$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa File: 1B09C20A9CD711EE8D4B0835C4F9AE02.roa (raw, json) Hash identifier: siwf/BRs/2qjsSqYe1YNo8fuooHbA+PHr0NQC6IUKoY= Subject key identifier: 61:E4:A1:F8:8E:C8:54:FC:B8:21:53:65:3C:72:5B:0A:88:CE:44:B4 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 06FB Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa Signing time: Tue 18 Jun 2024 23:52:14 +0000 ROA not before: Tue 18 Jun 2024 23:52:14 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 56683 IP address blocks: 45.114.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 18 23:52:14 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66721dae-5d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5c:4c:7c:e5:33:dd:4d:02:6a:39:62:b4:8a: db:16:02:ca:68:71:c5:57:2c:04:04:b3:a6:3d:d3: 0e:0d:e7:50:e4:9e:87:8b:5a:a9:ed:02:0f:61:ba: a1:aa:b6:e9:07:5c:6d:bb:39:79:18:4e:9a:00:0c: 63:62:b0:28:41:be:d1:17:97:74:c3:7e:74:25:93: ed:c8:c8:5e:53:cc:da:10:d7:b7:12:08:21:dd:76: 34:c3:62:c8:48:b1:6d:ab:a3:28:e6:91:da:be:d3: 1b:42:23:d1:b6:c9:56:b7:3b:1f:2b:8b:c6:dc:c8: c4:32:73:23:15:1a:11:23:68:88:2c:e4:b8:4f:19: 64:5e:18:ee:eb:7e:04:9c:fb:4b:15:ec:c6:48:ac: 0d:de:fd:0e:dd:42:be:b1:0a:46:ea:29:1b:29:74: ad:eb:a7:c1:1a:de:b4:66:37:0f:57:fa:03:d2:ce: cc:e4:b7:d4:84:36:57:a8:93:30:2c:d5:a5:ca:0b: ec:d8:e7:dc:04:30:9f:b7:d3:63:f3:04:f3:c1:4f: b4:f5:89:ad:d6:ea:0d:38:6b:1b:bd:bd:dc:95:e1: a8:b3:f3:23:c3:32:1a:f5:26:b6:73:aa:2a:11:11: 67:d8:c3:3c:79:f5:3e:70:3f:bd:c5:14:69:ad:5b: 8e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E4:A1:F8:8E:C8:54:FC:B8:21:53:65:3C:72:5B:0A:88:CE:44:B4 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1B09C20A9CD711EE8D4B0835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.188.0/24 Signature Algorithm: sha256WithRSAEncryption 60:4b:45:a4:b0:a5:ae:03:77:10:c9:cf:8c:c1:89:df:01:2b: 48:e3:8b:f6:08:59:d3:ef:3d:1b:36:6a:16:59:ff:8c:0d:1d: d6:49:f0:8e:56:a0:c3:75:2e:a2:5d:be:09:68:64:2d:f9:40: 7f:d5:c1:e6:61:9a:14:48:08:b2:f5:6a:46:57:2f:67:09:f9: dd:00:3d:f7:70:0c:d6:eb:78:ad:f6:7d:fa:3c:a4:e3:56:97: cf:8e:39:75:16:08:4e:2e:09:a6:f3:d1:7b:86:52:5a:20:af: fa:57:5a:5c:de:b2:a8:4b:49:eb:50:c4:0c:d3:2f:46:00:34: 0e:f0:41:ba:fe:56:f0:03:34:dc:64:12:07:a9:15:6c:0f:72: d9:1c:5a:0a:45:15:c1:13:d6:15:24:0f:c9:0d:80:89:2c:e6: 35:37:90:aa:38:51:82:31:1d:2d:7f:e7:49:49:b9:47:35:7b: c7:bb:ad:47:a3:72:3d:ca:0d:13:0d:08:b9:93:19:fb:6d:e4: 27:b5:82:36:d3:56:3e:b0:ae:bd:ce:e2:20:f1:b7:18:94:9c: 6e:33:02:9c:d7:13:cf:4a:77:c8:c0:e1:f8:6d:2f:0f:8e:11: 3f:ad:60:bd:8b:00:b3:4c:1f:23:8c:07:4b:2a:11:6f:cd:83: dc:4d:cd:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjQwNjE4MjM1MjE0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMWRhZS01ZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFxMfOUz3U0CajlitIrbFgLKaHHFVywEBLOmPdMODedQ5J6Hi1qp7QIPYbqh qrbpB1xtuzl5GE6aAAxjYrAoQb7RF5d0w350JZPtyMheU8zaENe3Eggh3XY0w2LI SLFtq6Mo5pHavtMbQiPRtslWtzsfK4vG3MjEMnMjFRoRI2iILOS4TxlkXhju634E nPtLFezGSKwN3v0O3UK+sQpG6ikbKXSt66fBGt60ZjcPV/oD0s7M5LfUhDZXqJMw LNWlygvs2OfcBDCft9Nj8wTzwU+09Ymt1uoNOGsbvb3cleGos/MjwzIa9Sa2c6oq ERFn2MM8efU+cD+9xRRprVuOuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGHkofiO yFT8uCFTZTxyWwqIzkS0MB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvMUIwOUMyMEE5 Q0Q3MTFFRThENEIwODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcrwwDQYJKoZIhvcNAQELBQADggEBAGBLRaSwpa4DdxDJ z4zBid8BK0jji/YIWdPvPRs2ahZZ/4wNHdZJ8I5WoMN1LqJdvgloZC35QH/VweZh mhRICLL1akZXL2cJ+d0APfdwDNbreK32ffo8pONWl8+OOXUWCE4uCabz0XuGUlog r/pXWlzesqhLSetQxAzTL0YANA7wQbr+VvADNNxkEgepFWwPctkcWgpFFcET1hUk D8kNgIks5jU3kKo4UYIxHS1/50lJuUc1e8e7rUejcj3KDRMNCLmTGftt5Ce1gjbT Vj6wrr3O4iDxtxiUnG4zApzXE89Kd8jA4fhtLw+OET+tYL2LALNMHyOMB0sqEW/N g9xNzRY= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:43 2024 by rpki-client on console-ams.rpki-client.org