$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/AB138380985F11EEBA5D186DC4F9AE02.roa File: AB138380985F11EEBA5D186DC4F9AE02.roa (raw, json) Hash identifier: soYLH9GAT64q0VIUWl7HT/IfbnqFeH7kPZQ2kB3D58o= Subject key identifier: 43:2E:8D:EB:A2:DF:1F:BE:F1:3E:7D:E1:78:E8:FB:51:D2:FC:34:19 Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0AFA Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/AB138380985F11EEBA5D186DC4F9AE02.roa Signing time: Mon 11 Dec 2023 19:58:35 +0000 ROA not before: Mon 11 Dec 2023 19:58:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 20473 IP address blocks: 141.164.32.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Dec 11 19:58:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=657769eb-aa6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:13:6f:5c:01:f4:c3:b1:59:5b:e2:3b:d3:a4: ce:b3:1f:e3:08:8b:86:81:71:43:16:b6:1b:20:e0: 25:b8:c9:2c:3e:79:86:c6:16:c0:0d:24:bc:a0:49: 6d:8a:a9:63:fc:4d:ba:c1:db:7a:a2:43:b7:69:5b: b8:a2:f4:c5:57:9d:30:25:f1:d1:67:d3:b2:25:48: 6b:de:d5:61:a9:db:40:2c:01:a2:35:45:72:cb:46: b3:6b:56:41:ad:09:28:ce:30:fe:3a:4d:7f:6a:99: 8b:bf:f9:2a:59:e9:82:e8:c6:b9:7a:4e:32:27:eb: 89:23:f8:f6:09:72:91:9a:04:3e:84:6a:cd:8c:b4: eb:bf:02:ac:7d:ac:cb:90:50:43:16:f8:0d:c3:d1: ef:82:3c:36:ca:6a:a7:bf:2a:32:98:9a:62:8c:c9: b2:a3:a2:e4:fa:3f:83:33:76:6d:f8:ce:91:97:0a: 7e:bd:38:15:33:26:ae:ce:16:3d:98:68:be:9e:0a: bb:89:c0:f7:fe:97:da:e8:1c:78:d0:0a:ef:d9:32: bb:43:1c:63:a8:93:57:aa:d2:a2:0e:07:e8:7e:b7: 96:1f:d3:5b:33:df:57:41:bc:12:01:f3:80:88:d4: 4e:3e:93:5f:4a:35:ac:7c:88:c1:25:b3:8d:b7:84: ba:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:2E:8D:EB:A2:DF:1F:BE:F1:3E:7D:E1:78:E8:FB:51:D2:FC:34:19 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/AB138380985F11EEBA5D186DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.164.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4d:c6:5e:63:97:f9:4a:44:e4:b6:68:a9:af:7a:76:b9:d2:18: d8:5c:7d:ec:ae:90:d6:52:64:9d:8d:b3:b3:f0:a0:70:0d:dc: e4:20:86:35:83:02:68:b8:b8:a1:89:63:2b:70:2c:4a:07:b5: 62:1d:10:c6:63:f5:5e:2a:e6:f5:71:03:78:0c:0f:f0:a5:f9: 35:9e:33:4a:50:11:bb:dc:ee:18:e1:1c:ee:ce:3c:9a:99:80: 73:ab:c9:a5:b3:df:cc:6f:44:19:a8:6d:b0:15:c9:8b:a5:90: 09:c6:62:83:cb:9a:48:9a:5e:48:81:e4:8e:a0:a7:4b:c7:9c: 06:41:4e:e1:c4:07:b0:aa:63:91:2a:66:4b:9a:06:b6:1a:b2: 59:e9:d4:44:19:24:e6:f6:04:2d:34:74:fa:2f:ed:da:be:da: 14:f8:ea:db:98:a9:61:d0:0b:99:e9:6f:d4:4b:b0:c5:c8:d5: 50:86:36:10:d4:68:1e:6b:a2:13:c9:c5:59:f9:76:d1:07:c4: db:5b:22:fb:f0:7e:7b:e7:80:17:5a:ff:05:eb:fc:0c:1f:f1: bd:05:1e:ea:43:2f:d3:2d:aa:bb:61:72:60:cb:aa:c8:9f:6b: 48:f2:d9:25:25:02:da:a3:3b:5a:ae:7b:18:2c:5e:9c:98:51: 9c:2c:a0:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjMxMjExMTk1ODM1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc3NjllYi1hYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hNvXAH0w7FZW+I706TOsx/jCIuGgXFDFrYbIOAluMksPnmGxhbADSS8oElt iqlj/E26wdt6okO3aVu4ovTFV50wJfHRZ9OyJUhr3tVhqdtALAGiNUVyy0aza1ZB rQkozjD+Ok1/apmLv/kqWemC6Ma5ek4yJ+uJI/j2CXKRmgQ+hGrNjLTrvwKsfazL kFBDFvgNw9Hvgjw2ymqnvyoymJpijMmyo6Lk+j+DM3Zt+M6Rlwp+vTgVMyauzhY9 mGi+ngq7icD3/pfa6Bx40Arv2TK7QxxjqJNXqtKiDgfofreWH9NbM99XQbwSAfOA iNROPpNfSjWsfIjBJbONt4S6cQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEMujeui 3x++8T594Xjo+1HS/DQZMB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJDREYvQzFDQjJERjIxMEQ4MTFFQTlCRDFBNTVEQzRGOUFFMDIvQUIxMzgzODA5 ODVGMTFFRUJBNUQxODZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWNpCAwDQYJKoZIhvcNAQELBQADggEBAE3GXmOX+UpE5LZo qa96drnSGNhcfeyukNZSZJ2Ns7PwoHAN3OQghjWDAmi4uKGJYytwLEoHtWIdEMZj 9V4q5vVxA3gMD/Cl+TWeM0pQEbvc7hjhHO7OPJqZgHOryaWz38xvRBmobbAVyYul kAnGYoPLmkiaXkiB5I6gp0vHnAZBTuHEB7CqY5EqZkuaBrYaslnp1EQZJOb2BC00 dPov7dq+2hT46tuYqWHQC5npb9RLsMXI1VCGNhDUaB5rohPJxVn5dtEHxNtbIvvw fnvngBda/wXr/Awf8b0FHupDL9MtqrthcmDLqsifa0jy2SUlAtqjO1quexgsXpyY UZwsoA4= -----END CERTIFICATE-----Generated at Sat May 4 19:58:39 2024 by rpki-client on console-ams.rpki-client.org