$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa File: 8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa (raw, json) Hash identifier: Pe4PqMIXtInrbuhCkwTXEJmkAr8mwmle3jC+theMc8E= Subject key identifier: BB:4E:35:1B:2E:81:D1:C0:FE:90:D4:E3:7F:F9:96:8F:21:EA:E2:8C Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 57 Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa Signing time: Fri 01 Sep 2023 04:54:45 +0000 ROA not before: Fri 01 Sep 2023 04:54:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45177 IP address blocks: 123.253.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Sep 1 04:54:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f16e95-ba36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2d:85:94:38:43:d5:72:5d:ca:21:dd:44:26: 0e:ab:06:3c:38:fa:0e:21:15:2c:7d:60:20:59:d1: 47:05:cf:68:64:0f:1c:b4:8d:e5:82:ce:4a:b9:d4: 33:78:e1:08:8a:b6:16:4b:7e:12:78:bf:b9:8c:1e: 08:6f:84:12:00:b3:79:46:f1:23:77:84:21:3c:43: fa:27:ed:e2:db:dc:fa:61:fa:74:5a:54:32:75:fb: f5:1d:14:9b:33:b2:e7:5f:bf:98:23:b6:b4:f4:44: c7:fb:df:d8:b3:92:ce:81:f6:c6:17:06:ad:e6:eb: 44:6f:6a:92:d9:13:e0:1b:90:30:09:e7:c2:e2:13: 98:b5:34:c1:1f:f9:f8:f5:99:32:c0:6f:a8:25:60: 97:ba:05:73:63:05:c8:d1:55:7c:93:9a:88:bb:c7: 2f:f1:ec:92:f8:03:96:84:cc:ba:1b:68:37:22:81: 39:86:48:93:c4:89:b5:0e:ea:a5:f3:20:de:d8:45: c1:ce:d7:5f:76:81:82:14:4d:62:ed:3b:e8:50:78: b4:49:fd:b2:7a:a6:ee:64:51:ed:8d:77:93:fc:45: af:57:8c:0c:3e:fa:a2:4f:1e:71:9b:9e:35:32:cf: b9:1a:35:dd:b5:23:a2:38:56:18:55:09:08:c9:b2: 9e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4E:35:1B:2E:81:D1:C0:FE:90:D4:E3:7F:F9:96:8F:21:EA:E2:8C X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.208.0/22 Signature Algorithm: sha256WithRSAEncryption c0:43:4c:8a:00:39:38:91:4d:c8:91:2c:9b:15:d4:5e:4f:3a: 44:17:90:30:e5:e7:de:9f:cf:de:79:9d:8c:14:af:d4:2c:e1: a5:06:04:18:3d:3d:2a:df:6a:fe:dd:b8:21:8d:a7:2e:e4:3b: 3b:48:74:84:40:44:ec:81:3a:45:ef:15:2d:69:a2:ef:07:b0: fd:ef:be:cb:e5:08:d2:eb:ba:56:c0:a9:22:83:91:45:99:cf: ae:05:b0:9f:f2:6a:70:8d:e9:19:ce:88:c6:47:28:6f:c4:e4: e1:44:26:58:1e:f1:4d:1e:b1:25:8f:ef:fc:9a:33:24:cd:5a: 17:c2:79:15:07:85:22:d5:49:b0:d3:eb:b8:56:cb:c8:2b:09: 2f:0f:dc:a3:00:75:af:67:76:cc:04:ad:65:02:df:35:19:7d: 29:fb:91:6f:cb:c9:b2:b8:10:a4:6b:ac:9e:6a:01:fa:a9:57: d5:8a:a4:e7:62:24:5f:17:e8:26:8e:a2:3c:10:3d:41:12:a5: 11:62:8f:80:25:1e:53:bd:36:68:46:98:8e:ed:3f:53:fd:59: 9f:84:bb:eb:a2:df:68:24:07:5b:9d:51:6d:31:9f:4a:c0:40: 09:a9:29:90:df:24:56:78:65:66:df:4c:43:ae:de:f2:40:77: fc:db:dc:ce -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0MxRDExMC8GA1UEBRMoRkIwMTk3RDgwMkE2NjE4NkU4NDBCRDYyRTg4RUU0MEVE OTVFOTUyOTAeFw0yMzA5MDEwNDU0NDVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjE2ZTk1LWJhMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBLYWUOEPVcl3KId1EJg6rBjw4+g4hFSx9YCBZ0UcFz2hkDxy0jeWCzkq51DN4 4QiKthZLfhJ4v7mMHghvhBIAs3lG8SN3hCE8Q/on7eLb3Pph+nRaVDJ1+/UdFJsz sudfv5gjtrT0RMf739izks6B9sYXBq3m60RvapLZE+AbkDAJ58LiE5i1NMEf+fj1 mTLAb6glYJe6BXNjBcjRVXyTmoi7xy/x7JL4A5aEzLobaDcigTmGSJPEibUO6qXz IN7YRcHO1192gYIUTWLtO+hQeLRJ/bJ6pu5kUe2Nd5P8Ra9XjAw++qJPHnGbnjUy z7kaNd21I6I4VhhVCQjJsp6vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUu041Gy6B 0cD+kNTjf/mWjyHq4owwHwYDVR0jBBgwFoAU+wGX2AKmYYboQL1i6I7kDtlelSkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzFELzhDRkUxRDlBRDFF MjExRUQ5MjNDNjExRkM0RjlBRTAyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXdHWDJBS21ZWWJvUUwxaTZJN2tEdGxlbFNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0MxRC84Q0ZFMUQ5QUQxRTIxMUVEOTIzQzYxMUZDNEY5QUUwMi84RkY0RTJFMkVG QUUxMUVEQkQ5NkYyNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnv90DANBgkqhkiG9w0BAQsFAAOCAQEAwENMigA5OJFNyJEs mxXUXk86RBeQMOXn3p/P3nmdjBSv1CzhpQYEGD09Kt9q/t24IY2nLuQ7O0h0hEBE 7IE6Re8VLWmi7wew/e++y+UI0uu6VsCpIoORRZnPrgWwn/JqcI3pGc6Ixkcob8Tk 4UQmWB7xTR6xJY/v/JozJM1aF8J5FQeFItVJsNPruFbLyCsJLw/cowB1r2d2zASt ZQLfNRl9KfuRb8vJsrgQpGusnmoB+qlX1Yqk52IkXxfoJo6iPBA9QRKlEWKPgCUe U702aEaYju0/U/1Zn4S766LfaCQHW51RbTGfSsBACakpkN8kVnhlZt9MQ67e8kB3 /Nvczg== -----END CERTIFICATE-----Generated at Fri May 17 08:13:47 2024 by rpki-client on console-fra.rpki-client.org