$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/994F0A88D86B11E9B8BFCE0AC4F9AE02.roa File: 994F0A88D86B11E9B8BFCE0AC4F9AE02.roa (raw, json) Hash identifier: Abdzbuu4OBM5C0vYjquJpKGR1irSfmaZVGnBXOhDHT4= Subject key identifier: DC:95:A0:F8:E3:72:BD:E3:8A:96:8D:3E:3A:27:A7:94:36:BF:76:7D Certificate issuer: /CN=A914781A/serialNumber=59314703092845FCBD0BFBAEEF87D83FC66ED1D7 Certificate serial: 127F Authority key identifier: 59:31:47:03:09:28:45:FC:BD:0B:FB:AE:EF:87:D8:3F:C6:6E:D1:D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/994F0A88D86B11E9B8BFCE0AC4F9AE02.roa Signing time: Sat 02 Mar 2024 15:20:56 +0000 ROA not before: Sat 02 Mar 2024 15:20:56 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55423 IP address blocks: 167.179.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.crl rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 15:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4735 (0x127f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A/serialNumber=59314703092845FCBD0BFBAEEF87D83FC66ED1D7 Validity Not Before: Mar 2 15:20:56 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e343d8-2d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:5a:d0:3c:41:f6:bc:0d:21:de:6f:26:f8: 6b:1d:35:c3:d5:14:9c:b4:4f:2e:2c:98:66:72:fe: a9:66:d2:40:91:dd:14:c8:92:0a:e6:d9:17:96:5f: 85:e9:21:55:cb:06:01:7d:3c:0b:55:87:56:15:6a: f6:fe:85:5e:e4:13:42:f4:c2:98:4b:3a:92:d8:a8: 95:e7:ee:e0:b8:56:55:c3:45:6b:e1:87:85:d5:97: 6e:49:d6:9e:83:a4:08:eb:1f:3e:d7:cf:f4:76:42: 97:70:0f:1b:a6:13:67:c1:76:c0:05:e6:90:00:b3: ee:ac:e7:eb:ff:50:e3:ec:f8:b2:37:39:93:f5:c1: dd:04:cc:05:a8:e9:26:8a:3b:ec:48:c3:ff:03:aa: 00:84:30:9b:cd:3c:86:e0:cd:ab:00:38:57:5d:18: 35:31:91:94:27:7e:f0:a4:12:fc:0b:42:7c:65:44: d6:22:77:f5:37:6e:3f:c9:fd:dd:f3:39:fa:fd:37: 33:87:2c:bb:0f:64:ac:06:34:40:b8:56:b5:e5:43: 8a:6f:4d:f2:c4:84:74:94:47:10:79:22:06:41:12: be:19:49:d4:9b:0a:d0:a7:e1:63:f7:e9:a0:c7:c7: 87:b3:f0:be:1d:41:3f:2b:40:db:f7:45:64:95:1d: 06:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:95:A0:F8:E3:72:BD:E3:8A:96:8D:3E:3A:27:A7:94:36:BF:76:7D X509v3 Authority Key Identifier: keyid:59:31:47:03:09:28:45:FC:BD:0B:FB:AE:EF:87:D8:3F:C6:6E:D1:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/WTFHAwkoRfy9C_uu74fYP8Zu0dc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WTFHAwkoRfy9C_uu74fYP8Zu0dc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/4EEC5B7EA6B411E8B43A1467C4F9AE02/994F0A88D86B11E9B8BFCE0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.224.0/19 