$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/E4BCDFAE0CD211EFAAF8335EC4F9AE02.roa File: E4BCDFAE0CD211EFAAF8335EC4F9AE02.roa (raw, json) Hash identifier: d0Xj6/bStnSttx8OgCvX9d1wnUe1SmuLIlk6o50qzOY= Subject key identifier: A5:F0:5A:56:E3:3E:8B:43:1F:05:DF:F5:68:74:DE:2D:27:B4:9D:67 Certificate issuer: /CN=A9146B76/serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Certificate serial: 06D6 Authority key identifier: CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/E4BCDFAE0CD211EFAAF8335EC4F9AE02.roa Signing time: Wed 08 May 2024 00:35:39 +0000 ROA not before: Wed 08 May 2024 00:35:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132825 IP address blocks: 45.116.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B76/serialNumber=CA15C5908D072DD821714EC67E1175E3AA9112E6 Validity Not Before: May 8 00:35:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663ac8db-7833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:c6:80:ab:76:30:85:bd:5d:46:68:54:ae: 2e:4a:15:c2:35:44:dc:c2:12:db:71:3c:0a:92:64: ec:2c:1a:87:ce:16:91:1c:5e:1b:1e:ac:cb:44:8b: c0:a9:80:68:bc:0c:63:fc:44:b3:06:20:f3:5f:fa: 2e:41:00:30:11:2c:ce:17:64:20:fd:af:81:63:ea: 0b:9d:f8:6d:9e:a8:13:8d:c8:9c:fd:30:b4:dc:d3: ff:07:04:aa:82:c9:47:7c:96:cc:fe:4a:02:22:02: 67:8a:d6:ba:81:3c:c7:28:fd:2d:48:3d:2a:c1:3b: d6:64:36:5a:b8:a8:7d:29:3f:45:9c:de:94:bc:80: 13:8d:e5:95:72:55:84:36:a2:84:14:79:a3:cb:8e: da:97:2d:2f:d0:fa:e2:2d:05:44:28:d8:cf:0d:24: 1f:cd:12:e4:6f:55:8b:9d:9a:a1:0e:2f:43:98:b1: c3:ba:93:60:de:0d:31:ca:3d:5c:23:ae:78:93:3e: c0:77:26:0e:5c:46:d5:00:20:8f:54:e9:44:91:c7: 30:fd:06:50:9d:08:2b:77:f9:20:de:e4:1f:ff:f6: 74:bb:5d:12:55:a5:ef:72:a9:7c:fd:ca:da:53:66: a9:4e:95:01:e8:45:55:df:2e:aa:a3:11:57:1e:b5: 06:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F0:5A:56:E3:3E:8B:43:1F:05:DF:F5:68:74:DE:2D:27:B4:9D:67 X509v3 Authority Key Identifier: keyid:CA:15:C5:90:8D:07:2D:D8:21:71:4E:C6:7E:11:75:E3:AA:91:12:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/yhXFkI0HLdghcU7GfhF146qREuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhXFkI0HLdghcU7GfhF146qREuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B76/6CA3369C09D611EBB3C3C685C4F9AE02/E4BCDFAE0CD211EFAAF8335EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.178.0/24 Signature Algorithm: sha256WithRSAEncryption 49:c3:ff:fb:35:a0:63:c3:b0:51:2f:ac:de:48:59:d6:47:d1: c7:ea:c5:02:4d:ba:24:c9:4e:62:d1:d5:ad:48:4b:0d:c1:d5: d2:84:dd:45:e6:58:34:11:b4:bf:22:68:26:42:4e:ae:09:b9: e5:a2:0a:0a:07:ac:e2:86:d4:33:b3:80:eb:ed:69:25:fa:22: dc:fc:ab:94:1b:da:fb:01:56:8c:68:98:70:c1:8a:90:9a:fb: 66:17:a0:32:c7:e1:bf:03:a1:8f:ae:da:e3:e4:4e:dc:46:2c: 64:dc:94:f5:8c:51:42:70:09:e3:5b:63:bd:31:ae:fd:ed:4e: 1f:a2:7f:f6:1a:a5:b0:30:ab:73:be:be:e6:51:e2:c2:d2:e3: 96:dc:35:86:1f:88:4c:46:c0:44:c3:28:c3:55:89:78:d6:ff: 49:01:74:5d:80:46:43:02:84:a4:8f:be:64:f9:35:c6:f2:d7: bf:63:b4:68:7e:15:35:66:ae:ee:59:e4:16:31:42:89:91:29: e4:af:e2:61:b9:8b:4b:d4:94:81:eb:d2:78:69:a5:13:ca:e5: ec:ee:ac:02:1d:05:dc:ff:ff:56:c9:dd:81:f7:93:ec:36:63: 99:52:12:0d:9b:9d:d6:1b:6a:36:fe:ca:56:ee:c3:93:1f:e4: 58:ad:c4:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCNzYxMTAvBgNVBAUTKENBMTVDNTkwOEQwNzJERDgyMTcxNEVDNjdFMTE3NUUz QUE5MTEyRTYwHhcNMjQwNTA4MDAzNTM5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNhYzhkYi03ODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppnGgKt2MIW9XUZoVK4uShXCNUTcwhLbcTwKkmTsLBqHzhaRHF4bHqzLRIvA qYBovAxj/ESzBiDzX/ouQQAwESzOF2Qg/a+BY+oLnfhtnqgTjcic/TC03NP/BwSq gslHfJbM/koCIgJnita6gTzHKP0tSD0qwTvWZDZauKh9KT9FnN6UvIATjeWVclWE NqKEFHmjy47aly0v0PriLQVEKNjPDSQfzRLkb1WLnZqhDi9DmLHDupNg3g0xyj1c I654kz7AdyYOXEbVACCPVOlEkccw/QZQnQgrd/kg3uQf//Z0u10SVaXvcql8/cra U2apTpUB6EVV3y6qoxFXHrUGRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKXwWlbj PotDHwXf9Wh03i0ntJ1nMB8GA1UdIwQYMBaAFMoVxZCNBy3YIXFOxn4RdeOqkRLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkI3Ni82Q0EzMzY5QzA5 RDYxMUVCQjNDM0M2ODVDNEY5QUUwMi95aFhGa0kwSExkZ2hjVTdHZmhGMTQ2cVJF dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3loWEZrSTBITGRnaGNVN0dmaEYxNDZxUkV1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCNzYvNkNBMzM2OUMwOUQ2MTFFQkIzQzNDNjg1QzRGOUFFMDIvRTRCQ0RGQUUw Q0QyMTFFRkFBRjgzMzVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdLIwDQYJKoZIhvcNAQELBQADggEBAEnD//s1oGPDsFEv rN5IWdZH0cfqxQJNuiTJTmLR1a1ISw3B1dKE3UXmWDQRtL8iaCZCTq4JueWiCgoH rOKG1DOzgOvtaSX6Itz8q5Qb2vsBVoxomHDBipCa+2YXoDLH4b8DoY+u2uPkTtxG LGTclPWMUUJwCeNbY70xrv3tTh+if/YapbAwq3O+vuZR4sLS45bcNYYfiExGwETD KMNViXjW/0kBdF2ARkMChKSPvmT5Ncby179jtGh+FTVmru5Z5BYxQomRKeSv4mG5 i0vUlIHr0nhppRPK5ezurAIdBdz//1bJ3YH3k+w2Y5lSEg2bndYbajb+ylbuw5Mf 5FitxH4= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:38 2024 by rpki-client on console-fra.rpki-client.org