$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa File: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (raw, json) Hash identifier: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4= Subject key identifier: DE:C9:41:B7:7E:D7:E6:84:B6:1A:1C:03:B5:AD:3B:AE:F9:AE:94:46 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 3A Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa Signing time: Sat 19 Oct 2024 00:14:40 +0000 ROA not before: Sat 19 Oct 2024 00:14:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141196 IP address blocks: 152.32.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Oct 19 00:14:40 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6712f9ef-4a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:73:fc:16:75:e6:86:41:49:3b:4f:ee:9b:7e: e4:f1:f5:80:c2:90:68:17:72:86:ca:30:11:b5:3e: 68:88:44:85:5a:48:69:c3:f4:b9:b4:0c:ae:c3:6a: 7a:69:92:65:be:60:e6:77:87:fe:be:1e:2f:d2:c1: 9f:23:bf:2e:60:c2:50:cd:96:c4:ff:81:30:81:01: bb:91:ab:b2:69:70:f3:c1:28:e3:2f:f4:e5:00:b4: 2e:22:71:9c:e2:b4:c3:db:3b:18:bf:02:63:1d:81: 33:fa:01:46:af:5c:db:82:af:58:f1:bd:cb:75:b0: bd:6e:56:a1:df:1a:d7:f6:04:37:9d:ba:db:07:01: d8:be:22:79:44:65:26:28:b2:af:63:e4:45:6f:f7: d4:88:80:fa:92:95:b1:42:a9:5f:a4:a5:22:8e:1d: e6:34:0c:0a:2f:07:ff:1e:d7:41:7f:ba:76:8c:14: 9c:1b:a0:2f:b7:d1:c9:3e:7e:28:e1:5d:57:dd:63: 89:ff:44:30:b2:af:20:ab:05:75:01:98:45:1b:a5: b1:df:ae:95:7a:71:d7:33:0e:ef:f9:ed:40:49:92: 0b:45:ad:7f:a2:9a:58:00:24:15:0d:6b:18:79:29: 4f:f7:15:59:c4:d4:e2:c7:74:d7:83:cf:12:f6:ff: 42:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C9:41:B7:7E:D7:E6:84:B6:1A:1C:03:B5:AD:3B:AE:F9:AE:94:46 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.32.124.0/22 Signature Algorithm: sha256WithRSAEncryption 84:4d:35:ce:0d:6b:9c:bd:e8:8a:77:f0:82:d9:45:e8:55:0c: 05:7e:b8:eb:07:ae:6b:47:b8:3e:bb:b5:77:fa:65:c4:66:3f: ee:d0:ee:16:e9:99:d8:66:11:13:49:1a:84:62:6f:c6:fa:2c: 05:6d:6c:fc:3e:ca:05:39:24:56:d0:74:32:ff:21:8d:3c:3d: 2c:d3:ec:3d:22:e0:fe:cb:fb:7f:e9:00:21:9a:46:0d:66:71: cd:a3:dc:db:0f:f6:5e:be:9e:29:f3:71:f2:01:8e:bd:21:d7: 0e:25:3f:e0:11:a3:77:5a:4d:36:42:07:bb:99:c9:fe:63:03: 21:1a:98:d4:2d:97:93:9f:72:8a:ba:d7:21:80:36:5e:33:92: 6a:f8:dd:61:d9:5c:36:b1:52:ce:cf:90:e3:73:27:97:42:ac: a6:be:79:79:eb:e8:28:f0:ad:63:94:fa:f4:00:75:b9:b2:15: e4:d7:9b:5c:9d:4b:fa:55:ec:22:39:34:6a:fb:32:42:df:dc: ec:0f:3a:1d:71:3e:c2:44:52:ef:91:60:e7:4c:f3:db:29:25: 93:ac:a4:a1:7e:f6:89:30:60:73:ab:ff:c1:52:dc:d8:ff:9c: 86:75:76:bc:d9:a6:a9:ae:cf:b2:09:be:70:a4:d3:b1:e0:e2: 0f:f5:f2:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OUVDRDExMC8GA1UEBRMoRDk1REExMTcxNDEyMzAwQUI1M0IzRTQ4NzBGMkY0NDFG MDZDODEyNDAeFw0yNDEwMTkwMDE0NDBaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTJmOWVmLTRhNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUc/wWdeaGQUk7T+6bfuTx9YDCkGgXcobKMBG1PmiIRIVaSGnD9Lm0DK7Danpp kmW+YOZ3h/6+Hi/SwZ8jvy5gwlDNlsT/gTCBAbuRq7JpcPPBKOMv9OUAtC4icZzi tMPbOxi/AmMdgTP6AUavXNuCr1jxvct1sL1uVqHfGtf2BDedutsHAdi+InlEZSYo sq9j5EVv99SIgPqSlbFCqV+kpSKOHeY0DAovB/8e10F/unaMFJwboC+30ck+fijh XVfdY4n/RDCyryCrBXUBmEUbpbHfrpV6cdczDu/57UBJkgtFrX+imlgAJBUNaxh5 KU/3FVnE1OLHdNeDzxL2/0I/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3slBt37X 5oS2GhwDta07rvmulEYwHwYDVR0jBBgwFoAU2V2hFxQSMAq1Oz5IcPL0QfBsgSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5RUNEL0VGNjM4M0UyM0Q5 RjExRUY5OTAzMzc2OEM0RjlBRTAyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlYyaEZ4UVNNQXExT3o1SWNQTDBRZkJzZ1NRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi81QTQ3MjNEQTZG M0MxMUVGOEZENDVGMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEApggfDANBgkqhkiG9w0BAQsFAAOCAQEAhE01zg1rnL3oinfw gtlF6FUMBX646weua0e4Pru1d/plxGY/7tDuFumZ2GYRE0kahGJvxvosBW1s/D7K BTkkVtB0Mv8hjTw9LNPsPSLg/sv7f+kAIZpGDWZxzaPc2w/2Xr6eKfNx8gGOvSHX DiU/4BGjd1pNNkIHu5nJ/mMDIRqY1C2Xk59yirrXIYA2XjOSavjdYdlcNrFSzs+Q 43Mnl0Kspr55eevoKPCtY5T69AB1ubIV5NebXJ1L+lXsIjk0avsyQt/c7A86HXE+ wkRS75Fg50zz2yklk6ykoX72iTBgc6v/wVLc2P+chnV2vNmmqa7Psgm+cKTTseDi D/XyYQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:58 2024 by rpki-client on console-ams.rpki-client.org