$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/B374CCF4764F11EFA343104DC4F9AE02.roa File: B374CCF4764F11EFA343104DC4F9AE02.roa (raw, json) Hash identifier: JamDzk8ma6Y5sRRvTEiptFXI/raRuD5l7hFVTlSgzVM= Subject key identifier: 9D:82:DA:C4:5D:BE:58:A8:7A:16:60:EF:D7:5C:04:4E:58:10:97:79 Certificate issuer: /CN=A912442A/serialNumber=7DE607C4615D7A01FBDD4A86AD5459401A759921 Certificate serial: 68 Authority key identifier: 7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/B374CCF4764F11EFA343104DC4F9AE02.roa Signing time: Mon 07 Oct 2024 08:32:27 +0000 ROA not before: Mon 07 Oct 2024 08:32:27 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45248 IP address blocks: 85.204.253.0/24 maxlen: 24 89.39.91.0/24 maxlen: 24 89.47.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.crl rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=7DE607C4615D7A01FBDD4A86AD5459401A759921 Validity Not Before: Oct 7 08:32:27 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=67039c9b-a568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:56:a7:94:96:0c:3e:03:88:62:44:2b:66:21: 37:94:77:63:eb:a9:63:49:dd:ae:2f:a9:df:a9:07: 6c:76:84:42:19:b5:d0:c3:56:e6:a2:53:fb:b8:00: 3c:e9:86:c4:ba:06:bb:7e:76:85:6f:a6:47:69:3d: 4d:10:38:72:78:c3:e0:5c:7a:9a:5a:b9:34:ec:62: d9:1c:81:f9:c1:cb:6e:e7:f3:b9:64:8f:75:3e:80: ac:31:a9:a9:70:06:ac:90:ba:67:c2:39:9f:73:ec: 46:9d:f5:04:90:f9:00:b6:0b:3d:4a:db:aa:cc:ba: 80:56:ad:47:b0:a3:d1:25:5d:6f:69:3f:2a:c2:24: 35:44:ff:69:67:47:2d:92:58:1d:10:d8:12:b3:a3: 97:bb:0b:1e:52:27:ae:a6:00:1d:48:ed:73:08:cc: 9e:13:76:b4:58:d2:6f:53:d4:07:ac:48:e4:63:a1: f0:56:a9:dd:d5:f1:c7:a6:e7:f6:ce:ec:82:b2:d1: 57:ca:4d:51:50:81:dd:2a:0b:a6:01:12:dc:4f:fd: 02:05:87:33:66:f4:c4:36:9b:4d:45:88:27:be:4a: 8f:93:ec:2a:bd:ff:d4:6d:15:4b:02:9e:fb:e6:28: 0c:1b:0d:17:e2:11:6b:71:db:b0:06:df:87:1c:bf: a0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:82:DA:C4:5D:BE:58:A8:7A:16:60:EF:D7:5C:04:4E:58:10:97:79 X509v3 Authority Key Identifier: keyid:7D:E6:07:C4:61:5D:7A:01:FB:DD:4A:86:AD:54:59:40:1A:75:99:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/feYHxGFdegH73UqGrVRZQBp1mSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/feYHxGFdegH73UqGrVRZQBp1mSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/E7C4F9DEF62511EE8DAD8E35C4F9AE02/B374CCF4764F11EFA343104DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 85.204.253.0/24 89.39.91.0/24 89.47.94.