$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa File: 53BCB840EA4211EB846B8757C4F9AE02.roa (raw, json) Hash identifier: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI= Subject key identifier: 83:F8:F1:D7:E8:82:B3:91:0E:31:61:C0:A0:AF:3F:5D:CD:6B:CE:40 Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0502 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa Signing time: Fri 13 Sep 2024 02:13:49 +0000 ROA not before: Fri 13 Sep 2024 02:13:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14340 IP address blocks: 104.161.128.0/18 maxlen: 24 104.161.248.0/23 maxlen: 24 104.161.252.0/24 maxlen: 24 104.161.253.0/24 maxlen: 24 161.32.64.0/18 maxlen: 24 161.32.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Sep 13 02:13:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e39fdc-d8f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dd:92:3c:03:87:6a:cc:77:1a:8e:2d:27:ec: 67:6a:0d:64:31:75:5c:ef:75:6e:61:93:fa:76:f9: 4b:b5:56:b2:34:56:93:c3:54:ae:b6:81:7e:03:b1: 2a:7d:62:85:11:8e:9b:3d:73:7b:65:df:2a:c4:e9: d8:49:43:05:4a:39:b9:ff:0a:40:17:a3:a6:f0:46: 8f:9b:c7:54:b4:c1:b1:4a:63:98:8f:e2:d5:61:8f: e8:84:e1:ea:f0:c4:4a:cd:24:3a:39:81:79:e2:df: dd:68:c1:85:67:45:b9:6a:da:d6:a5:8c:9a:3f:1e: e7:1f:74:fb:4f:58:ba:b0:d4:9f:b5:9c:37:d5:97: 57:dc:f5:f4:6e:24:7a:a5:ef:cf:95:84:7a:da:63: 13:f2:28:60:92:6f:96:b0:6a:07:9e:5a:f2:75:59: 0c:3c:02:59:61:29:eb:85:12:e0:d0:92:b1:f1:d6: 6a:7a:f0:83:47:13:98:88:3c:e8:11:59:ed:4a:dd: 4c:ef:ac:a8:71:63:e8:4f:c8:ca:3c:9f:53:af:4b: 0d:7b:b1:3f:ab:2f:bc:b8:6c:14:66:0b:09:94:39: 86:19:91:a2:68:c1:7b:6a:c0:5c:61:80:b4:41:1f: f7:f4:15:c3:37:a9:50:0c:86:7a:dd:39:13:51:9c: 18:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F8:F1:D7:E8:82:B3:91:0E:31:61:C0:A0:AF:3F:5D:CD:6B:CE:40 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/53BCB840EA4211EB846B8757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.161.128.0/18 104.161.248.0/23 104.161.252.0/23 161.32.64.0-161.32.255.255 Signature Algorithm: sha256WithRSAEncryption 23:76:4e:00:0b:b8:b2:b3:f5:2b:60:64:cb:e1:ee:d1:98:5c: b6:e8:9f:c1:9a:91:81:2b:82:fe:88:e2:9b:db:fb:a4:4a:58: 16:e5:ad:ad:70:5d:a9:f4:52:05:36:e2:8a:13:16:ac:29:78: 10:8c:f5:24:0b:34:b1:ec:c8:01:b8:36:5c:8c:3e:df:ca:96: 15:0c:a9:3e:42:ac:ef:1f:f3:68:5e:51:75:52:82:86:e9:3a: 3a:08:80:bd:14:be:41:14:72:07:47:50:81:cc:6e:f2:08:7c: 7e:31:12:98:2c:30:50:8f:92:82:a5:a8:f7:96:7a:ec:ad:3d: c7:16:ef:14:3e:0d:87:68:56:03:dd:83:fc:a7:44:69:67:5f: 4a:df:42:96:70:59:f8:13:97:db:08:3f:4c:6d:22:eb:be:dc: c2:ba:1b:a5:0c:5b:27:e5:92:8d:62:27:4b:b6:04:4b:02:52: 1b:49:13:14:7b:85:40:11:bb:1a:f7:67:a5:a2:4e:76:cf:6a: be:40:a3:16:de:d6:1e:9f:f8:22:3a:56:84:dd:8c:01:05:37: 2a:ac:a0:c7:6e:25:32:c4:d5:8b:f4:92:56:b8:4c:d4:5c:ef: 12:db:28:60:c0:dd:72:3d:25:24:2b:28:26:ff:ca:2e:7c:89: 5b:d5:34:7b -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjQwOTEzMDIxMzQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzOWZkYy1kOGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt2SPAOHasx3Go4tJ+xnag1kMXVc73VuYZP6dvlLtVayNFaTw1SutoF+A7Eq fWKFEY6bPXN7Zd8qxOnYSUMFSjm5/wpAF6Om8EaPm8dUtMGxSmOYj+LVYY/ohOHq 8MRKzSQ6OYF54t/daMGFZ0W5atrWpYyaPx7nH3T7T1i6sNSftZw31ZdX3PX0biR6 pe/PlYR62mMT8ihgkm+WsGoHnlrydVkMPAJZYSnrhRLg0JKx8dZqevCDRxOYiDzo EVntSt1M76yocWPoT8jKPJ9Tr0sNe7E/qy+8uGwUZgsJlDmGGZGiaMF7asBcYYC0 QR/39BXDN6lQDIZ63TkTUZwY4wIDAQABo4ICrjCCAqowHQYDVR0OBBYEFIP48dfo grORDjFhwKCvP13Na85AMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvNENCRkY0QUVERkYxMTFFQjg5NEYzMDY3QzRGOUFFMDIvNTNCQ0I4NDBF QTQyMTFFQjg0NkI4NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMCUEAgABMB8DBAZooYADBAFoofgDBAFoofwwCwMEBqEgQAMDAKEgMA0GCSqG SIb3DQEBCwUAA4IBAQAjdk4AC7iys/UrYGTL4e7RmFy26J/BmpGBK4L+iOKb2/uk SlgW5a2tcF2p9FIFNuKKExasKXgQjPUkCzSx7MgBuDZcjD7fypYVDKk+QqzvH/No XlF1UoKG6To6CIC9FL5BFHIHR1CBzG7yCHx+MRKYLDBQj5KCpaj3lnrsrT3HFu8U Pg2HaFYD3YP8p0RpZ19K30KWcFn4E5fbCD9MbSLrvtzCuhulDFsn5ZKNYidLtgRL AlIbSRMUe4VAEbsa92elok52z2q+QKMW3tYen/giOlaE3YwBBTcqrKDHbiUyxNWL 9JJWuEzUXO8S2yhgwN1yPSUkKygm/8oufIlb1TR7 -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:22 2024 by rpki-client on console-fra.rpki-client.org