$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/F17996F2B21C11EFBDB2BA25C4F9AE02.roa File: F17996F2B21C11EFBDB2BA25C4F9AE02.roa (raw, json) Hash identifier: Ha8TSc6ylXlULsjvosE3YzdnyL+kFFYkOUZjNUZAybA= Subject key identifier: E6:0F:CF:62:E2:53:E1:63:7C:E1:89:F7:AA:4F:F8:B5:A8:17:66:99 Certificate issuer: /CN=A919DA26/serialNumber=252C00E97E7A786959388CF204A4C7E645580C68 Certificate serial: 0B Authority key identifier: 25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/F17996F2B21C11EFBDB2BA25C4F9AE02.roa Signing time: Wed 04 Dec 2024 08:51:25 +0000 ROA not before: Wed 04 Dec 2024 08:51:25 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150329 IP address blocks: 193.36.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.crl rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA26 Validity Not Before: Dec 4 08:51:25 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6750180d-f9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:88:83:ed:d4:36:38:ea:d6:fc:8b:81:51:8e: 5f:30:cd:6c:03:d5:57:96:ed:89:02:1d:83:14:2f: ee:84:2e:d1:a6:cb:b2:16:9e:48:e0:74:f2:98:e0: c7:f4:63:11:24:db:36:6f:12:bf:c5:7e:52:34:27: 21:d6:25:81:f1:a4:cd:12:42:bd:57:84:fd:f7:68: 52:44:4b:e4:fc:2a:3d:92:8f:12:cd:43:89:7b:b4: 17:fe:ae:8f:7b:8f:33:16:02:0f:f3:f0:f1:3e:92: 8e:fc:ea:82:ad:1e:00:e2:1d:fd:aa:96:47:84:ab: 28:4d:e0:0a:a4:74:61:3d:ae:c7:a8:e3:8c:b2:61: 86:2a:af:fe:e5:9a:16:bb:f6:37:c3:82:e5:cf:1a: ba:f6:e5:70:e6:e5:ad:5e:1e:bd:55:df:e8:0e:57: d6:be:08:9a:87:44:53:86:22:08:1d:74:47:fb:ab: 67:77:1d:45:c7:c0:73:e5:67:9b:71:4d:91:17:9e: 61:6e:d9:dd:d7:54:c5:2e:4a:e6:1f:d4:b3:99:44: d8:e1:a7:73:6b:54:63:d0:ca:cc:07:10:34:af:c0: 11:84:47:0f:c0:6e:f5:fe:5c:6b:f4:9a:59:40:4d: 74:34:a5:14:06:19:10:0a:e1:0b:f3:f4:6e:8a:df: f1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0F:CF:62:E2:53:E1:63:7C:E1:89:F7:AA:4F:F8:B5:A8:17:66:99 X509v3 Authority Key Identifier: keyid:25:2C:00:E9:7E:7A:78:69:59:38:8C:F2:04:A4:C7:E6:45:58:0C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/JSwA6X56eGlZOIzyBKTH5kVYDGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JSwA6X56eGlZOIzyBKTH5kVYDGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA26/F5105E4CA2F711EFA2368F77C4F9AE02/F17996F2B21C11EFBDB2BA25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 193.36.72.