$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/B4450EF68E5311EBB81E6C70C4F9AE02.roa File: B4450EF68E5311EBB81E6C70C4F9AE02.roa (raw, json) Hash identifier: lIHsFfSb4do9Pbeacgj8wJgBwwid8CHai2Y4Mrf8vqw= Subject key identifier: 7C:83:2F:DF:A6:40:42:00:A3:02:12:E7:35:E7:5F:EB:D0:A4:09:F6 Certificate issuer: /CN=A916814B/serialNumber=0958F097CAE4297DF27282E4183E3AF1424C8F7E Certificate serial: 1523 Authority key identifier: 09:58:F0:97:CA:E4:29:7D:F2:72:82:E4:18:3E:3A:F1:42:4C:8F:7E Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/B4450EF68E5311EBB81E6C70C4F9AE02.roa Signing time: Tue 16 Jan 2024 17:14:53 +0000 ROA not before: Tue 16 Jan 2024 17:14:53 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 55446 IP address blocks: 196.1.105.0/24 maxlen: 24 196.1.106.0/24 maxlen: 24 196.1.110.0/23 maxlen: 23 196.1.110.0/24 maxlen: 24 196.1.111.0/24 maxlen: 24 196.1.111.0/25 maxlen: 25 196.1.111.128/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.crl rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5411 (0x1523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B/serialNumber=0958F097CAE4297DF27282E4183E3AF1424C8F7E Validity Not Before: Jan 16 17:14:53 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65a6b98d-960b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:e8:a7:e1:e3:05:fa:25:ea:9c:5d:09:05: ab:3e:fc:7c:bd:95:cb:d3:11:2e:4e:06:1a:59:7d: 2a:6f:8f:8c:10:fc:53:af:1f:d9:76:99:d6:bc:f7: 5f:5a:a2:ad:fe:16:93:bb:07:56:d3:09:db:16:7e: 45:64:85:c4:1c:93:ff:05:37:a9:67:08:3f:54:93: 5a:5d:91:24:53:66:e8:22:54:51:dd:b5:32:2e:4d: 3b:cc:08:f1:be:6d:c9:92:93:d1:a3:73:69:f3:ab: 73:1e:aa:37:19:07:aa:05:d8:ec:e0:25:e3:b5:06: e6:27:87:1e:b3:b5:9e:eb:44:08:2b:0a:d2:b4:97: 74:f2:0b:55:2c:58:1d:0d:fe:30:61:70:4f:97:5a: 94:fd:0a:95:73:62:c8:de:ca:92:06:20:d8:c2:e2: ef:9f:d9:c3:7d:4e:04:67:fc:c6:aa:e9:b9:55:8f: 74:f5:9c:e6:31:23:b3:78:9d:4e:2c:f1:c7:07:31: 60:4e:3d:0f:c1:e0:9a:71:4d:13:61:d5:59:78:45: 35:ba:73:4b:2e:01:eb:3e:02:b7:f4:5c:52:f4:95: 12:f4:0d:c7:d0:2d:6a:e6:b2:a8:dc:dd:95:4a:53: d4:18:17:43:e6:ee:f2:90:f7:6d:a7:8b:07:99:cb: a8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:83:2F:DF:A6:40:42:00:A3:02:12:E7:35:E7:5F:EB:D0:A4:09:F6 X509v3 Authority Key Identifier: keyid:09:58:F0:97:CA:E4:29:7D:F2:72:82:E4:18:3E:3A:F1:42:4C:8F:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/CVjwl8rkKX3ycoLkGD468UJMj34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/CVjwl8rkKX3ycoLkGD468UJMj34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/FB606F56162E11E8B8DE2669C4F9AE02/B4450EF68E5311EBB81E6C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 