$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa File: CBAED530FE6A11ECAB640344C4F9AE02.roa (raw, json) Hash identifier: ICClcvVBKcFuPdfdFfNgviyTAzomOOoPWyOYhtZ5b7Q= Subject key identifier: C0:DB:46:42:98:E8:72:EE:09:61:0F:61:A8:6B:62:CC:54:BE:0A:ED Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 0F9A Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa Signing time: Thu 30 May 2024 18:51:09 +0000 ROA not before: Thu 30 May 2024 18:51:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139341 IP address blocks: 162.14.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3994 (0xf9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: May 30 18:51:09 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ca9d-edcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b3:bd:1f:60:a5:6c:4b:50:98:ad:36:a0:84: 49:7f:51:d2:f9:a1:98:86:70:83:f1:ac:e1:02:50: bd:3a:95:67:3c:3a:de:cb:a2:66:7d:0f:3c:b2:e2: e3:8d:6d:59:99:46:1c:3e:84:8e:4f:f3:39:ed:fe: 78:02:2d:a9:89:90:fb:2b:c6:fe:5f:1b:41:58:00: 64:e3:53:56:79:a8:8f:47:33:09:91:51:2e:7b:42: c2:a5:04:34:76:d6:f6:e7:d1:07:04:78:95:b1:d7: a6:56:1d:dc:dc:68:7a:b4:47:97:36:86:0f:1a:fc: 85:62:03:d3:9f:29:fb:3d:56:92:f6:1a:b2:ee:1b: 47:1d:f5:15:50:9b:0e:64:bf:c6:f3:0e:62:24:3b: fb:b8:bb:14:f6:59:06:6e:dc:3d:b5:70:60:8f:dd: 05:99:4f:6e:21:73:8f:6b:04:51:75:f1:9c:42:49: a3:c1:be:95:f0:c7:39:f5:0d:e7:ac:6f:1a:c3:f8: 3a:4a:1e:ee:76:84:5e:09:1f:67:0e:27:c6:c3:27: c8:8f:44:37:5d:44:ee:31:c5:aa:2b:29:c6:c2:b9: d0:c7:b5:bb:f4:f8:14:c4:2b:01:be:e1:65:fe:f1: eb:9a:e7:7f:59:d3:bf:22:ee:68:b9:c9:5a:a9:72: d1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DB:46:42:98:E8:72:EE:09:61:0F:61:A8:6B:62:CC:54:BE:0A:ED X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.14.40.0/21 Signature Algorithm: sha256WithRSAEncryption 52:97:92:2c:dc:f7:f2:d5:33:01:99:ff:51:e2:64:ee:b3:69: 8c:63:5a:d2:63:58:6b:3d:6a:3a:97:4e:48:8f:58:d1:a1:35: 09:a2:69:56:92:f8:75:f5:79:e9:d6:c5:a4:cc:6e:ea:f7:85: f5:18:17:fa:b1:a7:71:06:e2:48:72:12:92:11:b1:ae:04:ba: 69:3d:c6:12:67:e3:95:7c:a5:db:c0:8a:49:48:11:ed:3c:a4: a4:66:b4:6c:80:e9:a0:9a:5e:d7:79:74:3b:cf:52:c0:90:c2: d5:62:1d:fc:f1:35:f9:35:06:6c:4a:c9:d8:24:dc:d1:6a:30: 03:2a:4e:d6:e0:2c:9e:fc:f1:2b:19:93:b4:7f:90:6c:dd:aa: f3:1c:f2:ba:5c:8e:94:2b:92:1d:0b:7a:06:d2:39:68:a4:d1: d1:35:69:09:0f:0b:56:96:3b:9c:98:9a:0f:50:a0:c1:d2:57: e9:2d:44:d8:aa:ae:71:8b:8e:13:46:db:54:c3:f6:eb:a8:cf: 45:ce:22:ec:fb:00:ab:5d:37:73:b0:50:a4:b1:37:3d:1f:4e: dc:bd:fb:ce:67:6e:d4:64:8b:05:8b:0f:e7:87:8e:03:24:36: 51:19:0c:98:b5:c9:e7:4b:42:0b:7c:82:bf:1b:d3:ba:21:1d: 1b:6f:6b:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjQwNTMwMTg1MTA5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4Y2E5ZC1lZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7O9H2ClbEtQmK02oIRJf1HS+aGYhnCD8azhAlC9OpVnPDrey6JmfQ88suLj jW1ZmUYcPoSOT/M57f54Ai2piZD7K8b+XxtBWABk41NWeaiPRzMJkVEue0LCpQQ0 dtb259EHBHiVsdemVh3c3Gh6tEeXNoYPGvyFYgPTnyn7PVaS9hqy7htHHfUVUJsO ZL/G8w5iJDv7uLsU9lkGbtw9tXBgj90FmU9uIXOPawRRdfGcQkmjwb6V8Mc59Q3n rG8aw/g6Sh7udoReCR9nDifGwyfIj0Q3XUTuMcWqKynGwrnQx7W79PgUxCsBvuFl /vHrmud/WdO/Iu5ouclaqXLRowIDAQABo4IClTCCApEwHQYDVR0OBBYEFMDbRkKY 6HLuCWEPYahrYsxUvgrtMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA5NzQvRTEwNUIzQkEzQTQ5MTFFOTk0MEYyRDE2QzRGOUFFMDIvQ0JBRUQ1MzBG RTZBMTFFQ0FCNjQwMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOiDigwDQYJKoZIhvcNAQELBQADggEBAFKXkizc9/LVMwGZ /1HiZO6zaYxjWtJjWGs9ajqXTkiPWNGhNQmiaVaS+HX1eenWxaTMbur3hfUYF/qx p3EG4khyEpIRsa4Eumk9xhJn45V8pdvAiklIEe08pKRmtGyA6aCaXtd5dDvPUsCQ wtViHfzxNfk1BmxKydgk3NFqMAMqTtbgLJ788SsZk7R/kGzdqvMc8rpcjpQrkh0L egbSOWik0dE1aQkPC1aWO5yYmg9QoMHSV+ktRNiqrnGLjhNG21TD9uuoz0XOIuz7 AKtdN3OwUKSxNz0fTty9+85nbtRkiwWLD+eHjgMkNlEZDJi1yedLQgt8gr8b07oh HRtva5o= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:12 2024 by rpki-client on console-ams.rpki-client.org