$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa File: 061C3362985911EBA5F39B54C4F9AE02.roa (raw, json) Hash identifier: 8e05gzQi7pUAaZxz5oxTvUQfM0A7KbTjJTrGpKehcUY= Subject key identifier: 7B:B0:4A:0E:FC:7B:25:CB:9B:9A:DD:1B:56:EA:60:0C:E4:64:6E:9D Certificate issuer: /CN=A915DB55/serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Certificate serial: 0579 Authority key identifier: 44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa Signing time: Wed 22 May 2024 22:31:34 +0000 ROA not before: Wed 22 May 2024 22:31:34 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139034 IP address blocks: 104.255.36.0/22 maxlen: 22 104.255.36.0/24 maxlen: 24 104.255.37.0/24 maxlen: 24 104.255.38.0/24 maxlen: 24 104.255.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB55/serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Validity Not Before: May 22 22:31:34 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664e7245-94ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dd:a7:62:ea:15:1e:c1:92:5d:29:69:47:78: 6b:67:bb:99:f0:c8:8e:00:f2:6b:0e:9b:f5:bb:4f: 9b:72:38:d0:0a:37:75:cb:65:17:29:33:95:77:70: 41:5b:64:d6:ef:bc:49:ef:c9:13:71:5e:98:b4:e9: 39:60:e8:ce:cd:fe:41:7d:75:d5:0b:36:bb:ad:e6: 1b:c9:29:e6:02:f1:62:19:87:c8:c7:27:5d:17:f1: 74:6c:55:58:f9:cf:8e:ac:43:06:e2:c6:89:9c:16: bf:49:4c:a1:57:a8:1b:e4:96:0c:65:98:e8:ba:a0: 57:ae:69:05:bd:99:23:ab:87:b7:68:9f:da:5e:ed: 77:5a:03:8f:ae:66:6e:ac:bc:89:8b:13:fc:e6:76: 5f:e2:d3:c8:08:eb:51:cb:6e:ed:48:a9:5b:b8:b7: 64:89:4e:62:36:77:b3:0f:34:61:5c:1b:e9:b2:66: 14:1e:cb:d9:69:19:49:1b:4d:20:c9:7f:34:b6:3f: ed:c5:93:c7:dc:79:91:a7:c2:c7:41:c7:84:33:fc: 37:1b:e2:42:e6:11:5a:fe:ee:49:c8:40:9d:c6:ba: 3b:34:cb:7e:9e:2a:d9:b7:d2:6f:8a:0b:aa:5e:ee: 64:29:f8:d1:79:e1:48:e9:18:41:12:c9:bf:9d:bf: 2a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B0:4A:0E:FC:7B:25:CB:9B:9A:DD:1B:56:EA:60:0C:E4:64:6E:9D X509v3 Authority Key Identifier: keyid:44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.255.36.0/22 Signature Algorithm: sha256WithRSAEncryption bb:93:20:d1:24:e5:ce:07:58:17:3a:ac:5e:73:c3:b3:f1:0d: 36:0e:b5:cd:65:d3:02:03:a4:00:26:ef:c3:4b:82:78:19:74: da:3d:5e:7a:dd:b7:e3:cc:6d:eb:df:2b:11:15:60:78:33:18: cc:3a:d9:39:4a:cc:f5:52:19:3e:f9:e6:4c:50:cc:c4:0c:c1: 1e:33:7a:2b:14:aa:33:5c:ed:26:29:6d:83:c4:74:47:b7:ed: 9a:2a:7c:a9:53:9b:e1:e2:01:f0:87:e9:9c:93:7b:6c:ed:f7: b2:b9:75:d0:da:15:52:2a:67:a5:8c:a7:92:d6:4d:e2:c8:a9: d7:c8:10:e6:6c:92:69:5b:93:8c:fc:54:45:2f:e1:5b:4e:78: 99:c0:01:5c:ce:f1:1d:25:55:a9:83:8b:fe:83:81:ec:72:27: c4:77:00:8f:39:c6:10:16:ac:85:a9:74:88:d8:3c:dd:c9:58: 1a:ae:d2:9d:d8:af:b5:66:95:ca:76:3c:4e:64:b1:fd:08:c9: ea:13:94:1e:3c:ba:10:01:34:2b:26:ba:d3:1a:cb:cb:dc:9f: 17:40:2b:45:ad:ec:0a:c1:e5:3e:04:56:85:7e:7c:8a:f8:37: 5f:91:7a:a6:a3:64:82:27:0c:ae:5b:af:b3:08:d8:8b:2a:2d: ef:02:57:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCNTUxMTAvBgNVBAUTKDQ0MjNGQkY0MUFEOUYwRkM3NEQzQzE1NTU4QjhEMDlB MTY0QjI2MUIwHhcNMjQwNTIyMjIzMTM0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlNzI0NS05NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw92nYuoVHsGSXSlpR3hrZ7uZ8MiOAPJrDpv1u0+bcjjQCjd1y2UXKTOVd3BB W2TW77xJ78kTcV6YtOk5YOjOzf5BfXXVCza7reYbySnmAvFiGYfIxyddF/F0bFVY +c+OrEMG4saJnBa/SUyhV6gb5JYMZZjouqBXrmkFvZkjq4e3aJ/aXu13WgOPrmZu rLyJixP85nZf4tPICOtRy27tSKlbuLdkiU5iNnezDzRhXBvpsmYUHsvZaRlJG00g yX80tj/txZPH3HmRp8LHQceEM/w3G+JC5hFa/u5JyECdxro7NMt+nirZt9Jviguq Xu5kKfjReeFI6RhBEsm/nb8qgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHuwSg78 eyXLm5rdG1bqYAzkZG6dMB8GA1UdIwQYMBaAFEQj+/Qa2fD8dNPBVVi40JoWSyYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI1NS8yMDQ4MDUzMjk4 NTgxMUVCOEE0MUZBMjBDNEY5QUUwMi9SQ1A3OUJyWjhQeDAwOEZWV0xqUW1oWkxK aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JDUDc5QnJaOFB4MDA4RlZXTGpRbWhaTEpocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCNTUvMjA0ODA1MzI5ODU4MTFFQjhBNDFGQTIwQzRGOUFFMDIvMDYxQzMzNjI5 ODU5MTFFQkE1RjM5QjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJo/yQwDQYJKoZIhvcNAQELBQADggEBALuTINEk5c4HWBc6 rF5zw7PxDTYOtc1l0wIDpAAm78NLgngZdNo9Xnrdt+PMbevfKxEVYHgzGMw62TlK zPVSGT755kxQzMQMwR4zeisUqjNc7SYpbYPEdEe37ZoqfKlTm+HiAfCH6ZyTe2zt 97K5ddDaFVIqZ6WMp5LWTeLIqdfIEOZskmlbk4z8VEUv4VtOeJnAAVzO8R0lVamD i/6DgexyJ8R3AI85xhAWrIWpdIjYPN3JWBqu0p3Yr7Vmlcp2PE5ksf0IyeoTlB48 uhABNCsmutMay8vcnxdAK0Wt7ArB5T4EVoV+fIr4N1+ReqajZIInDK5br7MI2Isq Le8CVzI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:39 2024 by rpki-client on console-fra.rpki-client.org