$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa File: 653B503C5C3C11ED9B4FAB0BC4F9AE02.roa (raw, json) Hash identifier: SInZwIRUSrNT+CGA00TI2vqQuV3tnVzc8lQJz4X0YUc= Subject key identifier: E6:73:B9:A4:AE:91:DE:0F:A7:A5:8E:7E:B5:96:17:AB:57:83:D7:DC Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0768 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa Signing time: Thu 04 Apr 2024 23:01:49 +0000 ROA not before: Thu 04 Apr 2024 23:01:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198949 IP address blocks: 149.234.185.0/24 maxlen: 24 149.234.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1896 (0x768) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: Apr 4 23:01:49 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660f315d-fcee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:be:e3:74:6b:7c:3a:73:e3:5d:ac:78:c5:18: 54:3e:32:f8:74:5c:fe:77:36:24:a0:58:2d:7e:d5: a9:c2:c0:75:d0:c1:a6:84:73:32:d9:35:1d:ad:d9: 6c:e7:18:31:98:cd:c0:fb:69:88:bb:d7:81:b0:35: 67:f6:d5:ac:f3:4b:45:7f:b6:25:08:bc:0f:77:51: cb:1d:d4:1f:35:57:2c:c0:b8:57:df:d6:7e:5c:70: 16:a2:d8:b4:ed:99:8e:d4:69:12:bf:e4:4d:25:87: 82:75:8c:d1:52:e5:d6:6d:b5:44:14:51:b4:b8:ad: 1e:c6:b4:05:87:9f:d0:01:f4:24:ef:1c:11:49:56: c3:00:6f:80:71:6f:fa:32:4b:1c:a6:8d:99:64:81: d8:ed:ce:f1:3b:61:1d:68:c8:1b:ea:7c:de:2c:1c: c3:64:12:9b:7a:b8:4a:a8:88:af:52:0b:06:a7:5e: fb:32:26:69:b5:8d:f6:90:aa:4d:dc:24:3c:f7:da: cc:2b:39:cc:20:2b:54:42:2f:7d:cb:b5:35:a1:4b: f4:27:16:be:af:1b:b0:3d:c6:8d:42:34:55:ad:12: 6b:be:69:d3:da:66:f8:f6:18:13:ee:c8:0a:99:62: dc:31:0d:0a:ce:be:d8:50:19:30:e8:5d:c3:12:5c: d1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:73:B9:A4:AE:91:DE:0F:A7:A5:8E:7E:B5:96:17:AB:57:83:D7:DC X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.185.0/24 149.234.187.0/24 Signature Algorithm: sha256WithRSAEncryption 06:c3:6d:d7:83:77:ae:71:23:31:b3:e1:67:fb:bb:d7:bb:bf: 66:d7:08:49:f2:97:47:30:2b:03:16:32:cb:bc:f0:a7:cf:58: 6e:0e:4b:b8:aa:2a:8f:cd:41:eb:47:d6:c7:f8:ce:bd:92:17: 01:dd:7b:e4:f4:23:24:ca:66:2a:a8:2e:84:98:a8:59:a1:49: ba:b6:46:b1:d9:88:57:38:75:63:2a:a2:7b:10:01:27:ec:0c: 41:91:8e:10:26:16:5b:cd:b5:3c:bf:9a:ec:fa:bc:81:41:35: 97:0f:1c:2e:d2:37:11:2f:53:ec:3c:c4:8c:d0:82:2b:92:34: eb:fc:3e:b8:c6:f6:78:23:04:28:36:c5:08:55:85:1b:d0:89: b3:61:d8:13:be:e4:45:82:b3:70:f0:f2:fb:0c:d6:83:b9:07: 9b:4e:8a:b8:e8:42:09:0e:81:f8:dc:4d:17:c5:93:7a:5e:f1: 77:27:45:7b:f0:8d:3e:44:7b:21:bd:79:d7:13:26:bd:1a:d1: f1:6d:7c:bb:da:01:b0:64:e4:c0:08:e3:67:e5:95:7a:08:f3: 68:b6:6d:d5:d5:96:c8:39:78:b0:93:9e:69:f2:bc:8a:67:b7: 9c:68:44:3e:fe:3d:2b:96:6b:74:a2:7b:62:a9:6a:cf:98:19: d3:29:44:1d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjQwNDA0MjMwMTQ5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMzE1ZC1mY2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmr7jdGt8OnPjXax4xRhUPjL4dFz+dzYkoFgtftWpwsB10MGmhHMy2TUdrdls 5xgxmM3A+2mIu9eBsDVn9tWs80tFf7YlCLwPd1HLHdQfNVcswLhX39Z+XHAWoti0 7ZmO1GkSv+RNJYeCdYzRUuXWbbVEFFG0uK0exrQFh5/QAfQk7xwRSVbDAG+AcW/6 Mkscpo2ZZIHY7c7xO2EdaMgb6nzeLBzDZBKberhKqIivUgsGp177MiZptY32kKpN 3CQ899rMKznMICtUQi99y7U1oUv0Jxa+rxuwPcaNQjRVrRJrvmnT2mb49hgT7sgK mWLcMQ0Kzr7YUBkw6F3DElzRjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOZzuaSu kd4Pp6WOfrWWF6tXg9fcMB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvNjUzQjUwM0M1 QzNDMTFFRDlCNEZBQjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACV6rkDBACV6rswDQYJKoZIhvcNAQELBQADggEBAAbDbdeD d65xIzGz4Wf7u9e7v2bXCEnyl0cwKwMWMsu88KfPWG4OS7iqKo/NQetH1sf4zr2S FwHde+T0IyTKZiqoLoSYqFmhSbq2RrHZiFc4dWMqonsQASfsDEGRjhAmFlvNtTy/ muz6vIFBNZcPHC7SNxEvU+w8xIzQgiuSNOv8PrjG9ngjBCg2xQhVhRvQibNh2BO+ 5EWCs3Dw8vsM1oO5B5tOirjoQgkOgfjcTRfFk3pe8XcnRXvwjT5EeyG9edcTJr0a 0fFtfLvaAbBk5MAI42fllXoI82i2bdXVlsg5eLCTnmnyvIpnt5xoRD7+PSuWa3Si e2Kpas+YGdMpRB0= -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:22 2024 by rpki-client on console-ams.rpki-client.org