$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/246FF7A2E1CD11EE88C91543C4F9AE02.roa File: 246FF7A2E1CD11EE88C91543C4F9AE02.roa (raw, json) Hash identifier: KVbCZMb4qsrXwErwdG1cPXD8UTuCBQb5XBLFRzMGvX8= Subject key identifier: 1E:A9:BE:0A:4B:0C:70:E4:F9:C1:E9:4B:01:82:13:54:A6:C1:8A:D3 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 0F1D Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/246FF7A2E1CD11EE88C91543C4F9AE02.roa Signing time: Thu 14 Mar 2024 06:36:09 +0000 ROA not before: Thu 14 Mar 2024 06:36:09 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9498 IP address blocks: 152.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 12:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3869 (0xf1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Mar 14 06:36:09 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65f29ad9-3488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fb:3d:bf:71:80:18:d4:34:d4:c5:6e:79:4f: fd:5a:f9:99:10:63:74:44:17:60:5a:80:5c:f8:a1: ae:5b:4f:6a:79:c6:d8:68:cc:26:58:f2:22:3e:46: f0:e1:ac:f5:1d:d8:87:32:91:b9:c4:90:9a:99:99: cf:9e:01:9e:93:97:a6:99:ad:80:c9:a9:c7:8c:0c: fe:f1:70:92:0d:1e:2e:08:ab:35:8e:42:f5:bf:46: 7e:b7:38:2a:dc:ba:8c:73:fc:78:0d:9e:ae:7b:de: a8:18:3a:a5:2a:66:08:d9:27:8e:29:d1:e6:7a:26: a6:76:fd:89:15:4b:d5:2e:e5:b5:08:da:8b:e2:71: bb:34:b1:19:e6:e5:36:04:a4:fa:ed:c2:ab:82:e8: f0:61:9b:17:79:a5:a4:19:a1:6f:3c:3d:62:69:3f: f7:29:ea:ee:55:ba:fc:2b:af:d7:25:1d:47:b3:ed: 14:e0:ae:41:c6:75:aa:33:00:c3:c4:24:18:77:22: cf:50:ef:8c:67:e2:3f:78:2c:4c:df:56:96:bd:e5: ef:69:fa:a0:23:2c:fd:53:c1:22:92:89:54:71:c0: 3d:ac:ef:c4:fe:a8:2d:2c:63:a1:1b:4c:28:8d:a3: bb:f4:9a:eb:af:79:6a:30:08:06:3f:e9:e4:77:f9: b6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A9:BE:0A:4B:0C:70:E4:F9:C1:E9:4B:01:82:13:54:A6:C1:8A:D3 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/246FF7A2E1CD11EE88C91543C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:58:8b:54:b5:44:b5:ca:1e:1a:b3:a0:a0:75:b8:24:27:81: 14:b4:7e:37:38:ef:ae:ca:cd:cc:9f:e6:96:ae:9e:96:59:7d: 46:4c:a1:3b:ad:07:61:0a:8b:c2:e7:23:09:73:37:65:04:2f: 15:6a:ce:01:a8:fb:39:76:57:b9:9b:66:28:29:53:01:ac:0c: 21:63:a1:ec:16:a5:35:ce:bd:7f:13:55:89:0e:9a:1e:38:8e: c0:8d:2f:4c:d1:11:33:3d:47:ca:cc:90:66:62:dd:7d:cc:50: 0c:58:ba:6a:36:4b:5a:de:d9:97:4e:a4:79:91:5d:c7:74:4f: 26:0e:3f:c5:14:83:14:61:6d:db:c4:8e:3d:21:4c:f4:0f:27: d3:f0:5c:a2:b1:74:63:83:85:ea:d5:b5:7e:69:c3:b1:88:6f: b8:74:09:6c:28:f5:d3:35:02:a8:d5:b5:d3:08:c1:e1:fc:72: 36:58:54:15:76:80:20:55:c5:db:dd:b7:31:8b:77:a5:fc:10: c2:29:52:12:91:c5:f6:ac:fc:8a:b6:7f:9f:c7:b8:9f:90:e5: 03:f3:2e:4a:b4:3e:18:01:6d:84:8a:6f:f8:6f:89:95:ce:73: 71:86:77:70:8f:c3:09:b9:5c:0e:09:c5:93:f6:de:37:2b:f2: 3c:12:9c:4f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICDx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjQwMzE0MDYzNjA5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYyOWFkOS0zNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/s9v3GAGNQ01MVueU/9WvmZEGN0RBdgWoBc+KGuW09qecbYaMwmWPIiPkbw 4az1HdiHMpG5xJCamZnPngGek5emma2AyanHjAz+8XCSDR4uCKs1jkL1v0Z+tzgq 3LqMc/x4DZ6ue96oGDqlKmYI2SeOKdHmeiamdv2JFUvVLuW1CNqL4nG7NLEZ5uU2 BKT67cKrgujwYZsXeaWkGaFvPD1iaT/3KeruVbr8K6/XJR1Hs+0U4K5BxnWqMwDD xCQYdyLPUO+MZ+I/eCxM31aWveXvafqgIyz9U8EikolUccA9rO/E/qgtLGOhG0wo jaO79Jrrr3lqMAgGP+nkd/m2XQIDAQABo4IClDCCApAwHQYDVR0OBBYEFB6pvgpL DHDk+cHpSwGCE1SmwYrTMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvMkE1OTQwRjI0QkIzMTFFOUFCMTUxQzE3QzRGOUFFMDIvMjQ2RkY3QTJF MUNEMTFFRTg4QzkxNTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCYNDANBgkqhkiG9w0BAQsFAAOCAQEAd1iLVLVEtcoeGrOg oHW4JCeBFLR+NzjvrsrNzJ/mlq6elll9RkyhO60HYQqLwucjCXM3ZQQvFWrOAaj7 OXZXuZtmKClTAawMIWOh7BalNc69fxNViQ6aHjiOwI0vTNERMz1HysyQZmLdfcxQ DFi6ajZLWt7Zl06keZFdx3RPJg4/xRSDFGFt28SOPSFM9A8n0/BcorF0Y4OF6tW1 fmnDsYhvuHQJbCj10zUCqNW10wjB4fxyNlhUFXaAIFXF2923MYt3pfwQwilSEpHF 9qz8irZ/n8e4n5DlA/MuSrQ+GAFthIpv+G+Jlc5zcYZ3cI/DCblcDgnFk/beNyvy PBKcTw== -----END CERTIFICATE-----Generated at Fri Jun 14 15:17:04 2024 by rpki-client on console-ams.rpki-client.org