$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa File: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (raw, json) Hash identifier: 11VkQI+E+84mFrKdiJkSQBv4lT+5KYpL0SIaXbMKQDE= Subject key identifier: 41:3A:89:E5:7F:65:56:3E:DC:63:E4:A8:8D:D5:BC:8E:41:A2:06:65 Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 059D Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa Signing time: Mon 04 Dec 2023 23:50:50 +0000 ROA not before: Mon 04 Dec 2023 23:50:50 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 204.48.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 22:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Dec 4 23:50:50 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656e65d9-140f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:3e:d4:11:b8:e0:1a:fe:81:c6:1b:4b:5e: 91:fd:c9:6e:50:43:e6:0a:89:02:02:7c:23:62:84: eb:cc:b8:73:a3:d5:d5:ed:d2:54:1a:31:eb:86:61: 22:26:82:82:50:c2:34:0e:14:44:26:2c:07:28:71: 6c:d1:81:f2:80:eb:49:40:cd:2b:29:78:09:3c:cc: 86:5b:51:c7:33:c5:12:73:ed:60:12:d5:64:d2:77: fa:fd:4c:15:b9:0a:ab:d6:c1:cb:40:d4:35:77:47: d7:97:8c:d4:a2:4c:d2:7a:53:68:ee:8f:0d:50:76: 0b:ad:f5:7d:42:cc:83:b2:7b:5a:00:b9:fd:3f:24: 61:bc:09:90:00:f8:ef:49:44:1e:3e:de:7f:86:c1: 9c:b4:29:6e:d1:05:2c:08:d0:d2:e8:44:97:60:9b: 05:3b:63:ac:a8:f5:73:8c:8f:ad:78:14:29:20:4d: e0:79:a6:5b:d6:d9:76:b2:d4:d1:17:ea:f6:20:3f: 53:cd:85:ef:50:d0:4c:3f:ae:f4:dd:27:1e:cc:f6: f2:1b:65:09:ce:e5:33:cb:43:2a:eb:93:79:73:09: fc:fd:0c:91:23:6f:58:37:cb:fa:d1:e5:46:30:6d: 0e:b5:3b:4b:b9:23:56:fa:25:cb:5d:64:94:67:d2: 0d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3A:89:E5:7F:65:56:3E:DC:63:E4:A8:8D:D5:BC:8E:41:A2:06:65 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.48.63.0/24 Signature Algorithm: sha256WithRSAEncryption a3:e8:98:92:22:0e:0a:89:1b:c6:e7:ce:b8:ed:69:cf:17:3a: 08:0c:a6:1d:79:e2:27:b7:79:e0:12:83:48:12:a1:a8:a0:81: 87:fe:4f:f7:de:35:f4:3a:ac:e4:1b:f7:bd:29:9f:0c:c4:96: 70:2f:12:0f:4a:7a:46:db:a5:a9:96:14:72:59:be:9d:6a:46: 14:2c:8d:bb:4c:ab:e2:4f:01:b6:4f:04:3a:e7:0b:5a:c7:a7: d0:45:68:ae:10:01:9d:58:43:2c:89:64:8b:74:c9:b3:c4:17: 2f:59:c1:78:52:b6:5f:85:aa:59:5c:35:ed:96:13:ac:7a:7a: 4a:50:5b:2a:71:f6:bf:e2:45:dd:e6:40:f7:e5:6a:cd:73:cd: d8:72:3d:d9:76:89:0b:19:ff:e2:c2:c8:eb:43:20:35:9c:8c: 8c:d7:be:46:6e:a4:c1:fe:11:b8:91:c8:24:57:db:87:47:a0: 2a:24:08:16:2c:9f:73:ab:35:b1:6c:61:25:14:79:0f:93:19: b6:62:29:fd:f1:5d:f0:a2:68:ef:36:6d:78:1f:c7:13:cb:38: 48:8a:bb:55:8c:cf:cc:b3:3e:93:3c:1e:00:13:4a:7a:b6:94: e6:be:0e:04:9b:61:b2:83:2f:1f:14:67:77:25:eb:1d:2f:03: 5d:9d:e9:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjMxMjA0MjM1MDUwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlNjVkOS0xNDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP0+1BG44Br+gcYbS16R/cluUEPmCokCAnwjYoTrzLhzo9XV7dJUGjHrhmEi JoKCUMI0DhREJiwHKHFs0YHygOtJQM0rKXgJPMyGW1HHM8USc+1gEtVk0nf6/UwV uQqr1sHLQNQ1d0fXl4zUokzSelNo7o8NUHYLrfV9QsyDsntaALn9PyRhvAmQAPjv SUQePt5/hsGctClu0QUsCNDS6ESXYJsFO2OsqPVzjI+teBQpIE3geaZb1tl2stTR F+r2ID9TzYXvUNBMP6703ScezPbyG2UJzuUzy0Mq65N5cwn8/QyRI29YN8v60eVG MG0OtTtLuSNW+iXLXWSUZ9INhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEE6ieV/ ZVY+3GPkqI3VvI5BogZlMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvMzJDMzAwMjg2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvREJCNEJCNkE0 OEY5MTFFQzlGMDRDNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMMD8wDQYJKoZIhvcNAQELBQADggEBAKPomJIiDgqJG8bn zrjtac8XOggMph154ie3eeASg0gSoaiggYf+T/feNfQ6rOQb970pnwzElnAvEg9K ekbbpamWFHJZvp1qRhQsjbtMq+JPAbZPBDrnC1rHp9BFaK4QAZ1YQyyJZIt0ybPE Fy9ZwXhStl+FqllcNe2WE6x6ekpQWypx9r/iRd3mQPflas1zzdhyPdl2iQsZ/+LC yOtDIDWcjIzXvkZupMH+EbiRyCRX24dHoCokCBYsn3OrNbFsYSUUeQ+TGbZiKf3x XfCiaO82bXgfxxPLOEiKu1WMz8yzPpM8HgATSnq2lOa+DgSbYbKDLx8UZ3cl6x0v A12d6fo= -----END CERTIFICATE-----Generated at Wed Apr 17 01:28:27 2024 by rpki-client on console-ams.rpki-client.org