$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/13EE3260596A11ECB1394271C4F9AE02.roa File: 13EE3260596A11ECB1394271C4F9AE02.roa (raw, json) Hash identifier: sxrmm3JlL/k0ct5wIWAW6jZv0BJa2muxpRwSyTLfsOs= Subject key identifier: CA:28:22:C9:9D:F5:EB:51:BA:E7:D7:AF:91:CF:80:79:5C:E0:2E:7B Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0341 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/13EE3260596A11ECB1394271C4F9AE02.roa Signing time: Fri 08 Dec 2023 17:45:03 +0000 ROA not before: Fri 08 Dec 2023 17:45:03 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 208046 IP address blocks: 45.129.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 8 17:45:03 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6573561f-ff37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:c5:23:8a:b3:4c:a9:65:84:94:35:21:a4: 2d:4e:74:11:65:f2:5a:04:60:e3:d5:54:91:f3:44: 4a:f3:ec:2d:63:b1:62:32:1f:de:2d:64:e9:12:97: 33:1f:5a:83:98:06:fa:4a:9a:46:12:51:00:70:77: 06:80:6c:75:eb:8f:cd:64:ba:29:da:25:43:3b:ba: 1f:f5:3f:24:91:1b:be:13:b5:dc:e4:1a:49:2f:c8: 90:46:99:90:9e:17:7a:b8:42:30:63:26:dd:be:ee: 4f:1e:8c:36:77:ea:3e:42:16:e9:d2:48:85:91:9a: ae:0b:da:a6:2d:a0:22:9f:ee:75:51:cd:11:8e:49: 88:74:52:cb:d2:f7:fd:99:77:df:7a:94:67:62:7b: a8:39:1a:c3:d7:a0:1b:98:3a:37:d8:95:6d:9c:c5: 45:5e:8c:e8:ff:e3:21:52:79:77:f4:ea:ee:cf:08: 91:72:73:a1:7a:a0:da:09:c7:3b:a5:07:8d:a9:da: 22:e9:e9:22:eb:2f:69:af:63:06:91:f7:bb:29:5c: bd:33:25:c7:25:b4:56:51:f1:75:bf:61:4a:db:bc: 3e:88:9a:e5:1c:41:70:84:97:d9:69:01:7f:64:0a: 6d:05:2b:9d:2e:4a:3f:cf:ac:26:b2:07:81:86:b7: 58:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:28:22:C9:9D:F5:EB:51:BA:E7:D7:AF:91:CF:80:79:5C:E0:2E:7B X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/13EE3260596A11ECB1394271C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.129.230.0/23 Signature Algorithm: sha256WithRSAEncryption 53:17:c4:94:7d:e8:5b:84:56:b3:c4:90:f2:1e:39:cf:c9:3b: 6f:64:69:18:e9:83:35:55:b3:93:76:47:54:38:8d:ec:62:85: 37:c0:f0:eb:ad:be:ab:f3:5b:15:d9:70:70:0f:98:17:88:07: 21:ef:8e:34:9d:a4:11:7e:ed:44:e3:41:b9:aa:4e:00:52:ed: f4:dd:c8:29:7e:f6:8d:d3:61:5e:35:eb:8e:90:dd:bf:f9:4b: 14:bc:fe:87:10:5c:46:1f:2a:07:df:02:7b:ed:6a:b5:78:b5: cf:5b:bd:85:77:07:97:e7:84:d4:ac:99:36:a5:36:ad:86:13: e7:f8:4f:19:a0:48:6d:b8:dc:4c:f2:5c:d3:b7:e4:54:e7:ab: db:53:fc:af:6c:47:67:1a:9b:68:6b:50:c5:5b:c5:a0:c9:99: 60:30:a4:72:2c:db:69:db:48:ab:b0:1e:3c:b2:66:8e:b3:4a: ee:77:cd:03:07:2c:6f:40:21:a0:eb:de:05:eb:e6:d5:1c:e6: 75:91:9f:85:60:c1:b9:ee:79:39:86:04:f9:f2:3f:ca:13:53: 76:bc:8c:86:1f:ee:41:c3:a1:30:61:c5:d6:88:ba:20:d5:c0: f4:19:ff:27:81:0b:2c:4f:5c:2c:3f:e2:3f:28:bf:04:3a:76: 08:df:f0:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjMxMjA4MTc0NTAzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczNTYxZi1mZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFzFI4qzTKllhJQ1IaQtTnQRZfJaBGDj1VSR80RK8+wtY7FiMh/eLWTpEpcz H1qDmAb6SppGElEAcHcGgGx164/NZLop2iVDO7of9T8kkRu+E7Xc5BpJL8iQRpmQ nhd6uEIwYybdvu5PHow2d+o+Qhbp0kiFkZquC9qmLaAin+51Uc0RjkmIdFLL0vf9 mXffepRnYnuoORrD16AbmDo32JVtnMVFXozo/+MhUnl39OruzwiRcnOheqDaCcc7 pQeNqdoi6eki6y9pr2MGkfe7KVy9MyXHJbRWUfF1v2FK27w+iJrlHEFwhJfZaQF/ ZAptBSudLko/z6wmsgeBhrdYZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMooIsmd 9etRuufXr5HPgHlc4C57MB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNUI0QzRFMzY1OTY5MTFFQzk0QTNFNzcwQzRGOUFFMDIvMTNFRTMyNjA1 OTZBMTFFQ0IxMzk0MjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEtgeYwDQYJKoZIhvcNAQELBQADggEBAFMXxJR96FuEVrPE kPIeOc/JO29kaRjpgzVVs5N2R1Q4jexihTfA8OutvqvzWxXZcHAPmBeIByHvjjSd pBF+7UTjQbmqTgBS7fTdyCl+9o3TYV41646Q3b/5SxS8/ocQXEYfKgffAnvtarV4 tc9bvYV3B5fnhNSsmTalNq2GE+f4TxmgSG243EzyXNO35FTnq9tT/K9sR2cam2hr UMVbxaDJmWAwpHIs22nbSKuwHjyyZo6zSu53zQMHLG9AIaDr3gXr5tUc5nWRn4Vg wbnueTmGBPnyP8oTU3a8jIYf7kHDoTBhxdaIuiDVwPQZ/yeBCyxPXCw/4j8ovwQ6 dgjf8I0= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:55 2024 by rpki-client on console-fra.rpki-client.org