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:90:d6:06:40:cd:78:f7:8f:b9:e8:b6:6f:cc:a1:aa:3e:e0: 78:77:a6:4f:d0:53:3a:cf:24:6d:6a:bd:82:f9:d0:0e:5f:89: 1e:d9:88:53:d3:98:48:fa:45:1d:e0:fb:06:01:bd:66:1a:85: f4:6c:ab:c6:4a:20:b4:3e:86:3b:49:f5:8d:3f:d4:ac:cb:90: 5b:a3:ec:6b:d0:18:7b:ae:22:f4:ca:58:fc:30:48:41:65:1b: d5:1b:8c:60:26:e1:74:a5:ea:3c:7c:5a:0d:bc:97:b9:e1:e6: 35:a6:16:2f:bf:80:65:1e:0f:da:86:20:48:6d:d2:3d:7a:eb: a9:59:ba:2e:d4:c4:bc:32:59:f9:a3:a0:05:b1:6b:9f:bb:64: b9:fc:03:95:b1:df:f7:a0:f9:82:f2:f5:75:05:2f:d4:9f:ca: 6f:64:25:75:c1:24:88:68:64:e8:ec:ea:55:89:80:a0:b4:22: 3e:22:14:d1:97:89:f1:72:cf:a5:66:5d:cf:a1:57:a3:c3:64: a4:b0:a7:a8:a3:75:4b:ab:99:a4:ab:2b:84:04:9c:6b:1e:d6: 78:c6:a4:f9:d8:a9:75:25:53:58:12:52:13:af:c5:99:d8:1a: 9c:aa:67:2e:b8:91:48:aa:24:ef:70:b5:d2:1d:4d:d3:27:a1: 79:e0:56:00 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 REEyNjExMC8GA1UEBRMoMjUyQzAwRTk3RTdBNzg2OTU5Mzg4Q0YyMDRBNEM3RTY0 NTU4MEM2ODAeFw0yNDEyMDQwODUxMjVaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTAxODBkLWY5YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3iIPt1DY46tb8i4FRjl8wzWwD1VeW7YkCHYMUL+6ELtGmy7IWnkjgdPKY4Mf0 YxEk2zZvEr/FflI0JyHWJYHxpM0SQr1XhP33aFJES+T8Kj2SjxLNQ4l7tBf+ro97 jzMWAg/z8PE+ko786oKtHgDiHf2qlkeEqyhN4AqkdGE9rseo44yyYYYqr/7lmha7 9jfDguXPGrr25XDm5a1eHr1V3+gOV9a+CJqHRFOGIggddEf7q2d3HUXHwHPlZ5tx TZEXnmFu2d3XVMUuSuYf1LOZRNjhp3NrVGPQyswHEDSvwBGERw/AbvX+XGv0mllA TXQ0pRQGGRAK4Qvz9G6K3/FlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5g/PYuJT 4WN84Yn3qk/4tagXZpkwHwYDVR0jBBgwFoAUJSwA6X56eGlZOIzyBKTH5kVYDGgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEQTI2L0Y1MTA1RTRDQTJG NzExRUZBMjM2OEY3N0M0RjlBRTAyL0pTd0E2WDU2ZUdsWk9JenlCS1RINWtWWURH Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSlN3QTZYNTZlR2xaT0l6eUJLVEg1a1ZZREdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REEyNi9GNTEwNUU0Q0EyRjcxMUVGQTIzNjhGNzdDNEY5QUUwMi9GMTc5OTZGMkIy MUMxMUVGQkRCMkJBMjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMEkSDANBgkqhkiG9w0BAQsFAAOCAQEAmpDWBkDNePePuei2 b8yhqj7geHemT9BTOs8kbWq9gvnQDl+JHtmIU9OYSPpFHeD7BgG9ZhqF9Gyrxkog tD6GO0n1jT/UrMuQW6Psa9AYe64i9MpY/DBIQWUb1RuMYCbhdKXqPHxaDbyXueHm NaYWL7+AZR4P2oYgSG3SPXrrqVm6LtTEvDJZ+aOgBbFrn7tkufwDlbHf96D5gvL1 dQUv1J/Kb2QldcEkiGhk6OzqVYmAoLQiPiIU0ZeJ8XLPpWZdz6FXo8NkpLCnqKN1 S6uZpKsrhAScax7WeMak+dipdSVTWBJSE6/FmdganKpnLriRSKok73C10h1N0yeh eeBWAA== -----END CERTIFICATE-----Generated at Sat Apr 5 07:06:58 2025 by rpki-client