$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/533200D026D411EEA82C8A38C4F9AE02.roa File: 533200D026D411EEA82C8A38C4F9AE02.roa (raw, json) Hash identifier: 9EHn/O7TWbIzxUUf7sMxruBfENB+nlmVCyCtMi2XPLc= Subject key identifier: 1E:81:14:D5:8E:EA:2E:DC:B0:0D:04:9E:65:E3:63:BF:A5:64:43:21 Certificate issuer: /CN=A91853D3/serialNumber=4E1B840F5C66016CED7E62EEC61B8322A321B6B6 Certificate serial: 0487 Authority key identifier: 4E:1B:84:0F:5C:66:01:6C:ED:7E:62:EE:C6:1B:83:22:A3:21:B6:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/533200D026D411EEA82C8A38C4F9AE02.roa Signing time: Thu 23 May 2024 02:05:51 +0000 ROA not before: Thu 23 May 2024 02:05:51 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55470 IP address blocks: 144.16.144.0/20 maxlen: 20 144.16.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.crl rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3/serialNumber=4E1B840F5C66016CED7E62EEC61B8322A321B6B6 Validity Not Before: May 23 02:05:51 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664ea47e-c57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:29:2a:2a:4e:ae:14:fd:61:27:85:ac:3c:b1: 25:8f:72:64:ba:3f:d1:c9:36:99:c9:ef:fa:72:30: f3:3e:94:27:4a:2b:3f:1d:27:6a:8e:c3:87:91:29: 63:d9:aa:9e:ad:a9:7b:32:5b:ff:ac:8c:c3:fa:b2: 4f:76:73:29:4a:92:44:ab:fd:1f:ba:16:9e:2e:31: d3:7a:0d:c7:31:96:25:fb:60:49:94:12:8d:bc:ba: 57:6b:62:36:cf:1c:6d:61:b7:54:92:5d:d2:87:06: 71:7d:6b:06:f6:fa:84:a2:81:b6:56:0b:54:3c:99: bd:98:7c:d7:71:bb:af:b4:ec:13:88:73:b9:b2:d2: 0a:68:30:8f:fb:eb:c0:d3:3c:64:0c:41:6b:59:7f: 63:fd:0e:94:86:09:bc:bb:a7:e1:8c:0c:46:6e:30: 13:2c:ed:58:cf:fb:cd:4a:57:8e:cc:a6:68:a4:4f: dc:76:c8:e7:94:bc:9a:81:0f:9c:fb:0d:27:bb:e7: f3:74:11:be:b9:b7:19:67:2d:27:bb:52:4a:19:96: 80:4c:a3:d4:d5:a2:d3:aa:d3:f9:38:01:19:b7:e1: d9:0d:d2:14:6a:56:1d:36:fc:25:67:8b:ed:10:a4: b9:bf:28:b6:c2:33:72:0d:b4:71:1c:ff:51:44:d1: 34:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:81:14:D5:8E:EA:2E:DC:B0:0D:04:9E:65:E3:63:BF:A5:64:43:21 X509v3 Authority Key Identifier: keyid:4E:1B:84:0F:5C:66:01:6C:ED:7E:62:EE:C6:1B:83:22:A3:21:B6:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/ThuED1xmAWztfmLuxhuDIqMhtrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ThuED1xmAWztfmLuxhuDIqMhtrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6482DB7C000A11EC8C287252C4F9AE02/533200D026D411EEA82C8A38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.16.144.0-144.16.175.255 Signature Algorithm: