$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/0E119FAAB9E011EBAD14BB7DC4F9AE02.roa File: 0E119FAAB9E011EBAD14BB7DC4F9AE02.roa (raw, json) Hash identifier: Sivi2Kbc64FMEijL1Z+xUJUHkkAiAfVx9MklISjB/ow= Subject key identifier: 36:9B:4E:79:42:55:7A:16:B3:D0:E4:16:7C:D9:54:7D:39:88:A1:B2 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 086A Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/0E119FAAB9E011EBAD14BB7DC4F9AE02.roa Signing time: Thu 22 Jun 2023 21:52:34 +0000 ROA not before: Thu 22 Jun 2023 21:52:34 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 10103 IP address blocks: 138.19.0.0/16 maxlen: 24 155.137.128.0/17 maxlen: 24 159.117.224.0/19 maxlen: 24 165.84.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Jun 22 21:52:34 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6494c2a1-dd11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ae:37:e5:0c:b7:f1:8c:41:58:61:a4:f2:1d: 4d:c3:65:15:bd:2a:6c:06:58:37:73:57:0e:86:c9: 6c:6b:66:09:b7:8e:77:22:6c:91:64:ba:bf:4a:8a: 19:86:7b:dd:b8:ed:fc:01:45:b2:1f:47:f3:82:c3: e8:a8:fa:51:f2:35:30:71:0a:c3:07:b2:06:06:3d: 4c:c2:b8:18:33:44:87:ad:53:e4:90:49:9b:5e:98: 4e:b4:66:29:34:78:f0:32:58:e5:ff:3e:6f:d7:cd: c6:eb:c2:24:f7:99:af:16:38:41:ba:f3:40:95:52: 58:bd:65:e7:73:51:84:1b:5a:31:1a:a4:84:5d:5d: 03:0f:f9:e4:5f:f0:f4:eb:ec:3a:7e:0e:64:6e:c4: da:46:81:92:5e:9f:f1:1b:0d:bd:4b:49:5e:7d:31: 21:68:ac:b2:11:ea:2a:6a:0c:95:9e:38:40:54:39: 06:1b:88:da:d0:9c:f4:13:46:03:18:77:f5:70:cb: 2c:00:33:c6:6c:3a:ef:5d:82:30:82:59:b4:8b:d2: 2d:ae:aa:5f:78:47:1d:b8:7f:91:60:be:19:2d:c7: c9:bf:68:d8:46:41:68:27:5d:24:00:a9:37:8c:08: 11:ff:e0:4f:86:46:d9:c8:27:aa:31:c3:20:f7:c6: 91:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9B:4E:79:42:55:7A:16:B3:D0:E4:16:7C:D9:54:7D:39:88:A1:B2 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/0E119FAAB9E011EBAD14BB7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.19.0.0/16 155.137.128.0/17 159.117.224.0/19 165.84.128.0/18 Signature Algorithm: sha256WithRSAEncryption 9c:5e:a3:77:6a:bc:cc:82:33:5e:51:ca:0d:a6:7a:7b:f9:09: 37:19:2f:7b:5c:87:2c:0c:7d:0a:51:ca:fe:5a:09:c4:10:d7: 9a:5c:6f:ed:28:21:10:fa:22:c7:aa:82:3b:e6:44:19:58:ca: d5:d5:39:a4:10:54:18:d5:b7:33:1a:81:84:85:c9:77:71:bb: 32:ad:1d:6e:ba:9d:d3:6b:a9:01:71:09:ad:fd:15:5b:f7:3e: 1d:bc:5f:0b:ab:b0:eb:e8:0b:52:1d:2c:6f:f8:52:e5:72:66: b9:2a:ac:73:86:cf:4b:ee:07:d7:98:a7:00:d3:fa:29:22:e6: 70:b5:b7:98:c8:7d:20:df:5d:7e:ff:bb:91:77:7c:03:56:6f: fd:34:87:1a:ed:69:a6:a2:9b:21:70:9b:f4:f6:bc:7e:f8:a3: 93:2d:5c:33:5f:1c:c7:29:ba:04:f5:53:91:6b:bc:4c:5c:68: e5:67:f4:6a:0e:e0:30:48:d2:f1:74:36:1d:25:ed:b7:78:0a: 72:f7:79:3c:93:75:4f:1c:a1:18:c5:cf:81:53:8d:de:6a:fb: c1:bf:46:ed:5d:97:2c:5c:b7:76:1a:68:6d:62:8e:40:2f:f0: 1b:43:cd:4b:66:fb:cb:36:fe:39:1f:1e:ca:08:73:fc:b7:aa: 18:a3:5b:b9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjMwNjIyMjE1MjM0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0YzJhMS1kZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06435Qy38YxBWGGk8h1Nw2UVvSpsBlg3c1cOhslsa2YJt453ImyRZLq/SooZ hnvduO38AUWyH0fzgsPoqPpR8jUwcQrDB7IGBj1MwrgYM0SHrVPkkEmbXphOtGYp NHjwMljl/z5v183G68Ik95mvFjhBuvNAlVJYvWXnc1GEG1oxGqSEXV0DD/nkX/D0 6+w6fg5kbsTaRoGSXp/xGw29S0lefTEhaKyyEeoqagyVnjhAVDkGG4ja0Jz0E0YD GHf1cMssADPGbDrvXYIwglm0i9ItrqpfeEcduH+RYL4ZLcfJv2jYRkFoJ10kAKk3 jAgR/+BPhkbZyCeqMcMg98aRMQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDabTnlC VXoWs9DkFnzZVH05iKGyMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvM0IxQ0RGQkM4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvMEUxMTlGQUFC OUUwMTFFQkFEMTRCQjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMB0EAgABMBcDAwCKEwMEB5uJgAMEBZ914AMEBqVUgDANBgkqhkiG9w0BAQsF AAOCAQEAnF6jd2q8zIIzXlHKDaZ6e/kJNxkve1yHLAx9ClHK/loJxBDXmlxv7Sgh EPoix6qCO+ZEGVjK1dU5pBBUGNW3MxqBhIXJd3G7Mq0dbrqd02upAXEJrf0VW/c+ HbxfC6uw6+gLUh0sb/hS5XJmuSqsc4bPS+4H15inANP6KSLmcLW3mMh9IN9dfv+7 kXd8A1Zv/TSHGu1ppqKbIXCb9Pa8fvijky1cM18cxym6BPVTkWu8TFxo5Wf0ag7g MEjS8XQ2HSXtt3gKcvd5PJN1TxyhGMXPgVON3mr7wb9G7V2XLFy3dhpobWKOQC/w G0PNS2b7yzb+OR8eyghz/LeqGKNbuQ== -----END CERTIFICATE-----Generated at Wed Apr 24 22:29:58 2024 by rpki-client on console-fra.rpki-client.org