$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/2605BA6A267D11ECAF7F166DC4F9AE02.roa File: 2605BA6A267D11ECAF7F166DC4F9AE02.roa (raw, json) Hash identifier: hyIj/oH1UbDGdOUj+NMHphg7x96naMtPuDiIW9PmlFc= Subject key identifier: 0A:27:DF:E1:31:64:30:1B:D1:22:80:9C:32:84:16:01:56:9C:C9:C2 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 06F9 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/2605BA6A267D11ECAF7F166DC4F9AE02.roa Signing time: Tue 18 Jun 2024 23:52:12 +0000 ROA not before: Tue 18 Jun 2024 23:52:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 20473 IP address blocks: 45.114.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 18 23:52:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66721dac-0ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:9a:54:70:69:48:f6:42:a4:13:fb:de:22: 80:52:18:aa:a2:c3:2a:83:37:24:4f:b4:a4:50:c0: 40:2c:4d:d4:c8:1e:09:41:56:cd:f0:ef:61:32:19: e3:c7:50:14:cb:42:5b:0f:c2:13:37:4b:cd:c3:e2: 4b:db:12:f3:62:39:2b:6f:ba:36:06:3b:1d:1b:15: 74:24:d0:3e:cb:c2:8b:21:ca:2b:2d:d7:9b:08:db: 81:d0:60:9b:b0:2b:e7:4b:b3:4e:74:b4:f3:94:d6: 39:92:24:29:61:f4:9f:e8:b2:02:54:19:d5:2c:33: b2:63:7b:64:d7:6c:d0:00:6e:ca:52:78:a1:12:c5: 2f:ca:ad:ca:1b:16:6d:85:b1:04:fc:3e:09:7c:a6: ce:92:28:26:0e:8f:f1:2f:1b:62:aa:10:83:c6:17: f8:d7:bf:38:0d:dd:a5:31:06:a3:7d:61:ba:18:99: 24:f6:aa:cf:ea:0a:56:26:4b:13:cb:ca:cc:1b:42: da:08:c4:61:9d:f5:b1:11:59:ee:e4:d7:54:ae:7b: 1e:26:99:19:95:60:f3:0d:a5:79:2f:8a:40:a3:ce: 62:e9:c9:d8:07:d0:7b:6a:0a:88:ed:d9:21:cb:b8: 13:0f:30:e7:79:eb:0d:88:f9:54:ea:8f:d5:4f:69: 79:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:27:DF:E1:31:64:30:1B:D1:22:80:9C:32:84:16:01:56:9C:C9:C2 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/2605BA6A267D11ECAF7F166DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.190.0/24 Signature Algorithm: sha256WithRSAEncryption 10:8f:a3:97:7e:6c:5d:3c:dd:b1:80:ff:b1:0e:59:36:ce:87: 95:3c:25:de:a6:33:77:02:fb:c3:08:4f:aa:42:93:3e:82:e8: 90:8d:cf:1a:79:5f:17:af:23:74:8e:b7:ac:35:a9:8a:22:df: 08:07:09:1a:b7:11:aa:00:c7:cf:ea:46:ef:a6:82:24:d7:76: e1:06:d0:23:30:b4:f4:35:e8:dd:07:18:fa:ea:90:ab:7c:d1: 3d:e8:da:75:69:fc:ff:8f:a6:ef:5b:7e:c9:b3:1d:a9:81:2d: 64:e9:f6:77:2b:fa:08:57:5e:d8:54:0d:05:db:a0:28:0b:f5: 87:03:be:2d:3e:93:dc:aa:d9:24:e6:85:c2:39:30:a9:87:6c: cd:37:42:05:c4:ca:6b:99:34:28:d1:fe:38:4f:99:6b:75:32: c5:31:5c:ff:78:2e:53:92:6f:90:3a:90:af:2f:8f:f8:28:0a: cb:bd:72:14:67:9d:c1:03:af:74:03:17:55:aa:ed:13:9f:8e: 46:e4:59:02:b7:7f:46:0c:9d:69:f7:f6:5c:93:a9:b5:d5:03: b0:65:1d:96:ee:cd:4e:ae:ef:68:ed:c8:59:d1:b4:9e:b5:ce: f8:f5:ff:07:b2:77:2c:04:b0:e4:8f:85:d3:1a:f0:77:8b:b7: 4a:5e:b5:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjQwNjE4MjM1MjEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMWRhYy0wZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjOaVHBpSPZCpBP73iKAUhiqosMqgzckT7SkUMBALE3UyB4JQVbN8O9hMhnj x1AUy0JbD8ITN0vNw+JL2xLzYjkrb7o2BjsdGxV0JNA+y8KLIcorLdebCNuB0GCb sCvnS7NOdLTzlNY5kiQpYfSf6LICVBnVLDOyY3tk12zQAG7KUnihEsUvyq3KGxZt hbEE/D4JfKbOkigmDo/xLxtiqhCDxhf41784Dd2lMQajfWG6GJkk9qrP6gpWJksT y8rMG0LaCMRhnfWxEVnu5NdUrnseJpkZlWDzDaV5L4pAo85i6cnYB9B7agqI7dkh y7gTDzDneesNiPlU6o/VT2l5dwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAon3+Ex ZDAb0SKAnDKEFgFWnMnCMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvMjYwNUJBNkEy NjdEMTFFQ0FGN0YxNjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcr4wDQYJKoZIhvcNAQELBQADggEBABCPo5d+bF083bGA /7EOWTbOh5U8Jd6mM3cC+8MIT6pCkz6C6JCNzxp5XxevI3SOt6w1qYoi3wgHCRq3 EaoAx8/qRu+mgiTXduEG0CMwtPQ16N0HGPrqkKt80T3o2nVp/P+Ppu9bfsmzHamB LWTp9ncr+ghXXthUDQXboCgL9YcDvi0+k9yq2STmhcI5MKmHbM03QgXEymuZNCjR /jhPmWt1MsUxXP94LlOSb5A6kK8vj/goCsu9chRnncEDr3QDF1Wq7ROfjkbkWQK3 f0YMnWn39lyTqbXVA7BlHZbuzU6u72jtyFnRtJ61zvj1/weydywEsOSPhdMa8HeL t0petZk= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:52 2024 by rpki-client on console-ams.rpki-client.org