$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/EBF4C0063C8811EC889B9D78C4F9AE02.roa File: EBF4C0063C8811EC889B9D78C4F9AE02.roa (raw, json) Hash identifier: x9h06qfhNpw9HDsZ2fx+rNHJ0LpcCakerBbSGHozgRQ= Subject key identifier: 2C:E2:93:2D:31:02:A0:C8:62:31:AA:22:D1:94:8C:D7:B1:8A:29:BF Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 03B5 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/EBF4C0063C8811EC889B9D78C4F9AE02.roa Signing time: Wed 17 Jan 2024 02:03:50 +0000 ROA not before: Wed 17 Jan 2024 02:03:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45753 IP address blocks: 141.193.152.0/21 maxlen: 21 141.193.152.0/24 maxlen: 24 141.193.153.0/24 maxlen: 24 141.193.154.0/24 maxlen: 24 141.193.155.0/24 maxlen: 24 141.193.156.0/24 maxlen: 24 141.193.157.0/24 maxlen: 24 141.193.158.0/24 maxlen: 24 141.193.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Jan 17 02:03:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a73586-cedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d0:0b:d1:c6:22:31:70:3c:68:32:35:b5:c0: 36:f0:4a:58:fd:a2:d2:98:75:a6:66:47:ae:a2:3e: bd:17:c7:a3:c0:6f:3a:c8:5a:03:be:88:ee:36:74: 92:a4:55:b1:a8:4b:18:ed:83:e7:7b:b4:fb:c5:d9: 24:cf:af:f8:f8:f1:a5:1c:c1:44:03:26:6a:a2:da: 1a:1b:d7:25:7c:0f:a4:6d:ef:c5:47:1c:75:a2:c0: 9b:3d:45:ac:f2:36:a7:3f:c2:0f:6b:eb:c8:f6:23: 88:a7:c1:54:76:0c:cf:42:90:d7:5a:45:a7:15:bd: ae:8f:12:59:51:16:bc:8c:81:14:4e:bd:5b:d0:ad: 1c:dc:7e:1d:7d:6d:6d:43:a3:b9:de:51:be:9c:eb: 05:a5:3a:ca:89:73:df:8c:00:f1:6f:e0:75:35:3b: ff:32:43:74:b0:a4:da:c4:c6:b6:91:52:e9:ae:53: f9:09:f5:2f:26:05:f0:1a:e8:3b:17:20:04:4f:3c: 33:e4:1a:2f:8f:41:d6:4e:72:c0:54:51:8a:92:fb: 7f:2c:95:9a:65:a9:c0:68:8a:9d:b9:a7:70:b7:13: 38:73:9d:13:62:cd:27:24:a1:66:b3:3b:5f:89:a3: 79:19:25:00:70:12:37:99:79:8d:33:4b:1b:48:fe: 6f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E2:93:2D:31:02:A0:C8:62:31:AA:22:D1:94:8C:D7:B1:8A:29:BF X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/EBF4C0063C8811EC889B9D78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.193.152.0/21 Signature Algorithm: sha256WithRSAEncryption 03:a4:4c:c8:de:38:15:1e:15:ba:02:d6:1c:e3:d7:fc:74:87: c5:27:9e:dc:45:3c:17:0a:f0:68:80:69:da:9f:6b:93:26:7c: 95:8e:84:ab:85:ef:04:a9:d1:5f:32:d1:78:3d:bf:c9:08:97: e7:40:42:ff:a1:47:8b:fa:fd:f9:60:30:e8:27:76:0e:51:ae: fb:39:3c:48:2b:51:9e:a7:6e:a4:c6:2e:c8:80:33:4e:d6:1a: fa:25:b3:31:ce:69:a8:94:62:9e:37:1e:0e:94:9c:20:a1:f9: a1:87:39:de:9a:97:c9:ea:67:26:2d:58:91:41:9a:a6:e0:57: c5:35:3c:ed:40:8e:71:39:af:1c:f9:73:07:07:70:60:8f:19: 50:08:41:a6:42:e1:fd:6d:6e:70:51:ea:7b:c9:23:c0:1d:95: 6f:e2:29:89:e3:c6:9d:c2:49:f5:6e:b4:00:ff:0d:a0:c2:ad: 3d:7b:b1:8b:cc:c0:ee:b0:1b:f9:a3:7b:59:7a:bf:ed:42:db: 1f:88:31:39:1f:b5:3d:55:26:b1:cd:48:0e:d2:bc:0a:00:30: 85:ee:6e:03:ac:2a:09:c0:11:5a:f2:8e:98:cd:72:70:a3:d1: 43:0a:f8:72:11:c2:cf:ff:b0:5b:c4:b2:ba:25:13:d1:32:ec: f3:ac:ec:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjQwMTE3MDIwMzUwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MzU4Ni1jZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdAL0cYiMXA8aDI1tcA28EpY/aLSmHWmZkeuoj69F8ejwG86yFoDvojuNnSS pFWxqEsY7YPne7T7xdkkz6/4+PGlHMFEAyZqotoaG9clfA+kbe/FRxx1osCbPUWs 8janP8IPa+vI9iOIp8FUdgzPQpDXWkWnFb2ujxJZURa8jIEUTr1b0K0c3H4dfW1t Q6O53lG+nOsFpTrKiXPfjADxb+B1NTv/MkN0sKTaxMa2kVLprlP5CfUvJgXwGug7 FyAETzwz5Bovj0HWTnLAVFGKkvt/LJWaZanAaIqduadwtxM4c50TYs0nJKFmsztf iaN5GSUAcBI3mXmNM0sbSP5vEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCziky0x AqDIYjGqItGUjNexiim/MB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvMzU5MDY1QTYzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvRUJGNEMwMDYz Qzg4MTFFQzg4OUI5RDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAONwZgwDQYJKoZIhvcNAQELBQADggEBAAOkTMjeOBUeFboC 1hzj1/x0h8UnntxFPBcK8GiAadqfa5MmfJWOhKuF7wSp0V8y0Xg9v8kIl+dAQv+h R4v6/flgMOgndg5Rrvs5PEgrUZ6nbqTGLsiAM07WGvolszHOaaiUYp43Hg6UnCCh +aGHOd6al8nqZyYtWJFBmqbgV8U1PO1AjnE5rxz5cwcHcGCPGVAIQaZC4f1tbnBR 6nvJI8AdlW/iKYnjxp3CSfVutAD/DaDCrT17sYvMwO6wG/mje1l6v+1C2x+IMTkf tT1VJrHNSA7SvAoAMIXubgOsKgnAEVryjpjNcnCj0UMK+HIRws//sFvEsrolE9Ey 7POs7AQ= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org