$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa File: 3A77AE12CB9C11EC9230F70BC4F9AE02.roa (raw, json) Hash identifier: xC+lWrYZXvtadcDvxH4kaiQpqgAkUzJPZxrt2qBJSww= Subject key identifier: 66:18:F5:94:77:DF:06:1E:C5:2A:49:59:BA:93:F7:A6:8A:D2:2E:88 Certificate issuer: /CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Certificate serial: 055C Authority key identifier: B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa Signing time: Fri 02 Feb 2024 15:00:51 +0000 ROA not before: Fri 02 Feb 2024 15:00:51 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 4594 IP address blocks: 202.74.0.0/22 maxlen: 22 202.74.0.0/24 maxlen: 24 202.74.1.0/24 maxlen: 24 202.74.2.0/24 maxlen: 24 202.74.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Validity Not Before: Feb 2 15:00:51 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd03a2-f912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e0:db:3d:76:1b:42:6a:17:0c:5d:8e:ad:fb: 0d:17:09:fc:c7:37:17:c3:c5:17:09:99:9b:7f:c4: ad:cf:06:45:25:a7:22:51:a4:46:7c:a6:ce:4d:79: 6b:e3:e5:ff:df:46:9b:2b:ab:d4:90:9b:04:4b:5f: bb:2b:c7:c0:c2:49:0f:83:a4:a9:7e:72:56:27:c8: 56:c1:9a:4a:16:82:88:71:83:73:f2:20:d3:7d:a2: 17:b0:e1:8b:02:03:37:fe:55:07:16:1d:c5:fe:9c: 76:ab:78:84:e5:f6:53:97:4f:2a:31:12:d5:a0:ae: ac:eb:1b:7c:c6:6b:a6:6d:49:fd:5b:f2:6f:b5:86: 59:2f:35:42:a8:e3:69:d1:8c:d0:10:87:36:e0:08: 1d:93:96:be:81:a7:60:1a:fa:e9:ea:a7:04:af:98: 2f:84:47:35:49:44:16:56:61:74:f7:62:1f:5a:2f: 8a:c7:b4:8a:db:c1:15:94:18:dc:c1:d9:7d:66:24: 9e:ba:be:2d:30:67:28:1d:24:5d:1b:91:78:35:74: bf:53:57:6d:45:42:97:97:33:10:cd:d7:8a:a1:f0: 36:5e:d4:61:e1:bf:06:35:01:b3:4c:08:dd:be:6f: 75:38:2c:f4:eb:98:83:89:db:89:7f:e5:ad:3a:d1: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:18:F5:94:77:DF:06:1E:C5:2A:49:59:BA:93:F7:A6:8A:D2:2E:88 X509v3 Authority Key Identifier: keyid:B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/3A77AE12CB9C11EC9230F70BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.0.0/22 Signature Algorithm: sha256WithRSAEncryption 20:c3:fc:b4:72:54:8f:51:87:3b:24:6c:af:85:26:c9:4b:55: 0b:2f:2d:50:17:51:17:78:22:a6:ea:ef:4b:02:8b:16:32:03: ce:cf:3f:3e:87:de:83:0b:8a:13:3d:f7:f9:1c:8c:81:54:2b: 7f:3e:a8:d1:5f:22:51:ba:96:a6:53:53:ed:8e:56:b4:67:55: a2:37:65:7f:bb:f2:d2:53:6b:f2:67:08:4b:9a:7e:d5:50:be: 89:83:a0:52:fe:38:20:57:e5:b9:67:5c:03:2e:91:81:54:0f: 34:57:25:4c:8d:39:68:2c:6e:f7:ac:55:c8:83:5a:c1:1d:5c: b6:f3:eb:aa:de:ce:27:03:dd:f7:6f:3a:25:1b:84:b9:02:b8: 42:6c:83:10:a4:a5:83:50:2b:37:52:d3:ed:a9:6f:12:21:54: b0:a1:52:74:bf:e9:6e:0e:37:bf:be:23:ba:c2:71:c6:04:75: c7:34:e4:f3:6d:b1:3a:45:fd:0c:31:11:e2:ae:2d:d9:25:7a: 3c:bd:4c:ba:6f:13:fc:f8:5c:66:07:a8:2c:04:91:bd:07:08: aa:14:0a:6d:e9:bc:c9:e7:e0:9b:04:08:72:cb:8a:e3:aa:7f: ac:43:78:6b:f1:cf:91:a7:e2:e7:ba:50:f0:9c:33:51:0a:a3: 3d:d1:9d:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNDMxMTAvBgNVBAUTKEIzRTAzMDE5NzRENkE0MDgzREI5RjQ5RDVBRDZFNUEx NTc3OTJBMDYwHhcNMjQwMjAyMTUwMDUxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkMDNhMi1mOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uDbPXYbQmoXDF2OrfsNFwn8xzcXw8UXCZmbf8StzwZFJaciUaRGfKbOTXlr 4+X/30abK6vUkJsES1+7K8fAwkkPg6SpfnJWJ8hWwZpKFoKIcYNz8iDTfaIXsOGL AgM3/lUHFh3F/px2q3iE5fZTl08qMRLVoK6s6xt8xmumbUn9W/JvtYZZLzVCqONp 0YzQEIc24Agdk5a+gadgGvrp6qcEr5gvhEc1SUQWVmF092IfWi+Kx7SK28EVlBjc wdl9ZiSeur4tMGcoHSRdG5F4NXS/U1dtRUKXlzMQzdeKofA2XtRh4b8GNQGzTAjd vm91OCz065iDiduJf+WtOtGDAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGYY9ZR3 3wYexSpJWbqT96aK0i6IMB8GA1UdIwQYMBaAFLPgMBl01qQIPbn0nVrW5aFXeSoG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI0My81OTQyMUE0RThE N0MxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9zLUF3R1hUV3BBZzl1ZlNkV3RibG9WZDVL Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MtQXdHWFRXcEFnOXVmU2RXdGJsb1ZkNUtnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZCNDMvNTk0MjFBNEU4RDdDMTFFQjhEOEJENjBCQzRGOUFFMDIvM0E3N0FFMTJD QjlDMTFFQzkyMzBGNzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKSgAwDQYJKoZIhvcNAQELBQADggEBACDD/LRyVI9Rhzsk bK+FJslLVQsvLVAXURd4Iqbq70sCixYyA87PPz6H3oMLihM99/kcjIFUK38+qNFf IlG6lqZTU+2OVrRnVaI3ZX+78tJTa/JnCEuaftVQvomDoFL+OCBX5blnXAMukYFU DzRXJUyNOWgsbvesVciDWsEdXLbz66rezicD3fdvOiUbhLkCuEJsgxCkpYNQKzdS 0+2pbxIhVLChUnS/6W4ON7++I7rCccYEdcc05PNtsTpF/QwxEeKuLdklejy9TLpv E/z4XGYHqCwEkb0HCKoUCm3pvMnn4JsECHLLiuOqf6xDeGvxz5Gn4ue6UPCcM1EK oz3RnWQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:12 2024 by rpki-client on console-ams.rpki-client.org