$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa File: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (raw, json) Hash identifier: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg= Subject key identifier: 9D:1B:8A:99:A2:BA:84:12:D8:D2:3B:A0:55:ED:E3:C5:09:23:D7:16 Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0503 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa Signing time: Fri 13 Sep 2024 02:13:49 +0000 ROA not before: Fri 13 Sep 2024 02:13:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 394808 IP address blocks: 104.161.234.0/23 maxlen: 24 104.161.252.0/24 maxlen: 24 104.161.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Sep 13 02:13:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e39fdd-eeee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e2:ea:a7:76:5a:a3:47:6d:6e:5f:bd:74:58: b7:54:e9:a7:27:26:b0:fb:99:66:d1:32:bd:d0:b5: c9:67:67:d8:22:41:4a:4b:21:1d:48:8e:37:91:69: 78:87:23:d5:4c:99:45:4d:65:d0:5c:b2:32:cf:18: 7c:39:e8:a7:b4:b6:10:d6:72:5a:af:b0:02:5d:98: 88:43:13:b0:a7:bd:a8:71:41:74:cc:aa:df:7d:95: 2b:43:0e:91:4f:23:91:09:09:37:9b:a5:78:a3:e1: 8f:72:7e:47:d8:0d:45:d9:30:85:a9:3e:b5:19:b7: 61:90:16:cb:5e:a3:80:7e:57:35:0d:c0:1e:6e:47: c0:a4:de:f7:1c:9c:47:a4:30:65:ae:f5:39:d4:3c: ab:a2:a9:3e:bc:14:57:2c:95:d1:95:1d:bf:57:3c: b1:89:dc:36:d5:4a:75:e7:23:c7:14:38:96:d1:71: c3:16:56:81:55:f1:9e:8a:26:9f:92:89:14:08:a6: b6:52:86:8b:3f:d8:11:b8:ed:8b:2a:53:76:8c:c5: 72:51:ea:2a:b6:51:f2:d6:61:0a:0e:5c:43:d2:f4: 96:07:ba:c9:28:ed:01:ae:0e:a7:99:2c:6e:1d:9d: b5:ad:79:df:df:c6:f6:14:52:93:ac:5f:7f:f5:9d: 44:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:1B:8A:99:A2:BA:84:12:D8:D2:3B:A0:55:ED:E3:C5:09:23:D7:16 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.161.234.0/23 104.161.252.0/23 Signature Algorithm: sha256WithRSAEncryption 54:45:31:b8:dc:dc:e7:21:82:26:6a:6b:c6:e2:83:7a:89:a1: a3:99:0b:44:3f:0b:62:17:44:02:65:57:a9:35:ae:90:95:87: 15:d0:e3:bb:94:2b:42:03:4f:0b:16:96:b0:2e:80:ec:c8:ed: 4a:84:15:88:c4:3b:0a:ed:48:c3:47:98:f1:85:4a:4b:82:4c: 6e:54:62:9b:e1:ec:8d:37:89:f0:47:1f:ec:69:d5:06:a2:13: e3:fc:28:14:ff:4f:4c:a5:a6:d3:36:32:45:42:55:cd:f3:a1: 1a:09:51:98:2c:39:2e:04:a0:a6:95:61:75:29:a2:5a:6f:7b: c8:d3:6d:63:85:e4:e3:54:c3:6b:4c:5e:dd:40:a8:bc:a1:63: 4d:d0:ea:03:d7:8e:09:88:91:84:ba:c2:89:82:77:68:8a:72: e0:93:e9:be:8f:dc:c2:e2:2c:75:75:4b:5c:ec:a1:a9:00:cb: 49:98:60:b5:f3:c5:d8:33:33:26:af:33:d4:a1:cb:5e:92:15: 3a:55:ef:4b:67:0c:4b:78:0d:da:5c:d1:29:a7:73:42:94:39: 1c:80:39:81:06:59:d9:b0:47:4e:51:2a:b4:1b:24:02:a4:bb: b7:a0:b2:8d:55:57:d1:05:66:4c:e2:8f:3f:d0:19:f0:b8:5b: 9a:99:6e:7e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjQwOTEzMDIxMzQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzOWZkZC1lZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+Lqp3Zao0dtbl+9dFi3VOmnJyaw+5lm0TK90LXJZ2fYIkFKSyEdSI43kWl4 hyPVTJlFTWXQXLIyzxh8OeintLYQ1nJar7ACXZiIQxOwp72ocUF0zKrffZUrQw6R TyORCQk3m6V4o+GPcn5H2A1F2TCFqT61GbdhkBbLXqOAflc1DcAebkfApN73HJxH pDBlrvU51Dyroqk+vBRXLJXRlR2/Vzyxidw21Up15yPHFDiW0XHDFlaBVfGeiiaf kokUCKa2UoaLP9gRuO2LKlN2jMVyUeoqtlHy1mEKDlxD0vSWB7rJKO0Brg6nmSxu HZ21rXnf38b2FFKTrF9/9Z1ExQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ0bipmi uoQS2NI7oFXt48UJI9cWMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvNENCRkY0QUVERkYxMTFFQjg5NEYzMDY3QzRGOUFFMDIvMjI5Q0QyNEFG OUZCMTFFQjhDRkY1RTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFooeoDBAFoofwwDQYJKoZIhvcNAQELBQADggEBAFRFMbjc 3OchgiZqa8big3qJoaOZC0Q/C2IXRAJlV6k1rpCVhxXQ47uUK0IDTwsWlrAugOzI 7UqEFYjEOwrtSMNHmPGFSkuCTG5UYpvh7I03ifBHH+xp1QaiE+P8KBT/T0ylptM2 MkVCVc3zoRoJUZgsOS4EoKaVYXUpolpve8jTbWOF5ONUw2tMXt1AqLyhY03Q6gPX jgmIkYS6womCd2iKcuCT6b6P3MLiLHV1S1zsoakAy0mYYLXzxdgzMyavM9Shy16S FTpV70tnDEt4Ddpc0Smnc0KUORyAOYEGWdmwR05RKrQbJAKku7egso1VV9EFZkzi jz/QGfC4W5qZbn4= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:49 2024 by rpki-client on console-fra.rpki-client.org