$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/986E1360F8AB11EE92CA8530C4F9AE02.roa File: 986E1360F8AB11EE92CA8530C4F9AE02.roa (raw, json) Hash identifier: ueA1YfbSxnfQ8JNNUd0Wz1lP6df45/s3ydQBg7G+unQ= Subject key identifier: 9F:8C:E6:8E:F8:0F:18:74:F6:08:8C:7C:11:78:D4:9D:40:1D:FA:EA Certificate issuer: /CN=A912442A/serialNumber=7DE607C4615D7A01FBDD4A86AD5459401A759921 Certificate serial: 03 Authority key identifier: 7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/986E1360F8AB11EE92CA8530C4F9AE02.roa Signing time: Fri 12 Apr 2024 09:03:58 +0000 ROA not before: Fri 12 Apr 2024 09:03:58 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38794 IP address blocks: 85.204.26.0/24 maxlen: 24 85.204.243.0/24 maxlen: 24 85.204.244.0/24 maxlen: 24 85.204.247.0/24 maxlen: 24 85.204.250.0/24 maxlen: 24 85.204.253.0/24 maxlen: 24 86.107.53.0/24 maxlen: 24 89.36.199.0/24 maxlen: 24 89.38.134.0/24 maxlen: 24 89.39.91.0/24 maxlen: 24 89.47.94.0/24 maxlen: 24 92.114.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.crl rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=7DE607C4615D7A01FBDD4A86AD5459401A759921 Validity Not Before: Apr 12 09:03:58 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6618f8fd-5383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:12:b5:45:9f:98:f7:af:1b:5f:a6:4c:0b:e6: 16:00:e7:2b:39:f1:9a:4b:1c:0e:b4:31:13:74:93: 07:5e:52:11:d8:e8:8b:76:86:7f:cf:2c:82:18:5a: f2:ed:42:68:18:c4:59:77:fe:ee:9d:f7:83:a2:23: 4b:10:d1:6f:35:f5:62:d1:37:9f:1f:ef:50:d2:d6: e6:28:23:b0:e7:55:79:06:51:7d:27:c6:b3:d7:ad: ae:a6:01:92:e4:a5:bc:f0:ea:a0:62:96:b1:26:c2: 27:6a:a0:63:07:71:19:16:a6:b6:9c:98:7c:d7:29: 5a:d2:ab:e5:2d:41:24:d8:5f:8f:e3:83:e9:1f:4a: 14:38:0e:8b:6f:40:15:95:b1:0b:98:d5:be:cb:00: c7:ae:20:1e:9e:b7:c0:6c:44:ce:9a:26:e8:94:0e: b7:67:96:3f:f9:15:05:88:f5:3f:ba:b7:5c:52:35: a5:fd:37:4a:83:ea:9e:22:f8:9a:b9:85:15:66:a9: 5c:2c:56:9c:29:7d:04:b2:f4:6d:57:98:46:41:59: 77:ed:31:b5:76:d5:e1:a0:d4:43:da:61:92:16:bc: c0:a8:bf:0f:e2:87:13:82:f8:7e:60:71:2a:46:0a: d4:bc:f8:11:92:95:e6:5d:7d:c9:92:a5:47:1d:2c: c7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:8C:E6:8E:F8:0F:18:74:F6:08:8C:7C:11:78:D4:9D:40:1D:FA:EA X509v3 Authority Key Identifier: keyid:7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/986E1360F8AB11EE92CA8530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 85.204.26.0/24 85.204.243.0-85.204.244.255 85.204.247.0/24 85.204.250.0/24 85.204.253.0/24 86.107.53.0/24 89.36.199.0/24 89.38.134.0/24 89.39.91.0/24 89.47.94.0/24 92.114.109.