$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/C7764CC6FCA311EEACCA2B5CC4F9AE02.roa File: C7764CC6FCA311EEACCA2B5CC4F9AE02.roa (raw, json) Hash identifier: w9hh7nGa+IzYQq91+LbOOZ2ZnQW7jBprbMIRTAiArhU= Subject key identifier: 18:2F:F9:30:35:48:90:00:F5:FC:F2:93:84:C4:27:AB:B4:E9:86:C5 Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 0630 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/C7764CC6FCA311EEACCA2B5CC4F9AE02.roa Signing time: Sat 31 Aug 2024 00:32:46 +0000 ROA not before: Sat 31 Aug 2024 00:32:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137076 IP address blocks: 14.96.24.0/21 maxlen: 24 14.96.32.0/21 maxlen: 24 14.96.40.0/21 maxlen: 24 14.96.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 22:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Aug 31 00:32:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d264ae-4a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cd:69:f5:46:c0:9c:79:86:3d:87:8f:1b:57: f6:07:15:c5:c7:14:49:7c:5f:ad:69:ec:10:0e:14: 53:39:54:f2:25:b8:c5:6b:76:fc:88:d1:9b:df:ad: 70:96:86:64:3f:c6:fa:82:b3:5e:db:c9:b2:8d:36: c1:60:97:d2:5c:8d:ef:60:4e:1b:11:08:5e:b8:dc: 94:4c:0d:c5:1c:ae:c3:18:c9:f9:5a:29:d3:34:07: 28:7b:6f:bb:48:c8:af:e2:3e:7a:4e:88:d5:ee:76: e0:03:7e:6e:b8:2d:2f:3e:f8:96:75:ac:8b:01:0c: 67:a1:56:80:c3:8b:ce:59:0a:82:f4:d6:a8:cd:f6: 97:ac:c6:3e:76:03:fa:9b:13:d9:69:f6:8e:bd:ce: eb:50:29:ac:79:71:4d:36:04:6d:5a:09:a7:ca:5f: e5:eb:4f:e4:72:26:80:21:d0:d7:eb:2d:6b:ed:3a: 9e:a5:60:90:e8:9f:bd:ac:f5:fe:e3:13:1a:e9:dd: 9c:59:1e:5c:dd:5b:be:ba:33:63:4f:73:e9:4e:e1: ac:ff:ed:ea:87:e4:84:75:64:df:d7:08:d8:79:ac: 22:32:7b:18:32:f7:76:88:62:99:9a:7c:d4:2b:a3: a1:e7:03:55:db:19:4c:66:f2:a7:e6:13:1d:59:65: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2F:F9:30:35:48:90:00:F5:FC:F2:93:84:C4:27:AB:B4:E9:86:C5 X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/C7764CC6FCA311EEACCA2B5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.96.24.0-14.96.55.255 Signature Algorithm: sha256WithRSAEncryption a0:f5:b2:cf:3c:8c:40:e7:6b:cc:ea:5f:22:c6:7c:7d:f7:8b: 5e:8f:f4:0e:34:15:e8:6d:73:30:b9:0a:96:26:44:dc:75:95: f4:b3:1f:52:c0:46:da:70:12:a9:5a:1f:24:65:e3:8f:24:0d: 92:9e:6f:17:5a:9c:68:d1:fb:55:bf:67:6c:0c:8e:aa:6c:8f: 34:a4:1d:3e:8c:4a:fd:85:71:30:8c:81:d9:f2:16:f5:56:68: 53:d0:64:f8:0e:46:6e:cb:13:4e:b8:c2:c4:d0:a5:d2:20:95: b5:17:cc:4a:27:dd:0e:de:ef:29:cb:ef:c4:bb:52:12:c0:2d: c4:9a:05:b8:4e:47:c6:72:2f:40:1c:23:13:35:f3:da:4c:11: 7a:30:10:26:ad:b6:48:b6:cb:89:f6:10:fc:7e:e2:66:d0:65: fd:ef:1f:30:9a:bd:a4:da:c0:63:39:2b:83:e1:89:4b:4c:9b: 5e:02:a9:69:c8:72:45:84:7e:aa:63:a8:2c:5f:b1:6d:4c:b9: 5d:ea:7a:e1:a3:0e:ff:dc:24:d0:9e:2c:0a:19:d4:ed:ed:86: 5c:7e:ed:96:13:63:f8:ab:d8:90:bc:94:95:55:58:1a:1d:33: fd:8f:98:4a:ad:27:86:7a:72:9b:4a:5c:2f:7a:e4:e9:dd:b3: 37:c5:a9:73 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjQwODMxMDAzMjQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNjRhZS00YTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAos1p9UbAnHmGPYePG1f2BxXFxxRJfF+taewQDhRTOVTyJbjFa3b8iNGb361w loZkP8b6grNe28myjTbBYJfSXI3vYE4bEQheuNyUTA3FHK7DGMn5WinTNAcoe2+7 SMiv4j56TojV7nbgA35uuC0vPviWdayLAQxnoVaAw4vOWQqC9NaozfaXrMY+dgP6 mxPZafaOvc7rUCmseXFNNgRtWgmnyl/l60/kciaAIdDX6y1r7TqepWCQ6J+9rPX+ 4xMa6d2cWR5c3Vu+ujNjT3PpTuGs/+3qh+SEdWTf1wjYeawiMnsYMvd2iGKZmnzU K6Oh5wNV2xlMZvKn5hMdWWUoPwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBgv+TA1 SJAA9fzyk4TEJ6u06YbFMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvQzc3NjRDQzZG Q0EzMTFFRUFDQ0EyQjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAw5gGAMEAw5gMDANBgkqhkiG9w0BAQsFAAOCAQEAoPWy zzyMQOdrzOpfIsZ8ffeLXo/0DjQV6G1zMLkKliZE3HWV9LMfUsBG2nASqVofJGXj jyQNkp5vF1qcaNH7Vb9nbAyOqmyPNKQdPoxK/YVxMIyB2fIW9VZoU9Bk+A5GbssT TrjCxNCl0iCVtRfMSifdDt7vKcvvxLtSEsAtxJoFuE5HxnIvQBwjEzXz2kwRejAQ Jq22SLbLifYQ/H7iZtBl/e8fMJq9pNrAYzkrg+GJS0ybXgKpachyRYR+qmOoLF+x bUy5Xep64aMO/9wk0J4sChnU7e2GXH7tlhNj+KvYkLyUlVVYGh0z/Y+YSq0nhnpy m0pcL3rk6d2zN8Wpcw== -----END CERTIFICATE-----Generated at Wed Nov 27 00:32:49 2024 by rpki-client on console-fra.rpki-client.org