$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa File: AA14FB00C70811ECBAECCC78C4F9AE02.roa (raw, json) Hash identifier: aj80KCIif9eZITuW9nRaN1zZrhEdRJFymu5+h23dMBM= Subject key identifier: B3:F9:7C:9A:C3:FA:81:AD:5F:D2:27:D6:97:86:2F:79:CA:37:F8:DA Certificate issuer: /CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Certificate serial: 0385 Authority key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa Signing time: Thu 14 Nov 2024 10:28:43 +0000 ROA not before: Thu 14 Nov 2024 10:28:43 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 141.163.128.0/20 maxlen: 24 141.163.144.0/20 maxlen: 24 141.163.160.0/20 maxlen: 24 141.163.176.0/20 maxlen: 24 141.163.192.0/20 maxlen: 24 141.163.208.0/20 maxlen: 24 141.163.224.0/20 maxlen: 24 141.163.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Validity Not Before: Nov 14 10:28:43 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6735d0db-4bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fe:95:0d:6a:05:90:88:ae:fe:f6:df:1a:b1: d9:e3:ed:47:f3:01:d2:68:37:5e:f7:70:4f:17:ce: 73:61:04:4b:51:9a:00:ed:e6:b1:5b:27:71:ea:a9: 40:3e:9c:ef:a4:d6:1f:1f:2e:0e:8c:0f:6c:58:2b: ee:e1:59:a6:6a:59:68:4c:4f:b3:1a:44:0e:de:d2: 4e:0f:9f:f6:57:6a:97:63:15:db:f3:e4:0c:f3:1a: d6:a1:22:54:61:fd:30:26:64:95:5b:82:7f:3e:0a: 56:23:8f:12:d0:a3:25:ff:f6:28:c6:c0:68:8f:fa: 1e:89:8a:73:7d:bf:92:8b:f1:c9:29:15:17:47:be: b2:1e:19:3e:93:73:67:fa:00:d8:2b:0b:0f:9b:55: fb:b9:6c:5a:d0:be:c4:05:dc:61:94:b1:f1:1c:f7: dd:46:21:b6:92:4c:ce:ab:67:2f:0d:3b:81:5e:63: 7f:c6:49:7d:33:b0:ba:f8:19:8c:0c:90:81:af:f2: e9:6d:60:29:6b:1d:a0:e9:91:51:42:3c:82:c2:d3: 98:37:be:36:86:81:5a:a5:57:eb:ce:3d:71:30:b4: e6:11:26:7d:27:72:1f:1d:21:e3:d2:0b:38:1a:fc: 83:5a:4e:9b:1d:52:d1:55:97:80:b9:00:8b:fc:d9: a9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F9:7C:9A:C3:FA:81:AD:5F:D2:27:D6:97:86:2F:79:CA:37:F8:DA X509v3 Authority Key Identifier: keyid:8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.163.128.0/17 Signature Algorithm: sha256WithRSAEncryption b4:66:e5:11:00:2f:01:61:12:bf:36:7b:d5:ae:7e:6a:97:72: 6e:b6:fe:79:8f:0a:70:ae:eb:bd:c2:41:6e:7b:53:90:6b:2d: 0f:d0:96:98:98:92:d5:03:44:73:0b:00:17:5b:1e:c5:c8:ba: 6d:37:02:ab:c7:4f:c3:cc:44:78:1c:5d:3d:aa:0c:18:22:30: 5c:31:94:be:9d:61:9b:a6:b0:ae:e9:04:6c:be:52:64:2f:c9: c4:1a:82:d5:37:ff:a3:d8:56:03:4f:0d:75:aa:bb:41:23:72: 8e:11:5e:5d:ea:5d:13:6f:e5:b2:f0:dd:33:35:6b:0f:02:52: ff:e3:ed:89:57:cd:b6:17:41:be:66:95:b4:2a:21:63:61:d0: 54:51:31:1c:15:14:d5:db:37:68:fd:0e:6c:13:47:11:74:49: 69:18:54:47:9a:b8:b2:4e:7c:55:e4:3b:ca:3e:69:25:e8:a3: 0f:86:b4:13:99:05:15:15:97:39:04:ee:3a:14:5b:4e:81:06: e8:3c:21:26:7c:cc:b1:f4:68:b9:2b:be:7c:d8:7d:cf:d8:8f: 0b:3b:b1:19:b6:6f:02:a4:a3:d0:f0:be:d2:b1:58:75:c1:80: ae:6b:d7:d2:ea:2e:02:2c:b9:da:64:db:1b:df:e1:ac:de:e6: f3:47:d8:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDhEMjAyMDdEMUVEQjVGNUMyRDY2M0IwQTZBMTBCQ0Q0 MEJBRDNBREUwHhcNMjQxMTE0MTAyODQzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM1ZDBkYi00YmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2f6VDWoFkIiu/vbfGrHZ4+1H8wHSaDde93BPF85zYQRLUZoA7eaxWydx6qlA PpzvpNYfHy4OjA9sWCvu4VmmalloTE+zGkQO3tJOD5/2V2qXYxXb8+QM8xrWoSJU Yf0wJmSVW4J/PgpWI48S0KMl//YoxsBoj/oeiYpzfb+Si/HJKRUXR76yHhk+k3Nn +gDYKwsPm1X7uWxa0L7EBdxhlLHxHPfdRiG2kkzOq2cvDTuBXmN/xkl9M7C6+BmM DJCBr/LpbWApax2g6ZFRQjyCwtOYN742hoFapVfrzj1xMLTmESZ9J3IfHSHj0gs4 GvyDWk6bHVLRVZeAuQCL/Nmp9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLP5fJrD +oGtX9In1peGL3nKN/jaMB8GA1UdIwQYMBaAFI0gIH0e219cLWY7CmoQvNQLrTre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS9BNDZCRTU4ODg4 ODgxMUVDOTEyMzNBNzBDNEY5QUUwMi9qU0FnZlI3Ylgxd3RaanNLYWhDODFBdXRP dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2pTQWdmUjdiWDF3dFpqc0thaEM4MUF1dE90NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvQTQ2QkU1ODg4ODg4MTFFQzkxMjMzQTcwQzRGOUFFMDIvQUExNEZCMDBD NzA4MTFFQ0JBRUNDQzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAeNo4AwDQYJKoZIhvcNAQELBQADggEBALRm5REALwFhEr82 e9WufmqXcm62/nmPCnCu673CQW57U5BrLQ/QlpiYktUDRHMLABdbHsXIum03AqvH T8PMRHgcXT2qDBgiMFwxlL6dYZumsK7pBGy+UmQvycQagtU3/6PYVgNPDXWqu0Ej co4RXl3qXRNv5bLw3TM1aw8CUv/j7YlXzbYXQb5mlbQqIWNh0FRRMRwVFNXbN2j9 DmwTRxF0SWkYVEeauLJOfFXkO8o+aSXoow+GtBOZBRUVlzkE7joUW06BBug8ISZ8 zLH0aLkrvnzYfc/Yjws7sRm2bwKko9DwvtKxWHXBgK5r19LqLgIsudpk2xvf4aze 5vNH2Dg= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:02 2024 by rpki-client on console-ams.rpki-client.org