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:17:39:06:21:c8:d4:d8:0d:78:2c:41:f6:d6:f5:80:29:34: 27:7e:b4:4d:0a:75:90:27:a8:52:c3:1f:2a:bc:23:d1:6c:6e: 2f:ea:2e:da:85:fb:f2:f9:df:f4:c6:cf:59:64:ca:ce:80:b2: 93:71:aa:84:21:7e:39:b4:34:80:4e:99:da:a8:62:76:c0:a8: fa:d2:ef:97:c9:0d:e8:12:36:0e:d1:15:ae:94:9e:ff:d9:c5: 97:54:f6:b6:74:e4:f5:c1:5a:ba:e1:49:a5:4b:98:d4:c4:b5: fe:f8:63:dc:65:8e:a1:23:46:b3:10:b6:02:d3:e6:05:01:96: 5d:32:0f:64:e4:5c:44:ba:a0:96:c2:8f:7c:9e:7e:a2:d5:ab: 09:15:a4:e2:74:ec:cd:1d:d5:88:f4:74:a9:c0:9c:0a:a8:e6: 86:83:fc:e6:60:86:af:e8:fd:47:87:b5:b0:b1:84:59:ea:a6: 35:77:0f:15:b4:17:55:85:cf:16:ad:e1:da:8c:2a:33:52:71: 04:26:96:ae:f0:7a:be:d1:2a:16:b8:5c:b3:cc:df:60:7e:f6: 5c:18:13:82:dc:39:e9:c8:fc:46:d1:81:aa:44:fb:69:b1:57: 73:24:61:33:77:5a:69:55:4d:84:9b:23:19:65:ee:7d:1f:03: 7a:e9:e3:bb -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDQyQTExMC8GA1UEBRMoN0RFNjA3QzQ2MTVEN0EwMUZCREQ0QTg2QUQ1NDU5NDAx QTc1OTkyMTAeFw0yNDA0MTIwOTAzNThaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MThmOGZkLTUzODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYErVFn5j3rxtfpkwL5hYA5ys58ZpLHA60MRN0kwdeUhHY6It2hn/PLIIYWvLt QmgYxFl3/u6d94OiI0sQ0W819WLRN58f71DS1uYoI7DnVXkGUX0nxrPXra6mAZLk pbzw6qBilrEmwidqoGMHcRkWpracmHzXKVrSq+UtQSTYX4/jg+kfShQ4DotvQBWV sQuY1b7LAMeuIB6et8BsRM6aJuiUDrdnlj/5FQWI9T+6t1xSNaX9N0qD6p4i+Jq5 hRVmqVwsVpwpfQSy9G1XmEZBWXftMbV21eGg1EPaYZIWvMCovw/ihxOC+H5gcSpG CtS8+BGSleZdfcmSpUcdLMcbAgMBAAGjggLZMIIC1TAdBgNVHQ4EFgQUn4zmjvgP GHT2CIx8EXjUnUAd+uowHwYDVR0jBBgwFoAUfeYHxGFdegH73UqGrVRZQBp1mSEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NDJBL0U3QzRGOURFRjYy NTExRUU4REFEOEUzNUM0RjlBRTAyL2ZlWUh4R0ZkZWdINzNVcUdyVlJaUUJwMW1T RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvZmVZSHhHRmRlZ0g3M1VxR3JWUlpRQnAxbVNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDQyQS9FN0M0RjlERUY2MjUxMUVFOERBRDhFMzVDNEY5QUUwMi85ODZFMTM2MEY4 QUIxMUVFOTJDQTg1MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBjBggrBgEFBQcBBwEB/wRU MFIwUAQCAAEwSgMEAFXMGjAMAwQAVczzAwQAVcz0AwQAVcz3AwQAVcz6AwQAVcz9 AwQAVms1AwQAWSTHAwQAWSaGAwQAWSdbAwQAWS9eAwQAXHJtMA0GCSqGSIb3DQEB CwUAA4IBAQCcFzkGIcjU2A14LEH21vWAKTQnfrRNCnWQJ6hSwx8qvCPRbG4v6i7a hfvy+d/0xs9ZZMrOgLKTcaqEIX45tDSATpnaqGJ2wKj60u+XyQ3oEjYO0RWulJ7/ 2cWXVPa2dOT1wVq64UmlS5jUxLX++GPcZY6hI0azELYC0+YFAZZdMg9k5FxEuqCW wo98nn6i1asJFaTidOzNHdWI9HSpwJwKqOaGg/zmYIav6P1Hh7WwsYRZ6qY1dw8V tBdVhc8WreHajCozUnEEJpau8Hq+0SoWuFyzzN9gfvZcGBOC3DnpyPxG0YGqRPtp sVdzJGEzd1ppVU2EmyMZZe59HwN66eO7 -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:41 2024 by rpki-client on console-fra.rpki-client.org