$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa File: 1B09C20A9CD711EE8D4B0835C4F9AE02.roa (raw, json) Hash identifier: 7HNUvZFAwQ7Cd0I9COINEjh6qWhul5DciDiZ3SRlNVc= Subject key identifier: A0:51:77:2C:2E:88:6F:1B:04:92:04:30:49:63:B5:C3:99:70:5B:E1 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 0686 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa Signing time: Sun 17 Dec 2023 12:23:38 +0000 ROA not before: Sun 17 Dec 2023 12:23:38 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 56683 IP address blocks: 45.114.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 23:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Dec 17 12:23:38 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=657ee84a-7e8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ab:4d:07:ab:1f:72:7a:3b:6e:0a:cf:53:32: 97:f1:5d:00:61:80:09:88:02:42:2d:b0:9f:65:84: b6:89:13:90:54:ff:8d:b3:13:95:72:a2:bd:92:06: 1c:36:f1:5b:0a:da:54:d9:cd:81:b0:da:95:21:41: 4d:2f:33:ed:cf:1b:4e:83:8e:dc:66:6e:80:93:a6: 56:98:c9:40:38:6f:16:33:6f:36:a4:f6:8b:bd:66: 1c:cf:81:af:5d:95:39:81:3f:03:c7:da:a4:e2:8f: 5b:fc:ef:b2:f8:2a:f0:72:1e:96:f6:83:8c:f4:15: 46:f4:65:ba:86:36:de:9c:df:ab:b8:23:56:4b:bc: 95:67:51:29:57:1d:25:19:46:cc:0e:7d:b2:2a:29: 04:d1:99:e8:13:c6:92:fc:a7:4c:57:11:34:13:80: ae:03:b3:c7:73:5e:7f:80:14:1a:0c:67:95:2e:8a: 8b:52:6c:ac:da:e4:37:4c:47:29:ab:f2:b2:e6:ba: 84:c0:c4:75:06:14:e0:2b:97:03:8f:b6:b5:ff:5b: 9b:d8:39:dc:ad:67:ca:67:ca:3b:82:44:86:3c:6b: b2:33:56:37:33:17:67:ed:aa:0a:b8:34:84:de:b1: 23:9c:bf:02:ec:a5:75:7a:eb:2a:db:40:fd:f6:c2: 42:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:51:77:2C:2E:88:6F:1B:04:92:04:30:49:63:B5:C3:99:70:5B:E1 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.188.0/24 Signature Algorithm: sha256WithRSAEncryption 64:f7:ad:2a:2d:23:72:bf:91:0f:9e:22:b5:a9:98:6e:e2:4d: d8:cc:84:ec:e9:de:cf:d5:14:2c:a2:6c:4a:67:5c:1c:fb:c0: 74:c7:e0:bd:ca:0d:3d:9a:2d:92:87:53:f1:e7:d7:1b:e8:ea: 27:8e:3d:69:97:5c:72:9c:33:d4:32:1b:85:1a:ea:1e:98:ff: 41:11:7d:34:3d:cb:df:fe:dd:50:b5:89:c3:75:a1:cd:33:1c: c0:26:c3:71:8f:e3:86:3a:d1:71:14:43:24:84:f3:b1:89:a8: 96:d5:15:fe:79:d1:c6:74:95:35:34:d4:19:ef:d1:33:e1:f2: 4b:1b:36:66:d2:05:24:c6:f7:b1:26:55:95:fd:22:a3:9d:ab: ec:23:c8:43:17:12:a9:28:a3:69:1b:1b:47:e3:9b:bb:90:88: e4:00:12:2f:1b:e0:8c:df:73:93:b3:e1:07:f2:b9:ba:80:85: 89:de:be:03:ba:73:4e:93:2a:5d:50:94:82:23:bb:ce:ce:88: 2a:17:c9:fc:5d:3c:88:84:4c:d6:43:80:de:74:6f:a2:ea:8d: c7:40:33:5a:9c:1b:54:b6:b9:ec:3a:a9:d3:af:78:e5:93:60: 30:83:09:80:e9:2e:01:0f:ac:5b:c6:ef:bb:af:d3:2b:92:21: e5:a8:5b:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjMxMjE3MTIyMzM4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlZTg0YS03ZThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26tNB6sfcno7bgrPUzKX8V0AYYAJiAJCLbCfZYS2iROQVP+NsxOVcqK9kgYc NvFbCtpU2c2BsNqVIUFNLzPtzxtOg47cZm6Ak6ZWmMlAOG8WM282pPaLvWYcz4Gv XZU5gT8Dx9qk4o9b/O+y+Crwch6W9oOM9BVG9GW6hjbenN+ruCNWS7yVZ1EpVx0l GUbMDn2yKikE0ZnoE8aS/KdMVxE0E4CuA7PHc15/gBQaDGeVLoqLUmys2uQ3TEcp q/Ky5rqEwMR1BhTgK5cDj7a1/1ub2DncrWfKZ8o7gkSGPGuyM1Y3Mxdn7aoKuDSE 3rEjnL8C7KV1eusq20D99sJCLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKBRdywu iG8bBJIEMEljtcOZcFvhMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvMUIwOUMyMEE5 Q0Q3MTFFRThENEIwODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcrwwDQYJKoZIhvcNAQELBQADggEBAGT3rSotI3K/kQ+e IrWpmG7iTdjMhOzp3s/VFCyibEpnXBz7wHTH4L3KDT2aLZKHU/Hn1xvo6ieOPWmX XHKcM9QyG4Ua6h6Y/0ERfTQ9y9/+3VC1icN1oc0zHMAmw3GP44Y60XEUQySE87GJ qJbVFf550cZ0lTU01Bnv0TPh8ksbNmbSBSTG97EmVZX9IqOdq+wjyEMXEqkoo2kb G0fjm7uQiOQAEi8b4Izfc5Oz4QfyubqAhYnevgO6c06TKl1QlIIju87OiCoXyfxd PIiETNZDgN50b6LqjcdAM1qcG1S2uew6qdOveOWTYDCDCYDpLgEPrFvG77uv0yuS IeWoWxs= -----END CERTIFICATE-----Generated at Wed May 15 02:26:54 2024 by rpki-client on console-fra.rpki-client.org