$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa File: DEB93E12828F11EF9E87BB73C4F9AE02.roa (raw, json) Hash identifier: qBSyYm549iy+a8EDu2vFxovVCFdMyyd8KGEsIOlUYDI= Subject key identifier: 43:C0:63:51:18:49:C5:2A:A4:FC:35:2D:C5:CB:63:C4:68:2D:F2:C4 Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 0660 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa Signing time: Sat 05 Oct 2024 03:21:38 +0000 ROA not before: Sat 05 Oct 2024 03:21:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55740 IP address blocks: 14.97.20.0/24 maxlen: 24 14.97.48.0/24 maxlen: 24 2406:e00:800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Oct 5 03:21:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6700b0c1-a253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:23:94:45:4a:ad:45:f7:3d:bb:31:b8:25:34: 4f:18:e7:c9:b0:3b:6e:74:af:be:87:5d:fa:00:6f: 54:a4:87:2b:98:a2:1a:81:bd:66:6e:c0:68:1f:4a: 57:38:95:1d:85:46:af:09:cd:0c:89:77:0e:73:66: 65:82:71:03:27:b2:8b:c7:8d:1c:1d:9d:9f:54:0f: 56:38:e9:a6:59:23:1a:5f:d4:37:20:e8:15:32:8f: e8:30:c0:66:c9:e8:6c:84:69:e5:d8:43:7c:89:0b: 4e:33:65:8a:96:df:4d:46:4b:c4:02:c5:59:24:bb: dc:d7:85:a0:6e:c0:c9:0f:8c:e9:e9:b4:7b:a1:f8: b3:61:6d:50:66:38:c4:81:d1:d9:dc:90:70:ab:d0: 2d:25:dd:77:ec:02:93:8e:9e:42:21:e0:45:d4:69: fe:9d:8c:80:5e:da:ce:ea:c4:6b:72:3a:37:59:7c: 13:5d:4b:70:25:b6:f7:eb:9f:b9:0e:71:7a:22:17: dc:db:98:6e:3a:2f:64:8b:5f:fe:98:e9:32:4c:01: 34:3f:c7:0a:6b:cc:c5:01:b6:51:c3:5e:ba:72:90: a3:7c:8d:77:95:ad:3e:91:54:74:91:79:01:90:ae: 21:62:e1:a3:b5:2c:45:2f:06:87:87:45:fc:6f:e8: c9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C0:63:51:18:49:C5:2A:A4:FC:35:2D:C5:CB:63:C4:68:2D:F2:C4 X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.97.20.0/24 14.97.48.0/24 IPv6: 2406:e00:800::/48 Signature Algorithm: sha256WithRSAEncryption 8a:6f:b3:7d:71:d1:97:77:49:ec:88:c2:2f:87:db:18:e3:1b: f3:31:38:cb:47:7d:c8:82:74:15:9b:78:47:bf:cf:57:87:21: 9a:97:48:79:70:e1:10:f1:c6:d7:37:54:ed:84:df:ab:af:e9: 46:a0:7c:7c:d5:ff:30:29:00:5b:26:1f:76:64:00:70:4e:23: 16:a7:50:81:1f:19:9c:22:43:8a:b3:1a:50:f3:91:ac:cc:35: 17:1a:78:4d:b5:c9:f4:21:3f:66:b7:dd:cd:43:55:77:24:0c: 03:d1:56:72:f4:fc:91:a6:31:14:91:d5:ef:7b:51:f5:77:9d: d6:70:58:66:b4:50:85:97:c5:c6:c6:0f:46:a0:ed:ee:00:1e: 96:77:ee:ad:bf:a2:ab:a7:f1:99:c0:09:c5:25:2d:18:fc:f3: 3a:a1:0e:a5:11:30:5e:f1:bd:80:74:31:a7:2f:bc:60:27:61: 17:e7:24:8d:87:d1:70:aa:c7:1b:6f:c1:61:c6:ae:98:fe:26: 65:1b:9c:c7:a2:91:96:6a:f8:5d:26:db:d6:5a:05:03:47:0c: 6b:74:91:77:0c:4e:fe:72:76:95:c5:53:fc:0f:6e:2f:d5:e7: 76:50:33:48:79:54:4b:99:88:33:08:a0:51:f0:81:e0:d5:91: 35:2b:63:f2 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjQxMDA1MDMyMTM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYjBjMS1hMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyOURUqtRfc9uzG4JTRPGOfJsDtudK++h136AG9UpIcrmKIagb1mbsBoH0pX OJUdhUavCc0MiXcOc2ZlgnEDJ7KLx40cHZ2fVA9WOOmmWSMaX9Q3IOgVMo/oMMBm yehshGnl2EN8iQtOM2WKlt9NRkvEAsVZJLvc14WgbsDJD4zp6bR7ofizYW1QZjjE gdHZ3JBwq9AtJd137AKTjp5CIeBF1Gn+nYyAXtrO6sRrcjo3WXwTXUtwJbb365+5 DnF6Ihfc25huOi9ki1/+mOkyTAE0P8cKa8zFAbZRw166cpCjfI13la0+kVR0kXkB kK4hYuGjtSxFLwaHh0X8b+jJYQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEPAY1EY ScUqpPw1LcXLY8RoLfLEMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvREVCOTNFMTI4 MjhGMTFFRjlFODdCQjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAAOYRQDBAAOYTAwDwQCAAIwCQMHACQGDgAIADANBgkqhkiG 9w0BAQsFAAOCAQEAim+zfXHRl3dJ7IjCL4fbGOMb8zE4y0d9yIJ0FZt4R7/PV4ch mpdIeXDhEPHG1zdU7YTfq6/pRqB8fNX/MCkAWyYfdmQAcE4jFqdQgR8ZnCJDirMa UPORrMw1Fxp4TbXJ9CE/ZrfdzUNVdyQMA9FWcvT8kaYxFJHV73tR9Xed1nBYZrRQ hZfFxsYPRqDt7gAelnfurb+iq6fxmcAJxSUtGPzzOqEOpREwXvG9gHQxpy+8YCdh F+ckjYfRcKrHG2/BYcaumP4mZRucx6KRlmr4XSbb1loFA0cMa3SRdwxO/nJ2lcVT /A9uL9XndlAzSHlUS5mIMwigUfCB4NWRNStj8g== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org