$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4EDC52B27B3B11EFAF3B4433C4F9AE02.roa File: 4EDC52B27B3B11EFAF3B4433C4F9AE02.roa (raw, json) Hash identifier: OfxHrVeBEOJWK/8VYNhuau5CqqrlskUO+d6ZSMFXMxU= Subject key identifier: B0:14:B1:B0:DD:5F:E3:2D:77:A0:41:5C:4D:79:AA:C1:2B:68:75:5B Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Certificate serial: 067A Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4EDC52B27B3B11EFAF3B4433C4F9AE02.roa Signing time: Wed 25 Sep 2024 12:40:13 +0000 ROA not before: Wed 25 Sep 2024 12:40:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 63440 IP address blocks: 36.255.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Validity Not Before: Sep 25 12:40:13 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66f404ad-5cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:96:18:12:e3:34:a2:ad:2f:55:77:af:cf:39: 3a:0e:ea:c9:6f:97:e7:da:b1:76:d6:b9:38:d3:38: 33:90:ee:34:af:fc:78:d2:29:90:37:29:8f:7e:7a: e8:52:4f:4c:87:6c:ff:f9:b1:7a:f8:ab:e1:8d:ac: 90:a6:22:aa:e3:89:d8:94:6c:e1:e3:70:20:e8:70: 4b:c5:3a:ad:63:af:04:fb:f2:97:b4:dd:cf:0a:aa: 5f:0a:eb:b8:fe:96:88:ff:07:b2:be:11:5d:45:43: d4:ee:f4:97:7b:77:10:f9:d4:5d:b7:2c:7f:06:46: 0d:49:e6:f7:87:7f:f6:6c:a0:98:ee:56:b3:2e:e6: 5c:db:ee:0c:28:70:5a:76:42:88:f1:dd:30:e6:e4: 15:2e:c5:62:e6:59:e0:3e:df:95:e4:29:79:57:06: 33:5f:0c:fe:b8:e1:33:18:f5:2f:36:13:66:2e:01: 70:58:76:ea:7c:bc:6e:b4:c5:64:a2:3c:f3:2c:51: 26:54:58:aa:69:ab:1c:01:ab:f7:ca:15:f8:3e:fe: 3e:07:c8:ef:e9:50:81:62:d8:39:d2:90:1f:c2:df: ea:41:70:82:6a:44:45:03:f4:6a:c2:5e:eb:ce:1e: ff:62:f6:cc:42:eb:b7:6d:db:53:4a:ab:98:ec:84: ed:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:14:B1:B0:DD:5F:E3:2D:77:A0:41:5C:4D:79:AA:C1:2B:68:75:5B X509v3 Authority Key Identifier: keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4EDC52B27B3B11EFAF3B4433C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.198.0/24 Signature Algorithm: sha256WithRSAEncryption 46:17:2f:88:f2:ca:4d:8d:80:0a:00:99:be:86:57:12:8b:14: 12:6b:2b:6e:48:bb:7f:1d:f3:38:d6:9e:11:8d:c5:02:8d:12: c7:81:65:c2:7b:bd:6a:a3:ee:6c:77:ee:fb:b9:e9:06:fa:5a: eb:fe:8e:63:02:98:53:5d:5a:0d:cc:27:40:3d:68:8b:34:05: 6e:f5:07:6f:07:83:61:51:ca:48:5a:f0:12:5b:2b:7c:43:bc: 4b:3b:75:61:09:36:cd:df:6a:30:c4:37:8c:7c:d3:fb:a4:59: dd:50:77:40:d5:fe:14:95:3d:93:4f:57:41:e6:53:c2:23:04: 62:c1:11:4a:85:18:ed:3b:dc:b9:da:7e:a9:88:7d:a0:9e:3c: d0:d2:55:a1:25:bc:89:9a:ac:8f:f2:ed:22:3e:07:65:4c:be: e2:c8:e7:87:2d:b9:a7:fc:c3:2e:d2:89:a4:77:20:fb:2a:3b: 7b:48:40:ae:3f:f1:e8:95:8b:3e:10:d9:df:aa:b7:d3:ac:d5: 67:80:eb:f1:77:b9:b9:ae:49:11:9e:86:79:25:38:bf:a6:d5: ed:ff:63:e4:92:71:3f:85:26:dd:55:b9:f7:a0:6c:99:f6:8f: 8c:a1:49:9a:c5:b6:77:dc:51:81:51:cc:81:51:9d:55:9c:8a: 63:05:8f:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkUxMTAvBgNVBAUTKEVERUI5NkYwNEM4RDNFRENDQkVFQkE0MEM0MjQyOTIy QTgxMzZCNTMwHhcNMjQwOTI1MTI0MDEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY0MDRhZC01Y2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZYYEuM0oq0vVXevzzk6DurJb5fn2rF21rk40zgzkO40r/x40imQNymPfnro Uk9Mh2z/+bF6+KvhjayQpiKq44nYlGzh43Ag6HBLxTqtY68E+/KXtN3PCqpfCuu4 /paI/weyvhFdRUPU7vSXe3cQ+dRdtyx/BkYNSeb3h3/2bKCY7lazLuZc2+4MKHBa dkKI8d0w5uQVLsVi5lngPt+V5Cl5VwYzXwz+uOEzGPUvNhNmLgFwWHbqfLxutMVk ojzzLFEmVFiqaascAav3yhX4Pv4+B8jv6VCBYtg50pAfwt/qQXCCakRFA/Rqwl7r zh7/YvbMQuu3bdtTSquY7ITtBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLAUsbDd X+Mtd6BBXE15qsEraHVbMB8GA1UdIwQYMBaAFO3rlvBMjT7cy+66QMQkKSKoE2tT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGRS8zODYyMzVGMDZG ODgxMUVCQTg2QkY2NEFDNEY5QUUwMi83ZXVXOEV5TlB0ekw3cnBBeENRcElxZ1Rh MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdldVc4RXlOUHR6TDdycEF4Q1FwSXFnVGExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkUvMzg2MjM1RjA2Rjg4MTFFQkE4NkJGNjRBQzRGOUFFMDIvNEVEQzUyQjI3 QjNCMTFFRkFGM0I0NDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAk/8YwDQYJKoZIhvcNAQELBQADggEBAEYXL4jyyk2NgAoA mb6GVxKLFBJrK25Iu38d8zjWnhGNxQKNEseBZcJ7vWqj7mx37vu56Qb6Wuv+jmMC mFNdWg3MJ0A9aIs0BW71B28Hg2FRykha8BJbK3xDvEs7dWEJNs3fajDEN4x80/uk Wd1Qd0DV/hSVPZNPV0HmU8IjBGLBEUqFGO073LnafqmIfaCePNDSVaElvImarI/y 7SI+B2VMvuLI54ctuaf8wy7SiaR3IPsqO3tIQK4/8eiViz4Q2d+qt9Os1WeA6/F3 ubmuSRGehnklOL+m1e3/Y+SScT+FJt1VufegbJn2j4yhSZrFtnfcUYFRzIFRnVWc imMFjwg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:45 2024 by rpki-client on console-ams.rpki-client.org