hash identifier: N8c1rSXK+JX9bAMRW/13KcQ620z4/zQjS+AST+v9G50= Subject key identifier: 87:B0:15:96:8D:E1:F8:7A:74:BD:86:A2:2E:E6:5B:4B:9B:A7:ED:05 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 02D3 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa Signing time: Wed 31 Jan 2024 03:34:45 +0000 ROA not before: Wed 31 Jan 2024 03:34:45 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4755 IP address blocks: 182.255.20.0/24 maxlen: 24 182.255.21.0/24 maxlen: 24 182.255.22.0/24 maxlen: 24 182.255.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jan 31 03:34:45 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65b9bfd5-c845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:cd:84:a5:1c:25:5d:46:fe:78:b8:bb:fa:6e: 6d:f9:f3:07:f1:f0:d1:29:1d:68:c2:57:c7:cb:db: 4f:2f:68:21:b7:8b:93:50:e5:07:7e:5f:e0:3e:be: 35:e1:62:53:65:d6:73:11:ae:46:a5:e8:96:46:33: be:8a:b9:99:a9:38:f1:00:5f:ea:71:a8:fc:17:12: 2a:18:eb:38:0f:a7:17:fc:8d:af:db:5e:40:4f:f7: 66:f8:28:30:dd:ae:79:d3:21:65:ac:a8:7a:bd:3a: 26:90:5e:33:6a:0c:3a:28:87:7b:2a:72:49:78:9a: 76:96:15:c7:f0:c3:1a:69:e2:14:49:b4:f3:21:95: c1:e7:46:57:8c:85:17:65:84:3e:65:c7:cb:f0:a9: f0:87:bc:e8:98:48:38:65:00:ec:2b:07:b8:58:f5: e3:20:68:13:c7:fd:72:8a:80:65:9c:6b:0f:49:42: 3c:ee:6f:53:93:98:48:51:23:32:e5:2f:6a:c7:d8: 42:c7:4b:e0:6e:fa:f8:3d:10:a3:bb:1d:f0:eb:a9: 1d:b2:ef:74:88:d2:48:80:a5:2c:3f:ea:4f:c1:70: e9:7c:00:11:d6:e9:74:54:19:f2:02:3b:76:06:bf: ac:38:67:2a:b4:b7:d1:8e:14:b9:25:0c:9e:bc:84: 70:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B0:15:96:8D:E1:F8:7A:74:BD:86:A2:2E:E6:5B:4B:9B:A7:ED:05 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/989BBF70904F11EC8B118911C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.255.20.0/22 Signature Algorithm: sha256WithRSAEncryption 73:a5:69:54:b7:3e:e0:7e:4f:15:c1:f3:da:66:02:85:d9:eb: 3d:00:de:c2:c7:8a:63:bc:75:be:19:e5:a4:19:16:16:50:85: 15:8b:93:7e:b9:89:79:d1:ed:89:93:f5:45:44:b6:cf:c7:8c: 44:3f:e4:4f:a2:ab:37:5a:e2:39:1f:6d:13:9f:fc:44:63:e7: 00:35:29:ff:dd:9e:de:ab:46:d6:92:66:b7:c5:d5:ea:8f:8a: 86:fd:8b:86:70:aa:e8:56:d9:71:8a:86:cc:14:1f:cc:47:c8: fc:0c:90:ac:10:33:3b:e8:78:e7:ba:69:1b:2c:e1:f0:16:b4: 01:f8:2b:76:27:e5:18:77:68:3e:fa:d9:d5:e4:34:7c:1e:30: 7f:de:7b:dd:05:a4:b7:f6:0d:56:3c:6d:4e:4f:7c:ea:f6:20: e0:85:9f:86:00:75:f9:af:78:42:f3:f4:03:0b:4a:12:a3:56: 13:49:a5:90:3a:8e:f1:5f:8a:b7:dd:d5:03:8b:45:68:8a:db: 75:2a:23:fa:cf:5b:55:cf:e1:a9:46:29:9d:f7:f3:76:18:d0: 3f:45:90:02:ef:3f:02:77:3d:0b:68:81:25:4a:08:4c:49:12: 80:28:0a:5c:8b:ab:65:e9:76:3a:d6:eb:2e:fd:bd:17:bd:04: af:8b:aa:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjQwMTMxMDMzNDQ1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YmZkNS1jODQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4c2EpRwlXUb+eLi7+m5t+fMH8fDRKR1owlfHy9tPL2ght4uTUOUHfl/gPr41 4WJTZdZzEa5GpeiWRjO+irmZqTjxAF/qcaj8FxIqGOs4D6cX/I2v215AT/dm+Cgw 3a550yFlrKh6vTomkF4zagw6KId7KnJJeJp2lhXH8MMaaeIUSbTzIZXB50ZXjIUX ZYQ+ZcfL8Knwh7zomEg4ZQDsKwe4WPXjIGgTx/1yioBlnGsPSUI87m9Tk5hIUSMy 5S9qx9hCx0vgbvr4PRCjux3w66kdsu90iNJIgKUsP+pPwXDpfAAR1ul0VBnyAjt2 Br+sOGcqtLfRjhS5JQyevIRwOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIewFZaN 4fh6dL2Goi7mW0ubp+0FMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxNEIvOTRDODk4Q0M4RkUyMTFFQ0E4QUZFRTc4QzRGOUFFMDIvOTg5QkJGNzA5 MDRGMTFFQzhCMTE4OTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK2/xQwDQYJKoZIhvcNAQELBQADggEBAHOlaVS3PuB+TxXB 89pmAoXZ6z0A3sLHimO8db4Z5aQZFhZQhRWLk365iXnR7YmT9UVEts/HjEQ/5E+i qzda4jkfbROf/ERj5wA1Kf/dnt6rRtaSZrfF1eqPiob9i4ZwquhW2XGKhswUH8xH yPwMkKwQMzvoeOe6aRss4fAWtAH4K3Yn5Rh3aD762dXkNHweMH/ee90FpLf2DVY8 bU5PfOr2IOCFn4YAdfmveELz9AMLShKjVhNJpZA6jvFfirfd1QOLRWiK23UqI/rP W1XP4alGKZ3383YY0D9FkALvPwJ3PQtogSVKCExJEoAoClyLq2XpdjrW6y79vRe9 BK+LqkY= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:21 2024 by rpki-client on console-ams.rpki-client.org