$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa File: DAE15A7248F911EC9F04C439C4F9AE02.roa (raw, json) Hash identifier: CcS2RgyDh/Mt65cyyvz7PDgLBgmPqkXqjVn09wN+d7I= Subject key identifier: 79:50:44:FF:A1:FE:B5:19:71:B3:14:94:79:82:43:42:B7:B4:55:AD Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 0650 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa Signing time: Tue 12 Nov 2024 22:01:11 +0000 ROA not before: Tue 12 Nov 2024 22:01:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 204.48.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Nov 12 22:01:10 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6733d026-33b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:37:1a:14:88:0d:dc:86:2e:77:d7:f7:21: 30:6f:1c:51:d0:9d:fa:4f:d1:76:57:c3:4e:19:16: 19:f6:2d:4b:03:7e:b7:a0:f3:61:45:1a:e7:1e:69: d6:83:f9:23:0f:5a:33:6a:89:7e:a4:cd:37:5d:8e: f9:f2:d5:9a:ee:7f:cb:af:5e:1f:fe:a1:f3:36:9f: 5b:35:6d:c3:e6:59:44:84:b5:28:94:2e:0e:d1:79: e0:a1:93:bb:be:28:99:55:15:dc:63:71:be:79:df: 98:1a:94:04:27:53:09:97:e8:3e:26:17:70:07:41: ce:ac:d6:62:17:40:e0:ce:5a:08:99:19:6c:9e:1c: 63:9e:9d:6b:97:16:c8:2f:e2:bd:e1:1e:3f:cf:c2: 0e:a8:ca:d8:20:c4:18:8e:33:f3:ed:c3:fd:a2:4d: ea:ab:27:85:70:cc:13:c0:5f:59:d6:29:2b:34:ad: c0:0e:3a:1a:37:fc:a1:10:d3:6b:58:60:5e:72:fb: 64:eb:36:83:dc:27:42:b3:e0:f5:f6:03:c8:00:fa: a4:48:a8:ea:8f:c0:f0:b3:6b:5f:fe:cd:32:b8:66: 96:94:24:79:c0:65:a5:53:c5:98:08:70:e3:05:0f: 40:c7:e1:4f:eb:7f:6f:b4:a7:a5:6c:7b:4c:e5:84: 67:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:50:44:FF:A1:FE:B5:19:71:B3:14:94:79:82:43:42:B7:B4:55:AD X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DAE15A7248F911EC9F04C439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.48.63.0/24 Signature Algorithm: sha256WithRSAEncryption 16:c8:95:87:56:6e:79:a1:05:ff:52:d0:b3:3d:eb:b2:fb:29: 34:6b:28:80:07:d7:06:12:71:8c:06:ec:f0:77:de:16:42:3d: c7:80:39:61:18:b0:46:99:40:31:a7:fc:7f:56:79:0e:40:ea: d4:66:bf:96:4e:6a:a7:47:54:6a:08:0d:e4:6a:5d:d5:a4:25: ff:d8:a4:4d:db:46:26:63:b7:c8:3d:19:aa:70:76:ea:56:fa: d0:38:cb:77:a5:d6:7b:d2:83:f5:e8:6e:ec:ea:02:ef:28:a6: a5:ca:dd:90:04:9d:65:ed:d3:ad:81:aa:4f:f9:d7:0f:cc:73: b0:1f:13:b1:53:d7:64:c1:79:5e:e3:e9:26:49:7c:9b:44:6d: 4f:08:de:4b:7f:7a:d8:80:82:bb:4d:fc:ce:1f:87:61:82:86: ad:63:46:88:ee:ff:7b:c6:c9:4b:89:a0:9b:d9:c7:a1:fa:3c: 3c:1a:06:ea:d7:78:02:51:57:2e:49:a4:37:9b:29:87:c1:22: 36:31:54:b0:13:b8:d5:c6:c6:d7:a6:b3:aa:83:fd:de:a3:02: 21:71:a2:9e:20:0f:d9:32:74:30:fe:bb:b4:c8:a6:20:82:eb: d4:8c:4e:d2:e3:38:44:f4:cc:00:4a:48:02:cf:d8:1a:56:8c: 98:30:f3:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjQxMTEyMjIwMTEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZDAyNi0zM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOg3GhSIDdyGLnfX9yEwbxxR0J36T9F2V8NOGRYZ9i1LA363oPNhRRrnHmnW g/kjD1ozaol+pM03XY758tWa7n/Lr14f/qHzNp9bNW3D5llEhLUolC4O0XngoZO7 viiZVRXcY3G+ed+YGpQEJ1MJl+g+JhdwB0HOrNZiF0DgzloImRlsnhxjnp1rlxbI L+K94R4/z8IOqMrYIMQYjjPz7cP9ok3qqyeFcMwTwF9Z1ikrNK3ADjoaN/yhENNr WGBecvtk6zaD3CdCs+D19gPIAPqkSKjqj8Dws2tf/s0yuGaWlCR5wGWlU8WYCHDj BQ9Ax+FP639vtKelbHtM5YRnUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHlQRP+h /rUZcbMUlHmCQ0K3tFWtMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvMzJDMzAwMjg2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvREFFMTVBNzI0 OEY5MTFFQzlGMDRDNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMMD8wDQYJKoZIhvcNAQELBQADggEBABbIlYdWbnmhBf9S 0LM967L7KTRrKIAH1wYScYwG7PB33hZCPceAOWEYsEaZQDGn/H9WeQ5A6tRmv5ZO aqdHVGoIDeRqXdWkJf/YpE3bRiZjt8g9GapwdupW+tA4y3el1nvSg/XobuzqAu8o pqXK3ZAEnWXt062Bqk/51w/Mc7AfE7FT12TBeV7j6SZJfJtEbU8I3kt/etiAgrtN /M4fh2GChq1jRoju/3vGyUuJoJvZx6H6PDwaBurXeAJRVy5JpDebKYfBIjYxVLAT uNXGxtems6qD/d6jAiFxop4gD9kydDD+u7TIpiCC69SMTtLjOET0zABKSALP2BpW jJgw884= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:55 2024 by rpki-client on console-ams.rpki-client.org