$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/1D2381425E5F11EC870D9676C4F9AE02.roa File: 1D2381425E5F11EC870D9676C4F9AE02.roa (raw, json) Hash identifier: 88IU+2Ja1d4/dQh6mRfej15suDOs6ZRH0Uer5MyRJcg= Subject key identifier: 8F:9D:BA:11:BD:90:2C:AD:BD:F4:E6:7E:8F:7A:BD:A9:E0:25:BB:09 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0765 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/1D2381425E5F11EC870D9676C4F9AE02.roa Signing time: Thu 04 Apr 2024 23:01:47 +0000 ROA not before: Thu 04 Apr 2024 23:01:47 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141367 IP address blocks: 149.234.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: Apr 4 23:01:47 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660f315b-adf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d7:88:1c:2a:80:4a:86:25:98:1c:e1:76:48: df:99:51:f8:8e:f7:06:30:96:e2:ba:84:68:13:34: 5c:78:69:ec:bc:60:0e:ba:22:02:f4:1a:d6:bf:80: be:24:ea:59:1f:da:ac:b9:db:e5:69:c5:76:64:94: ff:a2:88:af:39:8e:ed:af:8f:90:c7:1b:4b:45:e0: 92:4c:6d:08:1f:b7:43:d5:60:f2:15:fc:61:c7:46: 96:86:73:58:44:28:aa:ea:c2:09:c6:d1:22:92:01: 85:fc:ed:ce:1d:99:9b:b3:59:46:f6:1b:ed:62:f5: 5a:cd:6a:59:5d:90:19:55:27:d2:aa:0a:13:f6:e6: a6:0c:bd:9f:8a:48:3e:06:c3:5e:8a:bc:67:63:67: a4:51:e4:0e:72:50:d2:52:82:23:fc:06:24:39:45: 2d:46:8d:b0:da:1b:87:8b:17:60:37:04:5a:2c:92: 3d:10:66:2c:d8:53:90:b6:31:2b:3e:8d:37:29:fd: d6:03:a2:62:bb:f9:50:18:44:b5:93:9a:e3:8f:bd: e8:dc:81:d8:d3:47:43:9c:4c:1e:d6:b3:df:28:a5: 6d:0b:b7:3f:c7:dc:88:06:24:4e:4d:c1:cf:13:9e: fe:e3:bd:3e:2a:46:c7:ce:f1:76:af:72:3f:70:d8: a2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9D:BA:11:BD:90:2C:AD:BD:F4:E6:7E:8F:7A:BD:A9:E0:25:BB:09 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/1D2381425E5F11EC870D9676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.184.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:0e:c4:bd:7b:5c:3b:cc:48:24:75:3f:b9:50:19:8d:51:e5: 56:67:6e:bb:0a:5d:b0:7e:2b:b8:38:5b:ba:46:b2:8b:fc:0a: 8f:6c:49:69:7e:86:a2:4a:2e:28:3a:fc:65:a8:1b:5e:5e:0c: b3:a9:33:ab:40:e7:e1:1b:c0:30:e4:9d:64:e3:ff:56:da:f4: 67:a0:b7:71:c5:b1:aa:f6:20:0f:c4:9d:1b:ae:e5:67:db:ac: 1d:ca:b9:ae:bc:4d:ab:91:84:c4:c0:d2:79:2c:0e:08:e8:6a: c1:79:67:3e:c2:3e:ac:89:a5:04:16:17:6c:35:9f:31:3e:d6: e6:45:67:71:20:bb:15:5a:85:8e:7c:fb:05:24:48:23:16:b6: ca:39:7a:16:fa:65:cb:ec:82:bc:3c:3a:36:f0:6a:17:95:79: 1a:4e:ee:92:be:27:f7:1c:03:b8:5e:ef:83:36:b5:39:7d:b1: 20:14:27:5a:c3:3b:dd:f1:8d:b2:ff:07:04:32:47:7b:af:bc: 7b:eb:ea:60:2e:bb:a3:92:87:7d:5c:a6:a3:ac:35:92:c4:a0: 79:76:b4:5a:3d:d7:a7:cb:24:d7:e3:a9:84:4d:6f:de:6b:0e: 0c:b7:57:1b:a1:2a:72:41:0e:64:42:93:21:d3:12:8a:b3:77: a8:93:00:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjQwNDA0MjMwMTQ3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMzE1Yi1hZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5deIHCqASoYlmBzhdkjfmVH4jvcGMJbiuoRoEzRceGnsvGAOuiIC9BrWv4C+ JOpZH9qsudvlacV2ZJT/ooivOY7tr4+QxxtLReCSTG0IH7dD1WDyFfxhx0aWhnNY RCiq6sIJxtEikgGF/O3OHZmbs1lG9hvtYvVazWpZXZAZVSfSqgoT9uamDL2fikg+ BsNeirxnY2ekUeQOclDSUoIj/AYkOUUtRo2w2huHixdgNwRaLJI9EGYs2FOQtjEr Po03Kf3WA6Jiu/lQGES1k5rjj73o3IHY00dDnEwe1rPfKKVtC7c/x9yIBiROTcHP E57+470+KkbHzvF2r3I/cNii4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFI+duhG9 kCytvfTmfo96vangJbsJMB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvMUQyMzgxNDI1 RTVGMTFFQzg3MEQ5Njc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6rgwDQYJKoZIhvcNAQELBQADggEBAGoOxL17XDvMSCR1 P7lQGY1R5VZnbrsKXbB+K7g4W7pGsov8Co9sSWl+hqJKLig6/GWoG15eDLOpM6tA 5+EbwDDknWTj/1ba9Gegt3HFsar2IA/EnRuu5WfbrB3Kua68TauRhMTA0nksDgjo asF5Zz7CPqyJpQQWF2w1nzE+1uZFZ3EguxVahY58+wUkSCMWtso5ehb6Zcvsgrw8 OjbwaheVeRpO7pK+J/ccA7he74M2tTl9sSAUJ1rDO93xjbL/BwQyR3uvvHvr6mAu u6OSh31cpqOsNZLEoHl2tFo916fLJNfjqYRNb95rDgy3VxuhKnJBDmRCkyHTEoqz d6iTAFQ= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org