$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CDD0C38ECCE111EB90AF2C7AC4F9AE02.roa File: CDD0C38ECCE111EB90AF2C7AC4F9AE02.roa (raw, json) Hash identifier: e16SVTPpwjEg2RE9Hpi4GSSEsMxTTKPyjdQEKVYgs6Q= Subject key identifier: 8D:6B:DB:83:23:FE:A9:49:F9:D7:6D:61:2F:48:F2:A5:31:D9:82:D6 Certificate issuer: /CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD Certificate serial: 0BC7 Authority key identifier: 16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CDD0C38ECCE111EB90AF2C7AC4F9AE02.roa Signing time: Sat 02 Nov 2024 17:56:01 +0000 ROA not before: Sat 02 Nov 2024 17:56:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139704 IP address blocks: 185.205.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.crl rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD Validity Not Before: Nov 2 17:56:01 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672667b1-83d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:20:9f:7c:b1:a9:de:c1:ed:54:3a:c7:15:a1: e1:05:ae:67:f7:d0:3e:af:6e:d6:ad:95:f6:c5:b1: ec:c5:20:2c:64:fa:de:80:60:a0:fe:4b:95:a5:4e: 8f:3f:31:33:58:0a:f8:10:87:d0:dd:cd:36:d6:d6: 96:30:be:7c:a3:63:45:08:7a:ad:24:84:8f:41:2e: 94:40:98:7a:b6:d4:31:51:ac:f4:37:14:1d:6a:c7: ba:ab:83:ad:62:fc:e9:52:26:8b:21:2d:90:92:68: b6:5c:56:fd:7e:7d:69:24:18:f6:4a:29:46:9c:57: 2c:ce:db:9d:7c:cf:7d:cf:25:f2:3a:96:21:05:bb: 3a:c3:b7:be:57:17:15:32:42:b9:fd:2c:f3:09:68: 69:93:26:c9:ab:32:85:36:33:f8:9c:8d:7d:fc:07: 4e:cb:c0:3b:ba:f9:8e:7a:9c:da:c1:6d:64:06:d1: 9f:f6:88:93:f0:7d:71:69:93:eb:56:b7:83:46:f3: 6c:85:01:af:53:e0:72:58:00:5c:d6:ae:6d:5e:42: b9:b4:d6:12:95:a2:80:0a:30:f4:2c:da:26:1d:fd: ee:5e:5f:5d:52:c3:26:75:bd:b1:c6:27:1f:2c:a7: ef:42:39:44:8c:d7:53:c8:9a:dd:f9:f6:98:ff:6e: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:6B:DB:83:23:FE:A9:49:F9:D7:6D:61:2F:48:F2:A5:31:D9:82:D6 X509v3 Authority Key Identifier: keyid:16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/CDD0C38ECCE111EB90AF2C7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.205.143.0/24 Signature Algorithm: sha256WithRSAEncryption 26:f9:ea:da:18:63:6b:c0:db:81:80:91:5c:70:fa:10:0c:1e: c2:dd:43:b0:48:cf:45:be:61:a3:8d:40:4b:de:d6:64:f2:a2: f5:65:ba:b3:48:a4:0e:16:f1:10:8d:25:31:41:3c:c9:6c:95: d4:45:8e:7f:3f:14:cd:9d:7b:55:e1:a9:39:c8:c9:90:d2:19: ef:09:67:3d:9f:6b:e2:d5:d8:e2:a3:52:ad:bb:d1:22:2c:f5: d1:a4:bd:d4:de:0d:ae:7b:ec:25:87:ee:f2:38:e1:3a:96:a6: f7:fa:dd:5f:20:18:c2:37:bc:a9:84:ac:4e:39:d5:f5:85:29: d9:20:65:f3:d8:3b:6c:e3:02:b6:bc:9b:57:44:af:26:c9:fb: 95:f2:97:ba:27:dd:fc:68:9f:df:df:be:31:17:01:50:55:e5: 7d:8b:7e:2a:fb:db:41:3e:69:88:47:39:40:1a:78:e2:a7:13: 3c:d7:84:cf:af:ca:f4:24:59:60:ae:8a:3e:e6:6b:21:3c:31: f5:92:6e:fc:a3:42:d6:fd:09:51:6f:56:41:b3:87:43:cd:28: 95:a3:d4:d3:7c:f2:c0:23:bd:b0:da:d3:9e:bf:0f:54:d8:44: 73:da:ff:42:a9:78:50:6e:db:d7:a5:31:29:f0:dc:ca:60:59: e3:e8:89:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKDE2MzMxNjc2MjExQUVFNjc3MzQ4NUI2NTIzM0M2MkMz QTQ1ODdBRkQwHhcNMjQxMTAyMTc1NjAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjdiMS04M2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SCffLGp3sHtVDrHFaHhBa5n99A+r27WrZX2xbHsxSAsZPregGCg/kuVpU6P PzEzWAr4EIfQ3c021taWML58o2NFCHqtJISPQS6UQJh6ttQxUaz0NxQdase6q4Ot YvzpUiaLIS2Qkmi2XFb9fn1pJBj2SilGnFcsztudfM99zyXyOpYhBbs6w7e+VxcV MkK5/SzzCWhpkybJqzKFNjP4nI19/AdOy8A7uvmOepzawW1kBtGf9oiT8H1xaZPr VreDRvNshQGvU+ByWABc1q5tXkK5tNYSlaKACjD0LNomHf3uXl9dUsMmdb2xxicf LKfvQjlEjNdTyJrd+faY/27N4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFI1r24Mj /qlJ+ddtYS9I8qUx2YLWMB8GA1UdIwQYMBaAFBYzFnYhGu5nc0hbZSM8YsOkWHr9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC84RDhGMEFCRTBC NUExMUVBOTA5MjMwNjZDNEY5QUUwMi9Gak1XZGlFYTdtZHpTRnRsSXp4aXc2Ulll djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZqTVdkaUVhN21kelNGdGxJenhpdzZSWWV2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvOEQ4RjBBQkUwQjVBMTFFQTkwOTIzMDY2QzRGOUFFMDIvQ0REMEMzOEVD Q0UxMTFFQjkwQUYyQzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC5zY8wDQYJKoZIhvcNAQELBQADggEBACb56toYY2vA24GA kVxw+hAMHsLdQ7BIz0W+YaONQEve1mTyovVlurNIpA4W8RCNJTFBPMlsldRFjn8/ FM2de1XhqTnIyZDSGe8JZz2fa+LV2OKjUq270SIs9dGkvdTeDa577CWH7vI44TqW pvf63V8gGMI3vKmErE451fWFKdkgZfPYO2zjAra8m1dErybJ+5Xyl7on3fxon9/f vjEXAVBV5X2Lfir720E+aYhHOUAaeOKnEzzXhM+vyvQkWWCuij7mayE8MfWSbvyj Qtb9CVFvVkGzh0PNKJWj1NN88sAjvbDa056/D1TYRHPa/0KpeFBu29elMSnw3Mpg WePoiVg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org