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:25:30:1a:09:29:b6:1e:99:04:03:7e:e6:51:57:86:9b:e3: bb:ba:8b:43:92:e0:21:27:d3:80:b1:f8:97:b9:5a:e9:2e:64: 89:a4:41:17:64:22:93:f6:3d:01:52:52:16:87:eb:5e:7b:dc: da:e5:38:bc:7c:86:04:a3:36:ac:48:de:31:83:c8:35:d6:2b: 8c:0a:13:84:35:7a:65:21:72:35:5c:b9:96:9c:56:09:e8:97: 92:b1:ed:d2:d0:da:b1:43:cd:03:16:5b:ce:d9:84:07:a3:d6: 1a:89:1a:5a:72:cb:fd:17:d3:bc:c5:d7:89:73:86:bf:92:ef: 91:90:86:74:2e:8b:ff:5f:92:51:88:69:97:2e:97:cf:9f:72: 24:5c:89:58:e5:61:43:2a:94:e5:5b:da:d1:cf:d9:0d:04:50: a9:f8:9c:b1:47:65:e6:74:61:37:38:06:79:cd:16:31:d3:e6: 09:70:f4:4d:bb:43:77:3d:f3:78:d3:c8:dc:cc:86:5a:d5:76: 7b:e7:68:70:24:13:1f:e7:da:29:68:34:94:28:de:ff:16:aa: 1b:d5:7f:37:35:fc:ca:91:77:56:d8:b3:0a:fd:67:f1:6c:e2: c1:46:1d:b1:30:3d:13:4a:73:9a:7a:ce:71:40:73:50:2e:87: f0:2a:09:46 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDQyQTExMC8GA1UEBRMoN0RFNjA3QzQ2MTVEN0EwMUZCREQ0QTg2QUQ1NDU5NDAx QTc1OTkyMTAeFw0yNDEwMDcwODMyMjdaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDM5YzliLWE1NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGVqeUlgw+A4hiRCtmITeUd2PrqWNJ3a4vqd+pB2x2hEIZtdDDVuaiU/u4ADzp hsS6Brt+doVvpkdpPU0QOHJ4w+BceppauTTsYtkcgfnBy27n87lkj3U+gKwxqalw BqyQumfCOZ9z7Ead9QSQ+QC2Cz1K26rMuoBWrUewo9ElXW9pPyrCJDVE/2lnRy2S WB0Q2BKzo5e7Cx5SJ66mAB1I7XMIzJ4TdrRY0m9T1AesSORjofBWqd3V8cem5/bO 7IKy0VfKTVFQgd0qC6YBEtxP/QIFhzNm9MQ2m01FiCe+So+T7Cq9/9RtFUsCnvvm KAwbDRfiEWtx27AG34ccv6DDAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUnYLaxF2+ WKh6FmDv11wETlgQl3kwHwYDVR0jBBgwFoAUfeYHxGFdegH73UqGrVRZQBp1mSEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NDJBL0U3QzRGOURFRjYy NTExRUU4REFEOEUzNUM0RjlBRTAyL2ZlWUh4R0ZkZWdINzNVcUdyVlJaUUJwMW1T RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvZmVZSHhHRmRlZ0g3M1VxR3JWUlpRQnAxbVNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDQyQS9FN0M0RjlERUY2MjUxMUVFOERBRDhFMzVDNEY5QUUwMi9CMzc0Q0NGNDc2 NEYxMUVGQTM0MzEwNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAFXM/QMEAFknWwMEAFkvXjANBgkqhkiG9w0BAQsFAAOCAQEA eyUwGgkpth6ZBAN+5lFXhpvju7qLQ5LgISfTgLH4l7la6S5kiaRBF2Qik/Y9AVJS FofrXnvc2uU4vHyGBKM2rEjeMYPINdYrjAoThDV6ZSFyNVy5lpxWCeiXkrHt0tDa sUPNAxZbztmEB6PWGokaWnLL/RfTvMXXiXOGv5LvkZCGdC6L/1+SUYhply6Xz59y JFyJWOVhQyqU5Vva0c/ZDQRQqficsUdl5nRhNzgGec0WMdPmCXD0TbtDdz3zeNPI 3MyGWtV2e+docCQTH+faKWg0lCje/xaqG9V/NzX8ypF3VtizCv1n8WziwUYdsTA9 E0pzmnrOcUBzUC6H8CoJRg== -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:32 2024 by rpki-client on console-ams.rpki-client.org