$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/3EEE50E6A36B11EF9E46987EC4F9AE02.roa File: 3EEE50E6A36B11EF9E46987EC4F9AE02.roa (raw, json) Hash identifier: f7G+JecOso1tq/2DrQIIrvlSbJcZUWeFUA+OwYgWNPo= Subject key identifier: 7B:2B:D6:C1:F0:6E:C2:92:B9:0C:5B:9E:B9:35:78:8D:66:8F:99:63 Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 21C0 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/3EEE50E6A36B11EF9E46987EC4F9AE02.roa Signing time: Fri 15 Nov 2024 16:04:09 +0000 ROA not before: Fri 15 Nov 2024 16:04:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10111 IP address blocks: 59.153.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8640 (0x21c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6 Validity Not Before: Nov 15 16:04:09 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=673770f8-cee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:31:39:ce:8d:df:2f:2b:6d:b7:90:6e:52:0e: 0d:49:cf:ce:37:65:1c:81:b8:44:4a:02:3c:64:90: d2:ea:4a:09:7b:f8:ce:e5:02:f6:49:67:20:fa:81: 4c:c5:eb:1d:24:c8:97:74:7c:50:98:a0:2e:c0:7a: 1b:63:aa:14:8a:f9:4a:c2:af:5e:4b:31:6a:76:8c: 0b:d7:82:9d:26:e5:0b:82:45:ff:7c:6a:8a:e7:e6: cb:77:15:df:5e:dc:bf:a9:c4:43:e8:22:9d:f6:f0: 28:2e:78:5f:43:7d:7d:8d:ca:67:16:c2:c7:d3:3e: c6:10:08:b7:ac:8a:9c:e6:89:e9:60:41:34:f2:2b: aa:4d:24:78:be:44:5b:f1:c9:52:21:ce:15:fe:4a: 81:31:8d:2f:d1:83:db:5c:8b:e3:ed:70:c9:a2:19: 5a:48:16:8b:1c:c5:28:00:2a:18:0e:0f:bc:0a:ce: c8:af:24:85:0f:74:05:c6:e2:52:bc:0a:08:48:ec: 59:d4:11:0b:ee:34:0d:8d:e9:5c:5e:6e:dd:a2:de: e5:b8:5d:95:77:29:82:11:ab:8b:4e:8c:14:eb:3e: b6:58:8f:02:ed:d8:19:66:a6:7c:67:9f:21:e9:ce: 55:14:1a:e6:a8:bc:74:16:dc:ca:8f:12:41:f7:49: 38:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:2B:D6:C1:F0:6E:C2:92:B9:0C:5B:9E:B9:35:78:8D:66:8F:99:63 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/3EEE50E6A36B11EF9E46987EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.30.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:5b:56:58:19:74:ee:a4:2c:cb:bf:b6:fd:c1:8e:1e:ab:81: 61:af:40:a5:b0:09:5c:d0:86:6b:1b:50:79:b3:90:1a:45:9a: 82:9d:f2:38:9f:17:a4:cb:b5:09:0b:83:a2:e0:c6:e1:3e:e0: c9:89:d0:d1:09:f3:7f:b6:1e:a4:af:2d:6d:6e:7b:51:b5:4c: 1b:16:52:b6:2b:38:f3:fa:64:27:c0:36:c5:19:de:4d:88:d5: 66:65:35:ee:ae:d3:a9:e1:8d:5e:57:a9:c8:c2:f0:4a:65:07: 8b:3e:9c:26:06:f9:6a:ac:2f:c6:ed:e8:1b:5e:10:5a:2f:0d: 47:6f:1c:51:f6:91:8e:23:2d:6a:20:ad:f7:ec:bd:b5:bd:b8: ff:b0:7c:f1:ae:06:d6:04:48:02:f6:a5:1b:a6:0a:cc:08:ab: e4:50:6f:44:2e:5a:b2:dd:2d:e5:9f:d9:46:ef:6c:24:b4:bc: 43:30:9f:2a:2f:42:20:ce:07:a1:55:dc:67:76:05:72:3a:e6: a5:43:b7:7e:c7:2d:46:22:5e:09:56:8c:c3:91:1a:d5:63:ee: 4e:51:19:c9:36:3d:48:c1:0f:bd:9c:d5:84:ec:61:ef:e1:8c: ab:bf:1f:0a:23:5e:ca:f7:21:c6:19:fe:e4:d3:56:55:40:04: 55:d9:10:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjQxMTE1MTYwNDA5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM3NzBmOC1jZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjE5zo3fLyttt5BuUg4NSc/ON2UcgbhESgI8ZJDS6koJe/jO5QL2SWcg+oFM xesdJMiXdHxQmKAuwHobY6oUivlKwq9eSzFqdowL14KdJuULgkX/fGqK5+bLdxXf Xty/qcRD6CKd9vAoLnhfQ319jcpnFsLH0z7GEAi3rIqc5onpYEE08iuqTSR4vkRb 8clSIc4V/kqBMY0v0YPbXIvj7XDJohlaSBaLHMUoACoYDg+8Cs7IrySFD3QFxuJS vAoISOxZ1BEL7jQNjelcXm7dot7luF2VdymCEauLTowU6z62WI8C7dgZZqZ8Z58h 6c5VFBrmqLx0FtzKjxJB90k4YQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHsr1sHw bsKSuQxbnrk1eI1mj5ljMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvM0VFRTUwRTZB MzZCMTFFRjlFNDY5ODdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA7mR4wDQYJKoZIhvcNAQELBQADggEBAI5bVlgZdO6kLMu/ tv3Bjh6rgWGvQKWwCVzQhmsbUHmzkBpFmoKd8jifF6TLtQkLg6LgxuE+4MmJ0NEJ 83+2HqSvLW1ue1G1TBsWUrYrOPP6ZCfANsUZ3k2I1WZlNe6u06nhjV5XqcjC8Epl B4s+nCYG+WqsL8bt6BteEFovDUdvHFH2kY4jLWogrffsvbW9uP+wfPGuBtYESAL2 pRumCswIq+RQb0QuWrLdLeWf2UbvbCS0vEMwnyovQiDOB6FV3Gd2BXI65qVDt37H LUYiXglWjMORGtVj7k5RGck2PUjBD72c1YTsYe/hjKu/HwojXsr3IcYZ/uTTVlVA BFXZEOg= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:11 2025 by rpki-client