$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa File: D2E6AC6A60F111EFB97DD57AC4F9AE02.roa (raw, json) Hash identifier: klKJYHTI4INqcBgBGuobupIA1CcWLSCCQBLrEH0i7XE= Subject key identifier: AD:52:8C:ED:6C:C2:5E:D1:82:D2:E2:EF:82:A4:EB:40:E6:6A:2C:D4 Certificate issuer: /CN=A915F89C/serialNumber=D697BB6F3F99E94480EE0BBAD3D26800AB416260 Certificate serial: 3480 Authority key identifier: D6:97:BB:6F:3F:99:E9:44:80:EE:0B:BA:D3:D2:68:00:AB:41:62:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa Signing time: Fri 23 Aug 2024 01:57:44 +0000 ROA not before: Fri 23 Aug 2024 01:57:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 19905 IP address blocks: 128.106.0.0/18 maxlen: 24 165.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.crl rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13440 (0x3480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C Validity Not Before: Aug 23 01:57:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7ec98-fa34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f3:bc:b0:a2:ed:78:0c:97:f4:53:9d:20:23: 9b:78:33:79:37:3f:99:71:8b:a6:94:0b:7b:db:26: 88:72:0c:ba:30:99:de:bc:fd:ac:c4:66:f2:c8:0d: 35:aa:35:fc:c4:ae:dc:32:ac:14:0e:70:e9:21:0d: f7:8e:b0:70:28:fb:b2:91:4d:01:7d:e8:27:0f:73: 13:8c:ca:e4:6c:04:96:33:99:cd:89:45:75:5b:8f: 69:c4:ef:74:0f:6b:8a:7e:11:81:4c:4b:53:b3:5a: db:0b:75:a7:e8:36:f7:12:79:e3:4b:82:41:1c:62: c3:9b:93:73:69:98:7b:2b:aa:c8:b1:79:0a:2d:56: e0:29:ba:10:63:4a:3a:48:db:5a:b3:d2:9e:c6:c3: 3a:a6:b9:bc:6c:93:ab:e8:dd:34:2a:bd:6b:b7:ba: 4a:12:f6:45:92:41:b5:43:19:ac:7f:72:b6:51:9b: 14:a8:24:d8:00:54:39:86:1b:7f:44:ab:9d:bb:c7: c1:0b:33:5a:8e:0b:62:0b:9b:6a:51:a1:53:b8:75: 30:fd:8c:a5:1b:fc:43:4c:a8:6c:79:c4:f9:57:37: 71:f6:30:ef:92:2f:fc:12:29:d9:f3:2f:dd:8c:b9: 6d:d5:00:37:c4:e4:93:30:78:0e:d3:6d:5d:78:cc: 5f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:52:8C:ED:6C:C2:5E:D1:82:D2:E2:EF:82:A4:EB:40:E6:6A:2C:D4 X509v3 Authority Key Identifier: keyid:D6:97:BB:6F:3F:99:E9:44:80:EE:0B:BA:D3:D2:68:00:AB:41:62:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.106.0.0/18 165.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:49:b8:0c:31:d5:0b:f4:80:2d:0a:b0:9d:d9:a3:ed:ef:cf: ba:b4:1e:a6:33:88:35:99:12:74:84:ea:33:bd:67:06:02:0d: 84:00:a1:1b:0d:46:ac:7e:ae:71:ee:92:b5:b2:02:05:93:db: 4d:ca:c2:b2:5e:cb:23:5d:83:93:1e:d4:f1:31:87:97:34:86: 7e:a6:62:5a:52:ec:69:d7:d4:e2:4a:48:58:cc:8f:55:74:db: d5:2b:ec:0c:9a:ad:22:16:97:64:6e:5a:d2:22:fc:79:81:84: d9:46:a7:32:80:0b:c6:3a:e7:b6:78:a1:4e:41:dc:1c:f4:8d: 12:fd:4f:16:ec:86:c1:06:63:f6:ec:dc:a7:44:30:ba:62:da: 7d:d9:55:14:56:c4:ed:ca:6f:81:d1:ee:50:d9:a3:16:60:db: d9:ca:9a:24:d6:79:51:5b:5b:7a:92:f5:82:d4:0b:ba:47:08: e0:13:a8:26:03:8c:05:63:71:b4:c5:1b:45:0a:33:e4:07:bb: 8f:0c:2a:f9:39:c3:7e:07:62:47:ba:c6:32:05:be:fc:f5:9c: 8f:02:bf:e3:0f:b6:f5:4e:3d:e4:f2:5d:96:75:b1:69:60:0f: f0:2f:a9:d5:59:28:36:0c:47:5f:86:cf:38:41:83:75:43:b2: 43:20:1e:04 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICNIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEQ2OTdCQjZGM0Y5OUU5NDQ4MEVFMEJCQUQzRDI2ODAw QUI0MTYyNjAwHhcNMjQwODIzMDE1NzQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3ZWM5OC1mYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PO8sKLteAyX9FOdICObeDN5Nz+ZcYumlAt72yaIcgy6MJnevP2sxGbyyA01 qjX8xK7cMqwUDnDpIQ33jrBwKPuykU0BfegnD3MTjMrkbASWM5nNiUV1W49pxO90 D2uKfhGBTEtTs1rbC3Wn6Db3EnnjS4JBHGLDm5NzaZh7K6rIsXkKLVbgKboQY0o6 SNtas9KexsM6prm8bJOr6N00Kr1rt7pKEvZFkkG1Qxmsf3K2UZsUqCTYAFQ5hht/ RKudu8fBCzNajgtiC5tqUaFTuHUw/YylG/xDTKhsecT5Vzdx9jDvki/8EinZ8y/d jLlt1QA3xOSTMHgO021deMxfNwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFK1SjO1s wl7RgtLi74Kk60DmaizUMB8GA1UdIwQYMBaAFNaXu28/melEgO4LutPSaACrQWJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy81QjA3RjNBQzFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi8xcGU3YnotWjZVU0E3Z3U2MDlKb0FLdEJZ bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFwZTdiei1aNlVTQTdndTYwOUpvQUt0QlltQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNUIwN0YzQUMxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvRDJFNkFDNkE2 MEYxMTFFRkI5N0RENTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAaAagADAwClFTANBgkqhkiG9w0BAQsFAAOCAQEARkm4DDHV C/SALQqwndmj7e/PurQepjOINZkSdITqM71nBgINhAChGw1GrH6uce6StbICBZPb TcrCsl7LI12Dkx7U8TGHlzSGfqZiWlLsadfU4kpIWMyPVXTb1SvsDJqtIhaXZG5a 0iL8eYGE2UanMoALxjrntnihTkHcHPSNEv1PFuyGwQZj9uzcp0QwumLafdlVFFbE 7cpvgdHuUNmjFmDb2cqaJNZ5UVtbepL1gtQLukcI4BOoJgOMBWNxtMUbRQoz5Ae7 jwwq+TnDfgdiR7rGMgW+/PWcjwK/4w+29U495PJdlnWxaWAP8C+p1VkoNgxHX4bP OEGDdUOyQyAeBA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:18 2025 by rpki-client