$ rpki-client -vvf rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D2CFD4468D6D11EB9DB49A32C4F9AE02.roa File: D2CFD4468D6D11EB9DB49A32C4F9AE02.roa (raw, json) Hash identifier: Q6tSeAB9SXDJytuvhS/k9VLqC1gwcOY00UC/xNHWsMA= Subject key identifier: 97:97:EE:6D:3F:17:4C:8A:EA:F1:CA:7C:3D:63:7A:E4:33:AA:26:F8 Certificate issuer: /CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Certificate serial: 05D2 Authority key identifier: BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D2CFD4468D6D11EB9DB49A32C4F9AE02.roa Signing time: Sat 13 Jul 2024 00:14:01 +0000 ROA not before: Sat 13 Jul 2024 00:14:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 4826 IP address blocks: 203.5.33.0/24 maxlen: 24 203.5.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Validity Not Before: Jul 13 00:14:01 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6691c6c8-0b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7b:62:6d:20:01:24:21:fa:a8:9f:06:b7:45: 5d:ec:f0:d6:bc:d1:47:74:48:3b:cb:15:14:c3:dd: 88:52:ba:a9:54:5e:8b:b4:f4:04:fe:93:c3:3a:55: bd:42:9b:58:bc:a0:e6:b6:3c:a1:c4:a1:2e:52:3d: 76:ac:af:18:ab:53:2c:30:b8:e5:02:96:ae:a2:c7: b7:62:6d:aa:14:a3:81:51:fe:e9:be:2b:d5:4e:b2: 59:e4:e6:01:64:73:b6:e3:c8:26:2f:bc:0c:d7:e3: 05:89:27:1e:4b:cf:12:a7:8c:27:71:cb:f4:2a:f4: 30:fa:39:07:89:08:6f:cd:6c:db:30:5f:48:b0:0f: 92:8e:07:5a:10:8e:ab:eb:69:ca:90:e6:82:b2:c3: b1:d7:d5:ac:f6:ed:55:d3:0d:7b:4c:0c:2d:80:82: 15:37:b4:ec:3d:0c:a3:0c:b8:59:d0:91:ef:5e:c2: a2:c5:c8:cc:2c:13:d1:d4:32:fb:dc:a9:90:2b:65: e6:0c:8f:f0:93:b0:a7:f6:6b:39:ef:02:ab:6a:92: c7:9a:d7:e9:1b:be:29:0c:93:6a:30:9a:bd:90:ce: 29:32:37:35:c6:38:39:b3:78:31:3e:4b:5d:98:51: 04:8e:bf:d3:53:da:df:73:ed:4d:c5:97:84:a9:4a: e3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:97:EE:6D:3F:17:4C:8A:EA:F1:CA:7C:3D:63:7A:E4:33:AA:26:F8 X509v3 Authority Key Identifier: keyid:BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D2CFD4468D6D11EB9DB49A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.33.0/24 203.5.36.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:67:a8:56:3c:8f:53:4c:b8:e1:f9:07:f5:2d:9b:5e:59:98: 58:18:74:07:75:ad:f5:53:b8:31:af:4a:5e:51:e3:6c:a1:ce: 6b:b1:e8:59:99:a3:97:20:95:58:bd:29:7d:ba:91:3e:67:fd: f1:c9:08:d2:d0:39:09:22:79:3b:9a:18:5c:6e:e1:3c:39:3c: a5:a4:5f:06:ad:b9:05:b0:b3:7c:87:ff:00:e7:b2:39:99:a3: 60:af:16:61:5a:7f:09:42:2e:62:63:8b:1b:59:ab:b5:77:96: ad:37:7b:6b:47:e3:79:9e:ae:35:e0:8d:f8:02:83:49:34:d9: 2e:ce:fb:fc:fe:ce:d4:c4:02:d8:87:de:2c:5a:1f:c1:a0:ef: 73:58:f5:d0:c0:55:e2:30:74:4e:ab:44:17:ef:bd:b7:01:2c: 6e:52:e2:53:98:02:2e:82:92:d6:35:58:0f:97:ab:39:df:af: f3:06:18:d1:34:89:24:dc:4c:43:65:8a:a1:e3:01:cc:27:8c: a1:40:5b:ee:9c:cf:39:66:3e:61:2a:73:ad:f1:0d:a0:2f:18: 07:da:94:c0:01:fd:19:24:bf:c4:63:f3:7e:b6:94:4b:72:ba: 40:c8:90:57:9e:30:59:98:ec:4b:21:fe:cb:1e:c3:f4:f2:e3: 0c:22:b0:7e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4OEIxMTAvBgNVBAUTKEJBNDlGMkUwMkE2MzVERDA3NUY1NjQxNjZGMTExRjVG QURFNUE3Q0IwHhcNMjQwNzEzMDAxNDAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxYzZjOC0wYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XtibSABJCH6qJ8Gt0Vd7PDWvNFHdEg7yxUUw92IUrqpVF6LtPQE/pPDOlW9 QptYvKDmtjyhxKEuUj12rK8Yq1MsMLjlApauose3Ym2qFKOBUf7pvivVTrJZ5OYB ZHO248gmL7wM1+MFiSceS88Sp4wnccv0KvQw+jkHiQhvzWzbMF9IsA+SjgdaEI6r 62nKkOaCssOx19Ws9u1V0w17TAwtgIIVN7TsPQyjDLhZ0JHvXsKixcjMLBPR1DL7 3KmQK2XmDI/wk7Cn9ms57wKrapLHmtfpG74pDJNqMJq9kM4pMjc1xjg5s3gxPktd mFEEjr/TU9rfc+1NxZeEqUrjdQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJeX7m0/ F0yK6vHKfD1jeuQzqib4MB8GA1UdIwQYMBaAFLpJ8uAqY13QdfVkFm8RH1+t5afL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTg4Qi9GMzZCNzlCMDgw NzcxMUVCQjkyNUYxNTRDNEY5QUUwMi91a255NENwalhkQjE5V1FXYnhFZlg2M2xw OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vrbnk0Q3BqWGRCMTlXUVdieEVmWDYzbHA4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk4OEIvRjM2Qjc5QjA4MDc3MTFFQkI5MjVGMTU0QzRGOUFFMDIvRDJDRkQ0NDY4 RDZEMTFFQjlEQjQ5QTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLBSEDBADLBSQwDQYJKoZIhvcNAQELBQADggEBAHpnqFY8 j1NMuOH5B/Utm15ZmFgYdAd1rfVTuDGvSl5R42yhzmux6FmZo5cglVi9KX26kT5n /fHJCNLQOQkieTuaGFxu4Tw5PKWkXwatuQWws3yH/wDnsjmZo2CvFmFafwlCLmJj ixtZq7V3lq03e2tH43merjXgjfgCg0k02S7O+/z+ztTEAtiH3ixaH8Gg73NY9dDA VeIwdE6rRBfvvbcBLG5S4lOYAi6CktY1WA+Xqznfr/MGGNE0iSTcTENliqHjAcwn jKFAW+6czzlmPmEqc63xDaAvGAfalMAB/Rkkv8Rj8362lEtyukDIkFeeMFmY7Esh /ssew/Ty4wwisH4= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:27 2024 by rpki-client on console-fra.rpki-client.org