$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa File: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (raw, json) Hash identifier: W590cMYjFz6FF4sW9oqplqFnjP+zPSYVDh+Je0kzPIE= Subject key identifier: DB:95:45:05:5F:4F:38:24:66:5F:6B:58:FE:53:7E:B0:21:7A:9A:E0 Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0581 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa Signing time: Fri 26 Apr 2024 21:09:59 +0000 ROA not before: Fri 26 Apr 2024 21:09:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 59253 IP address blocks: 69.161.221.0/24 maxlen: 24 209.17.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Apr 26 21:09:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c1827-38f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b0:d7:1d:30:7f:e2:94:43:1a:70:ad:5f:bb: ee:00:b7:75:50:94:45:4e:b1:d1:ec:00:6d:67:85: e5:e5:68:e1:52:3c:fd:03:65:8a:d1:68:32:12:99: ca:14:aa:e5:f7:48:88:14:cc:06:7a:af:7c:5e:26: 82:1b:24:78:c2:65:26:f0:f3:a2:70:9b:6d:e9:7a: 57:00:54:38:53:40:58:95:94:65:55:ff:ac:11:ce: 7a:f0:8f:77:f6:f8:63:61:cc:67:75:d4:f2:4b:cc: ae:39:90:3e:38:a7:6a:b4:b9:39:98:56:bf:0e:e7: 47:1e:58:8b:f3:e5:f4:56:ad:3c:ab:f1:52:b6:41: bf:5e:e5:36:27:fa:28:53:dc:01:8b:e0:04:01:d5: 81:6a:15:09:c3:6e:57:64:20:2f:2a:e4:7a:a1:40: a5:2e:c4:f5:ff:41:d2:29:80:44:82:7a:82:a5:fd: 6b:c3:2a:e0:50:f9:9c:6c:a8:3d:46:7f:dc:9b:15: fd:41:ea:ce:fd:48:02:6c:87:d2:f0:8e:4e:7e:95: 8c:a6:a9:29:c2:5a:13:99:69:36:a3:71:a5:8d:d9: 8e:43:be:f7:de:4d:45:c3:4e:d1:94:8e:2e:93:37: 33:b3:89:90:3b:19:40:97:7a:cd:8b:42:18:4a:89: 59:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:95:45:05:5F:4F:38:24:66:5F:6B:58:FE:53:7E:B0:21:7A:9A:E0 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 69.161.221.0/24 209.17.118.0/24 Signature Algorithm: sha256WithRSAEncryption a1:8b:9e:f4:37:d6:d4:ad:2c:12:fe:ef:9a:94:41:50:58:a9: dc:c6:27:71:f9:fa:2e:db:d5:b1:67:39:50:26:7f:84:f2:6a: a7:32:30:8c:c8:2e:ff:73:64:8a:8d:07:13:56:2d:4b:83:38: 28:18:e1:29:5a:20:fc:ec:42:45:8b:8d:04:9c:da:1d:70:d3: 68:81:e1:41:a0:89:05:f9:ad:56:2f:49:15:65:20:85:b3:f1: c5:c9:97:06:f2:a2:4c:96:34:28:34:97:7c:4c:b3:e5:8b:30: c9:eb:75:a8:2e:bb:6b:40:28:fa:e2:d7:31:dd:cb:bf:f8:7b: 5e:25:d0:e4:08:8f:1c:e6:d0:2e:b2:c2:ad:74:ab:74:e4:4f: b6:1d:20:7e:32:36:c3:a3:ce:f4:0f:50:7b:a0:30:3c:74:52: e0:cb:84:ac:81:b8:15:9a:36:c4:34:04:7f:02:ea:b3:8e:0f: 40:0e:51:14:f0:b3:a8:e6:07:de:bd:92:39:fc:ac:1f:22:8d: fd:f7:f1:4d:a5:56:bc:74:95:aa:ec:ce:0e:44:33:e6:5f:d5: 5e:fa:a1:22:ff:80:e0:66:7a:34:49:25:8b:33:41:f9:42:b0: 4a:e8:17:f8:02:6c:24:a3:27:62:88:d9:f2:0b:f9:10:48:ce: 71:b6:c9:05 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjQwNDI2MjEwOTU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjMTgyNy0zOGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbDXHTB/4pRDGnCtX7vuALd1UJRFTrHR7ABtZ4Xl5WjhUjz9A2WK0WgyEpnK FKrl90iIFMwGeq98XiaCGyR4wmUm8POicJtt6XpXAFQ4U0BYlZRlVf+sEc568I93 9vhjYcxnddTyS8yuOZA+OKdqtLk5mFa/DudHHliL8+X0Vq08q/FStkG/XuU2J/oo U9wBi+AEAdWBahUJw25XZCAvKuR6oUClLsT1/0HSKYBEgnqCpf1rwyrgUPmcbKg9 Rn/cmxX9QerO/UgCbIfS8I5OfpWMpqkpwloTmWk2o3GljdmOQ7733k1Fw07RlI4u kzczs4mQOxlAl3rNi0IYSolZvwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNuVRQVf TzgkZl9rWP5TfrAheprgMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvNkVGQzBCRUU5ODRDMTFFQjhBNDFGQTIwQzRGOUFFMDIvMTFDMEQ1REE5 QjQwMTFFQjlDMUJGQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABFod0DBADREXYwDQYJKoZIhvcNAQELBQADggEBAKGLnvQ3 1tStLBL+75qUQVBYqdzGJ3H5+i7b1bFnOVAmf4TyaqcyMIzILv9zZIqNBxNWLUuD OCgY4SlaIPzsQkWLjQSc2h1w02iB4UGgiQX5rVYvSRVlIIWz8cXJlwbyokyWNCg0 l3xMs+WLMMnrdaguu2tAKPri1zHdy7/4e14l0OQIjxzm0C6ywq10q3TkT7YdIH4y NsOjzvQPUHugMDx0UuDLhKyBuBWaNsQ0BH8C6rOOD0AOURTws6jmB969kjn8rB8i jf338U2lVrx0larszg5EM+Zf1V76oSL/gOBmejRJJYszQflCsEroF/gCbCSjJ2KI 2fIL+RBIznG2yQU= -----END CERTIFICATE-----