$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa File: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (raw, json) Hash identifier: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU= Subject key identifier: E5:68:AF:28:D9:AC:43:F9:C9:F8:BC:54:47:37:50:DE:B4:90:6A:2F Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 082A Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa Signing time: Fri 06 Sep 2024 21:41:53 +0000 ROA not before: Fri 06 Sep 2024 21:41:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 198247 IP address blocks: 116.58.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Sep 6 21:41:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66db7721-1c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:21:86:c2:cc:ad:90:19:8f:43:46:b1:47:4e: f1:c1:97:7b:39:b4:50:ff:96:ec:c4:a3:4b:9b:1c: 77:bf:54:b7:04:2d:95:90:fb:42:d9:34:25:f0:f4: 3f:03:7e:97:1a:db:f9:2d:e9:5b:fd:39:3e:01:85: a4:e5:7b:fe:cd:35:5f:ea:08:65:8d:a6:c1:b8:af: c3:9e:b3:05:5b:cd:ee:10:5b:4f:37:83:39:9a:f5: 8c:d5:dc:94:5c:9a:d6:09:d0:6b:33:8e:49:89:3a: 91:0f:a4:f6:05:38:6b:0e:07:16:8c:d9:25:21:f0: be:c6:4f:fc:b4:6c:5e:0e:bc:cd:61:e8:fd:30:ba: ff:08:77:af:ef:79:52:8d:8c:bb:bb:4f:24:99:ea: 40:f4:e9:aa:98:3d:75:fa:df:f1:39:e6:84:c1:55: 6f:a5:2f:7a:f4:aa:7a:ff:6a:ce:36:6d:9b:2a:de: 0c:1c:48:3d:15:3b:c4:e5:1c:5b:96:1e:aa:18:42: 43:cd:1a:6e:7c:6b:15:f1:a7:b8:c9:1b:56:d1:46: 22:b0:98:b9:69:bb:7c:2c:4a:27:f8:79:ba:bd:09: 6c:4b:52:c6:5f:b3:de:43:1c:0b:9c:cc:0b:27:32: f9:13:6d:a7:07:c4:87:d9:48:e8:2b:39:72:4a:03: ca:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:68:AF:28:D9:AC:43:F9:C9:F8:BC:54:47:37:50:DE:B4:90:6A:2F X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.58.7.0/24 Signature Algorithm: sha256WithRSAEncryption 93:33:b8:73:4d:7b:a1:7f:b6:8b:fb:de:3b:39:9e:0a:75:d5: a6:f3:7a:57:c5:43:ad:1d:7c:54:88:69:ab:cc:15:6b:f3:52: 53:1f:60:d5:8c:45:70:56:ea:f3:07:20:3e:fd:52:cc:b9:34: dd:04:d5:d6:5c:6e:9b:54:40:84:fe:f9:d3:fc:b0:9f:66:4d: 3f:90:3a:64:1b:31:fd:e9:86:b4:60:9e:a2:fb:41:9c:77:b9: 35:15:e3:31:ad:48:23:7f:24:6d:4c:15:8a:05:b3:e9:83:92: c7:12:b5:4a:d4:d1:16:61:46:a2:ea:57:ad:b6:9a:62:63:75: 15:d5:96:20:a5:09:1b:17:74:f6:74:7d:df:6a:e3:dd:d9:72: 67:b3:11:6f:7a:65:70:45:b2:62:45:43:c2:4d:b4:f4:f6:73: 8f:0b:35:ec:c3:75:b3:9a:47:03:cd:92:90:ab:07:83:b3:7d: 16:b3:d7:c8:34:60:81:f6:5b:4b:9f:ca:e8:ee:73:91:42:8e: 63:e5:c6:35:d7:91:1e:bd:20:78:22:9c:fb:37:a6:72:cf:2a: 08:c2:ac:36:15:1a:b6:90:8d:dc:d1:65:d3:70:47:67:c8:93: fc:de:fb:11:9b:5f:54:37:a9:12:ff:71:e7:7e:7c:15:e5:91: e0:f5:23:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjQwOTA2MjE0MTUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNzcyMS0xYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yGGwsytkBmPQ0axR07xwZd7ObRQ/5bsxKNLmxx3v1S3BC2VkPtC2TQl8PQ/ A36XGtv5Lelb/Tk+AYWk5Xv+zTVf6ghljabBuK/DnrMFW83uEFtPN4M5mvWM1dyU XJrWCdBrM45JiTqRD6T2BThrDgcWjNklIfC+xk/8tGxeDrzNYej9MLr/CHev73lS jYy7u08kmepA9OmqmD11+t/xOeaEwVVvpS969Kp6/2rONm2bKt4MHEg9FTvE5Rxb lh6qGEJDzRpufGsV8ae4yRtW0UYisJi5abt8LEon+Hm6vQlsS1LGX7PeQxwLnMwL JzL5E22nB8SH2UjoKzlySgPK3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOVoryjZ rEP5yfi8VEc3UN60kGovMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVBMEIvMTU1ODZGNDJDNEY4MTFFQThCOUI0QzEzQzRGOUFFMDIvOEJBOUMxQ0FD NEZCMTFFQUFFQUU3QzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0OgcwDQYJKoZIhvcNAQELBQADggEBAJMzuHNNe6F/tov7 3js5ngp11abzelfFQ60dfFSIaavMFWvzUlMfYNWMRXBW6vMHID79Usy5NN0E1dZc bptUQIT++dP8sJ9mTT+QOmQbMf3phrRgnqL7QZx3uTUV4zGtSCN/JG1MFYoFs+mD kscStUrU0RZhRqLqV622mmJjdRXVliClCRsXdPZ0fd9q493ZcmezEW96ZXBFsmJF Q8JNtPT2c48LNezDdbOaRwPNkpCrB4OzfRaz18g0YIH2W0ufyujuc5FCjmPlxjXX kR69IHginPs3pnLPKgjCrDYVGraQjdzRZdNwR2fIk/ze+xGbX1Q3qRL/ced+fBXl keD1I6g= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:42 2024 by rpki-client on console-ams.rpki-client.org