sha256WithRSAEncryption 3c:52:cd:27:9c:07:5a:08:45:66:39:8a:27:c3:c7:1b:18:98: d3:78:59:6c:b9:a1:f2:df:93:c5:d1:e8:e2:c0:0c:eb:46:2d: d6:4f:4c:7f:32:e1:71:d5:ed:c7:bc:4e:02:f5:ad:39:26:8d: e1:fd:ce:ce:71:dc:97:d3:c3:43:ea:6b:f2:13:42:aa:2f:12: ab:92:55:f0:88:f4:2a:88:ac:62:6d:25:41:5a:91:40:e9:1c: bd:18:11:39:8c:2e:5d:cb:df:07:64:de:58:ec:ba:fa:f2:f1: e7:08:7d:36:5d:36:5a:82:22:56:d1:6e:e3:08:8e:ef:e7:a0: a1:4c:ef:b1:b5:0f:e1:8b:b2:88:1e:79:be:ba:dc:8b:75:f7: 54:8f:59:84:77:d4:72:01:09:26:a9:35:2f:83:40:e5:9b:86: 3c:7d:5f:dc:ba:39:e4:bf:22:9e:62:1a:ae:ae:81:44:a5:e1: be:df:1e:d0:a9:19:ef:b5:12:55:c8:bc:38:25:89:02:51:9f: 3f:f4:5a:7b:cd:c4:8c:7f:13:14:f1:36:55:f0:dd:e3:a7:98: 58:db:07:a0:cb:df:58:08:ed:e5:8b:0b:b2:bb:70:e5:99:8e: 2f:a3:4a:35:5e:f8:c4:17:0a:30:a1:04:ee:a9:6c:13:df:4a: 72:40:bc:93 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKDRFMUI4NDBGNUM2NjAxNkNFRDdFNjJFRUM2MUI4MzIy QTMyMUI2QjYwHhcNMjQwNTIzMDIwNTUxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlYTQ3ZS1jNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CkqKk6uFP1hJ4WsPLElj3Jkuj/RyTaZye/6cjDzPpQnSis/HSdqjsOHkSlj 2aqeral7Mlv/rIzD+rJPdnMpSpJEq/0fuhaeLjHTeg3HMZYl+2BJlBKNvLpXa2I2 zxxtYbdUkl3ShwZxfWsG9vqEooG2VgtUPJm9mHzXcbuvtOwTiHO5stIKaDCP++vA 0zxkDEFrWX9j/Q6Uhgm8u6fhjAxGbjATLO1Yz/vNSleOzKZopE/cdsjnlLyagQ+c +w0nu+fzdBG+ubcZZy0nu1JKGZaATKPU1aLTqtP5OAEZt+HZDdIUalYdNvwlZ4vt EKS5vyi2wjNyDbRxHP9RRNE0UwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFB6BFNWO 6i7csA0EnmXjY7+lZEMhMB8GA1UdIwQYMBaAFE4bhA9cZgFs7X5i7sYbgyKjIba2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82NDgyREI3QzAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi9UaHVFRDF4bUFXenRmbUx1eGh1RElxTWh0 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RodUVEMXhtQVd6dGZtTHV4aHVESXFNaHRyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNjQ4MkRCN0MwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvNTMzMjAwRDAy NkQ0MTFFRUE4MkM4QTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBJAQkAMEBJAQoDANBgkqhkiG9w0BAQsFAAOCAQEAPFLN J5wHWghFZjmKJ8PHGxiY03hZbLmh8t+TxdHo4sAM60Yt1k9MfzLhcdXtx7xOAvWt OSaN4f3OznHcl9PDQ+pr8hNCqi8Sq5JV8Ij0KoisYm0lQVqRQOkcvRgROYwuXcvf B2TeWOy6+vLx5wh9Nl02WoIiVtFu4wiO7+egoUzvsbUP4YuyiB55vrrci3X3VI9Z hHfUcgEJJqk1L4NA5ZuGPH1f3Lo55L8inmIarq6BRKXhvt8e0KkZ77USVci8OCWJ AlGfP/Rae83EjH8TFPE2VfDd46eYWNsHoMvfWAjt5YsLsrtw5ZmOL6NKNV74xBcK MKEE7qlsE99KckC8kw== -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:02 2024 by rpki-client on console-ams.rpki-client.org