$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/4CBC0878AA5111ECBEC4A312C4F9AE02.roa File: 4CBC0878AA5111ECBEC4A312C4F9AE02.roa (raw, json) Hash identifier: zplnnTYrDs6ATh1oYF/06orqoqHtQxFtplLwmc2mqPA= Subject key identifier: 59:04:45:08:66:11:96:F2:83:18:69:9F:04:37:78:0E:1E:08:AF:B4 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 06D7 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/4CBC0878AA5111ECBEC4A312C4F9AE02.roa Signing time: Tue 22 Oct 2024 22:31:58 +0000 ROA not before: Tue 22 Oct 2024 22:31:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 24462 IP address blocks: 58.64.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 22 22:31:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671827de-ad21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:cb:7d:3c:27:7c:0e:74:5c:26:74:43:0e: 57:bc:71:8e:fd:2c:cf:1e:da:64:12:f8:08:7f:37: 71:06:29:6d:0c:21:bb:be:5c:14:14:0c:9a:0f:04: e1:54:15:c9:d0:b9:a6:b8:89:f8:4e:61:19:ba:a8: c0:7a:99:ce:e6:0d:ec:0a:2f:e5:34:e2:79:50:34: cb:13:81:e9:0f:ed:70:72:64:46:2e:ea:1c:ef:76: 2e:28:d9:52:b0:6e:be:92:8e:f5:6a:d2:28:9a:98: 2a:cb:8b:a9:c9:68:6d:c2:f3:34:54:67:f5:46:85: d7:5a:3a:76:47:74:8b:c2:3d:4c:6c:f6:38:4f:c0: 9b:d6:8e:40:af:a5:2c:eb:a2:d6:12:69:20:90:4c: 5b:9e:8d:d7:ea:66:2b:f4:65:94:69:87:e3:d0:62: 06:73:06:b5:93:8f:32:55:e6:57:50:81:4d:b5:b5: d7:1b:8c:07:c4:1a:a1:0a:60:a1:b5:4f:48:f8:53: a4:e9:ab:11:b1:78:3a:19:c7:61:5e:88:6d:3f:30: fc:12:73:79:c8:cb:fc:e5:be:ac:b2:aa:7d:da:43: 34:4f:38:1b:0b:32:97:d8:ba:cb:52:c0:de:1d:0b: 97:e1:88:3f:42:5a:dd:a7:96:35:18:3e:00:85:cb: a9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:04:45:08:66:11:96:F2:83:18:69:9F:04:37:78:0E:1E:08:AF:B4 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/4CBC0878AA5111ECBEC4A312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.251.0/24 Signature Algorithm: sha256WithRSAEncryption 37:84:08:84:e4:6f:27:d9:68:f4:59:6f:d4:12:fd:de:a7:cf: 56:b8:62:69:ac:ff:b0:91:90:5c:b4:77:00:97:75:b8:03:7a: b9:1c:90:57:54:7d:b7:d6:40:38:a6:c4:7e:e2:92:14:af:85: 2d:4b:f7:48:ac:e3:34:06:08:be:03:ad:b0:2c:5c:81:b9:e8: 67:f9:97:69:94:c1:d8:f8:2c:2a:b8:bd:bc:5a:96:cb:e5:1e: 46:8a:df:5c:05:9d:cc:05:32:2d:50:c8:3b:1b:ba:53:eb:06: 2a:3c:96:e3:17:3b:99:db:f4:66:9a:27:a7:96:05:c5:7b:79: 77:88:bb:3b:6f:1b:eb:85:59:e3:33:cd:f8:05:6d:45:8f:f4: 6b:98:8d:b4:8f:0b:c1:71:44:89:2e:38:3d:03:ec:6f:27:03: 00:c6:86:92:cb:41:1c:78:d0:d7:79:d7:06:23:f8:a0:bb:ae: 33:08:6e:db:01:82:78:bd:1c:b8:ae:1d:7c:d8:0a:0f:db:a3: 60:37:6d:c4:68:fa:01:e3:a9:d5:2e:8a:a8:c7:4b:74:eb:d7: aa:7e:50:5c:3c:a3:fe:45:7c:33:f6:f9:88:68:83:0a:b0:f4: 77:df:2c:b5:98:8d:d1:71:9e:ca:dc:5f:7c:55:3f:48:da:a9: bd:15:bf:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjQxMDIyMjIzMTU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MjdkZS1hZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsvLfTwnfA50XCZ0Qw5XvHGO/SzPHtpkEvgIfzdxBiltDCG7vlwUFAyaDwTh VBXJ0LmmuIn4TmEZuqjAepnO5g3sCi/lNOJ5UDTLE4HpD+1wcmRGLuoc73YuKNlS sG6+ko71atIompgqy4upyWhtwvM0VGf1RoXXWjp2R3SLwj1MbPY4T8Cb1o5Ar6Us 66LWEmkgkExbno3X6mYr9GWUaYfj0GIGcwa1k48yVeZXUIFNtbXXG4wHxBqhCmCh tU9I+FOk6asRsXg6GcdhXohtPzD8EnN5yMv85b6ssqp92kM0TzgbCzKX2LrLUsDe HQuX4Yg/Qlrdp5Y1GD4AhcupOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFkERQhm EZbygxhpnwQ3eA4eCK+0MB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvNENCQzA4NzhB QTUxMTFFQ0JFQzRBMzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6QPswDQYJKoZIhvcNAQELBQADggEBADeECITkbyfZaPRZ b9QS/d6nz1a4Ymms/7CRkFy0dwCXdbgDerkckFdUfbfWQDimxH7ikhSvhS1L90is 4zQGCL4DrbAsXIG56Gf5l2mUwdj4LCq4vbxalsvlHkaK31wFncwFMi1QyDsbulPr Bio8luMXO5nb9GaaJ6eWBcV7eXeIuztvG+uFWeMzzfgFbUWP9GuYjbSPC8FxRIku OD0D7G8nAwDGhpLLQRx40Nd51wYj+KC7rjMIbtsBgni9HLiuHXzYCg/bo2A3bcRo +gHjqdUuiqjHS3Tr16p+UFw8o/5FfDP2+Yhogwqw9HffLLWYjdFxnsrcX3xVP0ja qb0Vvzw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:35 2024 by rpki-client on console-ams.rpki-client.org