$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/458AC21A684111EEA6632877C4F9AE02.roa File: 458AC21A684111EEA6632877C4F9AE02.roa (raw, json) Hash identifier: /SCMEdWRmwZNeXNFedFclx+3MZsGpXtaksQL0wZ77rk= Subject key identifier: 16:1E:6B:30:64:C5:8F:29:62:F1:49:99:1A:99:92:D6:7E:C4:14:68 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0258 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/458AC21A684111EEA6632877C4F9AE02.roa Signing time: Thu 07 Dec 2023 03:14:12 +0000 ROA not before: Thu 07 Dec 2023 03:14:12 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137547 IP address blocks: 150.129.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Dec 7 03:14:12 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65713884-9947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:71:d5:12:e7:d9:4f:08:d4:ea:21:7c:79: 82:dd:f7:9c:a5:7b:57:2e:7e:76:9d:4d:5c:86:99: 93:51:0c:b9:42:85:63:e7:16:1d:c4:6c:bb:b3:df: 72:16:a6:09:4f:ee:8d:45:84:14:09:ac:73:00:e7: 0e:58:6f:7c:24:1c:e5:4b:54:e1:1a:4d:fa:30:40: 48:58:ee:01:62:ed:4e:e7:53:59:10:c0:b9:6b:57: c2:ec:1d:72:1a:58:61:a4:c2:3a:c4:bb:ff:f9:8b: 45:28:ac:f8:bc:4a:98:e0:5f:ce:c8:3e:6c:1d:4a: 53:4d:d9:e3:0b:8c:74:a5:74:68:2b:d7:3b:c6:a7: 0f:cb:c9:a4:44:9f:fe:e7:b2:15:af:bb:f9:c5:57: eb:d0:58:ad:36:0f:d1:c4:cf:d2:d4:aa:d9:45:bc: 08:50:84:40:28:b2:4d:7e:07:d7:3f:f8:0f:a2:71: af:76:c2:84:b4:70:13:d1:b6:84:7d:2c:ca:1e:9f: d5:9c:25:12:9f:69:e4:1e:b5:c7:02:eb:74:73:a8: dd:cd:0a:03:73:4a:b9:e0:ec:b7:8f:9e:65:92:81: 22:71:4a:05:37:f3:ae:ab:ff:e9:22:8e:1f:98:af: 39:4b:12:a4:42:df:93:98:2c:9a:6b:71:85:9f:ef: 43:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:1E:6B:30:64:C5:8F:29:62:F1:49:99:1A:99:92:D6:7E:C4:14:68 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/458AC21A684111EEA6632877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.129.218.0/24 Signature Algorithm: sha256WithRSAEncryption 44:b5:79:b0:d9:d5:ec:c9:32:a4:c7:f7:8b:1d:b7:00:c9:c1: 82:e2:61:5f:44:49:79:63:bf:17:66:13:b0:3f:8f:19:da:b4: 98:23:d1:94:bd:78:2e:0c:b0:8b:c4:7b:89:44:7a:a0:be:6e: d3:09:39:5b:a8:3e:5a:17:08:c4:41:68:22:20:f7:aa:8c:75: c1:05:49:0e:c2:89:49:9d:b9:9f:4a:66:a5:f1:a5:b5:60:83: b9:44:3c:42:18:65:e5:42:e2:2a:77:d1:c7:85:2e:b3:52:b8: 98:b4:ee:46:1a:f0:3d:3a:e1:b1:6d:65:e9:17:71:ef:b8:c5: 1d:a9:f4:8b:01:1a:91:b2:20:97:5f:9e:f1:b0:c8:4a:9d:19: 83:4f:82:f3:80:43:e5:f0:e2:f5:9e:f5:d4:aa:38:c2:ce:a6: 78:d4:30:d7:41:57:c4:9d:c6:ee:07:a4:17:68:13:22:b0:64: 82:d6:6a:89:e7:bb:00:cd:3c:cc:4f:6c:f9:4e:90:ca:e3:8e: 8c:99:90:26:12:47:7e:fc:84:79:f6:73:37:93:ff:a4:6c:bb: 92:91:4d:ae:5e:ca:f4:35:50:ce:7c:21:53:12:25:c5:40:fc: a4:9f:7c:5d:6a:b3:93:b4:90:80:4b:23:ca:0a:7c:44:87:c0: a4:18:a6:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjMxMjA3MDMxNDEyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxMzg4NC05OTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9hx1RLn2U8I1OohfHmC3fecpXtXLn52nU1chpmTUQy5QoVj5xYdxGy7s99y FqYJT+6NRYQUCaxzAOcOWG98JBzlS1ThGk36MEBIWO4BYu1O51NZEMC5a1fC7B1y GlhhpMI6xLv/+YtFKKz4vEqY4F/OyD5sHUpTTdnjC4x0pXRoK9c7xqcPy8mkRJ/+ 57IVr7v5xVfr0FitNg/RxM/S1KrZRbwIUIRAKLJNfgfXP/gPonGvdsKEtHAT0baE fSzKHp/VnCUSn2nkHrXHAut0c6jdzQoDc0q54Oy3j55lkoEicUoFN/Ouq//pIo4f mK85SxKkQt+TmCyaa3GFn+9DFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBYeazBk xY8pYvFJmRqZktZ+xBRoMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvNDU4QUMyMUE2 ODQxMTFFRUE2NjMyODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACWgdowDQYJKoZIhvcNAQELBQADggEBAES1ebDZ1ezJMqTH 94sdtwDJwYLiYV9ESXljvxdmE7A/jxnatJgj0ZS9eC4MsIvEe4lEeqC+btMJOVuo PloXCMRBaCIg96qMdcEFSQ7CiUmduZ9KZqXxpbVgg7lEPEIYZeVC4ip30ceFLrNS uJi07kYa8D064bFtZekXce+4xR2p9IsBGpGyIJdfnvGwyEqdGYNPgvOAQ+Xw4vWe 9dSqOMLOpnjUMNdBV8Sdxu4HpBdoEyKwZILWaonnuwDNPMxPbPlOkMrjjoyZkCYS R378hHn2czeT/6Rsu5KRTa5eyvQ1UM58IVMSJcVA/KSffF1qs5O0kIBLI8oKfESH wKQYpvg= -----END CERTIFICATE-----Generated at Tue May 7 04:35:39 2024 by rpki-client on console-ams.rpki-client.org