$ rpki-client -vvf rpki.apnic.net/member_repository/A91F894B/5DE921FC549B11E583AAC16EC4F9AE02/524FF242CBEA11EE88969C0CC4F9AE02.roa File: 524FF242CBEA11EE88969C0CC4F9AE02.roa (raw, json) Hash identifier: aC8EINXIC01Iys9eKuxANUXX5lS0IOCfT6iahbBp2dk= Subject key identifier: 9F:21:F3:5C:A2:FD:E3:61:CF:5C:F6:A8:96:E5:97:1E:75:32:80:E9 Certificate issuer: /CN=A91F894B/serialNumber=F0885BCBFC4F8B9E02CC8D91929B6D528352AE28 Certificate serial: 23B8 Authority key identifier: F0:88:5B:CB:FC:4F:8B:9E:02:CC:8D:91:92:9B:6D:52:83:52:AE:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ihby_xPi54CzI2RkpttUoNSrig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F894B/5DE921FC549B11E583AAC16EC4F9AE02/524FF242CBEA11EE88969C0CC4F9AE02.roa Signing time: Tue 02 Jul 2024 16:22:38 +0000 ROA not before: Tue 02 Jul 2024 16:22:38 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151981 IP address blocks: 163.53.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F894B/5DE921FC549B11E583AAC16EC4F9AE02/8Ihby_xPi54CzI2RkpttUoNSrig.crl rsync://rpki.apnic.net/member_repository/A91F894B/5DE921FC549B11E583AAC16EC4F9AE02/8Ihby_xPi54CzI2RkpttUoNSrig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ihby_xPi54CzI2RkpttUoNSrig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9144 (0x23b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F894B/serialNumber=F0885BCBFC4F8B9E02CC8D91929B6D528352AE28 Validity Not Before: Jul 2 16:22:38 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6684294d-7874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:57:cb:a0:e3:88:5a:fb:47:60:2e:49:e5: 18:07:7b:b7:df:f2:e8:06:e0:38:83:97:a2:33:7f: fc:06:42:6b:52:28:12:6d:50:5c:bb:78:2f:ad:0c: b5:41:e3:af:dc:37:ed:9e:d4:e4:7e:7b:f4:57:6a: 46:04:8f:dd:57:b8:df:d6:66:21:08:30:ee:85:5e: 20:51:1a:09:3f:e7:36:ae:e6:2e:d4:3d:e9:a7:81: 48:f8:69:4b:d1:43:3c:25:0f:14:2a:a1:ef:24:2c: 3d:ab:f7:f9:fc:b7:96:f6:68:4c:20:16:73:a9:b6: 8c:99:8b:bb:fe:52:fb:90:36:6b:bc:87:88:e4:6c: eb:e4:f7:5e:dd:92:f6:a0:bc:e2:18:aa:4d:0d:1b: fa:b8:1c:f7:6d:d6:68:11:85:c7:da:17:d4:b2:bf: 45:cd:c4:0e:24:28:0d:f9:74:9e:26:71:27:5f:60: 70:59:18:0f:e0:7a:6a:87:ce:79:e4:76:cc:76:18: 97:94:57:bc:72:fb:a0:85:b6:cc:d3:4c:c0:b6:d5: 33:a9:4a:d9:4c:56:00:3b:8c:7e:4f:61:44:82:c4: 0d:80:86:d8:d1:c1:69:e1:94:30:3c:f7:7a:3f:21: 41:cd:4b:55:73:fb:b6:a4:6c:3e:0b:5e:8e:90:26: 45:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:21:F3:5C:A2:FD:E3:61:CF:5C:F6:A8:96:E5:97:1E:75:32:80:E9 X509v3 Authority Key Identifier: keyid:F0:88:5B:CB:FC:4F:8B:9E:02:CC:8D:91:92:9B:6D:52:83:52:AE:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F894B/5DE921FC549B11E583AAC16EC4F9AE02/8Ihby_xPi54CzI2RkpttUoNSrig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Ihby_xPi54CzI2RkpttUoNSrig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F894B/5DE921FC549B11E583AAC16EC4F9AE02/524FF242CBEA11EE88969C0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.53.148.0/24 