$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/F490AE2431D811ECA3C4CE3EC4F9AE02.roa File: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (raw, json) Hash identifier: GNe1dYVb0FXMLRJYiYZC+2IVLRAXBrZcFwZEBywqRfM= Subject key identifier: 76:06:ED:5E:80:8E:9F:54:88:79:A0:5B:97:F9:0E:D7:10:C8:98:04 Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 03EA Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/F490AE2431D811ECA3C4CE3EC4F9AE02.roa Signing time: Mon 04 Mar 2024 21:19:43 +0000 ROA not before: Mon 04 Mar 2024 21:19:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 45267 IP address blocks: 64.246.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Mar 4 21:19:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e63aef-85c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f9:1d:cf:c1:2c:52:33:5a:bf:ca:f6:c4:0a: 03:2a:8c:b5:23:60:61:d8:7c:3a:2e:4b:d1:ff:b6: e5:2e:fc:23:1a:22:dd:9f:b0:91:51:c7:5a:3f:77: be:b7:ef:9c:20:60:ed:33:71:37:75:87:7e:ef:73: 7b:05:01:94:e4:3d:6d:11:55:e7:56:c4:8c:18:6d: 21:33:f4:8f:90:a4:af:14:b6:f0:c0:d3:00:64:bb: 4c:a2:61:b4:71:68:e8:28:b5:53:e1:79:7d:71:90: 8a:9a:9e:68:d6:51:1c:57:86:56:70:8e:47:44:41: c7:e4:09:02:e1:36:eb:d9:01:da:53:d3:ee:0d:c8: 2d:57:6c:ee:62:56:34:b4:aa:32:4b:8b:d9:49:6d: e0:61:cd:ba:5b:2e:cb:15:e4:ba:bb:df:48:c3:78: d7:4f:d5:8e:b6:6f:e0:de:42:0e:9b:95:d0:87:7b: b1:54:41:47:b0:08:27:ef:71:cb:8f:fd:43:45:99: 58:df:82:36:1a:5b:6d:27:f0:1c:3d:2e:4f:ba:2b: 4a:58:f8:03:26:de:9c:a9:53:ff:78:1e:f2:70:39: e4:99:4b:8a:94:c3:a7:bd:e7:5d:44:57:0a:45:0c: 21:18:6c:0a:4b:a5:dd:d0:59:0c:c2:68:e3:2d:4f: 75:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:06:ED:5E:80:8E:9F:54:88:79:A0:5B:97:F9:0E:D7:10:C8:98:04 X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/F490AE2431D811ECA3C4CE3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.246.80.0/20 Signature Algorithm: sha256WithRSAEncryption 11:c1:6f:4f:eb:27:61:c4:81:ec:fb:17:b5:01:6d:98:dd:b7: a2:c2:61:2b:bc:de:72:58:54:6b:8a:a5:84:d1:cd:84:ef:f6: c0:bc:2d:dc:de:ce:79:53:61:24:f5:03:1a:26:00:3b:d1:3d: 37:34:46:ac:e8:bc:33:1e:20:93:04:69:71:f9:0f:45:2a:78: 3a:ac:c4:36:52:aa:e1:15:94:a4:68:43:34:f6:24:fd:5e:4b: 3d:66:26:fd:d3:d9:73:eb:a0:10:0b:50:69:6f:29:9f:2c:fc: 54:87:0e:34:be:e4:62:91:aa:68:ac:48:e4:0a:34:05:c7:d7: 0a:0c:a5:aa:72:7b:4d:1f:01:d7:69:f2:23:c2:ed:83:fe:2a: 75:12:ab:32:75:44:05:a3:ac:32:d7:49:c8:db:6f:4b:ba:9e: f5:d3:78:1b:8c:16:92:d0:a8:cb:56:e3:75:a7:48:67:be:a0: ea:f2:49:0f:e6:10:c2:d6:c3:8e:fa:9d:a0:d9:41:4a:09:8e: 47:71:05:0c:4c:fb:cf:c0:c7:fd:9f:92:5d:b3:57:4a:4e:ec: 3b:d9:ea:a9:9e:38:a2:5c:db:ec:12:13:b3:45:a6:c2:f9:cc: fe:88:52:42:2c:c4:e4:ea:4f:a8:09:87:2a:81:af:48:3e:c2: 1b:ea:ff:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjQwMzA0MjExOTQzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2M2FlZi04NWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vkdz8EsUjNav8r2xAoDKoy1I2Bh2Hw6LkvR/7blLvwjGiLdn7CRUcdaP3e+ t++cIGDtM3E3dYd+73N7BQGU5D1tEVXnVsSMGG0hM/SPkKSvFLbwwNMAZLtMomG0 cWjoKLVT4Xl9cZCKmp5o1lEcV4ZWcI5HREHH5AkC4Tbr2QHaU9PuDcgtV2zuYlY0 tKoyS4vZSW3gYc26Wy7LFeS6u99Iw3jXT9WOtm/g3kIOm5XQh3uxVEFHsAgn73HL j/1DRZlY34I2GlttJ/AcPS5PuitKWPgDJt6cqVP/eB7ycDnkmUuKlMOnveddRFcK RQwhGGwKS6Xd0FkMwmjjLU91qwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHYG7V6A jp9UiHmgW5f5DtcQyJgEMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVDMkUvOTUyN0U2QjQyNjhFMTFFQzhFRDBCQTZFQzRGOUFFMDIvRjQ5MEFFMjQz MUQ4MTFFQ0EzQzRDRTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARA9lAwDQYJKoZIhvcNAQELBQADggEBABHBb0/rJ2HEgez7 F7UBbZjdt6LCYSu83nJYVGuKpYTRzYTv9sC8LdzeznlTYST1AxomADvRPTc0Rqzo vDMeIJMEaXH5D0UqeDqsxDZSquEVlKRoQzT2JP1eSz1mJv3T2XProBALUGlvKZ8s /FSHDjS+5GKRqmisSOQKNAXH1woMpapye00fAddp8iPC7YP+KnUSqzJ1RAWjrDLX Scjbb0u6nvXTeBuMFpLQqMtW43WnSGe+oOrySQ/mEMLWw476naDZQUoJjkdxBQxM +8/Ax/2fkl2zV0pO7DvZ6qmeOKJc2+wSE7NFpsL5zP6IUkIsxOTqT6gJhyqBr0g+ whvq/zI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:44 2024 by rpki-client on console-ams.rpki-client.org