$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa File: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (raw, json) Hash identifier: eMo7OQ1G/bUc1JN9XheAPRxYLyKVHi2BjouvqqZ3x4U= Subject key identifier: 51:A6:E3:C8:58:0A:B5:8C:81:29:2F:BD:E8:3C:F7:B7:D1:22:E2:BE Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: C6 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa Signing time: Sun 14 Apr 2024 22:43:49 +0000 ROA not before: Sun 14 Apr 2024 22:43:49 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 14618 IP address blocks: 116.197.148.0/24 maxlen: 24 116.197.150.0/24 maxlen: 24 116.197.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Apr 14 22:43:49 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=661c5c25-9307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:87:8d:7a:06:2c:ab:0e:58:6a:c2:d5:18: bd:6a:af:f6:b3:86:2e:f0:39:98:67:05:89:43:af: f7:32:e6:10:81:da:cb:85:21:14:51:e2:c0:81:33: aa:1a:e8:b2:7d:08:cd:70:4d:2e:95:f1:bb:00:76: f1:31:24:60:0d:cb:f6:d5:61:0d:e7:f9:b4:64:61: 99:f4:23:87:97:a1:25:33:8f:5e:c0:ac:ca:93:7f: 4b:f3:0c:83:49:8f:f5:a6:5e:a3:a5:2e:fb:71:01: 60:80:aa:77:16:75:9f:55:84:07:d5:88:5d:04:d6: f4:cc:b0:cb:36:aa:75:c8:9d:94:cd:c2:bf:24:01: 7b:81:56:f4:3f:9b:b8:d2:46:91:c5:bd:c8:f2:2d: 62:8d:0c:58:6c:2a:5f:87:cb:a0:4b:c2:9f:e0:95: a2:80:91:4b:c4:49:e3:ab:d3:ec:2e:72:86:96:1b: 75:ea:52:af:cb:4c:21:ac:87:af:a6:bb:24:f2:f6: e7:8e:35:cc:36:a4:ed:a0:d7:fd:f1:6e:73:ff:b6: 50:89:d5:7a:28:eb:df:98:ab:2c:73:65:fe:42:71: 3f:b1:b8:a1:b9:ee:b6:8b:6c:2d:63:d8:53:37:1d: e3:53:70:45:d4:4a:ce:53:c2:a1:55:f7:08:36:f9: 37:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A6:E3:C8:58:0A:B5:8C:81:29:2F:BD:E8:3C:F7:B7:D1:22:E2:BE X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.197.148.0/24 116.197.150.0/23 Signature Algorithm: sha256WithRSAEncryption 07:12:1c:09:0a:57:74:f8:c9:71:92:41:92:5c:f0:26:b0:b9: b1:bd:3f:94:ab:e2:c7:b8:f9:5d:9e:44:fc:5d:b4:3c:3b:ed: 16:62:bf:14:43:e1:77:8c:4f:f2:68:9d:ad:fc:35:31:f8:ce: 86:91:39:8e:59:ae:97:55:b1:d0:5e:0c:18:18:2f:f5:d9:c2: 5a:59:01:14:b5:ef:05:91:bf:95:78:ec:a6:e5:05:37:0e:d3: 24:61:95:3d:d1:aa:36:17:3c:03:bd:27:10:58:4a:8b:26:b0: af:3e:22:96:64:49:62:35:e4:b8:ca:f3:46:25:22:71:55:48: 01:72:2c:0f:4b:fa:c3:57:4b:ec:0f:bf:2a:c0:52:1d:60:d1: 16:71:ce:45:f3:e1:a9:fa:78:a9:9c:41:e3:4e:b2:08:ff:a8: 1f:cf:2e:20:e8:3e:c8:09:64:df:03:77:b6:2b:05:82:e7:a1: b2:88:7b:d3:85:29:7f:eb:e8:4b:6c:20:63:10:f0:f3:47:a2: 76:9e:6e:f7:3f:01:7a:e2:ef:82:78:80:e9:9a:c9:16:52:28: 68:47:41:a4:9c:ea:c4:8e:4d:e1:53:49:86:ae:b6:e8:2b:19: 32:20:9f:68:92:69:c6:5c:d2:91:7c:ad:31:27:7d:1a:0d:a0: 85:66:51:78 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjQwNDE0MjI0MzQ5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFjNWMyNS05MzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtESHjXoGLKsOWGrC1Ri9aq/2s4Yu8DmYZwWJQ6/3MuYQgdrLhSEUUeLAgTOq GuiyfQjNcE0ulfG7AHbxMSRgDcv21WEN5/m0ZGGZ9COHl6ElM49ewKzKk39L8wyD SY/1pl6jpS77cQFggKp3FnWfVYQH1YhdBNb0zLDLNqp1yJ2UzcK/JAF7gVb0P5u4 0kaRxb3I8i1ijQxYbCpfh8ugS8Kf4JWigJFLxEnjq9PsLnKGlht16lKvy0whrIev prsk8vbnjjXMNqTtoNf98W5z/7ZQidV6KOvfmKssc2X+QnE/sbihue62i2wtY9hT Nx3jU3BF1ErOU8KhVfcINvk3GQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFGm48hY CrWMgSkvveg897fRIuK+MB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY2NEYvMUUwODU0QUVERDdEMTFFRDkxQTA0NjREQzRGOUFFMDIvRDFEREZERUNE RDk4MTFFREIyQkJCQTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB0xZQDBAF0xZYwDQYJKoZIhvcNAQELBQADggEBAAcSHAkK V3T4yXGSQZJc8CawubG9P5Sr4se4+V2eRPxdtDw77RZivxRD4XeMT/Jona38NTH4 zoaROY5ZrpdVsdBeDBgYL/XZwlpZARS17wWRv5V47KblBTcO0yRhlT3RqjYXPAO9 JxBYSosmsK8+IpZkSWI15LjK80YlInFVSAFyLA9L+sNXS+wPvyrAUh1g0RZxzkXz 4an6eKmcQeNOsgj/qB/PLiDoPsgJZN8Dd7YrBYLnobKIe9OFKX/r6EtsIGMQ8PNH onaebvc/AXri74J4gOmayRZSKGhHQaSc6sSOTeFTSYautugrGTIgn2iSacZc0pF8 rTEnfRoNoIVmUXg= -----END CERTIFICATE-----Generated at Wed May 1 07:55:37 2024 by rpki-client on console-fra.rpki-client.org