$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa File: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (raw, json) Hash identifier: xwCBEG4dayYu6U5aXKVY3WDJYRX+wIXhaYQGO0c0eok= Subject key identifier: 5E:E3:00:FD:F0:F4:8A:6F:7D:F7:B3:54:50:B9:3B:04:CC:15:C0:1E Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 163A Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa Signing time: Fri 26 May 2023 17:57:27 +0000 ROA not before: Fri 26 May 2023 17:57:27 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9444 IP address blocks: 1.65.190.0/23 maxlen: 24 116.48.208.0/21 maxlen: 21 116.48.213.0/24 maxlen: 24 116.48.214.0/23 maxlen: 23 116.48.215.0/24 maxlen: 24 116.48.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5690 (0x163a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 26 17:57:27 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6470f307-1e2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:bb:7c:2f:56:4d:27:3a:af:e1:60:0e:54: 56:a2:15:9a:25:d2:0a:ce:49:94:0e:29:74:77:26: 8c:98:56:cf:1c:d4:82:5c:12:8f:bf:20:4a:77:d7: ed:d1:85:ff:53:bf:03:05:ce:76:c3:d2:68:19:90: e5:40:1a:8b:74:26:ae:6b:f4:7c:33:a0:2b:1e:27: 86:17:30:f7:71:77:05:8e:f0:ee:ba:32:25:56:8a: 60:c5:1b:00:e7:93:15:6d:1e:70:ce:63:75:8c:c4: 63:4d:12:04:44:bf:69:4e:9e:84:f1:b6:e0:5a:af: 36:8b:ed:32:33:c4:db:1c:d8:33:00:b9:a3:47:51: 51:1f:08:2a:31:44:9a:fd:29:cd:cf:77:6f:cf:99: 07:a5:b5:0f:07:ec:ac:bd:7c:40:14:29:f9:10:9d: b5:18:1e:16:57:48:b9:fa:73:53:d9:b1:a5:36:f3: 28:bd:62:4d:aa:04:36:b5:b4:7a:5c:32:4f:79:4f: 68:a3:24:5a:38:67:df:16:7f:93:16:6e:bb:1d:e6: 1e:a9:97:dd:ef:54:d9:7b:ce:76:82:e2:32:50:33: 6e:6f:6c:fc:82:76:34:80:bd:ff:54:0a:1e:01:19: 52:92:e2:e3:87:93:a7:f7:33:a4:e9:ce:a5:89:06: 54:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E3:00:FD:F0:F4:8A:6F:7D:F7:B3:54:50:B9:3B:04:CC:15:C0:1E X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.65.190.0/23 116.48.208.0/21 116.48.224.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:1c:e9:d6:69:ae:52:d5:bf:a2:f9:8a:af:cf:27:a6:58:d2: 38:dd:19:d2:e0:87:ce:ee:9b:89:62:b7:99:1f:ca:d9:d9:a1: 6d:7a:ab:96:b3:38:c7:79:5b:a7:d3:ab:a1:aa:eb:37:e8:ab: f4:bf:8c:32:d1:e1:95:d6:44:7a:a1:b4:cd:f7:8e:99:41:dd: 94:7d:b2:bb:b4:27:d3:41:ca:4f:18:eb:a3:23:c8:46:09:38: 5f:1f:1f:13:a3:eb:64:7f:f4:de:73:49:48:e5:c1:bc:36:b8: 05:d5:a3:04:87:f9:57:47:0a:05:70:95:f8:a8:89:70:6c:63: 36:7a:24:af:8d:39:58:63:9c:c6:c8:0b:73:32:f7:26:57:f6: 3a:a8:25:22:3f:de:2a:04:70:21:41:7f:cc:97:6d:fa:3e:de: 4a:4e:63:fa:17:1d:98:ab:ff:eb:9c:7b:39:27:32:bb:60:f6: d0:b5:ae:e7:fe:b9:93:01:d2:0a:c1:7c:a4:e9:2a:1d:25:45: c7:2f:1a:92:eb:9f:8f:cc:b3:dd:7d:b8:17:8d:8b:d6:c4:29: c2:be:3e:17:51:15:a8:95:98:b1:9c:e7:24:ed:59:0a:56:ce: 11:ec:4f:91:74:0d:ba:c6:1b:bb:d4:b4:8f:c6:43:c3:56:32: 3d:bb:78:ca -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICFjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjMwNTI2MTc1NzI3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcwZjMwNy0xZTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPa7fC9WTSc6r+FgDlRWohWaJdIKzkmUDil0dyaMmFbPHNSCXBKPvyBKd9ft 0YX/U78DBc52w9JoGZDlQBqLdCaua/R8M6ArHieGFzD3cXcFjvDuujIlVopgxRsA 55MVbR5wzmN1jMRjTRIERL9pTp6E8bbgWq82i+0yM8TbHNgzALmjR1FRHwgqMUSa /SnNz3dvz5kHpbUPB+ysvXxAFCn5EJ21GB4WV0i5+nNT2bGlNvMovWJNqgQ2tbR6 XDJPeU9ooyRaOGffFn+TFm67HeYeqZfd71TZe852guIyUDNub2z8gnY0gL3/VAoe ARlSkuLjh5On9zOk6c6liQZU5QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFF7jAP3w 9IpvffezVFC5OwTMFcAeMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvREQxNDVENkUw MjNBMTFFQkJERjhCMzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEBQb4DBAN0MNADBAJ0MOAwDQYJKoZIhvcNAQELBQADggEB AI8c6dZprlLVv6L5iq/PJ6ZY0jjdGdLgh87um4lit5kfytnZoW16q5azOMd5W6fT q6Gq6zfoq/S/jDLR4ZXWRHqhtM33jplB3ZR9sru0J9NByk8Y66MjyEYJOF8fHxOj 62R/9N5zSUjlwbw2uAXVowSH+VdHCgVwlfioiXBsYzZ6JK+NOVhjnMbIC3My9yZX 9jqoJSI/3ioEcCFBf8yXbfo+3kpOY/oXHZir/+ucezknMrtg9tC1ruf+uZMB0grB fKTpKh0lRccvGpLrn4/Ms919uBeNi9bEKcK+PhdRFaiVmLGc5yTtWQpWzhHsT5F0 DbrGG7vUtI/GQ8NWMj27eMo= -----END CERTIFICATE-----Generated at Fri May 31 19:47:51 2024 by rpki-client on console-fra.rpki-client.org