$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/04AB651469C211EFA06F8562C4F9AE02.roa File: 04AB651469C211EFA06F8562C4F9AE02.roa (raw, json) Hash identifier: Qv0U7DK7F+oDC+sU10TDcXKGADd392Qs07ToHW8oh5o= Subject key identifier: ED:D6:C6:23:0B:B0:5E:2E:F2:E5:A7:49:E2:C3:6D:0A:CF:4C:B1:77 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0342 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/04AB651469C211EFA06F8562C4F9AE02.roa Signing time: Tue 03 Sep 2024 06:59:09 +0000 ROA not before: Tue 03 Sep 2024 06:59:09 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 13335 IP address blocks: 150.129.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 834 (0x342) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Sep 3 06:59:09 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66d6b3bd-e327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9d:fd:2c:3b:52:13:03:a9:b0:cb:ca:77:d8: 68:a0:da:9b:74:46:b1:b0:0f:51:5c:cb:3c:d3:9a: ab:d4:ed:06:c4:92:21:e0:e1:7d:c4:95:35:84:e6: ca:e5:e0:3d:7b:1d:51:f8:53:40:fb:f5:27:9f:42: dc:b7:f7:f0:3a:96:78:6e:22:4b:0e:ae:57:f8:0c: b7:d0:55:74:2e:55:50:6a:89:4d:66:b4:36:41:81: f3:e6:e8:91:89:d2:d3:f8:4e:5e:5a:ab:05:5a:16: 1c:15:ca:c1:6f:fd:42:c2:aa:55:15:3b:f4:b3:ac: 39:3e:4f:44:d8:30:07:82:2c:e6:0d:59:46:9f:33: ed:76:33:52:ea:4b:80:1d:06:ed:2d:ca:6f:e4:fd: 0d:69:c4:f5:78:be:01:f8:b8:54:2c:c9:d0:87:66: 87:4d:94:89:07:76:7d:54:16:e2:b3:ec:5b:80:53: 71:ae:0c:2b:1e:44:bc:58:62:47:2e:da:11:db:e9: 85:bc:c5:fc:5c:95:ea:93:c9:f7:39:96:e2:7c:58: 6e:8e:5e:3d:a3:f9:dc:7d:12:fa:6a:38:4f:63:de: a7:52:b3:1f:86:17:67:8f:62:d9:f0:78:30:5b:66: 65:35:4a:a9:a4:56:84:1b:9a:73:45:2e:ab:18:0f: 2d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:D6:C6:23:0B:B0:5E:2E:F2:E5:A7:49:E2:C3:6D:0A:CF:4C:B1:77 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/04AB651469C211EFA06F8562C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.129.217.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:5f:9e:e8:6a:bb:68:b4:37:e7:3f:7f:be:d7:79:12:16:ed: 8a:68:14:87:7f:49:12:e5:39:fa:ff:20:23:4d:ad:d7:31:7b: 7e:05:a0:75:c5:fb:85:60:7a:de:e2:91:3f:d2:f8:c8:4e:e9: ff:f1:8c:cf:35:4f:f1:e0:37:22:62:23:8b:be:fa:4f:f5:1e: 3e:67:09:dd:c0:16:a4:fe:d0:b8:a5:03:16:8d:09:a9:06:de: b6:91:18:c9:02:4c:c5:34:9a:0e:59:95:45:7c:8b:72:63:5f: a8:b8:a4:ab:39:0a:4f:98:b7:dc:08:a3:90:8e:ea:6b:a9:3d: 1d:0c:1d:cd:a0:c5:89:2b:53:a4:b5:9f:92:cc:72:12:e8:06: db:2f:e4:77:9a:49:5f:2c:47:32:e4:51:9c:25:51:88:a2:a3: 1e:b2:88:0d:31:cb:a2:9d:3a:a5:0d:ae:24:61:9f:95:b1:33: c7:40:40:6a:34:4b:b1:fc:f5:cf:eb:c5:0c:d3:a4:f2:5e:af: 3e:36:32:51:2b:30:b7:e0:6a:e1:ea:60:da:33:32:13:cd:68: 4f:48:46:f4:a7:bd:1f:7a:0d:9d:4c:af:5b:fb:32:19:05:2c: 34:e2:96:62:85:44:c4:fb:4a:82:93:cf:63:ab:e9:4b:5a:ab: c3:ad:82:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQwOTAzMDY1OTA5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2YjNiZC1lMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5539LDtSEwOpsMvKd9hooNqbdEaxsA9RXMs805qr1O0GxJIh4OF9xJU1hObK 5eA9ex1R+FNA+/Unn0Lct/fwOpZ4biJLDq5X+Ay30FV0LlVQaolNZrQ2QYHz5uiR idLT+E5eWqsFWhYcFcrBb/1CwqpVFTv0s6w5Pk9E2DAHgizmDVlGnzPtdjNS6kuA HQbtLcpv5P0NacT1eL4B+LhULMnQh2aHTZSJB3Z9VBbis+xbgFNxrgwrHkS8WGJH LtoR2+mFvMX8XJXqk8n3OZbifFhujl49o/ncfRL6ajhPY96nUrMfhhdnj2LZ8Hgw W2ZlNUqppFaEG5pzRS6rGA8trQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO3WxiML sF4u8uWnSeLDbQrPTLF3MB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvMDRBQjY1MTQ2 OUMyMTFFRkEwNkY4NTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACWgdkwDQYJKoZIhvcNAQELBQADggEBADpfnuhqu2i0N+c/ f77XeRIW7YpoFId/SRLlOfr/ICNNrdcxe34FoHXF+4Vget7ikT/S+MhO6f/xjM81 T/HgNyJiI4u++k/1Hj5nCd3AFqT+0LilAxaNCakG3raRGMkCTMU0mg5ZlUV8i3Jj X6i4pKs5Ck+Yt9wIo5CO6mupPR0MHc2gxYkrU6S1n5LMchLoBtsv5HeaSV8sRzLk UZwlUYiiox6yiA0xy6KdOqUNriRhn5WxM8dAQGo0S7H89c/rxQzTpPJerz42MlEr MLfgauHqYNozMhPNaE9IRvSnvR96DZ1Mr1v7MhkFLDTilmKFRMT7SoKTz2Or6Uta q8Otgjk= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:38 2024 by rpki-client on console-ams.rpki-client.org