$ rpki-client -vvf rpki.apnic.net/member_repository/A914C10B/7231C3DAAF6211EB8BA1F714C4F9AE02/CFBB0C48B28A11EBB4CE6E70C4F9AE02.roa File: CFBB0C48B28A11EBB4CE6E70C4F9AE02.roa (raw, json) Hash identifier: KeDjzKypgQHXzMMCw525U76eYPfXZKl/2OFa/SSqsKg= Subject key identifier: CD:F5:F9:9E:51:27:73:24:DF:38:DB:2D:A7:7D:35:86:56:80:68:C0 Certificate issuer: /CN=A914C10B/serialNumber=109CB71B4F64166F1DDA422CEB721EE3ED196798 Certificate serial: 058D Authority key identifier: 10:9C:B7:1B:4F:64:16:6F:1D:DA:42:2C:EB:72:1E:E3:ED:19:67:98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EJy3G09kFm8d2kIs63Ie4-0ZZ5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C10B/7231C3DAAF6211EB8BA1F714C4F9AE02/CFBB0C48B28A11EBB4CE6E70C4F9AE02.roa Signing time: Wed 06 Nov 2024 23:01:58 +0000 ROA not before: Wed 06 Nov 2024 23:01:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 54238 IP address blocks: 164.153.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C10B/7231C3DAAF6211EB8BA1F714C4F9AE02/EJy3G09kFm8d2kIs63Ie4-0ZZ5g.crl rsync://rpki.apnic.net/member_repository/A914C10B/7231C3DAAF6211EB8BA1F714C4F9AE02/EJy3G09kFm8d2kIs63Ie4-0ZZ5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EJy3G09kFm8d2kIs63Ie4-0ZZ5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C10B/serialNumber=109CB71B4F64166F1DDA422CEB721EE3ED196798 Validity Not Before: Nov 6 23:01:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bf565-23fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f8:3c:c3:b4:7b:b9:25:5d:20:c9:8f:07:8c: 13:2d:f2:97:5a:a7:dc:82:be:e4:8e:79:ad:84:7a: cb:7e:dd:59:51:b3:c8:aa:0f:c8:88:b7:32:bc:43: d5:17:68:ca:36:75:84:42:3a:28:99:ea:8f:fb:c9: d2:99:35:7f:f5:ea:fe:57:3b:1a:29:53:1d:d1:2c: 56:f1:4a:0f:43:5b:a5:c4:9b:96:51:6a:ea:b6:dd: c4:7a:f1:8e:29:4d:2a:8e:9b:23:e1:ff:e5:45:36: 5f:b6:ef:f8:71:bb:03:58:a5:39:ff:3f:f6:e4:f5: 39:ef:4c:f3:ca:8b:15:33:10:51:30:3a:3a:cc:93: b8:94:8e:02:16:46:55:45:d3:9f:15:a8:cd:d5:d9: 3b:07:3a:c7:3c:70:45:62:43:be:06:62:b0:c4:fd: 95:97:80:43:d4:35:69:e6:4f:9f:20:75:dd:70:6e: c2:b2:82:97:2e:66:6e:68:74:65:b6:a6:48:2b:7d: 4a:c0:16:ce:c9:3a:1b:2d:04:66:29:bf:af:da:af: 4f:df:62:b2:fd:da:f2:27:a6:65:9f:68:b6:7e:e9: b7:67:93:3b:10:ed:4c:19:9a:99:a0:6c:ce:f3:2f: 7e:a0:9f:b5:65:0a:c4:98:ef:24:77:95:03:c1:b2: a8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F5:F9:9E:51:27:73:24:DF:38:DB:2D:A7:7D:35:86:56:80:68:C0 X509v3 Authority Key Identifier: keyid:10:9C:B7:1B:4F:64:16:6F:1D:DA:42:2C:EB:72:1E:E3:ED:19:67:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C10B/7231C3DAAF6211EB8BA1F714C4F9AE02/EJy3G09kFm8d2kIs63Ie4-0ZZ5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EJy3G09kFm8d2kIs63Ie4-0ZZ5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C10B/7231C3DAAF6211EB8BA1F714C4F9AE02/CFBB0C48B28A11EBB4CE6E70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.153.28.