$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa File: AF08CB4CC77511EC81DCA645C4F9AE02.roa (raw, json) Hash identifier: fREbYLMV88tqGvvsrcEA7GtjZgjRqwtByyDrN3vWfMI= Subject key identifier: 4D:42:53:6C:C8:B6:67:88:EB:22:EA:75:0A:F6:5E:D8:2F:E8:D9:B5 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 0271 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa Signing time: Thu 01 Feb 2024 03:35:05 +0000 ROA not before: Thu 01 Feb 2024 03:35:05 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134697 IP address blocks: 87.121.72.0/23 maxlen: 24 87.121.74.0/23 maxlen: 24 87.121.92.0/23 maxlen: 24 87.121.94.0/23 maxlen: 24 87.121.248.0/23 maxlen: 24 87.121.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Feb 1 03:35:05 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bb1168-c155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:3d:f5:79:2b:be:68:c1:53:cd:18:26:90: 14:e8:dc:5b:6a:a1:d4:6c:05:1c:14:fb:e2:99:ea: aa:93:45:f8:7f:ad:d9:f6:00:a0:1e:44:6b:8d:65: a9:55:65:a7:a5:6d:c5:d5:39:cf:06:4e:7f:d2:b4: f4:d8:47:9a:55:9e:4d:63:44:7d:f6:24:fe:05:12: d5:b8:01:58:f0:14:60:b9:6d:2b:fe:71:d3:2e:84: 8f:73:21:5f:58:34:1d:63:bf:be:62:7f:bd:c5:cb: 7d:77:8d:75:ea:9b:9f:34:f9:b1:cf:73:62:36:e2: 4f:a7:a0:8d:a8:de:74:7a:ea:4d:fc:db:99:4d:84: b8:90:b7:32:53:7a:db:fd:bc:ec:df:4f:71:da:9b: 66:c5:96:c5:1a:2c:94:0f:08:73:28:4f:9f:bc:9b: 04:b3:5a:0d:a3:30:8d:32:aa:f1:3c:19:c9:8c:36: ab:f8:05:6f:a8:c1:03:22:78:49:95:c3:31:6e:54: cb:b7:76:b8:33:e9:f4:4e:e0:ac:87:0a:4e:14:64: dc:7a:9f:d9:45:4d:59:14:2e:20:86:6f:b9:82:1a: da:77:96:05:c4:33:26:57:a7:af:57:a4:6f:58:62: d5:cc:4c:14:90:67:6d:4f:aa:9a:a5:01:c6:21:a1: 4b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:42:53:6C:C8:B6:67:88:EB:22:EA:75:0A:F6:5E:D8:2F:E8:D9:B5 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 87.121.72.0/22 87.121.92.0/22 87.121.248.0/22 Signature Algorithm: sha256WithRSAEncryption b3:03:c7:32:f0:47:b0:f1:bd:b0:78:a6:2a:42:a2:98:df:bf: b5:f7:b2:02:d3:6c:e3:fc:5d:22:0b:b3:9e:49:83:c9:cb:5b: ad:0e:1d:56:28:84:42:ef:0d:f1:9c:58:ef:04:d0:b2:25:a9: 52:41:99:18:d0:0b:8a:1d:37:2f:46:fb:c6:3f:71:c6:09:12: fe:8b:c2:8f:28:7e:9b:2e:02:74:bf:bf:63:65:4f:15:ce:76: e3:67:8a:50:c9:c5:b2:8c:31:f5:71:aa:a0:dc:b7:64:ce:34: ec:3a:db:71:35:e9:63:da:32:df:38:08:4a:89:5e:15:0d:68: ce:3d:bd:55:72:90:e7:85:de:e7:a9:fb:02:68:31:12:23:a4: 5c:6e:68:10:26:62:ba:5e:3a:c8:3e:ef:1b:3e:86:c3:70:fe: 6a:a6:3e:79:30:42:4c:19:ad:85:b9:e5:4f:92:51:76:4a:f0: 15:4b:c8:dc:d1:16:f7:60:58:20:67:de:bb:43:8e:dd:98:1e: 40:75:71:97:e1:4b:34:bf:67:d9:7d:31:41:09:32:1a:d0:1e: 03:0c:29:54:5a:3c:c1:f1:85:67:ce:3b:7a:44:11:84:20:93: d4:76:e9:41:3a:19:c9:ed:41:8d:92:9a:0a:27:e7:07:63:62: d7:ae:d8:98 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjQwMjAxMDMzNTA1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiMTE2OC1jMTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun499XkrvmjBU80YJpAU6NxbaqHUbAUcFPvimeqqk0X4f63Z9gCgHkRrjWWp VWWnpW3F1TnPBk5/0rT02EeaVZ5NY0R99iT+BRLVuAFY8BRguW0r/nHTLoSPcyFf WDQdY7++Yn+9xct9d4116pufNPmxz3NiNuJPp6CNqN50eupN/NuZTYS4kLcyU3rb /bzs309x2ptmxZbFGiyUDwhzKE+fvJsEs1oNozCNMqrxPBnJjDar+AVvqMEDInhJ lcMxblTLt3a4M+n0TuCshwpOFGTcep/ZRU1ZFC4ghm+5ghrad5YFxDMmV6evV6Rv WGLVzEwUkGdtT6qapQHGIaFLTQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE1CU2zI tmeI6yLqdQr2Xtgv6Nm1MB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTc1Q0MvMTNFN0Q3MkVBRkUzMTFFQ0EyQ0IwNjZEQzRGOUFFMDIvQUYwOENCNEND Nzc1MTFFQzgxRENBNjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJXeUgDBAJXeVwDBAJXefgwDQYJKoZIhvcNAQELBQADggEB ALMDxzLwR7DxvbB4pipCopjfv7X3sgLTbOP8XSILs55Jg8nLW60OHVYohELvDfGc WO8E0LIlqVJBmRjQC4odNy9G+8Y/ccYJEv6Lwo8ofpsuAnS/v2NlTxXOduNnilDJ xbKMMfVxqqDct2TONOw623E16WPaMt84CEqJXhUNaM49vVVykOeF3uep+wJoMRIj pFxuaBAmYrpeOsg+7xs+hsNw/mqmPnkwQkwZrYW55U+SUXZK8BVLyNzRFvdgWCBn 3rtDjt2YHkB1cZfhSzS/Z9l9MUEJMhrQHgMMKVRaPMHxhWfOO3pEEYQgk9R26UE6 GcntQY2Smgon5wdjYteu2Jg= -----END CERTIFICATE-----Generated at Fri Jun 7 05:07:55 2024 by rpki-client on console-ams.rpki-client.org