196.1.105.0-196.1.106.255 196.1.110.0/23 Signature Algorithm: sha256WithRSAEncryption 99:74:10:0f:3a:cc:1c:20:48:63:fb:b9:c9:71:2c:48:51:3a: 23:d4:7d:eb:c6:ad:e1:8b:33:2f:0e:c1:59:5b:a9:5b:1d:7a: 6e:61:27:bb:da:10:b2:71:eb:75:dc:af:33:46:9e:e8:18:29: 2f:48:8b:0a:df:10:80:86:af:d3:f1:7c:17:1c:ee:46:94:d8: ef:2d:2f:c2:e8:43:95:79:38:b3:20:c6:13:f3:96:27:37:d8: 5c:f9:21:5a:7d:0d:01:0d:ae:1d:a4:b1:ad:d1:ee:13:5c:09: 08:ea:5c:37:45:ef:9a:2d:96:da:bc:4e:2a:37:cf:91:95:73: 94:bb:eb:14:f0:a3:c4:13:3c:3e:63:4a:14:4d:b1:0b:91:3d: f5:8d:59:2d:1a:01:e8:fb:61:29:ca:56:1f:60:7c:dc:34:27: 5f:6d:22:a2:dd:67:13:52:d5:08:6c:25:7d:62:34:3e:8b:c6: da:6e:d7:26:09:1d:a5:ec:84:03:84:1b:f3:7e:ad:69:46:27: 36:47:f7:87:7c:9b:06:47:8b:23:46:47:2d:11:5a:f9:19:0a: cb:90:89:db:7a:14:65:e8:b7:95:29:99:1e:d6:b9:7d:30:4b: 37:da:7a:f4:bc:49:4c:30:af:a4:8b:07:2e:92:f9:ef:39:0a: 27:65:a3:c2 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKDA5NThGMDk3Q0FFNDI5N0RGMjcyODJFNDE4M0UzQUYx NDI0QzhGN0UwHhcNMjQwMTE2MTcxNDUzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE2Yjk4ZC05NjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSTop+HjBfol6pxdCQWrPvx8vZXL0xEuTgYaWX0qb4+MEPxTrx/ZdpnWvPdf WqKt/haTuwdW0wnbFn5FZIXEHJP/BTepZwg/VJNaXZEkU2boIlRR3bUyLk07zAjx vm3JkpPRo3Np86tzHqo3GQeqBdjs4CXjtQbmJ4ces7We60QIKwrStJd08gtVLFgd Df4wYXBPl1qU/QqVc2LI3sqSBiDYwuLvn9nDfU4EZ/zGqum5VY909ZzmMSOzeJ1O LPHHBzFgTj0PweCacU0TYdVZeEU1unNLLgHrPgK39FxS9JUS9A3H0C1q5rKo3N2V SlPUGBdD5u7ykPdtp4sHmcuoDwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFHyDL9+m QEIAowIS5zXnX+vQpAn2MB8GA1UdIwQYMBaAFAlY8JfK5Cl98nKC5Bg+OvFCTI9+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi9GQjYwNkY1NjE2 MkUxMUU4QjhERTI2NjlDNEY5QUUwMi9DVmp3bDhya0tYM3ljb0xrR0Q0NjhVSk1q MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0NWandsOHJrS1gzeWNvTGtHRDQ2OFVKTWozNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgxNEIvRkI2MDZGNTYxNjJFMTFFOEI4REUyNjY5QzRGOUFFMDIvQjQ0NTBFRjY4 RTUzMTFFQkI4MUU2QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAMQBaQMEAMQBagMEAcQBbjANBgkqhkiG9w0BAQsFAAOC AQEAmXQQDzrMHCBIY/u5yXEsSFE6I9R968at4YszLw7BWVupWx16bmEnu9oQsnHr ddyvM0ae6BgpL0iLCt8QgIav0/F8FxzuRpTY7y0vwuhDlXk4syDGE/OWJzfYXPkh Wn0NAQ2uHaSxrdHuE1wJCOpcN0Xvmi2W2rxOKjfPkZVzlLvrFPCjxBM8PmNKFE2x C5E99Y1ZLRoB6PthKcpWH2B83DQnX20iot1nE1LVCGwlfWI0PovG2m7XJgkdpeyE A4Qb836taUYnNkf3h3ybBkeLI0ZHLRFa+RkKy5CJ23oUZei3lSmZHta5fTBLN9p6 9LxJTDCvpIsHLpL57zkKJ2Wjwg== -----END CERTIFICATE-----Generated at Fri May 31 19:47:49 2024 by rpki-client on console-fra.rpki-client.org