$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8EADC8C617DC11EE959DE671C4F9AE02.roa File: 8EADC8C617DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: 6C8flD8vnd/kdeGmo3yYb7C0p5hnBO2+Yn8yiEvjx28= Subject key identifier: 1B:E6:68:E6:D6:F1:6B:C6:71:0B:D5:41:6C:DF:2F:BC:03:52:01:D9 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0AF5 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8EADC8C617DC11EE959DE671C4F9AE02.roa Signing time: Mon 04 Dec 2023 20:08:17 +0000 ROA not before: Mon 04 Dec 2023 20:08:17 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 65110 IP address blocks: 58.26.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Dec 4 20:08:17 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656e31b1-e597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:04:1e:35:85:86:c8:e6:c7:6f:bf:5f:bd:63: b5:e8:71:c2:33:d3:05:33:7c:21:3f:d8:17:9d:3a: c5:a7:b2:e8:f3:91:d4:a6:d0:43:37:ef:f1:7a:ec: ac:21:ef:0c:a0:72:a9:26:3e:1d:81:2a:44:0f:62: 7b:f5:d3:61:8a:67:7b:de:e5:df:2b:55:b2:3d:e5: 77:5e:bc:a0:c6:1a:8b:23:70:53:b6:e0:ce:28:11: 6b:33:0f:d0:65:b9:b7:6b:47:2b:33:1c:08:d1:3f: f2:3a:f0:d9:cb:08:8e:8b:fc:0f:80:11:d5:fd:66: d2:40:55:99:43:7e:86:e1:18:8e:b8:c5:7c:52:1d: 38:db:a4:32:3a:22:81:44:97:c4:c8:f6:cb:c5:c1: b0:f2:e8:b9:a7:d0:1a:2a:6b:e9:4a:7e:36:2b:d3: 60:9b:ec:d0:bc:70:0b:76:f2:fd:8a:88:cd:49:71: 53:25:8a:fe:5e:98:52:d6:55:e7:40:41:9a:05:48: e0:3a:cb:2c:ab:2a:0e:9f:a0:e6:a2:68:80:a9:c9: 1e:42:81:50:91:bf:e9:76:29:24:d7:eb:a4:22:d4: dd:d6:d8:20:80:fd:db:41:29:34:24:18:63:47:93: 1f:ae:8e:61:e7:0f:55:89:c1:63:74:91:81:2b:6d: 36:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E6:68:E6:D6:F1:6B:C6:71:0B:D5:41:6C:DF:2F:BC:03:52:01:D9 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8EADC8C617DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.26.224.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:d4:da:11:db:ec:51:16:de:6a:4b:c1:7a:4b:c4:3c:35:54: 09:19:8c:99:da:ce:92:58:a0:ad:88:74:f4:7d:a6:c3:76:09: ef:7a:ab:21:ed:92:9a:18:04:ee:2f:3f:50:7b:be:e3:a4:bd: 6c:74:3b:c2:f9:e5:8c:56:1d:76:ea:23:dc:97:27:7a:cb:84: 8a:b8:90:c3:24:a0:4e:17:b8:aa:d4:10:27:76:17:b0:97:c2: 19:c0:30:8f:83:45:c5:22:a6:95:ae:8b:d7:81:c8:dd:c7:34: d8:de:7f:14:71:c5:30:41:1d:98:61:22:42:7c:b2:a5:7a:78: 28:d5:04:a6:c1:d0:2f:0c:ca:f9:3f:39:3d:1c:e0:9f:1a:af: d1:93:a3:cf:0f:26:89:68:75:f2:23:6a:60:da:94:a4:3e:e0: 56:df:ff:18:95:7b:50:07:6a:7e:1d:dc:44:48:4a:c9:bf:c5: 40:33:53:57:cb:58:77:1e:8a:cf:e2:54:7a:c0:93:d5:d4:da: 8c:53:0a:fb:90:0c:d1:6b:32:b1:1f:00:c9:08:a6:1f:de:72: ce:d9:7a:9f:31:6d:52:63:54:50:d0:03:2f:83:2e:6a:dd:98: 45:d8:2c:69:44:7f:78:97:b3:ff:0e:c0:5c:ee:21:22:a9:90: 9c:9e:11:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjMxMjA0MjAwODE3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMzFiMS1lNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQQeNYWGyObHb79fvWO16HHCM9MFM3whP9gXnTrFp7Lo85HUptBDN+/xeuys Ie8MoHKpJj4dgSpED2J79dNhimd73uXfK1WyPeV3XrygxhqLI3BTtuDOKBFrMw/Q Zbm3a0crMxwI0T/yOvDZywiOi/wPgBHV/WbSQFWZQ36G4RiOuMV8Uh0426QyOiKB RJfEyPbLxcGw8ui5p9AaKmvpSn42K9Ngm+zQvHALdvL9iojNSXFTJYr+XphS1lXn QEGaBUjgOsssqyoOn6DmomiAqckeQoFQkb/pdikk1+ukItTd1tgggP3bQSk0JBhj R5Mfro5h5w9VicFjdJGBK202VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvmaObW 8WvGcQvVQWzfL7wDUgHZMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEVBREM4QzYx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6GuAwDQYJKoZIhvcNAQELBQADggEBAJ7U2hHb7FEW3mpL wXpLxDw1VAkZjJnazpJYoK2IdPR9psN2Ce96qyHtkpoYBO4vP1B7vuOkvWx0O8L5 5YxWHXbqI9yXJ3rLhIq4kMMkoE4XuKrUECd2F7CXwhnAMI+DRcUippWui9eByN3H NNjefxRxxTBBHZhhIkJ8sqV6eCjVBKbB0C8Myvk/OT0c4J8ar9GTo88PJolodfIj amDalKQ+4Fbf/xiVe1AHan4d3ERISsm/xUAzU1fLWHceis/iVHrAk9XU2oxTCvuQ DNFrMrEfAMkIph/ecs7Zep8xbVJjVFDQAy+DLmrdmEXYLGlEf3iXs/8OwFzuISKp kJyeEVw= -----END CERTIFICATE-----Generated at Fri May 31 22:13:02 2024 by rpki-client on console-fra.rpki-client.org