$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa File: 6313DADA500011EBB74A2C2AC4F9AE02.roa (raw, json) Hash identifier: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI= Subject key identifier: 9A:EA:FB:33:C2:45:AD:53:44:0A:C3:43:50:8C:43:1D:21:A0:48:D3 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2AE0 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa Signing time: Mon 26 Aug 2024 14:40:29 +0000 ROA not before: Mon 26 Aug 2024 14:40:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9584 IP address blocks: 152.104.0.0/18 maxlen: 24 152.104.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10976 (0x2ae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Aug 26 14:40:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cc93dc-a021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:53:70:f4:c4:db:52:b1:b9:49:65:29:8d:c1: 9d:83:1a:f2:82:4c:30:2b:d2:b7:7a:74:75:b7:95: 3b:10:4f:b7:5e:85:e1:96:57:16:a1:c9:95:11:1d: 14:fe:7a:5e:3a:8d:81:45:44:4d:3a:50:a8:10:96: b1:fe:b4:e4:de:87:4b:71:77:11:b9:4b:d3:34:47: 49:7b:ed:a4:be:b9:d7:a7:fd:0d:19:c4:12:62:d3: 61:b2:ba:f2:5c:bb:a4:9c:91:7f:f1:4c:55:b7:64: a9:57:23:59:67:ba:94:1c:ba:38:a5:45:3e:0d:2b: 57:68:e5:6f:b5:0b:02:99:5f:c5:8f:81:29:a0:b7: bb:aa:1d:07:d6:4a:e4:40:d9:22:24:74:8d:48:03: d2:eb:0a:17:90:e6:3d:14:29:26:16:75:9e:c6:e9: 3b:41:e7:a3:a6:08:63:a4:b6:0d:e5:99:5f:43:47: e6:f4:7d:de:43:74:e2:b3:d1:72:97:2f:d7:1c:34: 33:0c:18:97:5a:49:56:5b:3f:c7:7e:ce:7a:76:4d: a4:d8:99:19:82:91:45:7f:0b:66:d9:b1:5e:f0:aa: c4:36:b9:03:f0:47:58:5a:fa:0a:f6:81:1f:b0:6e: 9b:35:19:b5:ab:0a:0b:be:1f:b7:a6:2f:62:2c:b9: d6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:EA:FB:33:C2:45:AD:53:44:0A:C3:43:50:8C:43:1D:21:A0:48:D3 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.104.0.0-152.104.95.255 Signature Algorithm: sha256WithRSAEncryption 1e:7d:ff:86:22:27:cc:4c:df:ed:fd:60:0f:06:10:ef:d9:2a: fa:aa:51:e2:00:e8:47:cb:6f:77:17:ea:05:25:ba:24:6e:6f: 4e:ed:f1:6f:f2:5d:4c:d9:98:be:94:3b:00:0e:7c:9e:15:76: f3:e6:df:e3:7c:1b:cd:10:4d:cf:0e:34:1c:78:e1:5f:42:f0: 7b:cd:09:16:7d:56:38:06:02:59:2d:21:9f:64:f2:96:c1:5d: 56:38:9c:9d:88:da:b5:d6:fc:1a:77:41:43:f6:f7:46:27:c2: 0e:3a:49:0f:db:4f:8b:7a:6c:85:e5:eb:18:f0:c1:b1:6c:2c: 3b:ed:f7:00:a5:cb:20:7a:02:dd:49:b5:cc:90:0f:0b:dc:76: 85:83:58:cd:df:0b:d3:b5:68:8d:c6:08:a2:db:05:f0:c1:88: b4:69:72:e3:2c:ec:90:5a:3a:3f:09:aa:9f:b8:96:7b:e4:5b: 09:f7:43:83:76:cd:2a:2c:1e:61:5d:84:25:64:86:32:ff:6a: ce:d3:76:d6:ea:1e:d7:be:89:de:32:fa:7c:8a:8b:2c:17:9f: a7:5a:1f:d9:bd:62:c8:c0:f3:92:4b:44:3d:05:a1:b5:17:b7: f3:16:dd:e6:18:95:55:46:a3:ff:e8:f3:d5:77:e1:4d:06:c8: e7:eb:89:7d -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICKuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjQwODI2MTQ0MDI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjOTNkYy1hMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FNw9MTbUrG5SWUpjcGdgxrygkwwK9K3enR1t5U7EE+3XoXhllcWocmVER0U /npeOo2BRURNOlCoEJax/rTk3odLcXcRuUvTNEdJe+2kvrnXp/0NGcQSYtNhsrry XLuknJF/8UxVt2SpVyNZZ7qUHLo4pUU+DStXaOVvtQsCmV/Fj4EpoLe7qh0H1krk QNkiJHSNSAPS6woXkOY9FCkmFnWexuk7QeejpghjpLYN5ZlfQ0fm9H3eQ3Tis9Fy ly/XHDQzDBiXWklWWz/Hfs56dk2k2JkZgpFFfwtm2bFe8KrENrkD8EdYWvoK9oEf sG6bNRm1qwoLvh+3pi9iLLnW4wIDAQABo4ICnDCCApgwHQYDVR0OBBYEFJrq+zPC Ra1TRArDQ1CMQx0hoEjTMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0MjIvM0U3NDUzNjhFRDU1MTFFMzgwNzJDNTdFNTkxMUVBMzIvNjMxM0RBREE1 MDAwMTFFQkI3NEEyQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDA5hoAwQFmGhAMA0GCSqGSIb3DQEBCwUAA4IBAQAeff+G IifMTN/t/WAPBhDv2Sr6qlHiAOhHy293F+oFJbokbm9O7fFv8l1M2Zi+lDsADnye FXbz5t/jfBvNEE3PDjQceOFfQvB7zQkWfVY4BgJZLSGfZPKWwV1WOJydiNq11vwa d0FD9vdGJ8IOOkkP20+LemyF5esY8MGxbCw77fcApcsgegLdSbXMkA8L3HaFg1jN 3wvTtWiNxgii2wXwwYi0aXLjLOyQWjo/CaqfuJZ75FsJ90ODds0qLB5hXYQlZIYy /2rO03bW6h7XvoneMvp8iossF5+nWh/ZvWLIwPOSS0Q9BaG1F7fzFt3mGJVVRqP/ 6PPVd+FNBsjn64l9 -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:10 2024 by rpki-client on console-ams.rpki-client.org