$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/005D2F8E56B611EAA08F9B82C4F9AE02.roa File: 005D2F8E56B611EAA08F9B82C4F9AE02.roa (raw, json) Hash identifier: PAQkZZ3jUKMhKKWzlauMDLdfLxF+5ct2efz+amPISSA= Subject key identifier: CC:75:9D:AE:46:5D:2D:07:3E:52:C9:01:EB:FA:35:98:69:7F:3B:1A Certificate issuer: /CN=A914781A/serialNumber=59314703092845FCBD0BFBAEEF87D83FC66ED1D7 Certificate serial: 127A Authority key identifier: 59:31:47:03:09:28:45:FC:BD:0B:FB:AE:EF:87:D8:3F:C6:6E:D1:D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/005D2F8E56B611EAA08F9B82C4F9AE02.roa Signing time: Sat 02 Mar 2024 15:20:52 +0000 ROA not before: Sat 02 Mar 2024 15:20:52 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136952 IP address blocks: 167.179.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.crl rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 15:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4730 (0x127a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A/serialNumber=59314703092845FCBD0BFBAEEF87D83FC66ED1D7 Validity Not Before: Mar 2 15:20:52 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e343d4-f84d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d7:07:18:f7:b3:ad:3f:6f:3c:90:32:a2:2d: a2:e1:48:26:d7:c7:d9:80:36:c6:b1:a5:53:30:2a: 6c:a0:39:8a:c3:38:1f:79:9a:64:87:66:38:9e:95: d5:39:a0:80:fa:93:ea:a9:6a:36:99:05:4e:eb:fe: 8d:52:60:44:46:82:e0:56:12:86:1d:bd:5a:c4:95: bb:b5:eb:d1:cb:c9:b4:95:49:d5:89:52:42:5d:7a: 61:41:59:c2:54:45:4d:22:2f:8a:56:b0:f4:f8:f4: 9d:0c:12:3d:10:1b:37:ee:a9:bc:0e:70:f2:c8:76: c1:0a:32:74:e7:21:da:70:5f:e8:25:b9:85:eb:74: fa:c9:38:d9:fa:3d:ef:ef:6e:2d:cc:aa:3b:c8:ab: 40:c4:ef:12:48:a4:4c:60:ed:28:3f:ac:10:da:09: 32:53:95:4d:39:49:27:ed:9e:6b:a7:51:4c:d9:e3: ba:0f:af:81:7f:20:e1:a1:ad:ad:ea:c4:cc:cc:95: 15:70:4c:52:26:6a:85:a5:2b:54:e6:f3:79:9b:5a: cc:4f:00:65:0a:11:86:60:22:38:02:b7:2a:12:21: 61:76:ba:e3:72:d7:7c:12:e3:cf:fa:db:f7:fb:bf: fe:b8:02:5b:c8:2c:a9:d6:d2:2e:87:57:af:c9:a4: 98:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:75:9D:AE:46:5D:2D:07:3E:52:C9:01:EB:FA:35:98:69:7F:3B:1A X509v3 Authority Key Identifier: keyid:59:31:47:03:09:28:45:FC:BD:0B:FB:AE:EF:87:D8:3F:C6:6E:D1:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/005D2F8E56B611EAA08F9B82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:70:1d:25:2d:97:0b:a3:4d:3c:e8:7f:fc:52:8b:cb:36:29: 22:d9:d1:f9:d3:76:ea:df:0e:b7:7c:8a:e6:6d:e9:8a:c1:7b: e1:68:3b:4c:7c:3e:3d:6a:b4:5c:e0:94:9c:99:79:6f:42:ce: c4:03:06:77:b8:31:04:23:c3:f5:8d:61:88:1b:86:e0:54:c7: f4:f2:00:c8:b0:49:6f:97:0f:40:81:ad:ea:e6:7d:08:07:c4: 2e:29:ce:f3:6f:8c:c9:a9:e7:cc:68:19:07:c9:7a:be:93:de: 46:a7:37:e7:d8:56:a5:cf:75:ed:84:2e:68:5f:6d:40:e2:3e: d3:c0:c7:f0:58:9c:2d:06:e6:b3:dc:75:31:d8:02:32:4e:dc: 73:fa:0b:91:71:06:cd:3a:c3:ac:5c:be:28:3d:fd:0d:51:40: 94:dd:d4:47:ed:4c:ac:83:05:04:59:ef:9c:b2:e6:01:66:2a: 44:2a:ed:66:60:a0:a6:bf:14:b8:35:26:61:0f:72:d9:1f:63: 13:33:06:e0:ff:e5:b6:0c:57:46:91:c6:fc:37:a9:9b:1e:30: 18:a2:6c:e7:62:be:1e:29:02:f7:77:f4:e7:37:68:c5:7b:93: 1e:19:c7:d7:1e:ed:95:c6:8b:f9:a7:10:62:f5:fc:7f:ae:be: f1:8b:75:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDU5MzE0NzAzMDkyODQ1RkNCRDBCRkJBRUVGODdEODNG QzY2RUQxRDcwHhcNMjQwMzAyMTUyMDUyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNDNkNC1mODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dcHGPezrT9vPJAyoi2i4Ugm18fZgDbGsaVTMCpsoDmKwzgfeZpkh2Y4npXV OaCA+pPqqWo2mQVO6/6NUmBERoLgVhKGHb1axJW7tevRy8m0lUnViVJCXXphQVnC VEVNIi+KVrD0+PSdDBI9EBs37qm8DnDyyHbBCjJ05yHacF/oJbmF63T6yTjZ+j3v 724tzKo7yKtAxO8SSKRMYO0oP6wQ2gkyU5VNOUkn7Z5rp1FM2eO6D6+BfyDhoa2t 6sTMzJUVcExSJmqFpStU5vN5m1rMTwBlChGGYCI4ArcqEiFhdrrjctd8EuPP+tv3 +7/+uAJbyCyp1tIuh1evyaSY9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMx1na5G XS0HPlLJAev6NZhpfzsaMB8GA1UdIwQYMBaAFFkxRwMJKEX8vQv7ru+H2D/GbtHX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS80RUVDNUI3RUE2 QjQxMUU4QjQzQTE0NjdDNEY5QUUwMi9XVEZIQXdrb1JmeTlDX3V1NzRmWVA4WnUw ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dURkhBd2tvUmZ5OUNfdXU3NGZZUDhadTBkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvNEVFQzVCN0VBNkI0MTFFOEI0M0ExNDY3QzRGOUFFMDIvMDA1RDJGOEU1 NkI2MTFFQUEwOEY5QjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACns+AwDQYJKoZIhvcNAQELBQADggEBABxwHSUtlwujTTzo f/xSi8s2KSLZ0fnTdurfDrd8iuZt6YrBe+FoO0x8Pj1qtFzglJyZeW9CzsQDBne4 MQQjw/WNYYgbhuBUx/TyAMiwSW+XD0CBrermfQgHxC4pzvNvjMmp58xoGQfJer6T 3kanN+fYVqXPde2ELmhfbUDiPtPAx/BYnC0G5rPcdTHYAjJO3HP6C5FxBs06w6xc vig9/Q1RQJTd1EftTKyDBQRZ75yy5gFmKkQq7WZgoKa/FLg1JmEPctkfYxMzBuD/ 5bYMV0aRxvw3qZseMBiibOdivh4pAvd39Oc3aMV7kx4Zx9ce7ZXGi/mnEGL1/H+u vvGLdck= -----END CERTIFICATE-----Generated at Tue May 14 17:00:12 2024 by rpki-client on console-fra.rpki-client.org