$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/9DBB8670790211EC9EE24885C4F9AE02.roa File: 9DBB8670790211EC9EE24885C4F9AE02.roa (raw, json) Hash identifier: ZeH6ECuQSQ7jbEvsw/ti8Ne5hW6qGOm2ObSN2ziSRtc= Subject key identifier: 63:C7:7D:F1:3E:B6:60:50:D4:BD:9B:FE:8B:34:DE:86:2C:55:3F:86 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 258B Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/9DBB8670790211EC9EE24885C4F9AE02.roa Signing time: Fri 28 Jun 2024 16:33:48 +0000 ROA not before: Fri 28 Jun 2024 16:33:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140929 IP address blocks: 58.146.144.0/21 maxlen: 24 222.165.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9611 (0x258b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jun 28 16:33:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667ee5ec-262d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:55:32:28:ea:b2:1b:52:f9:28:19:67:97:bc: d7:22:e1:b7:6f:15:d0:ed:c5:05:04:c6:7e:a6:70: 37:6f:cd:9b:4c:d6:e2:b7:be:5a:b7:7f:34:b6:f7: 2b:51:84:a5:27:8a:ce:10:a4:fb:0f:cf:6d:63:eb: a2:df:31:9d:81:04:8c:5b:27:ed:03:6b:81:51:46: 5a:b6:85:96:73:a9:17:e4:b2:7c:1a:c9:f0:b7:d0: 53:f0:c3:ed:ee:59:d3:1d:12:65:c4:c5:33:67:36: ab:47:10:5b:6a:7d:b2:ee:a3:3e:d4:53:35:b1:ec: 27:b0:2c:8b:06:02:60:95:29:81:55:f9:bf:70:ca: 0f:d5:19:6a:9f:c9:05:45:e4:78:d5:d3:79:5a:e9: 1d:b2:d1:25:6d:a2:17:5a:8b:a5:bc:68:37:1d:d2: 29:7d:92:8c:46:3e:d0:0d:c0:80:9b:fe:02:6e:cc: 8b:5d:2e:f8:e9:b8:40:09:19:e9:99:1d:1a:13:eb: 35:d9:2e:27:f9:10:1e:96:b8:72:4f:d6:09:c3:f1: d0:25:f0:08:cc:b8:4d:88:fa:4f:67:2d:06:e1:c3: e4:a2:77:af:92:40:e3:55:56:23:a3:64:17:4c:24: 2c:99:22:05:74:c0:ce:60:fb:1c:7f:86:a6:46:07: 90:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C7:7D:F1:3E:B6:60:50:D4:BD:9B:FE:8B:34:DE:86:2C:55:3F:86 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/9DBB8670790211EC9EE24885C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.146.144.0/21 222.165.0.0/17 Signature Algorithm: sha256WithRSAEncryption 12:e7:f3:d6:98:3c:53:78:74:13:99:74:df:2e:a3:33:2e:0e: 45:0d:36:37:91:1b:59:eb:a2:03:d7:27:af:d3:aa:37:f3:2a: 0c:23:bd:9f:66:47:86:3a:32:71:6a:a3:68:d7:e2:2d:61:d9: 14:11:bf:48:43:cd:1a:87:e1:c4:fe:b3:ad:49:15:92:d0:f4: 11:4a:85:36:5d:30:16:43:a1:f1:7d:c2:26:35:72:f6:d7:bc: cd:17:19:59:d3:8c:e4:fe:15:26:40:ab:75:15:38:31:e7:06: 4d:71:73:fe:3d:d2:df:8b:dd:97:bb:d1:a7:2b:24:e5:0b:95: ad:4f:db:89:04:ee:1b:89:6e:71:b1:0a:67:8c:66:0a:cd:c1: 1d:89:c6:84:b3:45:90:15:7f:2a:d7:dc:cd:25:b7:7c:2b:c3: 8b:76:d9:59:e3:c2:43:6e:72:e2:71:b3:59:b5:c4:7e:71:bf: 28:90:e3:24:76:53:9a:c7:3e:14:ce:81:5a:05:38:b2:71:d6: 6f:b6:eb:96:db:6b:a7:50:a8:c5:ce:10:6b:b8:5a:df:71:53: 43:81:b6:78:22:23:8b:24:06:24:b9:44:68:cf:39:6f:95:f2: 7d:42:55:ec:eb:6f:1b:db:40:1d:ed:87:b6:c8:2f:3f:c0:10: 11:46:4b:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjQwNjI4MTYzMzQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdlZTVlYy0yNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFUyKOqyG1L5KBlnl7zXIuG3bxXQ7cUFBMZ+pnA3b82bTNbit75at380tvcr UYSlJ4rOEKT7D89tY+ui3zGdgQSMWyftA2uBUUZatoWWc6kX5LJ8Gsnwt9BT8MPt 7lnTHRJlxMUzZzarRxBban2y7qM+1FM1sewnsCyLBgJglSmBVfm/cMoP1Rlqn8kF ReR41dN5WukdstElbaIXWoulvGg3HdIpfZKMRj7QDcCAm/4CbsyLXS746bhACRnp mR0aE+s12S4n+RAelrhyT9YJw/HQJfAIzLhNiPpPZy0G4cPkonevkkDjVVYjo2QX TCQsmSIFdMDOYPscf4amRgeQbQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGPHffE+ tmBQ1L2b/os03oYsVT+GMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVFNTMvMzg1MTE4NDA0NTg4MTFFNTlCMkQ4MzcxQzRGOUFFMDIvOURCQjg2NzA3 OTAyMTFFQzlFRTI0ODg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAM6kpADBAfepQAwDQYJKoZIhvcNAQELBQADggEBABLn89aY PFN4dBOZdN8uozMuDkUNNjeRG1nrogPXJ6/TqjfzKgwjvZ9mR4Y6MnFqo2jX4i1h 2RQRv0hDzRqH4cT+s61JFZLQ9BFKhTZdMBZDofF9wiY1cvbXvM0XGVnTjOT+FSZA q3UVODHnBk1xc/490t+L3Ze70acrJOULla1P24kE7huJbnGxCmeMZgrNwR2JxoSz RZAVfyrX3M0lt3wrw4t22VnjwkNucuJxs1m1xH5xvyiQ4yR2U5rHPhTOgVoFOLJx 1m+265bba6dQqMXOEGu4Wt9xU0OBtngiI4skBiS5RGjPOW+V8n1CVezrbxvbQB3t h7bILz/AEBFGS+s= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org