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:5f:c0:99:db:df:c8:8d:81:70:0a:20:55:8b:cd:5f:cd:b2: bb:4c:af:b5:08:e3:06:b6:ab:c7:ff:de:f2:6e:53:7e:b8:ac: fe:44:4c:ab:66:3c:bd:7f:c8:cb:de:d4:71:03:4f:ea:7c:0e: e3:82:cb:4c:ff:d1:2d:6c:fe:84:ac:7c:cc:a8:eb:6f:21:df: e5:82:2f:b7:60:54:56:8a:b0:83:d2:b4:57:45:1e:7a:b9:3b: ac:9f:d2:30:b8:7f:f3:8d:03:78:f0:3f:ef:f2:65:6f:2a:c8: 1c:a4:d2:b5:02:6c:3b:3a:d1:9d:c4:ef:08:f2:34:8e:47:21: ba:e9:92:48:e6:72:18:2d:74:ea:45:e9:e9:ff:8a:46:8c:07: ff:c0:69:e5:92:a6:e2:49:6b:57:16:c2:ae:09:b7:a4:1c:29: ae:bc:26:90:37:52:95:4b:bb:fd:7c:2d:bc:e7:1b:66:dc:51: 57:d5:b9:72:b4:8c:eb:a0:8e:c3:54:0f:94:d5:2d:91:7a:07: 2f:06:28:af:e5:a8:7b:04:bd:1f:55:18:c9:4c:b2:a2:05:ea: 00:d2:1a:71:2d:e6:e8:8f:85:f3:32:a7:2c:51:64:4e:89:b0: 9f:de:14:99:3e:cc:fd:36:d0:64:68:91:53:b4:07:bf:da:74: f5:4f:af:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxMEIxMTAvBgNVBAUTKDEwOUNCNzFCNEY2NDE2NkYxRERBNDIyQ0VCNzIxRUUz RUQxOTY3OTgwHhcNMjQxMTA2MjMwMTU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZjU2NS0yM2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfg8w7R7uSVdIMmPB4wTLfKXWqfcgr7kjnmthHrLft1ZUbPIqg/IiLcyvEPV F2jKNnWEQjoomeqP+8nSmTV/9er+VzsaKVMd0SxW8UoPQ1ulxJuWUWrqtt3EevGO KU0qjpsj4f/lRTZftu/4cbsDWKU5/z/25PU570zzyosVMxBRMDo6zJO4lI4CFkZV RdOfFajN1dk7BzrHPHBFYkO+BmKwxP2Vl4BD1DVp5k+fIHXdcG7CsoKXLmZuaHRl tqZIK31KwBbOyTobLQRmKb+v2q9P32Ky/dryJ6Zln2i2fum3Z5M7EO1MGZqZoGzO 8y9+oJ+1ZQrEmO8kd5UDwbKolwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM31+Z5R J3Mk3zjbLad9NYZWgGjAMB8GA1UdIwQYMBaAFBCctxtPZBZvHdpCLOtyHuPtGWeY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzEwQi83MjMxQzNEQUFG NjIxMUVCOEJBMUY3MTRDNEY5QUUwMi9FSnkzRzA5a0ZtOGQya0lzNjNJZTQtMFpa NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VKeTNHMDlrRm04ZDJrSXM2M0llNC0wWlo1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMxMEIvNzIzMUMzREFBRjYyMTFFQjhCQTFGNzE0QzRGOUFFMDIvQ0ZCQjBDNDhC MjhBMTFFQkI0Q0U2RTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKkmRwwDQYJKoZIhvcNAQELBQADggEBAIpfwJnb38iNgXAK IFWLzV/NsrtMr7UI4wa2q8f/3vJuU364rP5ETKtmPL1/yMve1HEDT+p8DuOCy0z/ 0S1s/oSsfMyo628h3+WCL7dgVFaKsIPStFdFHnq5O6yf0jC4f/ONA3jwP+/yZW8q yByk0rUCbDs60Z3E7wjyNI5HIbrpkkjmchgtdOpF6en/ikaMB//AaeWSpuJJa1cW wq4Jt6QcKa68JpA3UpVLu/18LbznG2bcUVfVuXK0jOugjsNUD5TVLZF6By8GKK/l qHsEvR9VGMlMsqIF6gDSGnEt5uiPhfMypyxRZE6JsJ/eFJk+zP020GRokVO0B7/a dPVPr2o= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org