$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/4EC5B52480B811EBBEE2CA7FC4F9AE02.roa File: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (raw, json) Hash identifier: bzwAo1vTwZtUvpqV0SE31TfJe7tyOs8AEfKtkNJnl48= Subject key identifier: 05:67:E9:F6:D6:F5:51:65:EA:E6:E2:C8:0F:1F:66:76:4A:BC:D7:80 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 05F8 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/4EC5B52480B811EBBEE2CA7FC4F9AE02.roa Signing time: Sat 12 Oct 2024 22:31:58 +0000 ROA not before: Sat 12 Oct 2024 22:31:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133206 IP address blocks: 148.59.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Oct 12 22:31:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670af8de-d242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fa:ef:97:f4:40:c1:c8:8d:fc:aa:77:76:0d: 71:21:04:64:fa:5f:7e:36:df:ee:35:9c:3c:2e:91: eb:df:2c:9e:90:43:f4:3d:72:e3:54:6d:9a:22:94: 7e:58:d1:87:3f:0d:98:35:60:70:43:fb:ad:e8:b1: 78:3f:88:8f:5c:7f:18:47:0f:0c:6f:c0:f8:91:e7: aa:07:56:72:c1:4f:d5:30:10:f2:90:3d:b0:75:ef: 7a:4c:02:e7:8b:c1:f9:87:e5:f2:ae:88:0a:62:60: 7b:06:87:b5:7a:70:b1:6b:31:87:65:0c:60:1d:10: 1d:33:84:7d:84:f9:30:42:78:d2:b5:4b:68:60:7e: da:ee:5f:b6:f3:b3:82:22:00:7e:b0:e0:ef:bf:e5: 8e:0a:40:e5:27:64:2f:dd:1f:4d:f3:c3:be:86:1f: 82:05:1e:32:5a:7c:08:a0:cf:61:e3:a2:5a:61:0c: af:36:41:20:6c:f7:c7:36:84:8e:ba:e8:ef:58:89: 04:97:45:47:d0:5c:27:2c:42:7c:3b:47:a1:af:83: d8:94:8a:be:37:dd:cf:12:e5:01:44:9f:48:7d:17: 7c:93:48:22:be:a7:67:a3:5c:43:d8:31:6b:8c:84: 68:5b:8f:3e:26:0b:9f:cf:68:92:09:21:e3:9a:5b: 0c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:67:E9:F6:D6:F5:51:65:EA:E6:E2:C8:0F:1F:66:76:4A:BC:D7:80 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/4EC5B52480B811EBBEE2CA7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.59.94.0/24 Signature Algorithm: sha256WithRSAEncryption af:9a:e4:15:f0:99:32:2b:b2:77:87:40:6d:93:9e:e3:64:50: 93:29:68:c9:90:5a:7a:fb:c9:79:96:a2:9b:44:ab:f0:df:ed: 64:e4:24:07:4a:44:a9:c6:4c:5f:77:35:70:9e:a0:67:ee:06: d2:ea:ad:7d:9d:33:72:c0:42:1c:f3:af:7e:8d:fd:9a:ef:fa: 8d:c3:e8:d9:6e:59:d3:65:0b:96:be:94:7c:e4:dd:57:81:88: ce:2a:fe:6d:76:c5:89:14:e3:c3:8f:12:07:d3:df:1a:79:f9: 2b:f0:88:f3:88:24:34:96:57:10:83:8c:0f:a6:82:d8:3b:59: aa:aa:a6:65:18:ec:97:f5:e6:16:87:2a:0e:3a:24:93:07:da: 11:25:58:91:4e:94:f4:7d:5d:4d:5f:17:02:73:f5:ca:46:9d: ee:cb:46:9e:80:18:b6:fc:5e:5a:f8:03:92:08:33:60:3f:9d: 0f:96:5a:c2:b0:89:b3:6a:d0:93:72:fa:b9:6a:fd:81:58:fe: 48:83:7b:f4:bc:31:39:8c:38:15:97:ff:49:ab:51:b6:bc:d6: 5b:2e:a9:b5:30:f0:67:e2:9f:d8:44:b1:28:96:7a:08:f9:7b: 57:e1:71:61:2b:6f:16:bc:18:1a:1c:b7:a0:0a:cd:72:d9:f1: c7:32:67:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjQxMDEyMjIzMTU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBhZjhkZS1kMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPrvl/RAwciN/Kp3dg1xIQRk+l9+Nt/uNZw8LpHr3yyekEP0PXLjVG2aIpR+ WNGHPw2YNWBwQ/ut6LF4P4iPXH8YRw8Mb8D4keeqB1ZywU/VMBDykD2wde96TALn i8H5h+XyrogKYmB7Boe1enCxazGHZQxgHRAdM4R9hPkwQnjStUtoYH7a7l+287OC IgB+sODvv+WOCkDlJ2Qv3R9N88O+hh+CBR4yWnwIoM9h46JaYQyvNkEgbPfHNoSO uujvWIkEl0VH0FwnLEJ8O0ehr4PYlIq+N93PEuUBRJ9IfRd8k0givqdno1xD2DFr jIRoW48+Jgufz2iSCSHjmlsMxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAVn6fbW 9VFl6ubiyA8fZnZKvNeAMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNEQzUvRTlGMjkyQzY4MEI2MTFFQkJFQ0JGMzc5QzRGOUFFMDIvNEVDNUI1MjQ4 MEI4MTFFQkJFRTJDQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACUO14wDQYJKoZIhvcNAQELBQADggEBAK+a5BXwmTIrsneH QG2TnuNkUJMpaMmQWnr7yXmWoptEq/Df7WTkJAdKRKnGTF93NXCeoGfuBtLqrX2d M3LAQhzzr36N/Zrv+o3D6NluWdNlC5a+lHzk3VeBiM4q/m12xYkU48OPEgfT3xp5 +SvwiPOIJDSWVxCDjA+mgtg7WaqqpmUY7Jf15haHKg46JJMH2hElWJFOlPR9XU1f FwJz9cpGne7LRp6AGLb8Xlr4A5IIM2A/nQ+WWsKwibNq0JNy+rlq/YFY/kiDe/S8 MTmMOBWX/0mrUba81lsuqbUw8Gfin9hEsSiWegj5e1fhcWErbxa8GBoct6AKzXLZ 8ccyZ6s= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:37 2024 by rpki-client on console-ams.rpki-client.org