$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/CFF5A20078E011EC8357FA15C4F9AE02.roa File: CFF5A20078E011EC8357FA15C4F9AE02.roa (raw, json) Hash identifier: a8WMRrKXqOWpbHlU3tbV4FzyKQszu4zB5F1ouGdfBCA= Subject key identifier: D4:C2:33:0C:4E:36:58:52:14:83:3A:FE:F9:30:2D:7E:FC:02:D4:70 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 258A Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/CFF5A20078E011EC8357FA15C4F9AE02.roa Signing time: Fri 28 Jun 2024 16:33:47 +0000 ROA not before: Fri 28 Jun 2024 16:33:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140928 IP address blocks: 58.146.128.0/20 maxlen: 24 59.189.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9610 (0x258a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jun 28 16:33:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667ee5eb-eb7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3b:63:b4:f0:53:8d:8e:ec:41:64:9f:2d:b0: 05:21:b2:17:a0:e5:95:3e:bb:aa:2e:0c:ad:09:1e: d2:b7:ee:03:64:56:ea:86:ea:76:e6:eb:7f:05:48: f7:22:99:5f:8c:d4:90:cf:80:8e:b8:cc:c9:23:a4: e1:f8:cd:a2:c0:ff:33:8f:86:90:a0:b2:09:e9:47: fc:1f:13:29:59:25:d8:88:48:8d:11:b8:ee:b1:b3: 3e:7a:60:8f:47:be:93:a9:f9:37:56:95:d4:b6:ed: fa:60:7e:14:15:42:8c:37:49:b1:ab:c2:17:9f:dd: 67:30:a6:6e:22:53:2b:8e:ab:99:1c:e7:3e:d1:f4: 3c:ce:21:f6:41:b5:25:43:cd:2f:84:f2:6b:99:b9: 07:76:4f:53:56:f8:04:69:7c:72:86:27:ae:dd:b8: b1:d7:92:f9:fa:5e:e9:be:26:d4:93:e6:ad:76:cc: de:2c:44:a6:85:36:b9:d2:7b:ef:f3:48:f6:a5:42: 04:3d:dc:46:29:18:3c:31:b4:d7:3e:7d:f9:d8:b4: 36:75:25:6a:91:07:22:ef:6d:8c:51:43:4c:20:d0: 92:93:b9:13:c7:5d:5f:8d:6f:ae:5a:6c:7d:91:d3: de:62:0a:27:52:10:a4:cb:64:90:24:9d:81:7e:da: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C2:33:0C:4E:36:58:52:14:83:3A:FE:F9:30:2D:7E:FC:02:D4:70 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/CFF5A20078E011EC8357FA15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.146.128.0/20 59.189.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:3c:54:ec:99:02:94:e0:ed:34:af:73:c6:3c:52:62:ce:72: 9f:48:40:53:92:0e:44:34:8b:36:ab:92:5f:40:c9:1b:38:68: cb:97:25:9a:47:1d:2f:9d:c7:5e:a0:5d:c6:31:c3:ca:e0:64: bf:58:b6:cb:c6:2a:18:68:d9:6e:ea:e8:df:9c:11:2b:09:a0: 06:fc:8b:cb:53:b1:77:0f:0d:da:6b:5c:98:ac:8d:ac:f6:f5: 25:85:87:97:89:76:13:96:db:33:83:ad:80:06:a7:db:7a:44: dd:e5:52:07:ee:ed:0e:63:e4:0c:34:2e:4d:71:17:44:42:41: e5:7d:42:97:6c:29:96:63:27:f6:8d:ba:9d:10:55:39:a4:e2: 06:fa:6d:7c:2b:7b:f0:b1:c8:c3:f8:47:69:1c:a7:0c:8b:c3: 3a:4e:71:06:1c:02:f6:84:70:12:b9:12:63:b1:f9:3a:55:89: 14:22:42:58:30:86:49:c5:64:3e:a4:04:cc:97:89:e5:13:75: 54:2e:5e:18:a0:35:61:56:53:ad:23:20:8e:52:d2:90:dc:08: 84:1b:64:55:92:f7:3f:c2:11:8c:68:c9:ef:4c:4f:66:0e:48: 58:a5:b6:35:05:52:45:30:d3:2f:5a:f4:41:43:df:cc:55:34: 83:0e:f5:a9 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICJYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjQwNjI4MTYzMzQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdlZTVlYi1lYjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DtjtPBTjY7sQWSfLbAFIbIXoOWVPruqLgytCR7St+4DZFbqhup25ut/BUj3 IplfjNSQz4COuMzJI6Th+M2iwP8zj4aQoLIJ6Uf8HxMpWSXYiEiNEbjusbM+emCP R76Tqfk3VpXUtu36YH4UFUKMN0mxq8IXn91nMKZuIlMrjquZHOc+0fQ8ziH2QbUl Q80vhPJrmbkHdk9TVvgEaXxyhieu3bix15L5+l7pvibUk+atdszeLESmhTa50nvv 80j2pUIEPdxGKRg8MbTXPn352LQ2dSVqkQci722MUUNMINCSk7kTx11fjW+uWmx9 kdPeYgonUhCky2SQJJ2BftpkxwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFNTCMwxO NlhSFIM6/vkwLX78AtRwMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVFNTMvMzg1MTE4NDA0NTg4MTFFNTlCMkQ4MzcxQzRGOUFFMDIvQ0ZGNUEyMDA3 OEUwMTFFQzgzNTdGQTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAQ6koADAwA7vTANBgkqhkiG9w0BAQsFAAOCAQEAWjxU7JkC lODtNK9zxjxSYs5yn0hAU5IORDSLNquSX0DJGzhoy5clmkcdL53HXqBdxjHDyuBk v1i2y8YqGGjZburo35wRKwmgBvyLy1Oxdw8N2mtcmKyNrPb1JYWHl4l2E5bbM4Ot gAan23pE3eVSB+7tDmPkDDQuTXEXREJB5X1Cl2wplmMn9o26nRBVOaTiBvptfCt7 8LHIw/hHaRynDIvDOk5xBhwC9oRwErkSY7H5OlWJFCJCWDCGScVkPqQEzJeJ5RN1 VC5eGKA1YVZTrSMgjlLSkNwIhBtkVZL3P8IRjGjJ70xPZg5IWKW2NQVSRTDTL1r0 QUPfzFU0gw71qQ== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org