Signature Algorithm: sha256WithRSAEncryption a8:5b:56:42:80:ff:12:62:f0:61:9f:aa:fd:7a:dd:db:1c:36: a9:b2:33:40:81:db:da:c8:ea:a2:a8:77:bd:f2:78:a9:9b:a4: 8f:c9:cb:9a:6d:c3:96:38:c4:70:91:9d:b7:52:c8:ff:2e:5b: 2f:f7:e1:e1:dc:3f:ac:b7:2f:bd:16:09:fe:15:99:72:38:48: ac:4a:29:bf:58:04:3b:ea:e6:21:7b:21:60:56:b6:06:1a:8a: 27:3b:bf:42:db:da:d4:80:42:89:0a:fb:08:bd:a5:1d:16:f0: c6:c1:47:3a:15:79:ca:1e:7a:d1:f8:6b:9c:cb:32:81:2b:27: 03:be:8f:8a:8e:89:41:c7:f0:ac:65:f6:69:8c:3a:77:af:88: 2c:11:25:03:e9:7a:4a:82:78:e1:27:4a:30:1b:15:89:22:3d: db:6b:0a:0d:a2:ce:93:72:fc:0b:c7:5a:35:75:ae:f6:3f:2f: 6e:05:23:a0:f1:b0:bd:7d:12:5a:56:87:8d:8c:c4:45:df:43: 93:0d:e9:f2:05:11:ba:ab:91:3b:60:be:b9:24:9c:e6:41:12: b0:b1:d4:67:cd:bb:26:a0:50:32:df:8d:74:63:f2:a9:18:ca: ac:18:06:5e:5f:ec:20:26:5d:3c:37:ae:b5:1c:04:03:24:5d: 1e:01:a0:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICI7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5NEIxMTAvBgNVBAUTKEYwODg1QkNCRkM0RjhCOUUwMkNDOEQ5MTkyOUI2RDUy ODM1MkFFMjgwHhcNMjQwNzAyMTYyMjM4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0Mjk0ZC03ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxklXy6DjiFr7R2AuSeUYB3u33/LoBuA4g5eiM3/8BkJrUigSbVBcu3gvrQy1 QeOv3DftntTkfnv0V2pGBI/dV7jf1mYhCDDuhV4gURoJP+c2ruYu1D3pp4FI+GlL 0UM8JQ8UKqHvJCw9q/f5/LeW9mhMIBZzqbaMmYu7/lL7kDZrvIeI5Gzr5Pde3ZL2 oLziGKpNDRv6uBz3bdZoEYXH2hfUsr9FzcQOJCgN+XSeJnEnX2BwWRgP4Hpqh855 5HbMdhiXlFe8cvughbbM00zAttUzqUrZTFYAO4x+T2FEgsQNgIbY0cFp4ZQwPPd6 PyFBzUtVc/u2pGw+C16OkCZFjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ8h81yi /eNhz1z2qJbllx51MoDpMB8GA1UdIwQYMBaAFPCIW8v8T4ueAsyNkZKbbVKDUq4o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk0Qi81REU5MjFGQzU0 OUIxMUU1ODNBQUMxNkVDNEY5QUUwMi84SWhieV94UGk1NEN6STJSa3B0dFVvTlNy aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJaGJ5X3hQaTU0Q3pJMlJrcHR0VW9OU3JpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg5NEIvNURFOTIxRkM1NDlCMTFFNTgzQUFDMTZFQzRGOUFFMDIvNTI0RkYyNDJD QkVBMTFFRTg4OTY5QzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACjNZQwDQYJKoZIhvcNAQELBQADggEBAKhbVkKA/xJi8GGf qv163dscNqmyM0CB29rI6qKod73yeKmbpI/Jy5ptw5Y4xHCRnbdSyP8uWy/34eHc P6y3L70WCf4VmXI4SKxKKb9YBDvq5iF7IWBWtgYaiic7v0Lb2tSAQokK+wi9pR0W 8MbBRzoVecoeetH4a5zLMoErJwO+j4qOiUHH8Kxl9mmMOneviCwRJQPpekqCeOEn SjAbFYkiPdtrCg2izpNy/AvHWjV1rvY/L24FI6DxsL19ElpWh42MxEXfQ5MN6fIF EbqrkTtgvrkknOZBErCx1GfNuyagUDLfjXRj8qkYyqwYBl5f7CAmXTw3rrUcBAMk XR4BoMc= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:06 2024 by rpki-client on console-ams.rpki-client.org