$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa File: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (raw, json) Hash identifier: iehwdc5g9sl8RTSyVN8ksy1mA6Zv+UzQYUuHN7LzFHs= Subject key identifier: 0E:7B:05:D1:8F:3A:A9:D4:EC:7B:AA:F5:B9:DD:E6:49:03:6F:AB:93 Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0356 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa Signing time: Fri 01 Mar 2024 02:44:48 +0000 ROA not before: Fri 01 Mar 2024 02:44:48 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 9342 IP address blocks: 144.218.0.0/16 maxlen: 24 169.201.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: Mar 1 02:44:48 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e14120-3b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0e:08:d6:27:23:24:b0:6e:52:ad:81:9d:48: 41:cb:39:dd:88:83:00:53:74:6e:d8:42:3b:5d:ab: ff:74:6b:f1:94:c4:a8:b1:52:81:99:01:bb:10:2a: a3:0d:d2:14:28:91:82:9d:62:eb:cc:c3:6a:96:ee: 94:dc:fc:57:63:e5:21:7f:93:94:f7:70:d2:46:49: 1a:83:33:f4:fe:78:ba:e0:47:68:3b:2f:48:f7:d9: 1c:84:c6:47:53:8d:6f:b3:12:42:e7:76:ef:39:f5: d9:e0:9a:84:9b:b2:54:f6:1c:6b:c4:15:d5:48:e3: b6:e1:d6:eb:c4:c5:64:09:99:e7:74:d9:b2:24:6e: f4:cf:d7:52:ff:69:67:e3:e3:d9:ee:6d:31:76:01: bc:7c:bb:fb:4e:35:2b:89:1c:e7:7a:4b:6f:71:ba: 3d:26:2b:db:b1:30:0e:0c:51:9e:72:a6:de:dc:a5: 7a:10:00:db:4d:b0:16:d5:f2:94:30:3a:4b:bf:56: c8:b3:cd:02:95:29:33:f3:1d:b6:17:f9:44:04:b2: 7f:1d:47:13:c6:e6:f5:ac:4c:89:23:12:28:96:86: 58:a9:63:fe:ca:0a:c5:04:2d:94:9e:3a:24:28:76: ff:34:57:79:c8:5d:e5:2f:2b:cb:ed:af:e8:de:bb: 3e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:7B:05:D1:8F:3A:A9:D4:EC:7B:AA:F5:B9:DD:E6:49:03:6F:AB:93 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.218.0.0/16 169.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 02:1c:de:2e:f7:9b:f6:52:1a:60:31:5e:ca:fe:56:19:e6:8f: 8e:a0:17:d7:90:de:f2:6b:ca:d1:49:f8:b8:ed:e1:97:76:40: 8f:87:80:f3:27:7e:52:71:c3:44:dc:70:ab:b7:89:ff:37:79: aa:f3:6f:e8:eb:38:98:17:e7:4d:5d:fb:ee:97:7a:51:ef:26: 04:23:6d:76:95:24:1d:51:cb:4d:e3:8d:00:0d:59:78:c3:91: ed:01:ea:70:93:3b:5f:6d:52:07:1c:e5:24:a5:7b:5a:80:38: 1f:b1:0a:0d:4b:30:c4:99:f9:ec:77:26:8f:2d:5b:ba:7f:1f: 3f:a0:bb:5d:fd:f8:f8:d7:d6:58:27:fe:62:2f:38:c6:94:31: 7b:e0:2b:49:52:5a:69:4c:be:a2:11:af:9a:75:90:c4:81:45: e1:b7:f9:80:45:92:7e:29:82:3b:7a:68:ce:0a:5c:f8:3c:49: ec:71:22:81:dd:4b:87:d8:54:b3:41:56:06:9a:4e:e3:8f:25: ac:ed:b5:b9:5c:de:ab:72:df:1d:db:07:84:92:60:90:10:9f: 8d:c9:ea:07:4c:7e:b0:0f:fb:32:b9:7c:85:61:ae:fc:54:e9: 61:f6:fa:da:53:95:f4:6b:7f:75:3d:f1:8b:77:5c:82:93:8d: dd:45:db:54 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjQwMzAxMDI0NDQ4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNDEyMC0zYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A4I1icjJLBuUq2BnUhByzndiIMAU3Ru2EI7Xav/dGvxlMSosVKBmQG7ECqj DdIUKJGCnWLrzMNqlu6U3PxXY+Uhf5OU93DSRkkagzP0/ni64EdoOy9I99kchMZH U41vsxJC53bvOfXZ4JqEm7JU9hxrxBXVSOO24dbrxMVkCZnndNmyJG70z9dS/2ln 4+PZ7m0xdgG8fLv7TjUriRznektvcbo9JivbsTAODFGecqbe3KV6EADbTbAW1fKU MDpLv1bIs80ClSkz8x22F/lEBLJ/HUcTxub1rEyJIxIoloZYqWP+ygrFBC2Unjok KHb/NFd5yF3lLyvL7a/o3rs+iwIDAQABo4ICmTCCApUwHQYDVR0OBBYEFA57BdGP OqnU7Huq9bnd5kkDb6uTMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjIvQUI2QjI3RjY1RUUyMTFFQ0FGQTY0QjQ0QzRGOUFFMDIvQ0E3RENDRkU1 RUU1MTFFQ0E2QjhDQTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQcBAf8E FDASMBAEAgABMAoDAwCQ2gMDAKnJMA0GCSqGSIb3DQEBCwUAA4IBAQACHN4u95v2 UhpgMV7K/lYZ5o+OoBfXkN7ya8rRSfi47eGXdkCPh4DzJ35SccNE3HCrt4n/N3mq 82/o6ziYF+dNXfvul3pR7yYEI212lSQdUctN440ADVl4w5HtAepwkztfbVIHHOUk pXtagDgfsQoNSzDEmfnsdyaPLVu6fx8/oLtd/fj419ZYJ/5iLzjGlDF74CtJUlpp TL6iEa+adZDEgUXht/mARZJ+KYI7emjOClz4PEnscSKB3UuH2FSzQVYGmk7jjyWs 7bW5XN6rct8d2weEkmCQEJ+NyeoHTH6wD/syuXyFYa78VOlh9vraU5X0a391PfGL d1yCk43dRdtU -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org