$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/C605A7A01CF911EDBAE62F45C4F9AE02.roa File: C605A7A01CF911EDBAE62F45C4F9AE02.roa (raw, json) Hash identifier: dkCYBmAm0OsNXUn60urmLpPiFKakWVNsJOBeAK9VAVY= Subject key identifier: 2C:E4:93:FC:A8:F7:6C:3F:4C:06:40:42:4D:8A:0E:42:42:FE:DC:C3 Certificate issuer: /CN=A913A5BD/serialNumber=D5F174FFFDFA108BBB2F87E73C6E9DD5108D3A9F Certificate serial: 018C Authority key identifier: D5:F1:74:FF:FD:FA:10:8B:BB:2F:87:E7:3C:6E:9D:D5:10:8D:3A:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/C605A7A01CF911EDBAE62F45C4F9AE02.roa Signing time: Fri 03 May 2024 05:17:46 +0000 ROA not before: Fri 03 May 2024 05:17:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45213 IP address blocks: 139.86.0.0/16 maxlen: 16 139.86.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.crl rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD/serialNumber=D5F174FFFDFA108BBB2F87E73C6E9DD5108D3A9F Validity Not Before: May 3 05:17:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6634737a-f06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:aa:fe:f1:7a:ac:92:2a:9b:14:75:bc:e5:a9: 4e:ba:f3:2d:28:f0:b0:28:4a:e5:59:5e:9c:38:0e: 53:55:f5:45:c4:d1:c2:f0:24:9b:59:9d:59:00:f7: 8d:5a:d9:56:e3:58:4c:26:fa:1b:9d:71:7c:d3:85: 30:b4:fd:3e:81:06:e4:cd:e2:30:62:d6:a2:69:dd: a3:73:d3:87:37:41:3e:87:dd:98:c0:c6:26:a5:10: f2:1b:55:37:64:24:57:d9:cb:17:45:64:d6:ce:87: ba:72:d8:76:74:ab:64:73:7b:5c:a7:11:4c:25:ae: d5:57:7d:0d:19:78:39:25:ad:9a:8f:f7:7e:e2:90: 38:3c:20:18:63:65:fb:87:9a:bb:c6:01:6d:5c:fd: bd:f6:aa:7d:94:87:2e:91:69:97:53:e9:9c:c3:4b: 56:27:d0:76:56:38:41:62:e9:ac:76:fe:29:90:29: 75:ab:ba:0e:68:a1:bb:d3:0d:75:cf:b1:f1:84:ee: 6f:a8:49:75:29:df:f1:c7:37:44:ca:0b:53:fd:f6: 90:91:3e:f9:e1:00:fb:81:c2:da:7d:0f:fd:99:4e: 17:5c:21:34:53:ca:08:50:79:37:d7:23:ed:dc:10: 71:da:6c:36:d4:30:20:e0:a0:99:ac:6f:0e:ae:1e: c9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E4:93:FC:A8:F7:6C:3F:4C:06:40:42:4D:8A:0E:42:42:FE:DC:C3 X509v3 Authority Key Identifier: keyid:D5:F1:74:FF:FD:FA:10:8B:BB:2F:87:E7:3C:6E:9D:D5:10:8D:3A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/C605A7A01CF911EDBAE62F45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:a3:a4:54:9b:d3:d1:9b:2d:fc:72:2f:de:8f:7a:fa:12:9c: 25:3b:4a:df:0a:a4:75:de:be:d0:30:97:7c:e5:29:17:94:66: 10:55:26:30:ed:0e:15:bc:83:47:1a:44:0a:3b:a1:fa:8b:35: e4:b3:80:7f:dd:59:3d:43:db:b5:81:f0:a0:3a:34:02:91:b5: c6:0d:76:40:f4:80:b6:d9:e2:71:d9:8c:8f:b6:83:e4:89:2f: 52:09:86:89:e1:d8:e3:2a:4f:70:2b:41:fb:f0:e2:15:78:d8: 61:12:7c:50:9a:e4:9f:c5:b8:03:65:ab:2c:95:26:d4:e8:7c: ae:cb:a8:48:69:1a:f7:5a:8a:bc:cc:39:71:40:39:74:4f:e3: 62:d0:a1:67:07:b9:66:28:0e:6e:50:5b:51:0d:8b:65:15:fc: 30:1a:6e:c9:06:f7:1a:99:55:22:73:98:03:a2:50:26:84:fc: ac:89:7d:77:eb:4a:b5:58:2d:66:47:e5:95:f0:8c:eb:67:41: f7:8f:3f:8f:a4:c5:11:e7:8a:c7:95:67:9b:fd:f9:ab:4f:9a: dd:35:b6:91:29:20:59:ec:dc:f0:2f:ea:08:a3:88:2b:9c:8f: 81:0b:17:be:c4:3b:41:64:7e:1e:9f:61:ba:94:65:dd:4c:f9: 1d:e0:9a:33 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKEQ1RjE3NEZGRkRGQTEwOEJCQjJGODdFNzNDNkU5REQ1 MTA4RDNBOUYwHhcNMjQwNTAzMDUxNzQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0NzM3YS1mMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqr+8XqskiqbFHW85alOuvMtKPCwKErlWV6cOA5TVfVFxNHC8CSbWZ1ZAPeN WtlW41hMJvobnXF804UwtP0+gQbkzeIwYtaiad2jc9OHN0E+h92YwMYmpRDyG1U3 ZCRX2csXRWTWzoe6cth2dKtkc3tcpxFMJa7VV30NGXg5Ja2aj/d+4pA4PCAYY2X7 h5q7xgFtXP299qp9lIcukWmXU+mcw0tWJ9B2VjhBYumsdv4pkCl1q7oOaKG70w11 z7HxhO5vqEl1Kd/xxzdEygtT/faQkT754QD7gcLafQ/9mU4XXCE0U8oIUHk31yPt 3BBx2mw21DAg4KCZrG8Orh7J1wIDAQABo4IClDCCApAwHQYDVR0OBBYEFCzkk/yo 92w/TAZAQk2KDkJC/tzDMB8GA1UdIwQYMBaAFNXxdP/9+hCLuy+H5zxundUQjTqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC80QjJCMzkzRTFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi8xZkYwX18zNkVJdTdMNGZuUEc2ZDFSQ05P cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFmRjBfXzM2RUl1N0w0Zm5QRzZkMVJDTk9wOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E1QkQvNEIyQjM5M0UxQ0Y3MTFFREEwMEZEMzQzQzRGOUFFMDIvQzYwNUE3QTAx Q0Y5MTFFREJBRTYyRjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCLVjANBgkqhkiG9w0BAQsFAAOCAQEAZaOkVJvT0Zst/HIv 3o96+hKcJTtK3wqkdd6+0DCXfOUpF5RmEFUmMO0OFbyDRxpECjuh+os15LOAf91Z PUPbtYHwoDo0ApG1xg12QPSAttnicdmMj7aD5IkvUgmGieHY4ypPcCtB+/DiFXjY YRJ8UJrkn8W4A2WrLJUm1Oh8rsuoSGka91qKvMw5cUA5dE/jYtChZwe5ZigOblBb UQ2LZRX8MBpuyQb3GplVInOYA6JQJoT8rIl9d+tKtVgtZkfllfCM62dB948/j6TF EeeKx5Vnm/35q0+a3TW2kSkgWezc8C/qCKOIK5yPgQsXvsQ7QWR+Hp9hupRl3Uz5 HeCaMw== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:34 2024 by rpki-client on console-ams.rpki-client.org