$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa File: DAE15A7248F911EC9F04C439C4F9AE02.roa (raw, json) Hash identifier: niEg+Xsx0oqYdS4X69wgtu3+3vhMpOvh/aAltkHxhWk= Subject key identifier: AE:BE:C3:46:E0:EC:41:A2:B4:05:EA:10:30:0C:3F:0B:5E:0D:B2:BD Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 059C Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa Signing time: Mon 04 Dec 2023 23:50:49 +0000 ROA not before: Mon 04 Dec 2023 23:50:49 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 204.48.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 23:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Dec 4 23:50:49 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656e65d8-b2cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d4:6b:4c:1f:f1:dc:df:85:bb:2e:50:f3:44: d4:48:e2:0f:b2:6d:ad:bf:5b:1c:b0:76:99:89:e5: 0b:f1:79:fb:0c:bd:25:98:ae:2a:f1:03:18:bf:0e: de:84:7a:57:0a:1f:05:37:98:17:ab:90:09:3c:60: f1:f8:63:2c:f8:09:b1:4d:de:3f:13:f4:ba:64:7b: 27:b3:99:66:64:7b:80:ca:11:db:81:04:5d:e8:e8: 17:6d:56:01:76:b6:c4:cc:7a:a4:77:2b:cb:b8:72: e4:d8:e8:5d:15:5b:c0:3f:27:b2:0d:29:17:16:d3: 63:f4:b0:b1:a1:6a:80:1b:f8:37:26:5a:83:d1:cd: e4:e4:f4:58:f8:56:2e:d8:ad:40:43:23:03:0a:2a: fd:29:dc:45:e3:3a:73:9d:48:b7:51:99:3c:5f:5b: 2b:63:32:b2:31:32:d1:4e:b2:24:31:aa:04:c7:74: db:a8:56:f7:ab:8c:05:ba:72:65:68:0c:df:e3:81: 4a:34:22:46:d6:23:5f:b7:f5:e6:c1:79:ed:b1:f1: 8d:67:a3:cb:e2:6f:ab:e9:b2:c9:0b:0c:92:dc:93: d3:13:b5:6b:c3:3f:5e:6b:e7:0d:55:1f:d8:eb:b8: 98:1e:88:d6:0d:c9:7d:e1:9b:a4:7e:1d:06:49:43: 32:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:BE:C3:46:E0:EC:41:A2:B4:05:EA:10:30:0C:3F:0B:5E:0D:B2:BD X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.48.63.0/24 Signature Algorithm: sha256WithRSAEncryption bf:b5:02:54:7d:ae:24:36:e6:4e:06:52:41:60:20:08:79:95: 04:f3:25:cf:d0:22:09:93:ba:05:82:c1:57:c6:bf:36:e8:28: 78:12:b8:b6:97:08:78:42:da:3c:60:94:0f:58:d4:34:a7:12: 6b:41:82:2a:65:80:f6:90:c8:33:f9:cd:dd:3e:8e:3f:0a:4a: 9a:94:2b:ff:b8:81:e3:bf:ef:ed:12:92:ea:2f:ab:c3:cd:8c: 5b:cc:72:f0:23:a4:2b:c0:21:48:6a:6e:b9:dd:85:e7:b4:57: 57:15:e4:fc:ad:f5:c3:64:6a:79:13:3c:2b:f8:06:fe:c7:87: 65:63:77:76:18:1c:35:17:44:a8:55:d5:97:ca:23:d2:02:8c: db:11:68:3c:00:e3:20:8f:3e:60:62:bf:f3:de:6f:e9:45:1a: cf:6d:52:e0:0e:6c:9c:33:1c:4c:14:b1:e4:9c:29:db:4d:c5: 53:9f:c1:4d:32:cf:ca:90:a2:30:c6:27:b5:a8:ca:ed:3e:d2: eb:9f:c3:da:99:46:f8:d6:62:24:64:9d:23:16:a3:1c:41:2f: bf:f1:68:a6:c1:c3:c2:7d:18:68:27:10:60:e6:27:bf:3c:65: a2:b5:9f:89:af:c6:71:68:6d:b3:2d:fa:17:51:88:95:20:3f: fb:50:d6:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjMxMjA0MjM1MDQ5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlNjVkOC1iMmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodRrTB/x3N+Fuy5Q80TUSOIPsm2tv1scsHaZieUL8Xn7DL0lmK4q8QMYvw7e hHpXCh8FN5gXq5AJPGDx+GMs+AmxTd4/E/S6ZHsns5lmZHuAyhHbgQRd6OgXbVYB drbEzHqkdyvLuHLk2OhdFVvAPyeyDSkXFtNj9LCxoWqAG/g3JlqD0c3k5PRY+FYu 2K1AQyMDCir9KdxF4zpznUi3UZk8X1srYzKyMTLRTrIkMaoEx3TbqFb3q4wFunJl aAzf44FKNCJG1iNft/XmwXntsfGNZ6PL4m+r6bLJCwyS3JPTE7Vrwz9ea+cNVR/Y 67iYHojWDcl94Zukfh0GSUMyrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK6+w0bg 7EGitAXqEDAMPwteDbK9MB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvMzJDMzAwMjg2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvREFFMTVBNzI0 OEY5MTFFQzlGMDRDNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMMD8wDQYJKoZIhvcNAQELBQADggEBAL+1AlR9riQ25k4G UkFgIAh5lQTzJc/QIgmTugWCwVfGvzboKHgSuLaXCHhC2jxglA9Y1DSnEmtBgipl gPaQyDP5zd0+jj8KSpqUK/+4geO/7+0Skuovq8PNjFvMcvAjpCvAIUhqbrndhee0 V1cV5Pyt9cNkankTPCv4Bv7Hh2Vjd3YYHDUXRKhV1ZfKI9ICjNsRaDwA4yCPPmBi v/Peb+lFGs9tUuAObJwzHEwUseScKdtNxVOfwU0yz8qQojDGJ7Woyu0+0uufw9qZ RvjWYiRknSMWoxxBL7/xaKbBw8J9GGgnEGDmJ788ZaK1n4mvxnFobbMt+hdRiJUg P/tQ1rk= -----END CERTIFICATE-----Generated at Fri Apr 19 00:32:29 2024 by rpki-client on console-fra.rpki-client.org