$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/974B4E9C18CE11EFBCD58454C4F9AE02.roa File: 974B4E9C18CE11EFBCD58454C4F9AE02.roa (raw, json) Hash identifier: 6A+e4OgojKZoLWl83GCUzTgizNvbdXt5Vk0z/3IWhUw= Subject key identifier: 72:A5:49:C2:02:93:47:3C:12:D5:35:BC:E9:E1:94:39:40:D5:FF:17 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0930 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/974B4E9C18CE11EFBCD58454C4F9AE02.roa Signing time: Sat 22 Jun 2024 21:13:58 +0000 ROA not before: Sat 22 Jun 2024 21:13:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9269 IP address blocks: 138.19.0.0/16 maxlen: 24 165.84.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2352 (0x930) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Jun 22 21:13:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66773e96-adee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:12:f6:d5:00:9a:cb:17:c0:26:1e:26:e4:e3: 71:b0:43:8b:78:e1:0f:f4:1a:32:86:22:8c:c7:08: 72:37:da:68:57:a5:ff:75:9c:f5:20:6c:a1:d8:2d: 54:cc:1f:47:89:7f:b4:66:86:d5:e6:ee:52:1a:de: 97:2f:bf:c7:2b:26:c6:3b:e3:89:77:85:5b:f7:2b: 42:a0:53:8e:6c:06:c9:69:9e:5c:e2:10:c2:29:cf: b9:91:aa:3e:72:e3:19:ba:fa:cf:ab:7a:f5:96:32: 35:12:60:04:f9:ae:1d:55:ac:6f:7e:ad:b0:f3:06: c1:27:ee:80:dd:0a:93:f1:fd:12:49:89:75:b5:97: bb:0b:82:b4:13:d0:2a:b7:f0:d1:cb:55:56:a9:b6: 88:d1:5a:ae:31:36:21:4d:0c:5c:78:ee:55:80:49: e8:c3:61:01:e4:ad:22:af:56:a2:95:e3:ef:21:4c: cc:c7:93:c2:6e:54:43:2d:55:55:13:32:9c:d6:15: df:0b:f9:25:d3:ae:06:59:1e:17:e6:2f:5c:f9:65: 08:49:82:e4:c2:02:ac:d9:11:e8:cd:8a:49:68:00: ec:aa:a7:fe:ca:12:18:20:b7:02:01:4a:92:ba:bf: 1b:56:d2:72:b6:9c:0f:1e:42:c6:25:a1:21:24:cd: ab:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A5:49:C2:02:93:47:3C:12:D5:35:BC:E9:E1:94:39:40:D5:FF:17 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/974B4E9C18CE11EFBCD58454C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.19.0.0/16 165.84.128.0/18 Signature Algorithm: sha256WithRSAEncryption 95:67:81:7a:9d:b0:f8:36:a1:3a:38:21:22:30:67:df:47:c6: 82:5e:1f:16:04:85:34:4e:35:21:49:12:94:2b:ac:42:c5:4c: 68:47:79:4d:9c:cc:23:d8:ae:e0:2b:97:17:87:41:6b:b4:7b: 27:54:fd:9e:64:1c:ad:42:dd:23:30:61:72:7a:86:3e:38:1f: 44:2c:59:83:37:71:73:c8:db:55:8c:b9:32:73:51:51:a3:4f: 20:73:73:cb:83:97:99:e6:04:94:37:03:92:c5:20:1d:ab:32: 09:ac:6c:21:ee:7f:67:ad:83:ef:07:f4:63:d0:15:c7:58:4e: b3:3f:33:a3:69:15:e2:d1:a4:ed:fd:a5:f2:28:d7:a6:61:14: 8d:cf:93:8a:b0:f3:78:a0:8c:25:39:dc:1f:64:07:a3:dc:81: 5e:7a:e9:7f:d4:72:ab:eb:e6:d9:5b:4c:34:bf:f5:67:52:76: 24:52:dc:27:3b:b2:5f:f1:c0:05:1e:de:71:1f:a2:96:73:13: dd:06:be:00:36:fa:b1:ca:a1:d8:f0:70:6d:0d:52:d8:72:1b: 5e:ba:79:a4:4c:82:75:47:64:0f:d5:b1:16:c6:a1:aa:fb:39: be:35:3c:67:3c:8d:35:99:f2:a5:d5:8e:7a:f2:8a:30:b6:a9: 91:d4:21:ec -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICCTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjQwNjIyMjExMzU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3M2U5Ni1hZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RL21QCayxfAJh4m5ONxsEOLeOEP9BoyhiKMxwhyN9poV6X/dZz1IGyh2C1U zB9HiX+0ZobV5u5SGt6XL7/HKybGO+OJd4Vb9ytCoFOObAbJaZ5c4hDCKc+5kao+ cuMZuvrPq3r1ljI1EmAE+a4dVaxvfq2w8wbBJ+6A3QqT8f0SSYl1tZe7C4K0E9Aq t/DRy1VWqbaI0VquMTYhTQxceO5VgEnow2EB5K0ir1ailePvIUzMx5PCblRDLVVV EzKc1hXfC/kl064GWR4X5i9c+WUISYLkwgKs2RHozYpJaADsqqf+yhIYILcCAUqS ur8bVtJytpwPHkLGJaEhJM2rsQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFHKlScIC k0c8EtU1vOnhlDlA1f8XMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvM0IxQ0RGQkM4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvOTc0QjRFOUMx OENFMTFFRkJDRDU4NDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwCKEwMEBqVUgDANBgkqhkiG9w0BAQsFAAOCAQEAlWeBep2w +DahOjghIjBn30fGgl4fFgSFNE41IUkSlCusQsVMaEd5TZzMI9iu4CuXF4dBa7R7 J1T9nmQcrULdIzBhcnqGPjgfRCxZgzdxc8jbVYy5MnNRUaNPIHNzy4OXmeYElDcD ksUgHasyCaxsIe5/Z62D7wf0Y9AVx1hOsz8zo2kV4tGk7f2l8ijXpmEUjc+TirDz eKCMJTncH2QHo9yBXnrpf9Ryq+vm2VtMNL/1Z1J2JFLcJzuyX/HABR7ecR+ilnMT 3Qa+ADb6scqh2PBwbQ1S2HIbXrp5pEyCdUdkD9WxFsahqvs5vjU8ZzyNNZnypdWO evKKMLapkdQh7A== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org