$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/004E48CA008611EEA0F2B440C4F9AE02.roa File: 004E48CA008611EEA0F2B440C4F9AE02.roa (raw, json) Hash identifier: 8DE/TKExM2of42c5A8xqnIH3WAtnX8iCbZG5rmNILIM= Subject key identifier: C8:11:8C:42:C5:9E:B6:D3:4F:00:E9:61:BA:DB:71:00:D2:C2:05:81 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 2FC6 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/004E48CA008611EEA0F2B440C4F9AE02.roa Signing time: Tue 30 Apr 2024 15:52:56 +0000 ROA not before: Tue 30 Apr 2024 15:52:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141180 IP address blocks: 180.87.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12230 (0x2fc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:56 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663113d7-8286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:73:d9:eb:0d:26:5d:cd:a5:80:bd:4a:93: 22:b0:8c:09:b7:d3:e1:5f:a5:72:97:ed:dd:79:b4: 7f:8a:da:ad:ae:b4:ed:2d:d6:de:e1:a7:f7:92:77: 0b:41:69:e2:5f:89:0e:7f:35:9c:d9:b9:cd:0a:7a: cb:97:5e:6f:2d:df:64:52:e0:5b:d1:9e:22:ed:18: ad:91:28:6a:0d:23:11:57:dc:3d:c6:4a:68:12:96: 40:c0:94:3b:4f:74:cc:f9:14:43:38:ad:61:35:b8: 35:b8:6f:11:69:a1:3d:46:2e:0d:17:47:b3:a8:70: 80:2f:9f:6b:8f:99:2f:6d:04:24:fe:d9:6a:ac:fa: 24:79:c7:56:93:52:c2:31:2c:80:0c:38:f9:96:1d: f1:31:aa:2f:36:a7:ff:a0:da:e3:bf:1b:75:e3:77: 0e:06:32:f3:80:be:68:f1:e3:e8:9b:d9:ec:6f:08: 7f:0f:8a:c9:45:80:4d:f0:b3:3b:46:e8:a8:bb:e3: 51:16:ba:6f:37:35:ca:cf:b3:da:cc:97:17:99:df: 43:d7:70:4b:61:08:ec:cb:b1:55:31:06:b9:31:01: bb:60:6a:ea:71:53:3c:c4:1c:b4:f3:d9:80:37:a7: 73:a0:3e:80:63:61:9d:c9:59:7c:69:46:33:9e:84: ee:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:11:8C:42:C5:9E:B6:D3:4F:00:E9:61:BA:DB:71:00:D2:C2:05:81 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/004E48CA008611EEA0F2B440C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.87.59.0/24 Signature Algorithm: sha256WithRSAEncryption b7:13:b2:9d:13:4a:b1:bf:a1:fc:af:9f:bd:b7:85:4e:23:d4: c1:c0:41:1c:16:59:17:04:2e:42:b8:e6:05:a9:17:2b:10:56: e2:c9:c5:3c:99:08:02:08:0e:02:d8:e7:8a:21:3d:65:f7:16: 41:26:b9:d8:3f:b0:df:1a:f5:13:57:1b:95:00:b0:c4:c5:ea: f8:b0:90:d0:9d:1d:21:13:b9:56:c9:1d:94:b6:b6:6e:8e:8a: 96:20:dc:d8:f7:a8:9c:6b:1c:e6:3a:ea:63:01:33:8f:13:72: fd:40:e3:6e:2b:0c:1f:1e:1d:09:c1:78:c1:b7:91:5e:00:86: 1f:64:7f:c2:1d:77:a1:3d:23:dd:a0:dd:bb:db:92:4a:a8:c6: 3d:55:5b:9b:fa:a4:c4:ff:0d:c0:5c:09:8d:48:f0:7b:e3:f0: 42:b8:ac:61:85:8b:f9:ef:c5:f1:38:5f:4a:f9:76:09:3b:29: 6e:81:63:e5:be:8e:d5:55:62:13:69:0a:85:1f:97:e4:8e:b1: 39:86:0e:aa:d8:1f:de:ab:79:0b:48:e8:76:e3:56:be:84:65: 73:5b:3c:e3:6c:fe:c0:a2:c4:7b:f4:eb:4f:f4:49:ff:51:02: 54:74:1e:43:c5:3a:4c:45:03:69:18:93:da:c4:27:9e:c0:1e: 59:39:8a:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICL8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjQwNDMwMTU1MjU2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMTNkNy04Mjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhlz2esNJl3NpYC9SpMisIwJt9PhX6Vyl+3debR/itqtrrTtLdbe4af3kncL QWniX4kOfzWc2bnNCnrLl15vLd9kUuBb0Z4i7RitkShqDSMRV9w9xkpoEpZAwJQ7 T3TM+RRDOK1hNbg1uG8RaaE9Ri4NF0ezqHCAL59rj5kvbQQk/tlqrPokecdWk1LC MSyADDj5lh3xMaovNqf/oNrjvxt143cOBjLzgL5o8ePom9nsbwh/D4rJRYBN8LM7 Ruiou+NRFrpvNzXKz7PazJcXmd9D13BLYQjsy7FVMQa5MQG7YGrqcVM8xBy089mA N6dzoD6AY2GdyVl8aUYznoTucwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMgRjELF nrbTTwDpYbrbcQDSwgWBMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMDA0RTQ4Q0Ew MDg2MTFFRUEwRjJCNDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC0VzswDQYJKoZIhvcNAQELBQADggEBALcTsp0TSrG/ofyv n723hU4j1MHAQRwWWRcELkK45gWpFysQVuLJxTyZCAIIDgLY54ohPWX3FkEmudg/ sN8a9RNXG5UAsMTF6viwkNCdHSETuVbJHZS2tm6OipYg3Nj3qJxrHOY66mMBM48T cv1A424rDB8eHQnBeMG3kV4Ahh9kf8Idd6E9I92g3bvbkkqoxj1VW5v6pMT/DcBc CY1I8Hvj8EK4rGGFi/nvxfE4X0r5dgk7KW6BY+W+jtVVYhNpCoUfl+SOsTmGDqrY H96reQtI6HbjVr6EZXNbPONs/sCixHv060/0Sf9RAlR0HkPFOkxFA2kYk9rEJ57A Hlk5iqw= -----END CERTIFICATE-----Generated at Thu May 16 17:51:49 2024 by rpki-client on console-ams.rpki-client.org