$ rpki-client -vvf rpki.apnic.net/member_repository/A912E64A/CCCA5F5EBAB711EBA302942DC4F9AE02/55056D1CBABA11EB8A51C234C4F9AE02.roa File: 55056D1CBABA11EB8A51C234C4F9AE02.roa (raw, json) Hash identifier: Jks+wAurz0A89wXrN9oPKVJZcdKUluPelZM2Gsz3YvQ= Subject key identifier: C6:E8:8F:B7:EB:1E:3E:42:7D:02:7D:9C:80:2E:50:CC:51:A4:6D:F2 Certificate issuer: /CN=A912E64A/serialNumber=07BBECD0EA089FC64EE140DDC8DDBA52E7D910D0 Certificate serial: 0560 Authority key identifier: 07:BB:EC:D0:EA:08:9F:C6:4E:E1:40:DD:C8:DD:BA:52:E7:D9:10:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7vs0OoIn8ZO4UDdyN26UufZENA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E64A/CCCA5F5EBAB711EBA302942DC4F9AE02/55056D1CBABA11EB8A51C234C4F9AE02.roa Signing time: Fri 20 Sep 2024 23:42:38 +0000 ROA not before: Fri 20 Sep 2024 23:42:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24112 IP address blocks: 202.45.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E64A/CCCA5F5EBAB711EBA302942DC4F9AE02/B7vs0OoIn8ZO4UDdyN26UufZENA.crl rsync://rpki.apnic.net/member_repository/A912E64A/CCCA5F5EBAB711EBA302942DC4F9AE02/B7vs0OoIn8ZO4UDdyN26UufZENA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7vs0OoIn8ZO4UDdyN26UufZENA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1376 (0x560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E64A/serialNumber=07BBECD0EA089FC64EE140DDC8DDBA52E7D910D0 Validity Not Before: Sep 20 23:42:38 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ee086e-cab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:e2:99:2a:a9:ae:64:0c:33:d8:ca:57:34: 96:99:8a:e1:d9:a2:85:c2:15:0b:9b:c7:a5:74:3b: d4:c4:a0:39:c4:66:f0:4c:6a:d4:18:e7:45:e4:0a: 25:ee:6a:61:27:fb:5f:88:e0:bf:08:ab:78:1c:2a: ad:83:2b:e5:8e:47:a5:8a:d9:fa:2c:87:4a:39:f6: 94:53:fd:03:8b:ec:d9:3a:97:d4:c6:f9:2b:e7:ed: 1a:fd:82:dc:65:78:b6:4b:51:83:59:08:d0:8e:47: ed:7d:51:c1:7f:7f:27:53:81:ce:d0:3d:f6:20:cb: e6:d3:dd:8d:bf:95:07:1b:b5:8e:b1:9b:4f:b6:bf: 45:b3:99:a3:1d:44:ec:0c:c8:7a:41:44:99:d2:65: df:67:54:b1:28:c7:e4:a8:b6:07:34:1e:50:52:c6: ec:a7:3f:8c:5a:4b:17:4c:91:af:a1:69:47:77:ba: e5:39:74:e7:34:62:2e:05:da:eb:35:e5:b8:c1:aa: f2:a7:d4:90:67:e5:7b:48:11:2c:ab:3b:bc:c0:cb: 17:65:c4:2b:07:9a:31:8a:02:c5:0e:06:66:f1:23: e5:5e:63:6a:c5:10:a2:58:0c:ab:ca:d7:cd:22:ac: 4f:0c:93:d9:e7:f7:21:8d:0c:79:e1:05:a9:fe:c8: e3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E8:8F:B7:EB:1E:3E:42:7D:02:7D:9C:80:2E:50:CC:51:A4:6D:F2 X509v3 Authority Key Identifier: