$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D1424FC8E0E111ECBFF27B44C4F9AE02.roa File: D1424FC8E0E111ECBFF27B44C4F9AE02.roa (raw, json) Hash identifier: mCano6KzUueBvfY9Xz4WTDEar7H4dlef5+Le1qM7SBU= Subject key identifier: 78:AC:03:FC:D9:18:D6:A0:7A:C8:03:08:73:B6:AD:EE:7D:72:94:D4 Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 020C Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D1424FC8E0E111ECBFF27B44C4F9AE02.roa Signing time: Wed 31 Jan 2024 04:16:37 +0000 ROA not before: Wed 31 Jan 2024 04:16:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 2764 IP address blocks: 168.153.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Jan 31 04:16:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9c9a5-ca16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:53:10:be:1f:d4:41:2f:86:91:40:84:aa: 15:d2:97:be:80:5d:fd:4b:5d:9f:7b:20:b4:97:f8: d3:26:0b:b1:46:d3:ef:ce:92:d2:55:c0:b9:4f:2e: 63:45:48:a6:78:70:43:bc:19:c8:9e:23:b8:81:9c: b0:71:38:7d:90:bf:b6:1e:04:27:b7:ef:08:77:d5: 31:40:ff:4f:75:ea:a5:ee:93:09:03:5d:2a:ba:bd: 8c:95:46:0e:3b:c6:9c:7d:a7:38:f8:f0:c6:52:e3: 8f:1f:5e:8c:62:dc:a7:f3:a7:2f:aa:ca:ac:e5:75: 20:44:e2:2f:36:17:67:7e:6a:d7:69:be:38:f5:02: 53:3e:c7:ac:c8:ae:40:f8:9d:51:67:35:d1:23:d0: 32:e7:34:1a:3f:da:10:64:30:61:bd:4e:b1:25:d3: 59:4c:cf:bb:fa:28:ef:b2:f3:2f:9a:1f:c9:10:01: 50:a6:d5:b1:2f:bb:a0:92:25:ef:d4:64:b7:dc:f7: 9b:f8:41:a6:82:02:0e:6c:2b:b5:f5:b4:91:59:e0: 0d:88:f6:52:70:bc:5a:a0:f7:6f:e8:a1:ab:0b:d5: 43:61:fd:15:b5:56:01:0c:92:c9:3d:e1:e0:dd:3a: ca:d0:02:f1:a1:61:3c:6a:19:42:10:30:d0:ed:5b: 90:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AC:03:FC:D9:18:D6:A0:7A:C8:03:08:73:B6:AD:EE:7D:72:94:D4 X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/D1424FC8E0E111ECBFF27B44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.0.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:db:fb:45:6f:db:bd:c8:81:ba:88:20:c9:b5:bc:03:98:f4: a0:52:b1:be:17:3b:b4:04:18:08:20:f3:fb:23:a7:b3:28:1c: 23:1d:51:4a:02:74:b4:ea:e3:5b:c0:b8:e4:17:b9:e8:14:d2: 0d:44:66:84:71:7e:f3:18:06:42:4d:83:ad:69:85:94:ee:e7: 77:9d:a4:51:f3:8f:70:30:5a:16:5a:2b:37:a0:3e:1c:55:91: 20:a0:78:cd:a2:4f:35:16:e1:d7:17:f8:01:dc:df:a8:ca:e2: ba:4c:85:b9:5c:ec:3a:32:1d:88:ce:1b:47:28:6c:5e:78:6f: 3a:ca:60:c4:93:0d:76:49:0b:4b:a7:44:dc:5b:17:34:a4:de: 9b:c8:58:d4:14:cc:54:41:25:8c:5d:ca:f4:1d:e2:50:bc:1a: 03:90:c7:3b:18:48:6b:92:9e:75:3d:3d:47:a5:b9:ea:a2:c3: c7:98:d7:12:07:80:e2:53:c6:a3:46:03:aa:70:f1:b1:0f:b2: a3:b7:97:c2:57:ab:2e:15:eb:98:6c:26:7c:15:a2:04:41:7a: 2e:d2:d5:3d:21:8d:7e:81:ca:27:83:ae:d8:4a:b6:01:75:17: a3:df:9f:a8:4f:1a:b3:25:d4:c6:97:72:e4:2a:50:17:46:6a: 20:fe:fa:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjQwMTMxMDQxNjM3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YzlhNS1jYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3RTEL4f1EEvhpFAhKoV0pe+gF39S12feyC0l/jTJguxRtPvzpLSVcC5Ty5j RUimeHBDvBnIniO4gZywcTh9kL+2HgQnt+8Id9UxQP9Pdeql7pMJA10qur2MlUYO O8acfac4+PDGUuOPH16MYtyn86cvqsqs5XUgROIvNhdnfmrXab449QJTPsesyK5A +J1RZzXRI9Ay5zQaP9oQZDBhvU6xJdNZTM+7+ijvsvMvmh/JEAFQptWxL7ugkiXv 1GS33Peb+EGmggIObCu19bSRWeANiPZScLxaoPdv6KGrC9VDYf0VtVYBDJLJPeHg 3TrK0ALxoWE8ahlCEDDQ7VuQ6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHisA/zZ GNagesgDCHO2re59cpTUMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvRDE0MjRGQzhF MEUxMTFFQ0JGRjI3QjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAComQAwDQYJKoZIhvcNAQELBQADggEBAGrb+0Vv273IgbqI IMm1vAOY9KBSsb4XO7QEGAgg8/sjp7MoHCMdUUoCdLTq41vAuOQXuegU0g1EZoRx fvMYBkJNg61phZTu53edpFHzj3AwWhZaKzegPhxVkSCgeM2iTzUW4dcX+AHc36jK 4rpMhblc7DoyHYjOG0cobF54bzrKYMSTDXZJC0unRNxbFzSk3pvIWNQUzFRBJYxd yvQd4lC8GgOQxzsYSGuSnnU9PUelueqiw8eY1xIHgOJTxqNGA6pw8bEPsqO3l8JX qy4V65hsJnwVogRBei7S1T0hjX6ByieDrthKtgF1F6Pfn6hPGrMl1MaXcuQqUBdG aiD++mM= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org