$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/AB138380985F11EEBA5D186DC4F9AE02.roa File: AB138380985F11EEBA5D186DC4F9AE02.roa (raw, json) Hash identifier: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU= Subject key identifier: E5:C7:8E:44:90:36:91:86:3A:DF:D7:CF:F3:09:EF:06:DF:71:21:9E Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0BA6 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/AB138380985F11EEBA5D186DC4F9AE02.roa Signing time: Sat 02 Nov 2024 17:25:48 +0000 ROA not before: Sat 02 Nov 2024 17:25:48 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 20473 IP address blocks: 141.164.32.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Nov 2 17:25:48 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726609c-8914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:b5:eb:a7:b6:dd:fc:ca:48:5e:04:bf:3b: 10:93:58:e9:44:6f:57:93:4e:1f:80:7f:8b:d9:e0: e6:1d:4a:ec:5b:6b:26:32:8b:75:de:15:a4:7c:21: fc:74:9f:4a:11:ab:48:20:c2:2e:00:29:b6:94:c4: af:39:df:8b:74:6e:ff:0d:08:ac:e5:42:46:9d:64: 21:0f:a5:5d:55:55:17:2f:70:5a:25:23:51:b5:b9: 39:70:85:74:f2:b8:b0:71:4c:97:5b:13:c6:93:d4: 22:0a:e7:e5:70:40:15:72:8e:fd:0c:43:ed:4c:58: 65:de:9b:bc:c2:52:00:63:a7:2e:70:c0:61:39:8e: 13:33:f2:4c:88:58:0e:af:f4:80:8f:63:99:6c:68: f2:1c:de:a5:ee:f3:1e:28:26:4c:5f:bf:aa:c7:97: bb:99:d9:af:ee:47:97:3b:5d:ea:a0:c9:e0:f0:91: 76:ff:3f:b8:67:4e:4a:a6:bb:f2:9c:0b:b8:e4:66: 95:eb:0e:80:8a:2f:09:89:b0:77:70:09:36:59:6b: 11:cf:56:d3:0f:d0:bc:7c:03:f9:dc:5d:ab:ba:83: 5e:ab:35:c1:18:a7:39:a4:dc:cc:89:e4:18:21:5d: b4:31:55:c7:20:34:69:b8:06:89:5e:ac:37:1e:d7: c5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C7:8E:44:90:36:91:86:3A:DF:D7:CF:F3:09:EF:06:DF:71:21:9E X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/AB138380985F11EEBA5D186DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.164.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0c:4e:87:71:3b:e3:72:be:37:b4:ac:81:ce:6e:bd:eb:4f:ba: 74:58:9f:bd:84:eb:7b:d4:bb:c1:1c:e3:6d:a6:f8:cd:e0:f8: 83:00:14:a4:0e:a2:04:fe:51:35:f1:34:d4:a9:e9:e0:02:3b: 19:86:a7:60:69:4b:2e:88:4a:80:b7:a4:04:48:7b:60:9a:b4: 1b:00:92:3d:3e:42:fd:63:e7:d9:cd:01:48:74:aa:46:1e:55: 44:99:77:a8:4d:c6:ee:96:45:8c:14:61:c2:c5:5f:8b:a6:b4: 87:ca:ef:a1:30:b9:0e:29:c9:00:3f:4e:97:cc:d7:b6:88:ab: fd:bb:6a:9f:36:71:6a:01:7d:68:ff:d3:10:b4:48:db:90:9b: b4:92:99:31:89:0d:82:34:4a:3d:5f:3f:cf:b5:cc:89:59:99: a5:90:d2:e2:39:1d:12:e4:dc:23:f6:bf:71:82:05:fa:89:02: 86:f4:8e:51:de:c2:64:77:61:14:02:cd:c0:9c:66:ca:dd:38: 11:85:c2:44:11:70:00:da:f9:5c:51:fb:04:44:c1:89:18:b3: 38:8d:ce:3c:57:dd:d4:57:24:72:d4:1b:84:38:84:75:2e:2a: 24:ea:00:c3:07:2f:78:96:d1:6e:e3:b4:2b:d9:4b:ae:93:6b: 31:fb:cd:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjQxMTAyMTcyNTQ4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjA5Yy04OTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC6166e23fzKSF4EvzsQk1jpRG9Xk04fgH+L2eDmHUrsW2smMot13hWkfCH8 dJ9KEatIIMIuACm2lMSvOd+LdG7/DQis5UJGnWQhD6VdVVUXL3BaJSNRtbk5cIV0 8riwcUyXWxPGk9QiCuflcEAVco79DEPtTFhl3pu8wlIAY6cucMBhOY4TM/JMiFgO r/SAj2OZbGjyHN6l7vMeKCZMX7+qx5e7mdmv7keXO13qoMng8JF2/z+4Z05Kprvy nAu45GaV6w6Aii8JibB3cAk2WWsRz1bTD9C8fAP53F2ruoNeqzXBGKc5pNzMieQY IV20MVXHIDRpuAaJXqw3HtfFlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOXHjkSQ NpGGOt/Xz/MJ7wbfcSGeMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJDREYvQzFDQjJERjIxMEQ4MTFFQTlCRDFBNTVEQzRGOUFFMDIvQUIxMzgzODA5 ODVGMTFFRUJBNUQxODZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWNpCAwDQYJKoZIhvcNAQELBQADggEBAAxOh3E743K+N7Ss gc5uvetPunRYn72E63vUu8Ec422m+M3g+IMAFKQOogT+UTXxNNSp6eACOxmGp2Bp Sy6ISoC3pARIe2CatBsAkj0+Qv1j59nNAUh0qkYeVUSZd6hNxu6WRYwUYcLFX4um tIfK76EwuQ4pyQA/TpfM17aIq/27ap82cWoBfWj/0xC0SNuQm7SSmTGJDYI0Sj1f P8+1zIlZmaWQ0uI5HRLk3CP2v3GCBfqJAob0jlHewmR3YRQCzcCcZsrdOBGFwkQR cADa+VxR+wREwYkYsziNzjxX3dRXJHLUG4Q4hHUuKiTqAMMHL3iW0W7jtCvZS66T azH7zRk= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:58 2024 by rpki-client on console-fra.rpki-client.org