Signature Algorithm: sha256WithRSAEncryption a2:52:f9:27:ea:a6:59:ac:b8:56:61:40:40:27:6c:b4:4f:24: 90:8a:4a:f7:2c:24:19:b1:9c:76:1c:f1:ca:0b:01:bc:55:d5: 61:15:fe:48:04:23:e6:fc:0f:3c:a7:ce:b2:ff:f3:11:c5:f5: 9f:57:ca:81:03:27:04:71:88:f3:5f:5f:f1:1d:1a:99:bb:86: 56:f9:5f:06:cc:f3:94:f3:fb:ad:86:11:a1:91:db:40:0f:09: 70:fa:0b:fe:d5:c5:3a:5e:e0:40:d7:4d:ea:3a:48:6e:07:1b: 1e:e3:5c:fb:93:48:a7:2d:ca:a1:af:a9:03:8d:b6:18:38:17: c6:9b:5e:8c:72:de:e2:81:62:fc:06:23:8f:23:19:31:e8:d1: 39:55:0b:bf:43:b3:33:08:9b:52:b9:08:d7:eb:d8:4d:72:77: a8:41:ea:30:45:ff:25:e0:d2:3c:7f:d7:04:6b:88:e7:a5:8a: 87:ab:fc:2c:3e:ca:dc:88:14:36:64:6f:75:a1:38:30:93:8e: ed:a5:02:e2:70:b5:51:64:ab:6a:fd:d6:13:63:a9:ae:81:ee: ec:34:70:97:9d:04:22:54:52:4d:e1:b9:c0:6c:6f:dd:2f:d8: 01:eb:62:02:16:42:4e:db:54:cb:df:f2:9b:2d:e2:23:3f:06: ba:cd:7f:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDU5MzE0NzAzMDkyODQ1RkNCRDBCRkJBRUVGODdEODNG QzY2RUQxRDcwHhcNMjQwMzAyMTUyMDU2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNDNkOC0yZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2Na0DxB9rwNId5vJvhrHTXD1RSctE8uLJhmcv6pZtJAkd0UyJIK5tkXll+F 6SFVywYBfTwLVYdWFWr2/oVe5BNC9MKYSzqS2KiV5+7guFZVw0Vr4YeF1ZduSdae g6QI6x8+18/0dkKXcA8bphNnwXbABeaQALPurOfr/1Dj7PiyNzmT9cHdBMwFqOkm ijvsSMP/A6oAhDCbzTyG4M2rADhXXRg1MZGUJ37wpBL8C0J8ZUTWInf1N24/yf3d 8zn6/Tczhyy7D2SsBjRAuFa15UOKb03yxIR0lEcQeSIGQRK+GUnUmwrQp+Fj9+mg x8eHs/C+HUE/K0Db90VklR0GfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNyVoPjj cr3jipaNPjonp5Q2v3Z9MB8GA1UdIwQYMBaAFFkxRwMJKEX8vQv7ru+H2D/GbtHX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS80RUVDNUI3RUE2 QjQxMUU4QjQzQTE0NjdDNEY5QUUwMi9XVEZIQXdrb1JmeTlDX3V1NzRmWVA4WnUw ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dURkhBd2tvUmZ5OUNfdXU3NGZZUDhadTBkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvNEVFQzVCN0VBNkI0MTFFOEI0M0ExNDY3QzRGOUFFMDIvOTk0RjBBODhE ODZCMTFFOUI4QkZDRTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWns+AwDQYJKoZIhvcNAQELBQADggEBAKJS+SfqplmsuFZh QEAnbLRPJJCKSvcsJBmxnHYc8coLAbxV1WEV/kgEI+b8DzynzrL/8xHF9Z9XyoED JwRxiPNfX/EdGpm7hlb5XwbM85Tz+62GEaGR20APCXD6C/7VxTpe4EDXTeo6SG4H Gx7jXPuTSKctyqGvqQONthg4F8abXoxy3uKBYvwGI48jGTHo0TlVC79DszMIm1K5 CNfr2E1yd6hB6jBF/yXg0jx/1wRriOelioer/Cw+ytyIFDZkb3WhODCTju2lAuJw tVFkq2r91hNjqa6B7uw0cJedBCJUUk3hucBsb90v2AHrYgIWQk7bVMvf8pst4iM/ BrrNf6A= -----END CERTIFICATE-----Generated at Tue May 14 17:00:12 2024 by rpki-client on console-fra.rpki-client.org