$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/4BA5EC4293D911EE86212B1DC4F9AE02.roa File: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (raw, json) Hash identifier: LN8pESJfKWiK9i2ORSuCclenOa+mxcW/ZR7U6hJ0hpw= Subject key identifier: 25:EF:EB:6C:B5:6D:8D:4B:F4:91:AA:82:FD:FB:B0:F7:BC:EF:38:A3 Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0B76 Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/4BA5EC4293D911EE86212B1DC4F9AE02.roa Signing time: Thu 28 Dec 2023 19:16:41 +0000 ROA not before: Thu 28 Dec 2023 19:16:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38556 IP address blocks: 116.212.184.0/23 maxlen: 23 116.212.184.0/24 maxlen: 24 116.212.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 19:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Dec 28 19:16:41 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658dc999-a48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:56:0b:2e:03:dd:04:72:d6:61:35:e2:c2: c8:95:c3:b6:a5:2e:7a:d6:28:9c:ea:3a:b2:8c:73: 67:29:49:7d:23:78:89:ce:3f:71:ab:59:ca:27:db: 9a:39:79:98:70:63:c2:58:65:c5:86:12:cd:30:76: 98:7b:d5:5e:7f:34:92:d9:4f:bb:ab:63:c6:dd:f9: cd:47:c7:cf:99:89:ff:73:11:c7:14:06:ac:89:c4: 6e:94:d6:58:52:c2:d7:0a:24:0f:21:12:21:02:6e: 57:eb:48:ce:4e:91:cf:74:89:e5:a3:88:da:a2:8d: 2d:9a:85:b7:10:ff:e0:57:06:2e:1b:b8:b4:b9:ce: 57:a7:ff:71:88:b6:2f:25:3c:71:18:db:e8:ae:fb: 5e:e8:fb:bc:0b:b3:d3:b5:f3:f1:12:6d:5f:ee:be: 1f:82:36:24:8f:ea:f8:83:11:32:91:98:e3:9d:6b: 65:d5:96:cf:84:3e:82:00:87:ed:0a:a0:79:48:cc: 06:26:f2:ac:9b:ca:f4:6d:e3:7c:ee:7a:12:ea:df: 9a:53:e1:91:0b:89:31:0b:a7:2f:09:07:7d:2d:7d: f3:a9:cc:07:90:01:b9:76:f6:85:c3:98:d7:bd:0d: 5a:2e:6c:f3:a3:53:73:cb:f5:ac:dd:5d:47:fd:53: 4d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EF:EB:6C:B5:6D:8D:4B:F4:91:AA:82:FD:FB:B0:F7:BC:EF:38:A3 X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/4BA5EC4293D911EE86212B1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.212.184.0-116.212.186.255 Signature Algorithm: sha256WithRSAEncryption 1a:57:26:af:1b:89:26:90:38:bb:54:00:3e:f4:b3:1e:58:99: 3d:be:96:f4:ed:b0:46:ef:05:7a:f7:81:ab:39:07:a2:61:f6: b2:df:8a:78:b5:c8:e1:52:b4:d1:4d:34:f7:eb:10:b3:7f:a3: c6:57:f3:a1:be:3e:1d:88:d8:49:58:9e:60:74:92:77:b7:9e: 6b:10:6b:a8:40:de:d7:a3:1c:69:7e:43:4d:e8:3d:1f:e4:85: 9d:14:51:6a:a5:fc:cf:9e:69:b5:0c:d6:da:18:e9:8d:68:8a: 8b:29:1e:b3:bb:f8:db:48:ee:76:e7:7b:b0:15:df:c2:21:69: 63:26:2e:23:e9:52:b2:73:da:b2:56:0d:23:55:92:c6:d8:62: 81:99:9d:99:da:f0:e0:c9:67:3e:76:91:32:3a:2d:67:ca:a2: 33:86:bf:73:50:2c:1e:2c:a5:b4:2f:b0:0a:e1:0d:52:ff:06: d9:a5:c7:82:5a:82:a7:3a:a8:5d:67:03:aa:96:e5:4b:8d:22: 66:46:c9:27:da:fa:02:43:58:fb:46:3f:55:50:8c:df:56:cf: 62:02:f1:bb:96:86:75:f1:0f:3f:09:c6:45:00:da:bd:cb:c5: 95:71:98:dc:d7:8b:5c:bc:bf:7a:81:0d:69:5e:1e:23:5c:6b: e5:23:88:4f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjMxMjI4MTkxNjQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzk5OS1hNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfNWCy4D3QRy1mE14sLIlcO2pS561iic6jqyjHNnKUl9I3iJzj9xq1nKJ9ua OXmYcGPCWGXFhhLNMHaYe9VefzSS2U+7q2PG3fnNR8fPmYn/cxHHFAasicRulNZY UsLXCiQPIRIhAm5X60jOTpHPdInlo4jaoo0tmoW3EP/gVwYuG7i0uc5Xp/9xiLYv JTxxGNvorvte6Pu8C7PTtfPxEm1f7r4fgjYkj+r4gxEykZjjnWtl1ZbPhD6CAIft CqB5SMwGJvKsm8r0beN87noS6t+aU+GRC4kxC6cvCQd9LX3zqcwHkAG5dvaFw5jX vQ1aLmzzo1Nzy/Ws3V1H/VNNKQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFCXv62y1 bY1L9JGqgv37sPe87zijMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4OEQvMkExNEJFMDgwMDVBMTFFQThGRENBMTMwQzRGOUFFMDIvNEJBNUVDNDI5 M0Q5MTFFRTg2MjEyQjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA3TUuAMEAHTUujANBgkqhkiG9w0BAQsFAAOCAQEAGlcm rxuJJpA4u1QAPvSzHliZPb6W9O2wRu8FeveBqzkHomH2st+KeLXI4VK00U009+sQ s3+jxlfzob4+HYjYSVieYHSSd7eeaxBrqEDe16McaX5DTeg9H+SFnRRRaqX8z55p tQzW2hjpjWiKiykes7v420judud7sBXfwiFpYyYuI+lSsnPaslYNI1WSxthigZmd mdrw4MlnPnaRMjotZ8qiM4a/c1AsHiyltC+wCuENUv8G2aXHglqCpzqoXWcDqpbl S40iZkbJJ9r6AkNY+0Y/VVCM31bPYgLxu5aGdfEPPwnGRQDavcvFlXGY3NeLXLy/ eoENaV4eI1xr5SOITw== -----END CERTIFICATE-----Generated at Thu Jun 6 21:06:54 2024 by rpki-client on console-fra.rpki-client.org