$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/EF31EA383CCB11EEB6AD691FC4F9AE02.roa File: EF31EA383CCB11EEB6AD691FC4F9AE02.roa (raw, json) Hash identifier: 0TH3pFFeu/tczdDzP7o00s82+D28sOdbS209Bz1AYNc= Subject key identifier: C4:7C:E0:4F:F6:19:00:46:D5:A9:26:C6:A8:74:42:20:47:24:F7:8C Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1CCB Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/EF31EA383CCB11EEB6AD691FC4F9AE02.roa Signing time: Tue 10 Oct 2023 16:43:20 +0000 ROA not before: Tue 10 Oct 2023 16:43:20 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 58424 IP address blocks: 146.88.200.0/21 maxlen: 24 167.179.0.0/23 maxlen: 24 167.179.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7371 (0x1ccb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Oct 10 16:43:20 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65257f27-6ee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:63:57:d5:dc:d0:e3:09:cb:ae:7d:99:fd:ac: fa:48:ad:17:4b:bb:4e:26:a0:27:2f:06:3a:3a:37: bf:34:ce:27:9b:7f:1d:5c:4b:73:14:a3:5d:47:52: 15:db:2e:5c:1d:52:e1:96:32:10:71:53:64:16:6d: e6:05:bb:ec:0c:4d:08:3c:92:46:44:74:19:cf:f4: b1:6f:dc:e4:f2:ea:a8:85:17:a2:8c:34:46:51:d2: de:82:21:e4:39:fe:f7:9f:ba:6a:b2:91:c7:9c:27: f6:ea:82:78:55:6b:e1:63:e8:5c:9e:dd:d2:e8:6d: 82:4b:83:81:1a:ed:8a:16:be:25:f5:4f:26:79:5d: f5:3c:27:78:f1:77:b6:d2:f0:d3:67:7c:e7:7b:3b: d6:67:77:09:b7:ec:1e:02:31:d4:9e:e0:b8:45:9e: 5b:3b:81:51:d0:7b:01:37:a7:cd:0c:a7:5c:59:f3: b7:3c:46:51:50:98:e0:74:df:b1:fa:56:1c:91:54: a6:bf:b7:fc:c1:22:57:3f:bd:3a:c0:90:fe:36:a5: 49:ca:5b:4c:fa:cd:df:7a:1b:65:6a:b4:6c:95:de: 29:c7:25:ad:7e:7d:be:f0:2b:b5:4f:21:70:93:e1: f3:fc:01:b6:88:55:c1:2c:7e:22:b6:3c:02:f6:12: 30:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7C:E0:4F:F6:19:00:46:D5:A9:26:C6:A8:74:42:20:47:24:F7:8C X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/EF31EA383CCB11EEB6AD691FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.88.200.0/21 167.179.0.0/23 167.179.20.0/23 Signature Algorithm: sha256WithRSAEncryption b4:6a:5b:41:03:f8:31:c4:1d:11:02:44:82:72:5c:52:bc:f1: 4e:41:4c:fa:d0:4e:ab:15:f1:68:94:46:6f:ee:8a:66:ca:ce: 9f:bb:ae:c1:18:d5:2a:57:be:34:95:36:e9:89:30:b4:08:0a: e4:cf:35:65:ed:92:90:ee:c4:96:0a:e5:49:7f:fa:61:b8:84: 34:63:cd:be:37:a3:ab:ba:8e:85:db:3c:cc:0e:61:95:ec:c4: 0c:bd:89:78:68:48:2d:b7:a2:90:fa:98:10:b9:d9:76:58:96: c6:00:62:b3:26:d4:9e:62:11:3a:ba:5e:54:71:13:bd:a9:db: 45:50:9b:cd:22:82:55:2c:66:0a:dd:7c:c9:71:75:47:e3:94: 80:3b:e7:63:cf:ff:b7:29:cc:f9:b2:4d:f6:3d:dd:b4:6b:03: 35:35:48:f6:37:a5:0d:08:5e:c0:29:0b:3c:cb:cb:96:8b:f1: 2d:e5:fc:0f:d9:a8:f1:db:d3:5b:00:6b:38:ba:0d:78:24:28: 60:6a:df:fc:f6:ad:c3:e2:57:2b:35:81:8b:92:14:4c:32:0e: 1d:bc:c4:2c:12:05:62:df:ba:93:f4:e2:45:12:ae:80:13:0d: 9d:4d:5e:8d:c0:a0:04:92:32:0d:d5:05:38:44:b0:7a:44:64: 7b:a0:2d:fd -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjMxMDEwMTY0MzIwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI1N2YyNy02ZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+GNX1dzQ4wnLrn2Z/az6SK0XS7tOJqAnLwY6Oje/NM4nm38dXEtzFKNdR1IV 2y5cHVLhljIQcVNkFm3mBbvsDE0IPJJGRHQZz/Sxb9zk8uqohReijDRGUdLegiHk Of73n7pqspHHnCf26oJ4VWvhY+hcnt3S6G2CS4OBGu2KFr4l9U8meV31PCd48Xe2 0vDTZ3znezvWZ3cJt+weAjHUnuC4RZ5bO4FR0HsBN6fNDKdcWfO3PEZRUJjgdN+x +lYckVSmv7f8wSJXP706wJD+NqVJyltM+s3fehtlarRsld4pxyWtfn2+8Cu1TyFw k+Hz/AG2iFXBLH4itjwC9hIwKwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMR84E/2 GQBG1akmxqh0QiBHJPeMMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIzQkMvMzA0MTk3RTg4RjlCMTFFNkJFQzVDQjI1QzRGOUFFMDIvRUYzMUVBMzgz Q0NCMTFFRUI2QUQ2OTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAOSWMgDBAGnswADBAGnsxQwDQYJKoZIhvcNAQELBQADggEB ALRqW0ED+DHEHRECRIJyXFK88U5BTPrQTqsV8WiURm/uimbKzp+7rsEY1SpXvjSV NumJMLQICuTPNWXtkpDuxJYK5Ul/+mG4hDRjzb43o6u6joXbPMwOYZXsxAy9iXho SC23opD6mBC52XZYlsYAYrMm1J5iETq6XlRxE72p20VQm80iglUsZgrdfMlxdUfj lIA752PP/7cpzPmyTfY93bRrAzU1SPY3pQ0IXsApCzzLy5aL8S3l/A/ZqPHb01sA azi6DXgkKGBq3/z2rcPiVys1gYuSFEwyDh28xCwSBWLfupP04kUSroATDZ1NXo3A oASSMg3VBThEsHpEZHugLf0= -----END CERTIFICATE-----Generated at Fri May 31 17:44:51 2024 by rpki-client on console-fra.rpki-client.org