$ rpki-client -vvf rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/0886DE60D4D311ECBE99375AC4F9AE02.roa File: 0886DE60D4D311ECBE99375AC4F9AE02.roa (raw, json) Hash identifier: 9Lj0MFHtpq+miySvaeL6uJyTFtWzTo11+QQQjG5cGhk= Subject key identifier: AD:C7:FF:AE:7D:B8:35:6D:EC:77:79:E3:7B:2B:8A:D3:DD:07:AA:D0 Certificate issuer: /CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Certificate serial: 0702 Authority key identifier: B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/0886DE60D4D311ECBE99375AC4F9AE02.roa Signing time: Mon 08 Jul 2024 00:28:13 +0000 ROA not before: Mon 08 Jul 2024 00:28:13 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132825 IP address blocks: 185.135.72.0/24 maxlen: 24 185.135.73.0/24 maxlen: 24 185.135.74.0/24 maxlen: 24 185.135.75.0/24 maxlen: 24 185.135.76.0/24 maxlen: 24 185.135.77.0/24 maxlen: 24 185.135.78.0/24 maxlen: 24 185.135.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1794 (0x702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Validity Not Before: Jul 8 00:28:13 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=668b329c-ba92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:c2:06:bf:42:de:78:18:60:35:00:fc:ca: 33:27:f5:25:06:42:d3:97:4e:0b:88:95:aa:3e:0b: ad:72:1b:35:ad:9d:d6:c5:6e:70:b8:7c:42:2e:be: 7d:a1:9e:2b:7f:ce:6f:47:c1:bd:fc:e0:57:80:7b: 9f:77:c1:31:4d:72:c4:21:88:df:59:9f:6a:36:87: a8:ec:f6:3e:be:4f:e6:3a:db:e6:e5:2a:4b:4c:d4: c3:32:11:d0:de:8c:4c:5b:2e:48:cf:f8:02:06:51: 12:0d:0b:f6:c2:fb:72:d8:36:d5:ad:8f:73:74:03: 7b:32:80:b7:30:8b:a1:09:dd:29:f2:17:79:2d:f2: 74:c9:85:21:1d:b1:41:9d:fc:6e:9a:92:32:10:22: 26:0f:dc:88:3b:cf:44:ce:f5:cd:65:8b:86:20:e7: fa:89:32:a2:87:a8:11:a3:3d:ff:48:dc:8b:ae:45: b8:f4:14:bf:2f:b7:de:d6:55:f2:a9:00:aa:4a:bf: 72:d1:58:fb:99:6a:d9:f3:54:76:9b:59:7a:19:f1: e9:8b:b0:eb:66:6c:81:70:d7:9f:25:1b:8e:1e:c1: ae:38:9d:6a:56:31:24:24:44:0c:ea:ec:5e:5d:9c: 70:10:39:3b:10:97:25:3d:f8:cd:81:7a:21:05:d1: e1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C7:FF:AE:7D:B8:35:6D:EC:77:79:E3:7B:2B:8A:D3:DD:07:AA:D0 X509v3 Authority Key Identifier: keyid:B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/0886DE60D4D311ECBE99375AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.135.72.0/21 Signature Algorithm: sha256WithRSAEncryption 44:0b:82:fa:15:1b:04:64:5c:99:c4:ac:d5:28:81:fd:73:50: 46:1b:98:9e:84:99:d6:70:df:1a:18:19:8c:d4:b9:71:fd:9c: ee:32:6d:36:75:86:f7:ce:37:2c:f7:fc:2d:64:0d:67:7c:22: 7f:c9:0a:30:61:83:8e:3e:7e:6a:c9:c4:6f:ae:aa:5a:51:ba: 22:ef:c3:16:89:6c:65:56:bb:eb:92:13:34:5b:d5:bb:ec:1f: 1f:b5:4e:94:ff:ed:10:a8:e4:8a:53:71:40:b4:fa:ab:50:8f: c6:1a:96:1b:c0:10:f9:51:52:f0:f3:5d:3c:48:c9:49:bc:e2: 12:ef:da:89:8b:bc:8a:3f:c3:b8:c1:24:5d:cb:6d:d4:a0:0a: 65:98:1a:b0:fc:de:61:55:dc:0f:f9:26:14:b5:d2:2a:d0:be: 58:b4:be:c7:9b:b6:80:50:e4:4c:d3:95:a8:1d:f8:0e:15:2b: b2:18:6b:2f:bc:7d:c4:ef:78:c4:7a:3b:ee:ec:08:4c:8c:3c: b0:fd:2f:95:e9:46:d0:70:52:88:ba:23:7b:cc:35:3b:e1:ee: 38:e5:26:52:b7:33:a6:b4:ca:8b:a1:ef:b1:41:66:1e:b4:b3: 1b:c1:95:b4:21:f4:3b:6e:e7:cb:2a:64:2a:e9:ae:10:04:71: f2:5a:15:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwNzIxMTAvBgNVBAUTKEI2NThFRjZCMjc5MjlDN0I3RjVGQjI2Q0I5RUU2QTQx MkNFODVERDQwHhcNMjQwNzA4MDAyODEzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhiMzI5Yy1iYTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu7CBr9C3ngYYDUA/MozJ/UlBkLTl04LiJWqPgutchs1rZ3WxW5wuHxCLr59 oZ4rf85vR8G9/OBXgHufd8ExTXLEIYjfWZ9qNoeo7PY+vk/mOtvm5SpLTNTDMhHQ 3oxMWy5Iz/gCBlESDQv2wvty2DbVrY9zdAN7MoC3MIuhCd0p8hd5LfJ0yYUhHbFB nfxumpIyECImD9yIO89EzvXNZYuGIOf6iTKih6gRoz3/SNyLrkW49BS/L7fe1lXy qQCqSr9y0Vj7mWrZ81R2m1l6GfHpi7DrZmyBcNefJRuOHsGuOJ1qVjEkJEQM6uxe XZxwEDk7EJclPfjNgXohBdHhyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK3H/659 uDVt7Hd543sritPdB6rQMB8GA1UdIwQYMBaAFLZY72snkpx7f1+ybLnuakEs6F3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzA3Mi8wNjlBMDZFNjBC NUMxMUVCOTlBMTc1NjJDNEY5QUUwMi90bGp2YXllU25IdF9YN0pzdWU1cVFTem9Y ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RsanZheWVTbkh0X1g3SnN1ZTVxUVN6b1hkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMwNzIvMDY5QTA2RTYwQjVDMTFFQjk5QTE3NTYyQzRGOUFFMDIvMDg4NkRFNjBE NEQzMTFFQ0JFOTkzNzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO5h0gwDQYJKoZIhvcNAQELBQADggEBAEQLgvoVGwRkXJnE rNUogf1zUEYbmJ6EmdZw3xoYGYzUuXH9nO4ybTZ1hvfONyz3/C1kDWd8In/JCjBh g44+fmrJxG+uqlpRuiLvwxaJbGVWu+uSEzRb1bvsHx+1TpT/7RCo5IpTcUC0+qtQ j8YalhvAEPlRUvDzXTxIyUm84hLv2omLvIo/w7jBJF3LbdSgCmWYGrD83mFV3A/5 JhS10irQvli0vsebtoBQ5EzTlagd+A4VK7IYay+8fcTveMR6O+7sCEyMPLD9L5Xp RtBwUoi6I3vMNTvh7jjlJlK3M6a0youh77FBZh60sxvBlbQh9Dtu58sqZCrprhAE cfJaFSs= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org