$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D0BE1D2AE0E111ECBFF27B44C4F9AE02.roa File: D0BE1D2AE0E111ECBFF27B44C4F9AE02.roa (raw, json) Hash identifier: uI2iVhse4NRPkVsaBb9fpYUDi8yOrHFRhjYHI177+tY= Subject key identifier: FA:7F:51:E5:6D:AE:B8:04:7E:3F:16:52:59:A8:67:03:2F:9E:2F:48 Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 020B Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D0BE1D2AE0E111ECBFF27B44C4F9AE02.roa Signing time: Wed 31 Jan 2024 04:16:36 +0000 ROA not before: Wed 31 Jan 2024 04:16:36 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 23477 IP address blocks: 168.153.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Jan 31 04:16:36 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9c9a4-702b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dd:2c:82:db:3e:0a:36:fa:c1:92:1d:fc:36: 6a:fa:96:96:09:54:ac:77:61:d3:1e:41:9c:80:ad: 09:43:58:25:2c:aa:42:1c:c3:92:d3:71:a3:26:b4: 63:24:5e:e6:65:fb:40:52:39:52:80:0d:bc:44:6c: 0d:39:78:b3:d9:f3:b3:61:dd:cd:42:09:40:c4:1f: 70:5e:f2:9f:97:7d:be:24:a8:3a:15:81:dd:82:a7: 83:e2:42:4c:f2:7b:b9:e8:6a:f2:6c:5b:ff:a2:ed: a3:c6:bd:6f:01:d1:1c:22:c7:d6:ce:49:cb:aa:20: e8:6e:5e:16:ff:b7:68:5a:85:36:30:36:da:a9:d9: cb:02:00:72:85:1a:cd:b4:48:d6:cc:10:23:93:93: 3e:d0:e2:a3:7d:fc:c1:00:0e:55:a3:66:9e:10:9c: b2:6c:db:57:8f:a7:7b:d8:f5:17:74:ee:b7:6c:b4: 7a:08:0e:9e:9c:2c:f6:15:ff:94:05:d2:79:a5:ea: 96:d4:3a:a9:a3:70:c0:7c:56:48:7e:7c:b0:46:37: c9:4a:e7:3d:01:1c:ce:fa:88:40:a1:3a:50:cd:a6: be:64:57:b4:64:98:28:9f:c4:b0:cf:6a:ca:13:68: ec:6e:e1:a7:01:ce:71:14:3d:52:b9:63:44:58:4b: 57:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7F:51:E5:6D:AE:B8:04:7E:3F:16:52:59:A8:67:03:2F:9E:2F:48 X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D0BE1D2AE0E111ECBFF27B44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.100.0/24 Signature Algorithm: sha256WithRSAEncryption 49:53:63:f0:5a:ed:a4:dc:a9:0d:99:45:91:81:80:e0:7e:8b: b5:a9:86:e9:39:43:97:8b:e7:a4:65:93:50:d2:f5:c1:47:d3: b7:b2:79:7a:40:12:b2:cb:0e:17:ad:25:0b:9c:98:09:06:0b: 21:f6:3c:47:3a:14:5d:cb:23:da:c5:cd:ba:d7:3c:f3:21:41: 44:24:bb:4e:cb:d5:75:af:64:f1:02:b0:db:fc:2a:a9:e3:ef: 24:75:a2:bd:66:d5:b9:ca:26:2e:26:fe:e2:bb:bb:d5:5a:15: dc:b8:9c:ed:48:07:75:63:07:4b:f1:43:28:03:da:12:b6:c2: 79:cd:4a:1b:fc:6e:5b:b3:96:92:27:7a:f7:82:f7:a5:8e:62: 8f:38:82:78:f0:ee:13:2c:d4:dc:e0:bf:cc:1c:63:27:a8:10: 1d:ce:dc:29:82:60:85:ee:96:3e:09:7c:66:9d:b5:38:ae:78: 7c:2e:ce:34:10:9e:35:25:f6:39:7e:50:9e:0e:7f:b3:a6:85: 5d:61:3b:b1:e1:84:73:15:19:15:cc:fc:62:6f:2b:f9:18:12: 02:6e:8a:c2:5c:82:94:4b:7c:ca:eb:a2:61:b1:f5:cb:42:06: b3:b4:71:44:bd:b8:b4:4c:ea:d7:35:61:ee:78:35:77:38:77: ae:ce:76:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjQwMTMxMDQxNjM2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YzlhNC03MDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs90sgts+Cjb6wZId/DZq+paWCVSsd2HTHkGcgK0JQ1glLKpCHMOS03GjJrRj JF7mZftAUjlSgA28RGwNOXiz2fOzYd3NQglAxB9wXvKfl32+JKg6FYHdgqeD4kJM 8nu56GrybFv/ou2jxr1vAdEcIsfWzknLqiDobl4W/7doWoU2MDbaqdnLAgByhRrN tEjWzBAjk5M+0OKjffzBAA5Vo2aeEJyybNtXj6d72PUXdO63bLR6CA6enCz2Ff+U BdJ5peqW1Dqpo3DAfFZIfnywRjfJSuc9ARzO+ohAoTpQzaa+ZFe0ZJgon8Swz2rK E2jsbuGnAc5xFD1SuWNEWEtXGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPp/UeVt rrgEfj8WUlmoZwMvni9IMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvRDBCRTFEMkFF MEUxMTFFQ0JGRjI3QjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComWQwDQYJKoZIhvcNAQELBQADggEBAElTY/Ba7aTcqQ2Z RZGBgOB+i7Wphuk5Q5eL56Rlk1DS9cFH07eyeXpAErLLDhetJQucmAkGCyH2PEc6 FF3LI9rFzbrXPPMhQUQku07L1XWvZPECsNv8Kqnj7yR1or1m1bnKJi4m/uK7u9Va Fdy4nO1IB3VjB0vxQygD2hK2wnnNShv8bluzlpIneveC96WOYo84gnjw7hMs1Nzg v8wcYyeoEB3O3CmCYIXulj4JfGadtTiueHwuzjQQnjUl9jl+UJ4Of7OmhV1hO7Hh hHMVGRXM/GJvK/kYEgJuisJcgpRLfMrromGx9ctCBrO0cUS9uLRM6tc1Ye54NXc4 d67Odjs= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org