$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa File: B46F239C6A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: S6sSUQCmJtkaMtMbA1O0Mmg6DyeiEI+XUAJAroLQzw0= Subject key identifier: 28:E5:F8:D0:D2:0B:57:0F:FC:A0:51:45:6C:17:9C:23:8D:BA:6C:14 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 06D9 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa Signing time: Tue 22 Oct 2024 22:32:00 +0000 ROA not before: Tue 22 Oct 2024 22:32:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9269 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 22 22:32:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671827e0-e46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:dc:b2:82:57:b0:f1:82:14:70:ba:54:b4:26: 37:49:d3:78:9e:6b:88:43:3d:bf:ed:d8:0a:b9:0e: 6e:c1:28:1c:47:d6:72:3b:a7:31:4c:e9:28:c2:d2: d3:8c:84:2d:a7:2f:6e:8f:ee:f3:c3:ee:03:fc:8f: 04:cc:9b:6d:0f:ba:f9:fd:2c:99:08:c4:f1:b3:bc: cc:fd:b2:86:9a:e9:75:3d:69:1d:b4:dd:4d:c3:d0: 08:f6:56:3d:cd:97:45:75:0a:f6:26:2b:c2:40:ea: 19:fc:90:af:7e:97:c8:f2:38:31:62:61:f6:c5:0b: 0f:59:68:de:68:23:e5:08:aa:87:76:e2:0c:1f:14: a3:57:ba:00:6c:3a:cc:05:2f:e3:29:7f:76:cb:4c: ed:b2:d6:10:d2:52:cc:6b:28:44:fb:61:b5:f1:c7: 36:45:22:f3:7d:60:19:f0:45:87:e3:ac:2b:f1:63: 49:74:4d:ae:2d:a0:74:ff:bb:d2:b8:06:9b:95:65: 48:fe:f1:44:6e:32:9d:51:c7:bb:5a:80:4f:7d:51: 4e:2e:db:13:e1:e4:3b:6d:5a:69:26:b6:05:1e:bd: f4:28:81:4d:10:b6:ab:45:12:f3:a6:c9:74:e5:1d: 59:96:ba:04:4a:26:69:2c:e6:4c:df:fb:46:2c:a6: 40:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E5:F8:D0:D2:0B:57:0F:FC:A0:51:45:6C:17:9C:23:8D:BA:6C:14 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 7c:1a:93:3f:d3:75:18:e6:a4:73:34:7b:04:da:96:8b:3f:ed: 2c:25:9b:37:d5:7a:05:4f:93:d2:0c:a3:10:b8:4d:1d:dd:52: d5:a3:e9:e7:6a:43:2d:68:b4:03:8f:30:64:42:ee:6b:7a:59: de:7c:1c:e0:4c:12:09:3f:2e:fd:57:8a:43:0e:fc:c5:a7:83: 6c:9a:cb:46:79:b3:0b:0e:aa:5c:37:de:89:b3:09:4d:50:36: 34:c2:bb:01:e6:d1:b0:65:5b:9f:7d:45:40:1a:54:b7:8e:f3: 73:11:d4:26:10:6b:40:4b:34:41:e3:ad:e8:4b:23:5f:f9:e9: 48:03:75:de:6e:63:1d:80:da:f4:8b:6a:e8:8f:f0:3e:e8:4f: 11:2f:47:5c:09:9a:b5:83:34:fc:30:80:ef:6f:45:0b:ad:56: 16:84:ca:d9:e4:e6:36:a7:c4:78:c2:44:ff:1e:40:19:14:62: 73:52:7b:0e:b7:88:b8:57:e9:d6:bc:53:e6:15:0d:e1:1e:93: cc:5d:6e:89:8c:d8:92:6a:a1:00:56:d7:34:b2:ee:3f:2a:df: cc:de:c4:cd:ab:6c:67:77:71:ff:a9:9d:25:e1:3b:27:00:e7: 7c:16:d5:7c:69:13:87:c2:d3:4a:2d:e5:4a:2f:d8:5a:17:1c: ef:da:d8:cc -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjQxMDIyMjIzMjAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MjdlMC1lNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tyyglew8YIUcLpUtCY3SdN4nmuIQz2/7dgKuQ5uwSgcR9ZyO6cxTOkowtLT jIQtpy9uj+7zw+4D/I8EzJttD7r5/SyZCMTxs7zM/bKGmul1PWkdtN1Nw9AI9lY9 zZdFdQr2JivCQOoZ/JCvfpfI8jgxYmH2xQsPWWjeaCPlCKqHduIMHxSjV7oAbDrM BS/jKX92y0ztstYQ0lLMayhE+2G18cc2RSLzfWAZ8EWH46wr8WNJdE2uLaB0/7vS uAablWVI/vFEbjKdUce7WoBPfVFOLtsT4eQ7bVppJrYFHr30KIFNELarRRLzpsl0 5R1ZlroESiZpLOZM3/tGLKZA2QIDAQABo4IC3zCCAtswHQYDVR0OBBYEFCjl+NDS C1cP/KBRRWwXnCONumwUMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjQ2RjIzOUM2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAfBqTP9N1GOakczR7BNqWiz/tLCWbN9V6BU+T0gyjELhN Hd1S1aPp52pDLWi0A48wZELua3pZ3nwc4EwSCT8u/VeKQw78xaeDbJrLRnmzCw6q XDfeibMJTVA2NMK7AebRsGVbn31FQBpUt47zcxHUJhBrQEs0QeOt6EsjX/npSAN1 3m5jHYDa9Itq6I/wPuhPES9HXAmatYM0/DCA729FC61WFoTK2eTmNqfEeMJE/x5A GRRic1J7DreIuFfp1rxT5hUN4R6TzF1uiYzYkmqhAFbXNLLuPyrfzN7EzatsZ3dx /6mdJeE7JwDnfBbVfGkTh8LTSi3lSi/YWhcc79rYzA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:35 2024 by rpki-client on console-ams.rpki-client.org