$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/26FD4E0C705311EE8723E92AC4F9AE02.roa File: 26FD4E0C705311EE8723E92AC4F9AE02.roa (raw, json) Hash identifier: pyTKRU9BUUR54eL45xj3zBjeNm0ArDMdCQGdgijd2ls= Subject key identifier: DD:DA:7C:6B:E1:DC:B2:08:07:D7:34:B5:DF:64:73:C7:C1:C1:68:FF Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 06F4 Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/26FD4E0C705311EE8723E92AC4F9AE02.roa Signing time: Tue 18 Jun 2024 23:52:07 +0000 ROA not before: Tue 18 Jun 2024 23:52:07 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10111 IP address blocks: 45.114.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1780 (0x6f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jun 18 23:52:07 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66721da7-2e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e2:83:f5:08:47:a1:40:a4:e5:e3:a5:29:18: 1c:ac:38:57:34:2c:36:b5:0a:27:ca:40:37:5d:c4: 47:46:95:72:48:61:36:48:ef:37:6d:e9:b2:21:7e: 7c:f8:98:23:19:a0:83:88:17:67:21:9b:d0:b5:92: 25:b6:f9:69:26:76:34:1d:32:63:7a:9b:56:24:9c: 3d:1e:87:c0:6f:55:a5:37:a2:8a:48:79:ef:10:17: 47:35:ef:25:5c:f8:25:2a:ff:fa:88:d9:e3:4b:b5: 06:17:73:86:7c:4b:20:32:39:27:ac:6d:7a:30:57: b4:63:7c:60:95:cf:ee:8c:c7:aa:b7:c5:d9:d2:4c: f1:61:e4:6e:9d:40:29:70:a7:a7:c6:48:3b:f3:ed: 5b:c5:94:7e:31:76:33:6f:b9:ee:9f:8a:df:ef:c7: 67:8d:91:6e:b8:2e:c1:f0:6c:11:28:ef:ed:41:9c: ee:78:7c:31:5c:7e:f2:85:01:32:88:4e:f2:da:a0: ac:1a:fa:d3:cc:30:38:c6:b5:63:59:4a:56:58:e1: 0c:e1:9a:a7:ea:d6:73:dc:fb:3c:2a:af:70:5f:fa: 69:0c:55:66:94:c9:5e:53:47:e7:22:20:4d:51:46: 30:56:c0:9f:06:39:89:a6:4d:e0:8f:ee:1d:85:ac: ec:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DA:7C:6B:E1:DC:B2:08:07:D7:34:B5:DF:64:73:C7:C1:C1:68:FF X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/26FD4E0C705311EE8723E92AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.189.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:e7:5e:c4:60:48:36:a3:46:fb:b3:76:54:5d:a6:ee:20:5a: d9:22:6b:e0:22:72:9b:81:70:e5:ea:98:bc:72:7f:a9:37:05: 68:db:63:10:72:9b:63:33:3d:f1:9c:bb:69:25:25:71:8d:35: 77:d8:31:60:01:ca:11:59:0b:42:06:9f:92:0b:20:47:4f:36: ea:43:6c:ec:57:af:e8:91:87:28:12:78:52:8e:e4:f0:91:01: 38:64:61:7a:53:75:de:bd:5b:44:bd:90:9d:e6:24:c9:09:79: b8:a6:f3:89:48:8f:29:6d:87:97:ab:67:03:3a:a8:0f:4e:73: cd:a5:f0:70:cf:7f:61:8e:db:e1:cd:22:ba:63:59:69:74:0d: de:76:eb:5b:b4:b4:14:39:c0:fe:b3:c3:25:b7:47:90:3e:59: 00:e1:ac:ab:4e:fb:ae:0c:4f:81:d5:c0:d1:6c:2c:d1:6d:36: 3b:e1:c1:63:46:13:6a:69:3e:ed:02:42:88:24:4e:97:2a:45: ac:77:94:43:0a:88:8d:6f:5d:db:81:72:7f:d3:bd:de:ec:3f: e5:73:49:44:a7:8f:12:91:b0:44:6d:7a:27:f9:d6:4d:1b:25: 14:00:c1:5d:3a:ec:7f:89:5c:39:00:e2:20:a1:a7:73:a1:c5: 49:4d:5c:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjQwNjE4MjM1MjA3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMWRhNy0yZTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+KD9QhHoUCk5eOlKRgcrDhXNCw2tQonykA3XcRHRpVySGE2SO83bemyIX58 +JgjGaCDiBdnIZvQtZIltvlpJnY0HTJjeptWJJw9HofAb1WlN6KKSHnvEBdHNe8l XPglKv/6iNnjS7UGF3OGfEsgMjknrG16MFe0Y3xglc/ujMeqt8XZ0kzxYeRunUAp cKenxkg78+1bxZR+MXYzb7nun4rf78dnjZFuuC7B8GwRKO/tQZzueHwxXH7yhQEy iE7y2qCsGvrTzDA4xrVjWUpWWOEM4Zqn6tZz3Ps8Kq9wX/ppDFVmlMleU0fnIiBN UUYwVsCfBjmJpk3gj+4dhazs7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFN3afGvh 3LIIB9c0td9kc8fBwWj/MB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvMjZGRDRFMEM3 MDUzMTFFRTg3MjNFOTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcr0wDQYJKoZIhvcNAQELBQADggEBAAznXsRgSDajRvuz dlRdpu4gWtkia+AicpuBcOXqmLxyf6k3BWjbYxBym2MzPfGcu2klJXGNNXfYMWAB yhFZC0IGn5ILIEdPNupDbOxXr+iRhygSeFKO5PCRAThkYXpTdd69W0S9kJ3mJMkJ ebim84lIjylth5erZwM6qA9Oc82l8HDPf2GO2+HNIrpjWWl0Dd5261u0tBQ5wP6z wyW3R5A+WQDhrKtO+64MT4HVwNFsLNFtNjvhwWNGE2ppPu0CQogkTpcqRax3lEMK iI1vXduBcn/Tvd7sP+VzSUSnjxKRsERteif51k0bJRQAwV067H+JXDkA4iChp3Oh xUlNXPk= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:43 2024 by rpki-client on console-ams.rpki-client.org