$ rpki-client -vvf rpki.apnic.net/member_repository/A913B1DA/14B76BC8ED0B11E2A35DC6485911EA32/B8B02658C16B11EEA7D01A7DC4F9AE02.roa File: B8B02658C16B11EEA7D01A7DC4F9AE02.roa (raw, json) Hash identifier: WamiUU84cAcc5WGx4lslvANbP3TtO/lIaFT/y7zUmEY= Subject key identifier: 88:2A:0C:34:8C:7C:01:0D:DB:67:E5:98:DD:53:F5:4A:C4:E2:83:78 Certificate issuer: /CN=A913B1DA/serialNumber=50E6683A6AF4644B68A11C22DA7F3A65B312C06F Certificate serial: 2FE3 Authority key identifier: 50:E6:68:3A:6A:F4:64:4B:68:A1:1C:22:DA:7F:3A:65:B3:12:C0:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOZoOmr0ZEtooRwi2n86ZbMSwG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B1DA/14B76BC8ED0B11E2A35DC6485911EA32/B8B02658C16B11EEA7D01A7DC4F9AE02.roa Signing time: Thu 08 Aug 2024 15:41:53 +0000 ROA not before: Thu 08 Aug 2024 15:41:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24434 IP address blocks: 202.6.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B1DA/14B76BC8ED0B11E2A35DC6485911EA32/UOZoOmr0ZEtooRwi2n86ZbMSwG8.crl rsync://rpki.apnic.net/member_repository/A913B1DA/14B76BC8ED0B11E2A35DC6485911EA32/UOZoOmr0ZEtooRwi2n86ZbMSwG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOZoOmr0ZEtooRwi2n86ZbMSwG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12259 (0x2fe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B1DA/serialNumber=50E6683A6AF4644B68A11C22DA7F3A65B312C06F Validity Not Before: Aug 8 15:41:53 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b4e741-e95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:79:cd:15:10:17:1d:38:ca:b7:69:66:cb:d0: f6:b1:20:35:0c:9a:da:07:45:52:2e:4d:f9:4e:b1: 08:4d:c1:cd:1d:93:b3:c7:5e:55:2f:37:25:66:91: d7:57:64:94:cc:b6:05:02:e8:5e:9d:08:74:7e:ff: e5:d4:3e:3e:9b:8d:c2:a3:2b:cb:f9:af:6a:21:eb: 2f:39:68:f9:e4:ae:2c:42:2b:55:4c:77:af:e9:ef: 7d:69:1b:41:6e:26:b3:4d:7c:97:7b:02:3b:b8:61: a8:8c:ce:8f:3c:2c:82:c1:60:b0:f4:a8:3b:a1:7f: 2f:18:36:91:19:9b:ff:1f:53:a5:69:69:4b:b8:ed: 88:b5:8e:fa:42:70:21:05:78:8a:9e:c8:6a:e3:74: 88:62:b3:c7:02:3f:11:2c:65:85:ec:e8:a1:cd:3e: 6a:b7:36:57:a0:88:b4:59:64:9d:be:c6:47:79:b5: e2:34:9e:a7:f3:89:4e:ba:02:62:29:70:60:41:1f: 81:98:d4:58:e9:23:47:e2:c2:a0:83:85:ce:d1:39: 62:7d:05:e9:9f:30:d6:78:21:9e:1a:41:93:87:94: 88:74:e0:78:b4:1b:25:e7:be:bb:3a:8d:2b:b5:6b: b5:9f:00:bb:83:e7:c7:8c:fe:6a:7e:43:8e:49:8e: 4e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2A:0C:34:8C:7C:01:0D:DB:67:E5:98:DD:53:F5:4A:C4:E2:83:78 X509v3 Authority Key Identifier: keyid:50:E6:68:3A:6A:F4:64:4B:68:A1:1C:22:DA:7F:3A:65:B3:12:C0:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B1DA/14B76BC8ED0B11E2A35DC6485911EA32/UOZoOmr0ZEtooRwi2n86ZbMSwG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOZoOmr0ZEtooRwi2n86ZbMSwG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B1DA/14B76BC8ED0B11E2A35DC6485911EA32/B8B02658C16B11EEA7D01A7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.6.115.0/24 