$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa File: C7ADA138F4C011EAA7B25986C4F9AE02.roa (raw, json) Hash identifier: ZvMLSrUPQ33u5ZhgQdqlMG0W6GMcImOIoEssSBeu11s= Subject key identifier: 46:05:2A:FB:D1:12:1F:9F:61:ED:1D:E6:38:36:EE:CC:D8:B0:5F:C7 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 06FC Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa Signing time: Tue 12 Mar 2024 22:51:13 +0000 ROA not before: Tue 12 Mar 2024 22:51:13 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138527 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 22:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1788 (0x6fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 12 22:51:13 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f0dc61-515d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:96:70:6d:ee:73:62:e8:ae:02:51:bc:1b:66: 16:6f:ca:06:fa:d0:be:4b:c3:c8:bb:9d:99:5c:54: ea:c0:b2:7e:60:6c:ea:24:02:95:4f:1d:65:b1:b9: 1f:66:42:1e:c1:33:43:44:7c:29:c8:74:be:f8:2c: 54:be:2e:95:50:87:d5:15:24:44:9a:ee:d2:fc:c0: b5:d9:28:87:40:12:b4:4c:b6:f3:63:e7:a3:42:61: 95:24:bb:71:42:0c:49:e6:ff:bc:37:0e:20:2c:ca: 9f:9d:b0:ab:44:b3:7d:20:b3:3d:50:01:2d:34:fa: 6e:d3:99:1e:2f:09:7f:f0:97:18:b1:f8:0c:7f:4d: 97:0f:d5:6b:69:8c:d5:59:16:89:d3:95:cf:30:65: 3f:fe:72:f9:5e:94:01:00:d4:43:54:a3:c5:94:e7: e7:95:fe:7e:8b:07:c5:03:72:32:23:59:cf:a1:da: 9a:e3:79:89:8b:22:be:0c:5a:8b:0e:0e:20:ae:42: 35:bf:21:f2:75:54:8c:2e:a2:1d:bf:44:3b:70:21: 05:a1:70:45:b8:ed:7c:10:1e:29:6f:c4:45:7d:49: af:7c:72:ec:d3:e1:8f:a7:0e:9a:ea:dd:3b:94:8b: 4e:ee:26:2c:07:40:56:ee:e3:4b:73:83:23:8d:d8: db:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:05:2A:FB:D1:12:1F:9F:61:ED:1D:E6:38:36:EE:CC:D8:B0:5F:C7 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:17:61:09:4b:f7:8b:d0:e9:59:43:93:0c:d6:4c:94:00:01: 8d:5c:27:ae:17:13:7f:37:56:a5:60:4c:3d:87:ea:a1:4b:36: 80:df:1f:d1:53:6d:6e:ae:8e:b5:7d:58:07:71:d6:1e:06:d6: 4f:06:9a:aa:98:c7:9a:79:67:60:6f:35:d0:5a:fd:19:01:a9: d0:3f:2f:57:97:97:1a:9f:3e:9a:cd:c0:7e:05:32:4d:f1:73: 32:df:f2:c1:53:ec:e7:a0:b2:cd:ee:c1:bf:a3:f5:8c:fd:c9: a4:b6:c8:87:fa:00:bf:a9:f1:b1:19:36:c1:f3:65:be:d4:dc: ca:c9:71:ab:fd:6f:4f:55:ab:30:7a:64:f4:bc:71:0b:72:b8: ae:ff:1e:73:33:1a:05:f1:f0:5c:b5:98:38:77:06:e1:ef:c6: 35:4e:4d:95:1b:c6:b1:cf:60:00:16:94:61:46:91:53:28:3f: 45:17:83:e1:cb:d8:95:f9:bf:e3:a6:02:b8:d0:33:0d:c8:d8: 0b:80:37:af:06:33:72:72:d1:55:dd:36:c7:69:11:fd:2c:97: 96:d9:fc:9a:1d:b5:bc:d8:80:b9:aa:aa:03:7d:e4:aa:61:6e: ea:d4:1e:35:82:f1:ed:41:a2:59:84:11:ef:50:6a:e4:70:ef: b6:92:3d:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjQwMzEyMjI1MTEzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZGM2MS01MTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25Zwbe5zYuiuAlG8G2YWb8oG+tC+S8PIu52ZXFTqwLJ+YGzqJAKVTx1lsbkf ZkIewTNDRHwpyHS++CxUvi6VUIfVFSREmu7S/MC12SiHQBK0TLbzY+ejQmGVJLtx QgxJ5v+8Nw4gLMqfnbCrRLN9ILM9UAEtNPpu05keLwl/8JcYsfgMf02XD9VraYzV WRaJ05XPMGU//nL5XpQBANRDVKPFlOfnlf5+iwfFA3IyI1nPodqa43mJiyK+DFqL Dg4grkI1vyHydVSMLqIdv0Q7cCEFoXBFuO18EB4pb8RFfUmvfHLs0+GPpw6a6t07 lItO7iYsB0BW7uNLc4MjjdjbbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEYFKvvR Eh+fYe0d5jg27szYsF/HMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvQzdBREExMzhG NEMwMTFFQUE3QjI1OTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF0zNAwDQYJKoZIhvcNAQELBQADggEBAF0XYQlL94vQ6VlD kwzWTJQAAY1cJ64XE383VqVgTD2H6qFLNoDfH9FTbW6ujrV9WAdx1h4G1k8GmqqY x5p5Z2BvNdBa/RkBqdA/L1eXlxqfPprNwH4FMk3xczLf8sFT7Oegss3uwb+j9Yz9 yaS2yIf6AL+p8bEZNsHzZb7U3MrJcav9b09VqzB6ZPS8cQtyuK7/HnMzGgXx8Fy1 mDh3BuHvxjVOTZUbxrHPYAAWlGFGkVMoP0UXg+HL2JX5v+OmArjQMw3I2AuAN68G M3Jy0VXdNsdpEf0sl5bZ/JodtbzYgLmqqgN95KphburUHjWC8e1BolmEEe9QauRw 77aSPdA= -----END CERTIFICATE-----Generated at Mon May 20 23:16:45 2024 by rpki-client on console-fra.rpki-client.org