$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/D694BD82DBBA11EEB4125A3EC4F9AE02.roa File: D694BD82DBBA11EEB4125A3EC4F9AE02.roa (raw, json) Hash identifier: Cfsk+t84ibLo+fkUEG7hLT0dawrjqPaFJly7xspE4TQ= Subject key identifier: D7:03:1E:AD:0B:09:51:63:74:58:39:D1:A5:06:66:50:4D:E9:AD:C5 Certificate issuer: /CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Certificate serial: 034A Authority key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/D694BD82DBBA11EEB4125A3EC4F9AE02.roa Signing time: Wed 05 Jun 2024 03:39:43 +0000 ROA not before: Wed 05 Jun 2024 03:39:43 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 147179 IP address blocks: 45.248.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Validity Not Before: Jun 5 03:39:43 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665fddff-1f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d7:dd:20:ba:29:c7:4f:b8:d3:67:0b:85:d0: 5c:9c:a2:62:16:e2:52:93:09:13:3f:3b:7d:29:28: f1:7b:2c:13:d1:0c:0b:49:ff:35:bc:25:95:89:55: 3e:ec:d2:18:58:c4:02:d7:4a:eb:b4:2c:e5:5e:5b: 44:f9:7b:c2:7c:97:a3:8b:39:39:82:8f:17:cf:c0: 29:46:2d:1e:b2:75:d5:fb:7c:b5:2a:65:31:9b:c9: b4:41:35:de:1b:61:5c:a4:93:66:6a:f1:69:48:90: ab:8d:f0:a9:3b:df:ea:85:77:d1:36:f2:c8:b3:3d: 49:19:8c:09:d3:73:b6:a6:2d:f3:5f:cc:7d:0f:29: 3c:95:e7:b9:4a:8f:77:2d:a2:75:c9:fb:64:52:04: 3f:a9:0a:4a:5c:84:5f:25:6f:25:a3:97:22:bc:50: 0c:35:58:4c:0b:50:61:8a:7f:e1:87:fa:58:7e:c2: 9f:b6:d4:da:e6:07:68:b3:ef:d9:d6:fb:9b:39:3e: 82:d6:47:41:0c:b3:d7:63:b3:f7:4e:a5:b8:10:33: d0:48:f2:e6:e1:b5:d9:47:88:56:37:41:26:0c:f6: e8:c3:fa:74:78:da:92:82:ea:5f:a2:95:0f:27:ce: a0:48:7d:ca:53:18:26:bd:8c:a4:81:05:97:1b:86: 2b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:03:1E:AD:0B:09:51:63:74:58:39:D1:A5:06:66:50:4D:E9:AD:C5 X509v3 Authority Key Identifier: keyid:C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/D694BD82DBBA11EEB4125A3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.152.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:36:44:6a:cd:c4:e7:01:c1:22:2f:23:ad:e4:e0:df:c3:97: 5e:7d:2d:fa:ba:ac:f2:f5:df:25:24:d1:93:c9:0f:c1:52:6a: 89:33:93:f0:2b:27:f8:60:ce:71:96:d2:05:3c:77:ee:0a:c8: 5a:4e:38:e9:d6:69:91:03:6e:7a:7f:f6:69:42:9f:3f:87:c8: d5:ba:19:07:c9:6e:d8:52:0c:8a:37:73:08:f6:56:b9:eb:53: 67:cb:28:b0:85:1b:82:95:5d:22:cb:48:c6:50:57:85:bf:dc: 9f:3b:f4:29:09:fb:36:ce:9f:25:85:e5:43:76:90:e3:55:92: 25:3b:2e:7d:50:0b:d9:8e:ee:aa:54:2b:be:0b:16:5a:03:d5: 80:9a:51:15:a3:2b:bc:e8:00:0b:e9:45:11:fe:fe:e4:1b:04: ca:b6:f1:53:d6:3b:e0:8e:43:67:ce:bd:76:b9:70:7a:16:48: 4b:cc:67:d1:0b:f9:c2:76:b9:94:4b:f4:5b:2c:1b:c6:a4:3e: 94:d8:9f:76:0b:6d:36:7d:1d:b1:36:06:8d:e8:27:51:5c:27: f7:fc:32:c3:28:d6:bc:18:5b:7c:c2:50:18:64:12:63:5a:d4: 52:24:bc:cd:ad:89:1c:34:3e:c3:04:d4:e5:23:bc:be:12:c9: 85:29:18:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTQxMTAvBgNVBAUTKEM0RDRGQjBGRjAyNzc5NkU5REFBMTdCNzU1NTFGRDBC NzdGMTk4MkYwHhcNMjQwNjA1MDMzOTQzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZGRmZi0xZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutfdILopx0+402cLhdBcnKJiFuJSkwkTPzt9KSjxeywT0QwLSf81vCWViVU+ 7NIYWMQC10rrtCzlXltE+XvCfJejizk5go8Xz8ApRi0esnXV+3y1KmUxm8m0QTXe G2FcpJNmavFpSJCrjfCpO9/qhXfRNvLIsz1JGYwJ03O2pi3zX8x9Dyk8lee5So93 LaJ1yftkUgQ/qQpKXIRfJW8lo5civFAMNVhMC1Bhin/hh/pYfsKfttTa5gdos+/Z 1vubOT6C1kdBDLPXY7P3TqW4EDPQSPLm4bXZR4hWN0EmDPbow/p0eNqSgupfopUP J86gSH3KUxgmvYykgQWXG4YrVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNcDHq0L CVFjdFg50aUGZlBN6a3FMB8GA1UdIwQYMBaAFMTU+w/wJ3lunaoXt1VR/Qt38Zgv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5NC9FM0NDMjVEODgx MUUxMUVDOTIwMjU1NTFDNEY5QUUwMi94TlQ3RF9BbmVXNmRxaGUzVlZIOUMzZnht QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOVDdEX0FuZVc2ZHFoZTNWVkg5QzNmeG1DOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVCOTQvRTNDQzI1RDg4MTFFMTFFQzkyMDI1NTUxQzRGOUFFMDIvRDY5NEJEODJE QkJBMTFFRUI0MTI1QTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAt+JgwDQYJKoZIhvcNAQELBQADggEBAG42RGrNxOcBwSIv I63k4N/Dl159Lfq6rPL13yUk0ZPJD8FSaokzk/ArJ/hgznGW0gU8d+4KyFpOOOnW aZEDbnp/9mlCnz+HyNW6GQfJbthSDIo3cwj2VrnrU2fLKLCFG4KVXSLLSMZQV4W/ 3J879CkJ+zbOnyWF5UN2kONVkiU7Ln1QC9mO7qpUK74LFloD1YCaURWjK7zoAAvp RRH+/uQbBMq28VPWO+COQ2fOvXa5cHoWSEvMZ9EL+cJ2uZRL9FssG8akPpTYn3YL bTZ9HbE2Bo3oJ1FcJ/f8MsMo1rwYW3zCUBhkEmNa1FIkvM2tiRw0PsME1OUjvL4S yYUpGLg= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:38 2024 by rpki-client on console-fra.rpki-client.org