$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/E4AFD636233211EE8737EE2AC4F9AE02.roa File: E4AFD636233211EE8737EE2AC4F9AE02.roa (raw, json) Hash identifier: I4Cnkf7lzkqLnc4f4vTRyRNiopCEkAOSa+SBIvRJfZM= Subject key identifier: 19:AD:B3:53:F1:09:16:0A:C4:18:16:47:28:0E:05:63:E3:BC:AD:55 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 11E4 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/E4AFD636233211EE8737EE2AC4F9AE02.roa Signing time: Tue 02 Apr 2024 17:55:53 +0000 ROA not before: Tue 02 Apr 2024 17:55:53 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9902 IP address blocks: 167.179.4.0/22 maxlen: 22 167.179.4.0/24 maxlen: 24 167.179.5.0/24 maxlen: 24 167.179.6.0/24 maxlen: 24 167.179.7.0/24 maxlen: 24 167.179.8.0/21 maxlen: 21 167.179.8.0/24 maxlen: 24 167.179.9.0/24 maxlen: 24 167.179.10.0/24 maxlen: 24 167.179.11.0/24 maxlen: 24 167.179.12.0/24 maxlen: 24 167.179.13.0/24 maxlen: 24 167.179.14.0/24 maxlen: 24 167.179.15.0/24 maxlen: 24 167.179.16.0/22 maxlen: 24 167.179.28.0/22 maxlen: 22 167.179.28.0/24 maxlen: 24 167.179.29.0/24 maxlen: 24 167.179.30.0/24 maxlen: 24 167.179.31.0/24 maxlen: 24 167.179.36.0/22 maxlen: 24 167.179.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4580 (0x11e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Apr 2 17:55:53 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c46a9-0c63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:12:16:97:39:44:92:f0:e3:f7:5e:ca:b9:e8: 74:f7:75:d3:6c:94:c8:3f:ab:a6:9f:a3:ad:4f:6a: e5:06:52:44:bb:cc:02:47:aa:28:af:bb:61:7c:79: dd:4b:74:fe:75:65:14:af:7c:43:6b:ad:25:34:9d: 90:54:70:5a:0c:4b:c7:a0:36:20:54:e3:40:1d:62: ba:7e:2d:bc:76:13:f5:0e:c0:de:ef:eb:b0:61:6e: a7:c2:62:17:a8:45:fd:c7:36:d0:53:53:4e:9e:1a: a6:3a:29:52:f5:ce:a7:be:6f:96:c5:15:dc:a7:6e: 61:fd:4b:8c:75:77:4f:e0:ab:c2:1a:2e:f6:ca:29: 68:d2:3e:7c:44:96:4a:35:92:a0:34:3a:d6:32:af: c4:ec:f0:2a:53:65:bd:36:3a:e9:d1:71:a9:a5:28: 83:ef:47:e0:77:6e:c1:4b:1d:c3:f5:48:81:b0:d1: f9:0f:15:b8:f2:e8:fb:31:53:98:22:dd:3c:0f:89: 40:e8:10:fc:eb:ee:60:11:24:5d:ad:25:bd:46:51: a0:8f:d7:76:f3:5a:40:ef:ed:7a:10:3a:2b:7f:e3: 1b:44:08:24:67:7d:ab:d5:e1:5c:9d:b3:d4:a1:66: 35:a1:06:3c:8b:55:1e:cf:3f:cd:d2:66:6d:7c:1c: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AD:B3:53:F1:09:16:0A:C4:18:16:47:28:0E:05:63:E3:BC:AD:55 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/E4AFD636233211EE8737EE2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.179.4.0-167.179.19.255 167.179.28.0/22 167.179.36.0-167.179.47.255 Signature Algorithm: sha256WithRSAEncryption 69:4c:f8:35:12:b4:c1:6e:d6:82:9f:a9:b2:1d:81:46:9a:6d: b0:50:59:cb:ba:08:d6:ac:48:a2:6e:b8:47:36:53:de:af:0e: 85:35:cc:f5:c4:e2:7e:a7:da:c5:19:66:39:4e:da:ad:87:53: 80:a4:12:54:ee:f9:56:cf:9f:eb:46:3d:4f:73:2a:cc:7f:ce: 9a:a9:27:8d:42:26:81:62:80:5e:c1:d1:81:87:7a:98:b9:4f: 98:b7:9a:94:1c:88:e1:13:ed:a5:38:a7:32:72:8a:ca:38:f1: 3b:99:f4:cc:71:b8:43:b4:13:7c:54:f3:87:bb:6e:8c:ff:0a: b5:04:31:42:0d:dc:1f:64:cb:46:ca:c0:fb:b8:09:2d:8a:07: 87:e4:5a:16:d6:14:be:7a:37:80:32:07:a7:b8:51:f5:3b:78: 8f:77:99:3c:50:9a:c9:3a:ca:11:88:6c:f9:0c:98:8d:52:94: 29:7b:55:f3:38:dc:0a:99:65:cf:08:db:44:69:56:e2:f7:e2: 6d:92:15:26:5d:49:b9:4a:14:e2:7d:5f:36:44:8f:0d:d7:ec: f8:a5:a4:d0:fa:af:16:de:56:e9:72:18:a7:b5:54:72:47:25: 43:28:13:ba:23:63:24:3e:4c:cf:e7:b9:6b:ba:f1:ad:55:3c: 8d:4f:73:a5 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICEeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjQwNDAyMTc1NTUzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNDZhOS0wYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhIWlzlEkvDj917Kueh093XTbJTIP6umn6OtT2rlBlJEu8wCR6oor7thfHnd S3T+dWUUr3xDa60lNJ2QVHBaDEvHoDYgVONAHWK6fi28dhP1DsDe7+uwYW6nwmIX qEX9xzbQU1NOnhqmOilS9c6nvm+WxRXcp25h/UuMdXdP4KvCGi72yilo0j58RJZK NZKgNDrWMq/E7PAqU2W9Njrp0XGppSiD70fgd27BSx3D9UiBsNH5DxW48uj7MVOY It08D4lA6BD86+5gESRdrSW9RlGgj9d281pA7+16EDorf+MbRAgkZ32r1eFcnbPU oWY1oQY8i1Uezz/N0mZtfBycMQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFBmts1Px CRYKxBgWRygOBWPjvK1VMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE0MzYvQTMwQjVBNEFDNzhDMTFFOEE3NkNEOTE0QzRGOUFFMDIvRTRBRkQ2MzYy MzMyMTFFRTg3MzdFRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAqezBAMEAqezEAMEAqezHDAMAwQCp7MkAwQEp7MgMA0G CSqGSIb3DQEBCwUAA4IBAQBpTPg1ErTBbtaCn6myHYFGmm2wUFnLugjWrEiibrhH NlPerw6FNcz1xOJ+p9rFGWY5Ttqth1OApBJU7vlWz5/rRj1PcyrMf86aqSeNQiaB YoBewdGBh3qYuU+Yt5qUHIjhE+2lOKcycorKOPE7mfTMcbhDtBN8VPOHu26M/wq1 BDFCDdwfZMtGysD7uAktigeH5FoW1hS+ejeAMgenuFH1O3iPd5k8UJrJOsoRiGz5 DJiNUpQpe1XzONwKmWXPCNtEaVbi9+JtkhUmXUm5ShTifV82RI8N1+z4paTQ+q8W 3lbpchintVRyRyVDKBO6I2MkPkzP57lruvGtVTyNT3Ol -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:01 2024 by rpki-client on console-ams.rpki-client.org