$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C8633DEAF4C011EAA7B25986C4F9AE02.roa File: C8633DEAF4C011EAA7B25986C4F9AE02.roa (raw, json) Hash identifier: FCootQeZhJ26nrYCzG47VShnHJqvFsV75lucs4L+w5U= Subject key identifier: 25:65:F0:96:66:A3:DC:0E:29:71:DD:13:47:4A:72:95:24:22:5E:A8 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 06FD Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C8633DEAF4C011EAA7B25986C4F9AE02.roa Signing time: Tue 12 Mar 2024 22:51:14 +0000 ROA not before: Tue 12 Mar 2024 22:51:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 24373 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 116.204.210.0/24 maxlen: 24 116.204.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 22:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 12 22:51:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f0dc62-3efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fc:23:e1:12:68:fb:c5:9c:ce:94:ea:4d:a4: e5:6e:41:ea:45:45:29:2d:92:8c:d8:4e:a2:b9:24: db:e4:05:b7:96:73:a2:a9:d0:d5:00:e4:17:f8:00: 9d:12:91:35:ab:01:6a:ed:cf:c1:9b:b5:66:08:e8: a6:a4:04:b4:95:87:86:77:0c:9e:df:fe:1a:9f:75: a3:15:3f:e1:f8:3a:e7:36:9e:9c:ef:ba:10:30:dd: d2:ef:31:ac:cf:6a:1a:b1:3d:52:88:dd:d2:98:d0: 4b:62:9d:df:da:32:b6:43:45:f4:9a:02:f0:34:db: 3c:52:7b:01:44:80:5c:af:d4:8a:2e:48:5d:93:81: de:be:1c:5c:9d:c6:da:67:2b:35:cf:fc:dc:e2:f2: 78:02:70:81:ab:bf:ba:3a:ff:32:41:a3:f3:e9:18: 34:aa:bb:f6:c2:7e:53:6e:78:f2:aa:d3:37:f1:2b: 06:10:ec:de:b0:42:1c:ac:af:82:dc:f6:14:75:91: 4f:3e:d3:06:86:f7:8e:44:d0:22:97:78:bf:af:88: 1d:5f:ab:c5:99:0f:96:a8:87:a8:8c:b3:99:e6:c6: 03:7f:9d:ff:a5:35:8f:e4:c9:0c:d5:0e:3b:d3:33: 78:af:e5:14:8e:f5:8f:65:8b:1a:1e:07:32:59:4a: af:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:65:F0:96:66:A3:DC:0E:29:71:DD:13:47:4A:72:95:24:22:5E:A8 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C8633DEAF4C011EAA7B25986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/22 Signature Algorithm: sha256WithRSAEncryption 94:80:ac:68:c1:b5:3e:e0:b9:98:3d:69:5d:24:bd:c1:00:dc: 07:57:43:46:9c:49:8f:02:9a:d0:a3:14:7b:c1:c2:a2:b6:cd: 74:55:ff:11:af:0b:d9:83:20:b4:dc:d9:ff:77:99:9a:1c:8c: 15:97:46:57:d6:48:f2:7b:6c:54:30:79:69:a3:8e:f1:cc:c2: 2f:96:28:d3:db:3d:60:25:59:01:5b:12:26:8d:ab:63:a9:99: 15:8e:a8:3e:23:71:b9:f2:d6:18:e0:3e:5b:f7:1c:ec:1c:1a: e8:ca:a8:62:d4:a1:a2:3f:3f:5b:b3:09:93:d9:05:ae:de:45: a2:39:e2:00:68:bf:86:95:d4:5b:98:1d:d0:05:58:1e:fd:4b: af:9c:f8:d0:fa:f7:b1:f6:f6:5b:16:9d:43:98:18:74:32:0f: b0:b1:d2:f7:61:14:38:c2:e9:ca:1f:cc:57:12:76:e9:a8:f3: 83:ce:e7:ee:ae:93:9a:23:9c:cf:23:3d:71:6b:3a:fc:1a:4d: bb:1e:24:8b:b4:d4:1d:96:9c:52:e5:10:24:f3:86:1a:7e:a6: 64:03:22:e7:a7:44:49:e7:e4:c6:80:00:c2:10:23:a5:d3:1c: 04:02:a3:20:11:e4:0f:39:ec:f6:ae:31:dd:63:6e:eb:fc:65: 15:6f:cd:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjQwMzEyMjI1MTE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYwZGM2Mi0zZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPwj4RJo+8WczpTqTaTlbkHqRUUpLZKM2E6iuSTb5AW3lnOiqdDVAOQX+ACd EpE1qwFq7c/Bm7VmCOimpAS0lYeGdwye3/4an3WjFT/h+DrnNp6c77oQMN3S7zGs z2oasT1SiN3SmNBLYp3f2jK2Q0X0mgLwNNs8UnsBRIBcr9SKLkhdk4Hevhxcncba Zys1z/zc4vJ4AnCBq7+6Ov8yQaPz6Rg0qrv2wn5TbnjyqtM38SsGEOzesEIcrK+C 3PYUdZFPPtMGhveORNAil3i/r4gdX6vFmQ+WqIeojLOZ5sYDf53/pTWP5MkM1Q47 0zN4r+UUjvWPZYsaHgcyWUqvywIDAQABo4IClTCCApEwHQYDVR0OBBYEFCVl8JZm o9wOKXHdE0dKcpUkIl6oMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvQzg2MzNERUFG NEMwMTFFQUE3QjI1OTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0zNAwDQYJKoZIhvcNAQELBQADggEBAJSArGjBtT7guZg9 aV0kvcEA3AdXQ0acSY8CmtCjFHvBwqK2zXRV/xGvC9mDILTc2f93mZocjBWXRlfW SPJ7bFQweWmjjvHMwi+WKNPbPWAlWQFbEiaNq2OpmRWOqD4jcbny1hjgPlv3HOwc GujKqGLUoaI/P1uzCZPZBa7eRaI54gBov4aV1FuYHdAFWB79S6+c+ND697H29lsW nUOYGHQyD7Cx0vdhFDjC6cofzFcSdumo84PO5+6uk5ojnM8jPXFrOvwaTbseJIu0 1B2WnFLlECTzhhp+pmQDIuenREnn5MaAAMIQI6XTHAQCoyAR5A857PauMd1jbuv8 ZRVvzZY= -----END CERTIFICATE-----Generated at Mon May 20 23:42:24 2024 by rpki-client on console-ams.rpki-client.org