$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa File: 453489B8BE6311EE90BF9241C4F9AE02.roa (raw, json) Hash identifier: bl/e4lQvjaSTkRxdWl0r2qMTTE7ezGReVPoOsVbal14= Subject key identifier: 90:03:7A:F6:BE:77:E7:7D:69:C9:25:C4:9A:C2:A4:9B:25:0E:FF:B3 Certificate issuer: /CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Certificate serial: 15DC Authority key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa Signing time: Mon 29 Jan 2024 05:00:07 +0000 ROA not before: Mon 29 Jan 2024 05:00:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 152326 IP address blocks: 110.235.159.0/24 maxlen: 24 2400:6a80:8660::/46 maxlen: 46 2400:6a80:8664::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5596 (0x15dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Validity Not Before: Jan 29 05:00:07 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65b730d6-c1f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:ac:0f:ed:dd:2d:1f:44:02:dc:74:26:25: 37:34:c2:53:cb:b6:ac:47:6b:2f:75:b1:e3:b3:4b: a3:72:91:3c:2b:c1:ad:31:01:2e:16:c7:7c:b8:0d: 59:30:d7:ed:91:5e:d5:aa:40:82:16:7a:88:06:c9: a3:bf:d6:b3:4d:d4:16:7a:43:80:49:e5:ba:99:61: 6e:75:6c:fa:57:e7:69:a7:bd:9f:91:56:44:b9:55: de:da:cb:cd:a7:99:09:1a:56:ca:0a:72:70:a6:d8: c3:12:fe:fe:a5:1f:4d:1a:cf:88:f1:74:33:8c:3a: 87:bd:4f:0d:48:f3:e1:0a:1c:00:a2:1e:a4:34:9c: c7:25:4d:52:5c:66:43:c7:39:6c:97:0a:0e:aa:07: b7:7d:3a:a9:ff:79:96:3c:a8:c7:73:fb:ce:0d:16: 51:5a:96:32:55:4d:72:31:b8:e3:2c:1f:a8:c2:8a: 76:9f:3f:0d:01:fa:19:a4:ea:76:5a:e8:54:b1:39: c4:a0:58:4f:17:41:cf:ea:22:d5:2b:c1:bb:dc:75: b5:60:60:5a:4b:34:a8:67:1f:78:01:61:e8:e2:32: 8a:fb:ee:70:ca:14:a2:5e:09:91:7a:3a:96:bd:97: c1:35:42:48:66:09:80:e1:f6:93:52:8d:ef:4e:bd: 3f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:03:7A:F6:BE:77:E7:7D:69:C9:25:C4:9A:C2:A4:9B:25:0E:FF:B3 X509v3 Authority Key Identifier: keyid:C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/453489B8BE6311EE90BF9241C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.235.159.0/24 IPv6: 2400:6a80:8660::/45 Signature Algorithm: sha256WithRSAEncryption 18:88:86:b3:06:76:cd:53:d1:e0:6c:40:19:ad:61:c5:31:40: 06:cd:bf:ec:10:98:db:16:b0:16:24:06:40:97:7d:24:21:03: 2d:55:8c:d6:28:2c:0b:ad:ed:b3:bb:f7:f4:f2:0b:6f:99:26: a3:5d:f3:8f:62:11:84:59:5f:c1:87:68:cf:70:dd:e4:e2:3e: 3d:c6:20:5e:2d:c6:a1:a5:49:e7:3a:97:dc:54:b6:06:b8:21: d3:07:30:f3:ae:56:c5:91:1a:2c:8a:9e:42:b4:9d:f3:d6:4f: c2:47:52:28:00:b4:f4:4f:4c:7a:0a:94:b8:b6:23:d8:3f:e2: 61:d6:96:33:23:c7:54:b0:24:41:76:f6:79:79:7a:05:17:49: d7:e5:36:9d:96:5e:62:3a:0d:98:65:32:9f:81:77:5a:45:fa: 69:81:5c:24:12:5c:68:8a:8c:27:64:1e:c4:b5:9b:39:76:52: 9f:60:f1:4d:79:4d:5c:c0:5f:cf:bc:ff:6b:8d:16:10:11:d8: f1:1f:a5:dc:8e:2e:d4:1d:5d:4e:84:fb:dc:ce:e6:c6:3f:07: 23:48:77:c9:56:19:56:60:50:50:76:71:a0:fa:3d:61:e8:f3: 9b:bf:db:34:29:73:09:17:e1:62:77:9a:89:fa:dd:54:c5:31: b1:77:ba:09 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKEM3QjI2NDczNTAzODBBNkEzNEUzNEUzMkNFRkUzNTE5 OTM3RTk3QzgwHhcNMjQwMTI5MDUwMDA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI3MzBkNi1jMWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa2sD+3dLR9EAtx0JiU3NMJTy7asR2svdbHjs0ujcpE8K8GtMQEuFsd8uA1Z MNftkV7VqkCCFnqIBsmjv9azTdQWekOASeW6mWFudWz6V+dpp72fkVZEuVXe2svN p5kJGlbKCnJwptjDEv7+pR9NGs+I8XQzjDqHvU8NSPPhChwAoh6kNJzHJU1SXGZD xzlslwoOqge3fTqp/3mWPKjHc/vODRZRWpYyVU1yMbjjLB+owop2nz8NAfoZpOp2 WuhUsTnEoFhPF0HP6iLVK8G73HW1YGBaSzSoZx94AWHo4jKK++5wyhSiXgmRejqW vZfBNUJIZgmA4faTUo3vTr0/JwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJADeva+ d+d9acklxJrCpJslDv+zMB8GA1UdIwQYMBaAFMeyZHNQOApqNONOMs7+NRmTfpfI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80Qjk1OEJDRTAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENtbzA0MDR5enY0MUdaTi1s OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3SmtjMUE0Q21vMDQwNHl6djQxR1pOLWw4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNTkvNEI5NThCQ0UwMENCMTFFOEJFQjFFRjEwQzRGOUFFMDIvNDUzNDg5QjhC RTYzMTFFRTkwQkY5MjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABu658wDwQCAAIwCQMHAyQAaoCGYDANBgkqhkiG9w0BAQsF AAOCAQEAGIiGswZ2zVPR4GxAGa1hxTFABs2/7BCY2xawFiQGQJd9JCEDLVWM1igs C63ts7v39PILb5kmo13zj2IRhFlfwYdoz3Dd5OI+PcYgXi3GoaVJ5zqX3FS2Brgh 0wcw865WxZEaLIqeQrSd89ZPwkdSKAC09E9MegqUuLYj2D/iYdaWMyPHVLAkQXb2 eXl6BRdJ1+U2nZZeYjoNmGUyn4F3WkX6aYFcJBJcaIqMJ2QexLWbOXZSn2DxTXlN XMBfz7z/a40WEBHY8R+l3I4u1B1dToT73M7mxj8HI0h3yVYZVmBQUHZxoPo9Yejz m7/bNClzCRfhYneaifrdVMUxsXe6CQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org