Signature Algorithm: sha256WithRSAEncryption 65:1c:34:f8:2a:87:70:e4:85:b7:ef:c9:25:d0:14:a8:52:b3: ae:3b:e0:56:a1:05:bc:2c:10:22:ac:f9:b6:d5:6f:d6:80:da: 7c:3c:4d:17:fc:86:f2:9b:f0:21:33:dc:38:0f:0c:27:09:9a: 0f:68:90:96:fd:2a:84:fe:62:8f:fa:74:66:1b:9f:ca:f7:97: 46:b2:1c:e5:5d:00:df:60:fc:5c:be:1d:7d:ab:b3:70:f0:25: a6:33:9d:9f:80:8d:2f:ae:90:99:ec:1f:19:52:ee:f9:fd:db: 45:d3:78:5d:64:e9:ec:d6:42:90:49:38:3c:bd:05:4e:0a:c4: 3e:04:d2:a7:a9:f7:74:fd:23:34:91:9e:62:4c:77:9e:05:b2: 26:00:6e:c4:dc:3f:eb:f1:4e:15:2b:ee:00:8b:a2:d8:f2:f8: f1:d5:fc:e0:3f:07:c7:9b:c0:79:2f:5f:11:a9:8a:61:31:05: 42:c5:64:46:ec:25:d7:dc:1d:8f:d9:f7:da:c5:32:66:7c:f1: f4:4d:6a:9f:42:ad:ea:6e:ff:ea:0f:1a:33:74:db:80:bc:64: 30:85:ad:57:9a:28:dd:bb:e4:2f:8b:cb:0f:8a:d2:65:8a:ba: ae:d5:fe:35:b1:c7:7b:c4:15:d5:87:84:ac:75:6a:59:cd:d2: 52:be:79:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICL+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IxREExMTAvBgNVBAUTKDUwRTY2ODNBNkFGNDY0NEI2OEExMUMyMkRBN0YzQTY1 QjMxMkMwNkYwHhcNMjQwODA4MTU0MTUzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI0ZTc0MS1lOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnnNFRAXHTjKt2lmy9D2sSA1DJraB0VSLk35TrEITcHNHZOzx15VLzclZpHX V2SUzLYFAuhenQh0fv/l1D4+m43CoyvL+a9qIesvOWj55K4sQitVTHev6e99aRtB biazTXyXewI7uGGojM6PPCyCwWCw9Kg7oX8vGDaRGZv/H1OlaWlLuO2ItY76QnAh BXiKnshq43SIYrPHAj8RLGWF7OihzT5qtzZXoIi0WWSdvsZHebXiNJ6n84lOugJi KXBgQR+BmNRY6SNH4sKgg4XO0TlifQXpnzDWeCGeGkGTh5SIdOB4tBsl5767Oo0r tWu1nwC7g+fHjP5qfkOOSY5ONwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIgqDDSM fAEN22flmN1T9UrE4oN4MB8GA1UdIwQYMBaAFFDmaDpq9GRLaKEcItp/OmWzEsBv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjFEQS8xNEI3NkJDOEVE MEIxMUUyQTM1REM2NDg1OTExRUEzMi9VT1pvT21yMFpFdG9vUndpMm44NlpiTVN3 RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPWm9PbXIwWkV0b29Sd2kybjg2WmJNU3dHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0IxREEvMTRCNzZCQzhFRDBCMTFFMkEzNURDNjQ4NTkxMUVBMzIvQjhCMDI2NThD MTZCMTFFRUE3RDAxQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKBnMwDQYJKoZIhvcNAQELBQADggEBAGUcNPgqh3Dkhbfv ySXQFKhSs6474FahBbwsECKs+bbVb9aA2nw8TRf8hvKb8CEz3DgPDCcJmg9okJb9 KoT+Yo/6dGYbn8r3l0ayHOVdAN9g/Fy+HX2rs3DwJaYznZ+AjS+ukJnsHxlS7vn9 20XTeF1k6ezWQpBJODy9BU4KxD4E0qep93T9IzSRnmJMd54FsiYAbsTcP+vxThUr 7gCLotjy+PHV/OA/B8ebwHkvXxGpimExBULFZEbsJdfcHY/Z99rFMmZ88fRNap9C repu/+oPGjN024C8ZDCFrVeaKN275C+Lyw+K0mWKuq7V/jWxx3vEFdWHhKx1alnN 0lK+eQQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:16 2024 by rpki-client on console-ams.rpki-client.org