$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa File: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (raw, json) Hash identifier: sB2xN+NI3UCkCts4i5bUwtcZvKVfZaogReZtF2ClOtM= Subject key identifier: 9E:E3:3B:E7:4A:D2:AE:F3:C0:38:5F:E6:FD:9B:26:DF:9E:3D:1B:05 Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 0651 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa Signing time: Tue 12 Nov 2024 22:01:11 +0000 ROA not before: Tue 12 Nov 2024 22:01:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 204.48.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE Validity Not Before: Nov 12 22:01:11 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6733d027-a795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2a:92:02:bb:16:3c:a7:ac:a5:86:a2:f1:41: 83:a9:39:b9:e2:5a:b3:51:f3:b4:7a:70:0f:07:e1: 80:a5:56:dc:8c:7f:27:c1:ab:ec:0c:b1:ec:4d:f8: 86:08:bd:fb:7b:79:c3:ac:cc:02:a3:cf:2b:21:53: cf:11:b2:41:18:d9:13:5a:ad:f0:41:7f:51:09:ff: 46:26:1b:fd:a5:0d:21:4e:21:c7:b0:8c:cf:a6:c3: a8:97:f0:27:44:26:b8:a3:f8:63:4d:a9:5a:af:0a: fb:46:3f:14:03:dc:44:94:88:67:7b:60:9f:75:15: d8:66:d8:6d:31:5e:3d:97:e8:39:78:a5:5d:6d:ab: d4:f4:22:2b:be:4b:ec:56:90:c6:4f:5a:2b:40:28: 43:eb:43:58:f5:fa:8d:d6:02:b8:8c:e9:99:c4:06: bd:16:1e:8f:da:69:4f:9b:70:6b:2a:31:95:f6:28: a3:38:61:1b:62:5d:6e:e5:c0:ea:ab:23:ec:07:89: 3b:01:27:e9:2d:9b:b3:b3:c3:47:7d:a3:a9:b7:7f: 4c:8d:9e:87:8c:6d:3f:36:f6:e5:73:3e:c2:d5:27: 90:6f:90:dc:c6:05:88:ce:51:e1:14:65:3b:61:2e: c6:77:e9:6b:6c:4d:f2:e0:74:c0:df:b0:5a:15:72: 90:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E3:3B:E7:4A:D2:AE:F3:C0:38:5F:E6:FD:9B:26:DF:9E:3D:1B:05 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.48.63.0/24 Signature Algorithm: sha256WithRSAEncryption 79:23:a3:42:99:53:73:7e:5a:47:7e:da:b5:f2:14:70:d7:fc: 62:55:22:cc:06:ae:90:ac:77:36:bd:12:cc:3e:f4:86:23:f0: e0:b3:a0:35:51:8e:9c:cc:08:17:04:54:b8:aa:8a:cd:28:62: a8:40:48:35:48:a5:3b:c2:0f:0e:fc:10:e4:d5:4b:27:4c:35: d1:76:62:5b:05:f0:89:42:66:b3:5e:07:35:4a:a8:61:15:16: 82:62:14:d7:90:65:46:d9:58:ff:98:b6:fa:0d:8a:66:0d:85: e6:c0:de:fd:03:6e:11:c9:79:5a:7f:95:b6:85:33:d2:b4:7e: a1:4b:63:f7:fc:49:20:ca:a0:0c:94:c8:34:18:50:ec:60:8c: 8d:8f:e4:d5:fb:e6:ee:19:c2:3d:31:96:6d:e6:a2:73:c1:6f: 30:86:6b:d1:e4:d6:53:31:db:b1:13:a5:62:3d:59:26:15:bc: 6b:ec:0d:dc:e4:e5:0b:b3:0d:27:96:d8:5c:23:c2:b0:22:aa: 08:0e:1f:0d:62:32:6c:d3:3a:0b:7e:45:d6:4c:5b:c1:d6:76: 1c:ed:b9:7f:1d:da:7b:14:52:7a:57:04:18:fd:b0:71:84:15: 6d:42:2a:f0:e1:1d:c0:c7:5a:bf:c9:22:a5:65:3c:37:0b:5f: 2a:8d:63:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjQxMTEyMjIwMTExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZDAyNy1hNzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CqSArsWPKespYai8UGDqTm54lqzUfO0enAPB+GApVbcjH8nwavsDLHsTfiG CL37e3nDrMwCo88rIVPPEbJBGNkTWq3wQX9RCf9GJhv9pQ0hTiHHsIzPpsOol/An RCa4o/hjTalarwr7Rj8UA9xElIhne2CfdRXYZthtMV49l+g5eKVdbavU9CIrvkvs VpDGT1orQChD60NY9fqN1gK4jOmZxAa9Fh6P2mlPm3BrKjGV9iijOGEbYl1u5cDq qyPsB4k7ASfpLZuzs8NHfaOpt39MjZ6HjG0/Nvblcz7C1SeQb5DcxgWIzlHhFGU7 YS7Gd+lrbE3y4HTA37BaFXKQhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ7jO+dK 0q7zwDhf5v2bJt+ePRsFMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvMzJDMzAwMjg2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvREJCNEJCNkE0 OEY5MTFFQzlGMDRDNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMMD8wDQYJKoZIhvcNAQELBQADggEBAHkjo0KZU3N+Wkd+ 2rXyFHDX/GJVIswGrpCsdza9Esw+9IYj8OCzoDVRjpzMCBcEVLiqis0oYqhASDVI pTvCDw78EOTVSydMNdF2YlsF8IlCZrNeBzVKqGEVFoJiFNeQZUbZWP+YtvoNimYN hebA3v0DbhHJeVp/lbaFM9K0fqFLY/f8SSDKoAyUyDQYUOxgjI2P5NX75u4Zwj0x lm3monPBbzCGa9Hk1lMx27ETpWI9WSYVvGvsDdzk5QuzDSeW2FwjwrAiqggOHw1i MmzTOgt+RdZMW8HWdhztuX8d2nsUUnpXBBj9sHGEFW1CKvDhHcDHWr/JIqVlPDcL XyqNY14= -----END CERTIFICATE-----Generated at Sun Feb 16 15:32:29 2025 by rpki-client