$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/15C53E46A36B11EF93A3C460C4F9AE02.roa File: 15C53E46A36B11EF93A3C460C4F9AE02.roa (raw, json) Hash identifier: AH7A2JvJh3bIuqX5xOC6q7jSDpxrd3DH2pdvQN0stDs= Subject key identifier: C8:D3:D9:26:EE:36:FF:92:10:61:87:81:AA:92:08:D0:D5:38:65:6E Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 21C6 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/15C53E46A36B11EF93A3C460C4F9AE02.roa Signing time: Wed 20 Nov 2024 16:19:50 +0000 ROA not before: Wed 20 Nov 2024 16:19:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 834 IP address blocks: 180.210.221.0/24 maxlen: 24 180.210.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8646 (0x21c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Nov 20 16:19:50 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=673e0c26-5936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:df:3d:6b:7e:24:61:f8:fc:50:37:90:65:90: b1:45:e3:d4:2a:0e:a8:d0:7e:01:d7:f5:61:7e:ba: ad:1f:44:3c:07:89:07:19:82:6b:cd:bb:1d:00:73: 57:72:7d:57:41:a2:b0:b5:d5:ef:b3:80:08:42:c2: 2b:63:e0:95:c7:8e:aa:9d:80:1c:06:04:bb:83:c3: 07:ee:e1:05:36:b8:bf:3d:14:7c:aa:a9:4d:3a:f7: 92:3f:04:2b:ff:f8:e3:7d:46:0a:f3:23:e4:88:a7: 0c:24:4f:60:20:7a:f0:69:2b:cb:ef:8c:5f:ef:3d: ce:bc:94:1c:26:57:84:ea:50:1b:82:78:ca:55:57: 11:5b:1b:4c:04:34:7a:6f:82:b7:64:33:7d:3f:20: fe:69:ef:88:18:3f:43:cc:60:6b:ae:d5:cf:a7:39: 66:dc:80:58:ea:82:6c:cb:d0:d3:14:2a:e1:43:59: 9a:15:23:c9:f6:43:ca:9a:c2:20:63:36:3c:74:d1: 0a:f0:ee:27:66:29:6c:86:2b:5b:cd:9e:3a:a4:8e: 76:2c:ff:01:53:a0:56:cc:67:73:b1:7e:8e:45:57: 21:bc:c3:f1:6f:05:a8:b9:9d:16:d5:4c:90:31:1b: 94:7b:6b:e7:f4:6c:c9:ed:03:8e:ac:d4:59:0f:d0: 2c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D3:D9:26:EE:36:FF:92:10:61:87:81:AA:92:08:D0:D5:38:65:6E X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/15C53E46A36B11EF93A3C460C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.210.221.0/24 180.210.223.0/24 Signature Algorithm: sha256WithRSAEncryption 17:b7:94:67:a9:5b:7f:4d:40:09:82:59:30:4d:7b:d6:a4:72: ce:d8:88:cb:2a:f1:1c:00:f4:1d:b2:a9:36:55:d2:41:60:3f: 82:cc:ae:3a:5e:93:03:33:2f:0b:23:53:ac:25:0e:9c:b7:60: 48:0d:6e:9d:dc:c7:68:36:51:08:e8:ad:bb:d7:21:f6:79:a7: ec:77:d7:3c:16:a5:f3:9d:73:1b:47:ca:87:2c:07:e0:55:ed: ed:ce:2d:5d:71:1c:62:21:9d:27:8e:10:e9:8c:22:44:2d:bd: ba:84:7f:dd:b9:c2:bf:cd:56:28:af:0b:cb:4d:e5:86:64:53: bd:30:68:04:3d:cc:f4:ff:f7:63:ea:40:d0:06:9f:2f:10:35: 15:58:ca:d2:f6:72:5f:de:bd:1d:7b:09:8b:a2:63:91:07:2b: 6a:17:c2:00:d9:cd:a7:89:af:a8:56:89:17:ab:97:b1:7d:40: d7:a3:a1:8f:80:64:e5:4c:c6:4e:5f:16:b5:ca:4c:a9:7a:0c: ea:2f:87:df:ef:3f:b3:c3:a4:13:36:a6:87:a3:5a:37:98:c0: eb:fe:a5:b7:1e:7d:1a:be:33:29:fb:e1:0f:46:c5:21:5a:67: cc:7d:af:8c:d6:9e:ec:7f:e5:d2:71:b0:8b:12:52:cf:03:68: a6:b1:89:09 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICIcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjQxMTIwMTYxOTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlMGMyNi01OTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0989a34kYfj8UDeQZZCxRePUKg6o0H4B1/VhfrqtH0Q8B4kHGYJrzbsdAHNX cn1XQaKwtdXvs4AIQsIrY+CVx46qnYAcBgS7g8MH7uEFNri/PRR8qqlNOveSPwQr //jjfUYK8yPkiKcMJE9gIHrwaSvL74xf7z3OvJQcJleE6lAbgnjKVVcRWxtMBDR6 b4K3ZDN9PyD+ae+IGD9DzGBrrtXPpzlm3IBY6oJsy9DTFCrhQ1maFSPJ9kPKmsIg YzY8dNEK8O4nZilshitbzZ46pI52LP8BU6BWzGdzsX6ORVchvMPxbwWouZ0W1UyQ MRuUe2vn9GzJ7QOOrNRZD9AsHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMjT2Sbu Nv+SEGGHgaqSCNDVOGVuMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvMTVDNTNFNDZB MzZCMTFFRjkzQTNDNDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAC00t0DBAC00t8wDQYJKoZIhvcNAQELBQADggEBABe3lGep W39NQAmCWTBNe9akcs7YiMsq8RwA9B2yqTZV0kFgP4LMrjpekwMzLwsjU6wlDpy3 YEgNbp3cx2g2UQjorbvXIfZ5p+x31zwWpfOdcxtHyocsB+BV7e3OLV1xHGIhnSeO EOmMIkQtvbqEf925wr/NViivC8tN5YZkU70waAQ9zPT/92PqQNAGny8QNRVYytL2 cl/evR17CYuiY5EHK2oXwgDZzaeJr6hWiRerl7F9QNejoY+AZOVMxk5fFrXKTKl6 DOovh9/vP7PDpBM2poejWjeYwOv+pbcefRq+Myn74Q9GxSFaZ8x9r4zWnux/5dJx sIsSUs8DaKaxiQk= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:14 2024 by rpki-client on console-ams.rpki-client.org