keyid:07:BB:EC:D0:EA:08:9F:C6:4E:E1:40:DD:C8:DD:BA:52:E7:D9:10:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E64A/CCCA5F5EBAB711EBA302942DC4F9AE02/B7vs0OoIn8ZO4UDdyN26UufZENA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7vs0OoIn8ZO4UDdyN26UufZENA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E64A/CCCA5F5EBAB711EBA302942DC4F9AE02/55056D1CBABA11EB8A51C234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.14.0/24 Signature Algorithm: sha256WithRSAEncryption 29:84:7c:12:d5:e4:62:fc:06:c8:89:42:59:1f:94:00:9d:5e: 33:fd:90:0a:d2:db:00:21:7b:a4:d3:77:4e:43:fe:28:55:76: 1e:a7:77:5c:0a:f8:06:f1:f7:5d:99:ed:4b:83:20:33:c3:70: 87:0f:b6:b3:93:8a:ff:89:a9:35:66:a7:16:65:79:45:34:4f: cc:d8:7b:4a:78:26:7b:f4:64:9e:d2:bb:ff:10:50:25:2f:cc: e5:cf:db:e9:57:06:ee:44:8a:ec:c1:e2:7b:56:cb:a7:3c:8a: 5a:a5:84:20:2f:b5:33:cc:30:17:17:ca:4b:e9:5b:80:0f:1f: a2:bf:e2:82:0d:7f:3c:43:6e:89:00:44:75:e3:f2:6a:0b:c3: c0:f1:8a:9e:7c:57:c4:bc:3a:59:c7:ad:86:1f:8c:73:0c:d1: a6:a7:28:3f:4b:a1:a7:be:7a:75:9d:dc:01:76:c1:5d:fb:06: 01:ff:a9:0f:ef:6b:13:73:f4:e6:6a:52:63:20:1a:98:6b:16: 48:02:9f:e1:a5:5a:72:ef:dd:f2:96:a1:f9:fc:70:1e:a5:00: d7:79:93:f9:d8:85:5f:30:24:cb:c5:6f:9e:71:53:05:67:f7: 87:27:a1:36:08:39:28:0e:78:78:26:32:e1:36:49:b1:f0:81: c0:ea:31:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU2NEExMTAvBgNVBAUTKDA3QkJFQ0QwRUEwODlGQzY0RUUxNDBEREM4RERCQTUy RTdEOTEwRDAwHhcNMjQwOTIwMjM0MjM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVlMDg2ZS1jYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUzimSqprmQMM9jKVzSWmYrh2aKFwhULm8eldDvUxKA5xGbwTGrUGOdF5Aol 7mphJ/tfiOC/CKt4HCqtgyvljkelitn6LIdKOfaUU/0Di+zZOpfUxvkr5+0a/YLc ZXi2S1GDWQjQjkftfVHBf38nU4HO0D32IMvm092Nv5UHG7WOsZtPtr9Fs5mjHUTs DMh6QUSZ0mXfZ1SxKMfkqLYHNB5QUsbspz+MWksXTJGvoWlHd7rlOXTnNGIuBdrr NeW4waryp9SQZ+V7SBEsqzu8wMsXZcQrB5oxigLFDgZm8SPlXmNqxRCiWAyrytfN IqxPDJPZ5/chjQx54QWp/sjjowIDAQABo4IClTCCApEwHQYDVR0OBBYEFMboj7fr Hj5CfQJ9nIAuUMxRpG3yMB8GA1UdIwQYMBaAFAe77NDqCJ/GTuFA3cjdulLn2RDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTY0QS9DQ0NBNUY1RUJB QjcxMUVCQTMwMjk0MkRDNEY5QUUwMi9CN3ZzME9vSW44Wk80VURkeU4yNlV1ZlpF TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3dnMwT29JbjhaTzRVRGR5TjI2VXVmWkVOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU2NEEvQ0NDQTVGNUVCQUI3MTFFQkEzMDI5NDJEQzRGOUFFMDIvNTUwNTZEMUNC QUJBMTFFQjhBNTFDMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKLQ4wDQYJKoZIhvcNAQELBQADggEBACmEfBLV5GL8BsiJ QlkflACdXjP9kArS2wAhe6TTd05D/ihVdh6nd1wK+Abx912Z7UuDIDPDcIcPtrOT iv+JqTVmpxZleUU0T8zYe0p4Jnv0ZJ7Su/8QUCUvzOXP2+lXBu5EiuzB4ntWy6c8 ilqlhCAvtTPMMBcXykvpW4APH6K/4oINfzxDbokARHXj8moLw8Dxip58V8S8OlnH rYYfjHMM0aanKD9Loae+enWd3AF2wV37BgH/qQ/vaxNz9OZqUmMgGphrFkgCn+Gl WnLv3fKWofn8cB6lANd5k/nYhV8wJMvFb55xUwVn94cnoTYIOSgOeHgmMuE2SbHw gcDqMbg= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org