$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B228FE46257C11E79EE15E3CC4F9AE02.roa File: B228FE46257C11E79EE15E3CC4F9AE02.roa (raw, json) Hash identifier: gPZrzSM2qFJiDgKYh5xaDFhnq8qXun0G5u3g/ssPKjA= Subject key identifier: 0D:DE:B8:F5:C0:97:4A:27:E6:ED:81:50:9A:49:21:45:99:E7:32:7F Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E1F Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B228FE46257C11E79EE15E3CC4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:49 +0000 ROA not before: Fri 20 Sep 2024 16:34:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17896 IP address blocks: 123.172.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7711 (0x1e1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4 Validity Not Before: Sep 20 16:34:49 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda429-cbf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:f7:38:ab:2c:47:78:ef:d9:bd:42:5a:bf: ec:fd:20:c1:59:06:8a:6f:16:2d:ea:53:f2:8e:f8: 1c:18:f8:37:96:f0:d2:e3:a7:0e:e0:51:ec:03:ce: e0:a6:71:8b:16:50:85:8d:a3:7b:be:80:2a:5d:89: 8b:f1:32:62:16:30:d7:cf:05:25:05:f5:3f:7e:14: 2f:2a:e7:4a:c7:14:cf:44:79:55:11:cb:73:3e:64: e9:f5:73:1a:0b:4b:58:7f:13:fa:a5:34:2a:6a:a7: 20:2e:46:cf:1d:a9:46:4a:5e:f6:d9:3a:cf:49:7e: 92:04:07:ad:5a:0f:3d:a3:75:05:01:e4:7a:05:ef: a2:62:4b:0d:56:b2:5d:08:2e:63:a4:a3:d6:21:ac: 7d:7d:8b:c2:1f:dd:d8:f3:42:1e:95:89:bc:4e:cb: 45:ff:9c:51:5b:09:c3:1f:91:fc:6d:cf:b2:f2:08: 98:c0:25:15:09:8e:8e:c9:8c:78:d8:12:dd:a9:77: c6:cb:e2:9a:3d:11:7a:12:6c:99:92:da:c7:22:4a: 0f:a7:7d:d5:04:5d:b0:e2:1e:ec:d5:53:b1:a2:b6: 93:8f:e2:3c:5a:ec:9d:41:ec:1a:34:a0:fb:a7:5b: 48:96:af:36:59:80:62:2e:16:74:ee:e4:22:62:c9: a3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DE:B8:F5:C0:97:4A:27:E6:ED:81:50:9A:49:21:45:99:E7:32:7F X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B228FE46257C11E79EE15E3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.172.0.0/20 Signature Algorithm: sha256WithRSAEncryption 76:86:84:2c:ec:13:4d:6a:16:d9:1d:09:05:37:0b:99:39:9b: 95:89:e9:ff:15:ae:15:d6:b3:fc:9f:e2:18:f0:15:1f:5c:ef: ad:0a:cb:fb:1b:38:8e:3f:d2:68:b0:f4:fe:10:4e:43:17:ad: 15:cb:03:98:67:b2:4c:9e:03:86:c4:49:ad:6f:e0:9d:80:64: 30:2d:71:3c:5e:82:11:92:55:52:cf:8c:37:fc:de:31:3b:92: 9b:09:4d:2a:32:c7:45:16:e2:32:90:63:f4:34:5d:35:3d:c7: 3c:78:36:9d:f6:62:7d:d1:81:8f:7d:1d:22:5b:e7:8e:95:47: 0d:90:99:2c:bb:69:bf:d1:1a:02:f8:6e:b8:8d:fc:73:ee:e1: 03:0e:79:95:22:5b:85:f0:1c:76:9b:a2:8f:3d:91:49:c4:f3: fd:87:66:79:83:39:7c:7a:f6:80:1f:2d:42:93:8a:1b:aa:0d: b2:aa:94:c8:95:e3:c9:4e:50:89:7b:5c:7d:ff:2c:6c:93:20: 9c:2b:d3:cb:97:94:d7:47:80:4c:99:ae:9a:d8:2f:e7:cf:c0: fd:91:7b:7a:31:0f:20:8b:b9:e1:b0:6a:f3:6f:9b:b7:17:c5: 1c:32:a7:1f:82:ef:4c:1f:3f:79:39:a7:fb:c6:14:2c:ea:bc: cb:74:26:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDQ5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQyOS1jYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh/3OKssR3jv2b1CWr/s/SDBWQaKbxYt6lPyjvgcGPg3lvDS46cO4FHsA87g pnGLFlCFjaN7voAqXYmL8TJiFjDXzwUlBfU/fhQvKudKxxTPRHlVEctzPmTp9XMa C0tYfxP6pTQqaqcgLkbPHalGSl722TrPSX6SBAetWg89o3UFAeR6Be+iYksNVrJd CC5jpKPWIax9fYvCH93Y80IelYm8TstF/5xRWwnDH5H8bc+y8giYwCUVCY6OyYx4 2BLdqXfGy+KaPRF6EmyZktrHIkoPp33VBF2w4h7s1VOxoraTj+I8WuydQewaNKD7 p1tIlq82WYBiLhZ07uQiYsmjzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA3euPXA l0on5u2BUJpJIUWZ5zJ/MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjIyOEZFNDYy NTdDMTFFNzlFRTE1RTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAR7rAAwDQYJKoZIhvcNAQELBQADggEBAHaGhCzsE01qFtkd CQU3C5k5m5WJ6f8VrhXWs/yf4hjwFR9c760Ky/sbOI4/0miw9P4QTkMXrRXLA5hn skyeA4bESa1v4J2AZDAtcTxeghGSVVLPjDf83jE7kpsJTSoyx0UW4jKQY/Q0XTU9 xzx4Np32Yn3RgY99HSJb546VRw2QmSy7ab/RGgL4briN/HPu4QMOeZUiW4XwHHab oo89kUnE8/2HZnmDOXx69oAfLUKTihuqDbKqlMiV48lOUIl7XH3/LGyTIJwr08uX lNdHgEyZrprYL+fPwP2Re3oxDyCLueGwavNvm7cXxRwypx+C70wfP3k5p/vGFCzq vMt0JqU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:12:08 2025 by rpki-client