$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/B022AC18368811EEB1BFE56AC4F9AE02.roa File: B022AC18368811EEB1BFE56AC4F9AE02.roa (raw, json) Hash identifier: z6BHSk4cb9I8/kB9JR0TRRNQXU/qOZQ+pN/Lst+leW4= Subject key identifier: 55:DD:53:F1:07:60:53:06:79:DD:35:4A:9A:1B:37:E5:F4:43:08:03 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 8A Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/B022AC18368811EEB1BFE56AC4F9AE02.roa Signing time: Thu 25 Apr 2024 07:09:30 +0000 ROA not before: Thu 25 Apr 2024 07:09:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4826 IP address blocks: 198.51.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Apr 25 07:09:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662a01aa-f402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b8:46:0d:b5:14:85:a6:70:f0:9a:08:7d:54: c1:70:14:fa:7a:bf:3f:23:88:08:11:0b:45:01:79: 8f:48:c1:4a:49:80:e3:d5:e4:4b:ec:55:3a:b2:be: f2:fb:9a:53:60:93:db:11:90:de:8c:64:8e:5e:79: e1:e5:20:10:62:6f:2a:36:36:61:d9:aa:ae:fc:97: 54:88:2f:92:93:bd:b6:54:8d:5b:7d:d3:0d:4a:d3: 3e:bd:1a:9a:7b:03:61:b7:9e:7c:8a:cb:4f:22:57: 16:f4:6a:d9:39:a4:fb:77:6d:e2:ee:63:40:62:6e: 6a:5e:5f:df:8c:10:44:a9:3a:7d:09:56:ec:91:d0: ad:1c:13:21:07:37:58:db:f9:63:f8:4a:e2:fe:18: 11:8f:ed:5c:1b:aa:b4:97:05:42:68:9c:72:94:b4: 2d:7d:4a:3f:51:c9:d7:08:aa:0f:25:c3:da:b5:9c: 40:a6:01:58:45:19:d1:8d:c8:82:c7:b8:91:69:9c: 92:02:a3:d2:d3:5c:06:79:7f:f7:cb:ae:3c:d5:0e: 17:93:79:2c:ba:cd:78:48:28:3f:5e:df:0c:3c:f5: 69:78:78:4e:07:f5:18:99:66:6e:01:f4:a2:75:cd: 7e:e7:73:7d:8b:2b:a2:cc:13:05:da:1d:02:97:ee: a2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DD:53:F1:07:60:53:06:79:DD:35:4A:9A:1B:37:E5:F4:43:08:03 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/B022AC18368811EEB1BFE56AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.51.210.0/24 Signature Algorithm: sha256WithRSAEncryption 63:c5:a6:f0:15:c8:45:29:5a:12:bb:78:39:ca:51:88:b6:07: 60:fd:ce:4a:03:6c:c0:ae:cb:e8:e0:66:f6:b3:b4:e7:e1:a1: d9:85:8e:43:82:fe:fa:27:fb:c5:29:02:d6:5f:88:71:73:32: 45:62:ea:43:1c:b7:81:b5:e3:74:79:56:3d:98:a7:9a:79:d0: ee:76:bd:8e:e4:79:95:da:46:60:0e:86:b7:9f:79:fb:74:ad: 80:8c:b7:9f:94:5e:85:7e:08:2e:f1:33:fa:67:da:58:8a:bd: 86:4b:b8:1c:ed:b1:f8:90:fd:57:0c:9e:8a:7b:c0:29:dd:08: 19:a9:80:14:77:98:77:e4:89:7a:3c:4e:f7:a9:91:94:a4:e6: 53:ec:f5:0d:a7:61:41:c0:4a:e0:f7:9b:4a:e5:ae:53:9b:a4: 0d:9c:03:ad:56:2b:26:55:59:fa:0b:27:52:e1:88:72:7a:a8: 55:fe:1e:d1:dd:eb:6c:6f:e2:30:8c:6c:00:65:fa:ce:06:ec: 5d:b9:44:4b:d1:fe:49:57:4f:50:17:78:f7:1d:c1:69:81:60: 74:0b:1f:32:84:c7:bc:19:18:93:e3:74:92:2a:d3:ee:2c:73: ff:a4:69:70:19:f5:ef:fe:9f:7f:e7:8c:e5:df:65:8c:43:c6: a9:6d:d1:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjQwNDI1MDcwOTMwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJhMDFhYS1mNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bhGDbUUhaZw8JoIfVTBcBT6er8/I4gIEQtFAXmPSMFKSYDj1eRL7FU6sr7y +5pTYJPbEZDejGSOXnnh5SAQYm8qNjZh2aqu/JdUiC+Sk722VI1bfdMNStM+vRqa ewNht558istPIlcW9GrZOaT7d23i7mNAYm5qXl/fjBBEqTp9CVbskdCtHBMhBzdY 2/lj+Eri/hgRj+1cG6q0lwVCaJxylLQtfUo/UcnXCKoPJcPatZxApgFYRRnRjciC x7iRaZySAqPS01wGeX/3y6481Q4Xk3ksus14SCg/Xt8MPPVpeHhOB/UYmWZuAfSi dc1+53N9iyuizBMF2h0Cl+6itQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFXdU/EH YFMGed01SpobN+X0QwgDMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBERjAvNURFRkFDRjAzNjQ0MTFFRUFDRTVDNzJFQzRGOUFFMDIvQjAyMkFDMTgz Njg4MTFFRUIxQkZFNTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADGM9IwDQYJKoZIhvcNAQELBQADggEBAGPFpvAVyEUpWhK7 eDnKUYi2B2D9zkoDbMCuy+jgZvaztOfhodmFjkOC/von+8UpAtZfiHFzMkVi6kMc t4G143R5Vj2Yp5p50O52vY7keZXaRmAOhrefeft0rYCMt5+UXoV+CC7xM/pn2liK vYZLuBztsfiQ/VcMnop7wCndCBmpgBR3mHfkiXo8TvepkZSk5lPs9Q2nYUHASuD3 m0rlrlObpA2cA61WKyZVWfoLJ1LhiHJ6qFX+HtHd62xv4jCMbABl+s4G7F25REvR /klXT1AXePcdwWmBYHQLHzKEx7wZGJPjdJIq0+4sc/+kaXAZ9e/+n3/njOXfZYxD xqlt0UM= -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:54 2024 by rpki-client on console-ams.rpki-client.org