$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa File: 28A46886845B11EFA46A8F64C4F9AE02.roa (raw, json) Hash identifier: sevUQyUvjPMF9HveqY7x9H8RZ5glkYZorL+cw/BRRwM= Subject key identifier: 8C:6E:51:81:40:13:A0:41:D0:F3:4A:CB:C1:E2:2F:80:A5:99:30:E3 Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 0298 Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa Signing time: Mon 07 Oct 2024 03:20:53 +0000 ROA not before: Mon 07 Oct 2024 03:20:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133602 IP address blocks: 168.153.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Oct 7 03:20:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=67035395-6bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c1:71:9c:6e:76:62:70:26:bc:ce:f1:7e:d6: d5:7c:cb:cb:81:11:84:61:af:04:46:a3:90:4a:af: 07:fa:13:bd:fd:b7:b3:45:f5:e4:bd:77:a2:ff:22: 87:d1:02:0a:8d:a5:04:be:04:d0:59:63:4b:c9:16: 67:10:66:4a:3d:a3:72:72:96:8d:3b:ec:7e:51:47: cb:55:dd:b3:93:96:a1:a0:4b:f7:aa:e2:23:b6:b3: f2:6c:0e:7e:0e:75:f3:86:96:8b:50:f7:cb:a0:09: 1a:1e:40:15:ce:66:2d:9f:a9:b2:35:19:11:32:8e: b4:1b:5d:cc:38:bb:b7:8a:cf:78:3e:37:1f:51:89: e6:52:c9:3b:bd:19:f4:c5:fb:5b:ac:e9:cf:a3:27: 2a:9c:aa:1c:ff:db:01:c5:57:10:66:93:2e:67:40: 20:5e:2a:11:2d:e2:a0:c2:8b:31:fc:58:bc:f9:ac: 0f:b8:04:81:97:1f:01:72:ca:a0:84:c1:c8:07:d9: 76:34:9b:94:e3:b0:38:0e:30:d5:6b:98:7d:89:5d: 14:42:0d:b6:26:ff:43:60:f0:69:94:44:7a:22:b9: 3f:2d:e2:9e:49:83:e6:b9:c5:43:34:f7:1d:c8:7e: 5f:eb:f7:db:c4:77:1b:70:2b:b7:7d:2f:fd:30:eb: f9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:6E:51:81:40:13:A0:41:D0:F3:4A:CB:C1:E2:2F:80:A5:99:30:E3 X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/28A46886845B11EFA46A8F64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.2.0/24 Signature Algorithm: sha256WithRSAEncryption d2:90:b5:0f:6f:bf:3c:3c:a6:65:6f:fe:e2:9c:9d:3e:6b:a4: 1b:87:b7:b3:6b:61:57:e2:c1:8e:db:73:c4:d9:05:38:08:3a: 52:39:34:3c:bf:3f:4b:00:15:d4:41:20:69:45:41:a5:89:2b: 94:d8:13:58:d9:c9:dd:f5:52:2f:6c:81:08:c1:1e:8b:6c:c6: 25:f7:c2:43:2c:3b:c8:32:ed:5a:f6:41:10:72:0f:e1:a8:7f: a0:b1:1b:cc:09:ba:e1:0e:94:da:2a:99:4b:06:80:55:65:5d: 0d:2d:c5:19:54:9e:59:07:e4:df:e7:9f:77:db:26:dc:d0:aa: 1b:5d:32:9a:eb:9d:93:27:08:cd:ca:b0:87:ca:c4:38:96:b9: 30:64:a3:90:0b:f2:1e:8b:52:85:2b:c4:ef:c3:df:e5:9d:4c: e3:b0:22:f4:21:07:9f:8a:ab:cc:9b:19:cf:7d:71:68:39:71: 53:ba:4a:4a:ee:db:c7:3f:bf:aa:40:6b:ed:47:14:91:64:e3: 08:6e:d0:0d:97:d5:19:b6:3e:a0:7e:46:25:f0:f4:14:0e:d3: 8b:fd:4c:84:39:74:97:94:42:c9:7f:a5:44:85:cb:f1:fe:8c: e1:1d:ef:e4:4c:e6:e2:5b:0a:fa:22:68:2f:f4:2c:9a:f4:f2: a3:56:81:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjQxMDA3MDMyMDUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzNTM5NS02YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcFxnG52YnAmvM7xftbVfMvLgRGEYa8ERqOQSq8H+hO9/bezRfXkvXei/yKH 0QIKjaUEvgTQWWNLyRZnEGZKPaNycpaNO+x+UUfLVd2zk5ahoEv3quIjtrPybA5+ DnXzhpaLUPfLoAkaHkAVzmYtn6myNRkRMo60G13MOLu3is94PjcfUYnmUsk7vRn0 xftbrOnPoycqnKoc/9sBxVcQZpMuZ0AgXioRLeKgwosx/Fi8+awPuASBlx8Bcsqg hMHIB9l2NJuU47A4DjDVa5h9iV0UQg22Jv9DYPBplER6Irk/LeKeSYPmucVDNPcd yH5f6/fbxHcbcCu3fS/9MOv5UQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIxuUYFA E6BB0PNKy8HiL4ClmTDjMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvMjhBNDY4ODY4 NDVCMTFFRkE0NkE4RjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComQIwDQYJKoZIhvcNAQELBQADggEBANKQtQ9vvzw8pmVv /uKcnT5rpBuHt7NrYVfiwY7bc8TZBTgIOlI5NDy/P0sAFdRBIGlFQaWJK5TYE1jZ yd31Ui9sgQjBHotsxiX3wkMsO8gy7Vr2QRByD+Gof6CxG8wJuuEOlNoqmUsGgFVl XQ0txRlUnlkH5N/nn3fbJtzQqhtdMprrnZMnCM3KsIfKxDiWuTBko5AL8h6LUoUr xO/D3+WdTOOwIvQhB5+Kq8ybGc99cWg5cVO6Skru28c/v6pAa+1HFJFk4whu0A2X 1Rm2PqB+RiXw9BQO04v9TIQ5dJeUQsl/pUSFy/H+jOEd7+RM5uJbCvoiaC/0LJr0 8qNWgWI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org