$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/CFF5A20078E011EC8357FA15C4F9AE02.roa File: CFF5A20078E011EC8357FA15C4F9AE02.roa (raw, json) Hash identifier: /Xotzkh/g3yq/TP/e+UoN5EpHRuosPx78/zbMbXs07Q= Subject key identifier: 3C:54:39:69:E8:AB:93:9D:B2:82:97:18:FB:CC:6C:8B:53:CF:19:8C Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 24C8 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/CFF5A20078E011EC8357FA15C4F9AE02.roa Signing time: Tue 04 Jul 2023 16:02:17 +0000 ROA not before: Tue 04 Jul 2023 16:02:17 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140928 IP address blocks: 58.146.128.0/20 maxlen: 24 59.189.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 15:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9416 (0x24c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jul 4 16:02:17 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a44288-3f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0e:31:0f:06:d1:38:71:ba:22:2a:33:0b:f7: e5:ec:66:a2:e0:08:3b:ec:ae:6d:e6:96:7b:96:bc: 0b:5a:fd:df:f8:84:dd:e3:84:c3:cc:a8:bf:a6:b7: 5a:02:2b:a5:16:c0:61:60:73:37:b8:cc:63:e4:ba: 5d:e5:f3:4e:8c:3b:bb:82:d5:a4:38:25:34:41:1c: 84:0d:d9:c2:ce:52:b1:25:7c:40:6e:1a:25:64:18: a7:de:b8:a2:91:90:1f:7e:fb:17:06:03:86:d3:13: 9e:1a:64:bd:9b:8f:84:c8:f4:52:98:04:69:c8:ef: 2f:ab:98:70:a4:c3:8b:0f:7d:94:99:25:3a:f2:56: 9d:bb:62:1b:e1:b1:3d:53:3b:bb:c1:3b:a7:82:5a: 4f:e4:41:89:b7:dd:76:a4:e1:d0:4b:da:03:02:29: 06:32:98:07:c8:1c:39:f5:fe:c3:1d:7b:9e:00:92: 41:dd:f7:73:c5:79:12:f1:1f:d2:d7:e9:59:5c:34: 00:36:fd:7c:cd:35:c8:f4:17:f4:55:e3:08:eb:f6: 40:77:e2:4b:80:f4:3a:d4:dd:36:c7:a7:02:dc:19: 8d:cd:0d:58:9a:34:d1:d2:05:b3:32:bb:27:7e:bb: 0f:b6:42:25:da:fb:8b:d3:f6:4f:89:b8:db:47:3a: fa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:54:39:69:E8:AB:93:9D:B2:82:97:18:FB:CC:6C:8B:53:CF:19:8C X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/CFF5A20078E011EC8357FA15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.146.128.0/20 59.189.0.0/16 Signature Algorithm: sha256WithRSAEncryption 85:00:cb:62:cf:46:10:99:51:30:0d:8d:33:f4:80:c2:0c:26: 85:df:25:b9:84:1f:ed:79:03:ec:83:d0:3a:aa:8a:81:c0:5b: e7:2a:d0:35:d7:64:1f:c0:b2:87:19:ea:5a:ac:b4:44:20:e5: bd:3d:67:e2:c7:f4:c2:fd:7d:3b:93:2c:c1:88:87:ab:90:ab: b6:09:a0:a2:44:06:f6:f0:28:23:e3:33:56:53:2a:2f:66:f3: b0:33:ee:ba:85:30:1f:a1:62:16:82:77:61:7e:89:14:ed:77: 94:0d:ee:8c:25:a0:d9:f2:45:fb:92:de:47:47:d8:0e:0a:c0: 13:0c:68:99:b4:05:bb:51:43:e1:e3:77:56:25:a2:26:f6:c9: 81:2b:18:e8:e0:f5:fc:01:18:70:5d:3f:a3:bf:c4:d5:5f:32: 46:fe:64:6e:00:5b:1d:29:2e:ef:d6:ef:19:04:8f:f6:01:4a: ae:80:62:0e:e4:88:68:86:88:5b:84:4b:d2:66:84:be:9f:f9: 44:02:36:c2:75:90:0e:d1:c4:a5:29:24:c5:88:33:cc:71:c6: 21:1b:af:39:6a:02:69:05:a0:0b:d4:df:d5:2d:6f:45:85:ef: ed:4a:8e:95:e7:d2:aa:de:4c:88:42:cc:c7:ca:75:3e:7c:a7: 52:8e:19:78 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICJMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjMwNzA0MTYwMjE3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0NDI4OC0zZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2g4xDwbROHG6IiozC/fl7Gai4Ag77K5t5pZ7lrwLWv3f+ITd44TDzKi/prda AiulFsBhYHM3uMxj5Lpd5fNOjDu7gtWkOCU0QRyEDdnCzlKxJXxAbholZBin3rii kZAffvsXBgOG0xOeGmS9m4+EyPRSmARpyO8vq5hwpMOLD32UmSU68ladu2Ib4bE9 Uzu7wTunglpP5EGJt912pOHQS9oDAikGMpgHyBw59f7DHXueAJJB3fdzxXkS8R/S 1+lZXDQANv18zTXI9Bf0VeMI6/ZAd+JLgPQ61N02x6cC3BmNzQ1YmjTR0gWzMrsn frsPtkIl2vuL0/ZPibjbRzr6KwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFDxUOWno q5OdsoKXGPvMbItTzxmMMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVFNTMvMzg1MTE4NDA0NTg4MTFFNTlCMkQ4MzcxQzRGOUFFMDIvQ0ZGNUEyMDA3 OEUwMTFFQzgzNTdGQTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAQ6koADAwA7vTANBgkqhkiG9w0BAQsFAAOCAQEAhQDLYs9G EJlRMA2NM/SAwgwmhd8luYQf7XkD7IPQOqqKgcBb5yrQNddkH8CyhxnqWqy0RCDl vT1n4sf0wv19O5MswYiHq5CrtgmgokQG9vAoI+MzVlMqL2bzsDPuuoUwH6FiFoJ3 YX6JFO13lA3ujCWg2fJF+5LeR0fYDgrAEwxombQFu1FD4eN3ViWiJvbJgSsY6OD1 /AEYcF0/o7/E1V8yRv5kbgBbHSku79bvGQSP9gFKroBiDuSIaIaIW4RL0maEvp/5 RAI2wnWQDtHEpSkkxYgzzHHGIRuvOWoCaQWgC9Tf1S1vRYXv7UqOlefSqt5MiELM x8p1PnynUo4ZeA== -----END CERTIFICATE-----Generated at Wed May 22 16:49:07 2024 by rpki-client on console-fra.rpki-client.org