$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DCC969B048F911EC9F04C439C4F9AE02.roa File: DCC969B048F911EC9F04C439C4F9AE02.roa (raw, json) Hash identifier: Ey7sXMoZK5X/9B/g0P4vb+TT1dBxjAAcErSKVPBVZ8c= Subject key identifier: E0:C0:7E:6C:21:13:FB:CA:23:21:8A:E2:B4:5A:A1:52:CE:55:F9:3D Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 064F Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DCC969B048F911EC9F04C439C4F9AE02.roa Signing time: Tue 12 Nov 2024 22:01:09 +0000 ROA not before: Tue 12 Nov 2024 22:01:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136265 IP address blocks: 204.48.62.0/24 maxlen: 24 216.157.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Nov 12 22:01:09 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6733d025-022f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:0b:bd:72:10:89:7e:fc:71:58:11:fc:96: 99:44:b1:d4:50:dc:bb:bc:14:f0:58:7c:0e:48:bd: 1a:e8:ad:f2:86:d7:9c:d5:72:a0:2f:a3:05:04:ae: 6c:18:7a:b9:d3:48:48:4a:aa:70:ee:66:5e:94:0e: e1:c6:2e:6b:31:a3:37:1a:92:cd:05:65:62:e4:0b: 55:8c:4b:2f:76:03:f3:0f:0b:d1:43:fa:5e:b3:77: 3d:40:ef:3f:49:7b:b8:82:46:3c:17:89:45:0f:de: d8:21:94:d6:ff:a3:0d:58:7b:c8:65:56:08:96:f1: 3b:f3:04:e1:72:15:2a:03:7c:ec:79:9c:c6:2d:e2: 12:a1:d4:1e:5c:67:ec:ce:8c:56:c1:bf:04:fb:6b: 14:6e:7d:5c:a3:a6:55:c6:59:c3:38:3b:7b:5a:92: f6:c0:df:ed:eb:0e:d5:0a:0e:e2:00:13:00:2c:41: 3d:06:e1:56:d2:bc:42:18:68:57:fe:ce:9e:1c:4b: 1f:62:2e:8d:84:7d:45:b8:5b:49:10:d5:3d:f5:94: 55:2c:38:56:6e:4d:df:d3:1e:dd:47:94:af:22:7c: 98:cd:1f:b6:29:0d:dc:2e:e4:be:6d:21:b9:e9:37: fb:1f:d2:5b:bc:57:28:6f:79:b2:67:38:cc:b1:7d: e8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C0:7E:6C:21:13:FB:CA:23:21:8A:E2:B4:5A:A1:52:CE:55:F9:3D X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DCC969B048F911EC9F04C439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.48.62.0/24 216.157.157.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:32:14:f6:4a:af:0f:cd:27:d8:cf:e0:40:94:a3:18:31:e0: 27:86:9e:78:1a:67:74:0f:70:0c:98:8f:f9:a4:e2:1d:91:d0: 82:31:de:20:e6:db:81:aa:05:0c:64:5b:03:2a:75:bc:d0:6a: b9:ea:45:91:b0:09:10:cb:b1:26:73:06:7e:64:d9:81:5e:00: 43:09:2f:97:8f:8d:c9:6f:f9:99:40:be:a3:f8:93:a4:e4:c0: 47:ac:56:c3:8d:99:7d:36:3a:eb:e8:33:16:3f:d5:7a:6f:29: d7:60:32:29:72:1e:29:08:ea:6c:1c:a0:55:88:0f:23:40:93: b7:42:c5:ce:43:c2:bd:03:c3:2a:35:02:e5:20:e6:ee:f2:0b: e7:45:0d:10:15:1f:67:cc:9f:87:df:62:8d:92:07:47:56:7d: ce:43:48:d7:1b:62:90:da:f6:ab:53:0a:e0:f8:0d:76:96:32: 6e:2c:8f:b6:01:89:62:31:93:12:b0:a7:89:89:6c:8e:6b:05: 89:ae:c1:2a:7e:26:0c:e4:04:04:17:09:a7:70:01:0f:f4:f1: 3a:50:fa:64:46:20:c5:1b:c4:2a:ae:fd:06:4c:74:ff:b3:fe: 85:ea:fd:0c:1a:bc:3f:f2:53:c8:0d:e2:64:da:b2:b8:a8:b1: aa:47:1b:c3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjQxMTEyMjIwMTA5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZDAyNS0wMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdALvXIQiX78cVgR/JaZRLHUUNy7vBTwWHwOSL0a6K3yhtec1XKgL6MFBK5s GHq500hISqpw7mZelA7hxi5rMaM3GpLNBWVi5AtVjEsvdgPzDwvRQ/pes3c9QO8/ SXu4gkY8F4lFD97YIZTW/6MNWHvIZVYIlvE78wThchUqA3zseZzGLeISodQeXGfs zoxWwb8E+2sUbn1co6ZVxlnDODt7WpL2wN/t6w7VCg7iABMALEE9BuFW0rxCGGhX /s6eHEsfYi6NhH1FuFtJENU99ZRVLDhWbk3f0x7dR5SvInyYzR+2KQ3cLuS+bSG5 6Tf7H9JbvFcob3myZzjMsX3oswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFODAfmwh E/vKIyGK4rRaoVLOVfk9MB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvMzJDMzAwMjg2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvRENDOTY5QjA0 OEY5MTFFQzlGMDRDNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADMMD4DBADYnZ0wDQYJKoZIhvcNAQELBQADggEBAAwyFPZK rw/NJ9jP4ECUoxgx4CeGnngaZ3QPcAyYj/mk4h2R0IIx3iDm24GqBQxkWwMqdbzQ arnqRZGwCRDLsSZzBn5k2YFeAEMJL5ePjclv+ZlAvqP4k6TkwEesVsONmX02Ouvo MxY/1XpvKddgMilyHikI6mwcoFWIDyNAk7dCxc5Dwr0Dwyo1AuUg5u7yC+dFDRAV H2fMn4ffYo2SB0dWfc5DSNcbYpDa9qtTCuD4DXaWMm4sj7YBiWIxkxKwp4mJbI5r BYmuwSp+JgzkBAQXCadwAQ/08TpQ+mRGIMUbxCqu/QZMdP+z/oXq/QwavD/yU8gN 4mTasriosapHG8M= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:55 2024 by rpki-client on console-ams.rpki-client.org