$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa File: 6313DADA500011EBB74A2C2AC4F9AE02.roa (raw, json) Hash identifier: y3IxePhbW/YNKq0QRfact6oDLdD7B/E8lW37KP6mCPc= Subject key identifier: 51:48:3C:4C:45:7C:13:52:06:51:8E:8B:7D:9F:0D:BA:37:F0:E0:A5 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2A20 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa Signing time: Mon 28 Aug 2023 14:30:27 +0000 ROA not before: Mon 28 Aug 2023 14:30:27 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9584 IP address blocks: 152.104.0.0/18 maxlen: 24 152.104.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 14:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10784 (0x2a20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Aug 28 14:30:27 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ecaf82-08d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:01:22:cf:6e:ea:97:dd:63:26:cb:09:e5:50: b3:f4:58:b6:bb:c0:ee:74:89:de:c8:52:f7:6c:77: 54:6b:17:4f:7c:bc:8f:3c:99:23:9a:91:cd:1f:d0: a0:36:a3:8c:40:06:d8:e6:ba:cd:b5:46:74:29:3d: c3:8b:7a:cd:60:c0:18:1a:d6:ea:89:9d:55:c6:f4: e9:55:9f:e3:dc:cd:1e:7b:5e:c9:d5:05:e7:d0:df: a9:e5:f2:5e:36:85:15:65:14:4f:4a:a1:e8:4e:6a: 52:9d:ee:de:57:7d:a5:f2:0c:9b:64:f7:68:34:4b: 02:9b:aa:6d:8d:b1:4c:8b:6f:24:69:94:0c:4b:e2: 7c:8b:b1:b5:fd:00:2d:f9:28:bc:d7:1d:81:f7:a1: ea:79:1e:84:29:11:d3:ee:00:d1:b2:2b:29:c8:36: fc:bd:88:72:5a:5f:ef:79:5f:65:dc:6e:7c:38:f0: c9:6d:c1:3b:2b:6d:50:e6:aa:46:b9:34:07:70:14: 9f:13:a4:79:ef:70:df:51:c7:0c:6c:be:d5:89:98: d6:fb:f3:9b:f5:67:a8:10:9b:9e:82:9e:7a:10:4f: 01:6f:22:ee:24:6e:e1:20:d9:26:b6:db:d2:61:34: bb:66:e9:04:16:dc:1d:ba:2d:ae:27:3d:30:1c:20: 9b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:48:3C:4C:45:7C:13:52:06:51:8E:8B:7D:9F:0D:BA:37:F0:E0:A5 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.104.0.0-152.104.95.255 Signature Algorithm: sha256WithRSAEncryption b8:7d:9f:89:b9:c9:fe:af:0a:3c:ff:f9:15:66:a6:0b:de:9a: 31:3f:82:72:54:10:a4:57:95:2d:cf:2e:3f:f0:5e:37:50:3c: 53:03:d1:11:5b:3f:33:cb:1b:dd:e9:7c:92:10:69:a3:4f:90: d0:1f:2b:57:54:09:0a:8a:d2:62:b8:7f:a5:e1:83:4c:93:48: 14:91:20:f7:aa:d3:b2:7a:4f:3a:44:d0:35:f8:95:19:9d:5f: 5a:35:ee:aa:ba:f2:6f:37:18:90:d8:64:44:55:66:93:e0:e8: 29:0c:f7:cb:d0:c5:5c:85:4f:67:81:61:14:06:24:0b:a3:8b: 62:3e:79:2d:78:6f:67:22:5a:0a:03:ad:1d:b2:3e:81:24:e4: 7d:aa:35:4d:c6:fc:2a:49:cc:eb:b8:a7:4a:6f:e6:4e:16:ef: 33:fb:d9:ba:71:0d:0a:5e:98:de:63:1d:0e:d6:ed:cb:49:c8: 66:50:ee:c0:dc:a0:b8:8d:d1:53:d2:9f:d6:85:03:05:38:d1: ec:70:bf:26:bb:55:76:aa:8a:94:f0:44:e4:a7:4c:8a:bf:45: 9b:41:7f:67:70:74:e3:c9:07:3e:e6:85:2a:1b:46:df:eb:43: e8:d7:52:db:09:9e:8c:5a:72:b1:72:d0:bc:a7:df:07:3e:c0: 82:d1:32:47 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICKiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjMwODI4MTQzMDI3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjYWY4Mi0wOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugEiz27ql91jJssJ5VCz9Fi2u8DudIneyFL3bHdUaxdPfLyPPJkjmpHNH9Cg NqOMQAbY5rrNtUZ0KT3Di3rNYMAYGtbqiZ1VxvTpVZ/j3M0ee17J1QXn0N+p5fJe NoUVZRRPSqHoTmpSne7eV32l8gybZPdoNEsCm6ptjbFMi28kaZQMS+J8i7G1/QAt +Si81x2B96HqeR6EKRHT7gDRsispyDb8vYhyWl/veV9l3G58OPDJbcE7K21Q5qpG uTQHcBSfE6R573DfUccMbL7ViZjW+/Ob9WeoEJuegp56EE8BbyLuJG7hINkmttvS YTS7ZukEFtwdui2uJz0wHCCbiQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFFFIPExF fBNSBlGOi32fDbo38OClMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0MjIvM0U3NDUzNjhFRDU1MTFFMzgwNzJDNTdFNTkxMUVBMzIvNjMxM0RBREE1 MDAwMTFFQkI3NEEyQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDA5hoAwQFmGhAMA0GCSqGSIb3DQEBCwUAA4IBAQC4fZ+J ucn+rwo8//kVZqYL3poxP4JyVBCkV5Utzy4/8F43UDxTA9ERWz8zyxvd6XySEGmj T5DQHytXVAkKitJiuH+l4YNMk0gUkSD3qtOyek86RNA1+JUZnV9aNe6quvJvNxiQ 2GREVWaT4OgpDPfL0MVchU9ngWEUBiQLo4tiPnkteG9nIloKA60dsj6BJOR9qjVN xvwqSczruKdKb+ZOFu8z+9m6cQ0KXpjeYx0O1u3LSchmUO7A3KC4jdFT0p/WhQMF ONHscL8mu1V2qoqU8ETkp0yKv0WbQX9ncHTjyQc+5oUqG0bf60Po11LbCZ6MWnKx ctC8p98HPsCC0TJH -----END CERTIFICATE-----Generated at Mon Jun 24 16:02:22 2024 by rpki-client on console-fra.rpki-client.org