$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/C40F099A1E7411EF818FAE6CC4F9AE02.roa File: C40F099A1E7411EF818FAE6CC4F9AE02.roa (raw, json) Hash identifier: NbSjfhnIQoCqMUNXe0s61U0HN1YFRDhAGjKAb9ngacQ= Subject key identifier: 6A:3B:E7:C1:C5:67:6C:C5:6F:A0:C3:6D:96:61:44:9D:1D:48:14:36 Certificate issuer: /CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547 Certificate serial: 24B4 Authority key identifier: DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/C40F099A1E7411EF818FAE6CC4F9AE02.roa Signing time: Thu 30 May 2024 11:08:57 +0000 ROA not before: Thu 30 May 2024 11:08:57 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139591 IP address blocks: 209.15.120.0/24 maxlen: 24 209.15.121.0/24 maxlen: 24 209.15.122.0/24 maxlen: 24 209.15.123.0/24 maxlen: 24 209.15.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.crl rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9396 (0x24b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547 Validity Not Before: May 30 11:08:57 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66585e49-d677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:76:d0:a5:95:6a:a9:6a:c2:92:08:c5:e6:54: 80:78:02:04:51:15:e2:48:62:56:de:88:7c:e3:0c: f0:79:be:ef:f6:19:46:df:11:02:85:e3:1c:01:54: e9:1a:5b:ac:15:56:a2:b3:d8:0b:75:81:c6:4b:24: d9:f0:04:2b:34:a9:54:5e:f5:38:fe:65:b5:9f:47: 43:ac:7f:ad:a9:51:04:b1:9c:a2:15:c7:14:65:db: 47:2f:5e:03:5b:c7:48:37:27:52:50:67:4c:51:6e: 8a:41:00:71:45:6d:79:57:71:c8:75:9b:e4:00:47: 4f:df:0f:a9:76:42:67:df:7b:ba:42:76:f0:de:1a: c2:ed:b4:70:e6:5a:07:99:0a:cc:fc:41:37:fd:1a: f3:0a:ad:c8:a8:13:a1:5b:45:bb:d0:10:fe:30:d3: d1:fd:bd:18:51:8a:04:d7:99:d1:d6:24:4b:42:92: e1:12:82:b0:f3:b3:82:22:14:4a:84:52:e4:29:bd: e3:d1:e1:ee:3f:69:0c:bf:8f:f7:7a:ba:8e:07:57: d3:2c:76:57:7a:1a:94:17:79:bb:1d:2a:59:ba:b9: f4:6b:da:06:06:d9:2a:a0:7c:21:34:ad:da:13:4b: 63:ce:c0:bb:44:08:9f:72:bf:30:69:16:3d:46:fc: 0a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3B:E7:C1:C5:67:6C:C5:6F:A0:C3:6D:96:61:44:9D:1D:48:14:36 X509v3 Authority Key Identifier: keyid:DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/C40F099A1E7411EF818FAE6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.15.120.0/21 Signature Algorithm: sha256WithRSAEncryption a6:67:4e:55:3b:47:71:36:88:14:43:13:b3:15:5a:7a:e8:fb: 8f:31:8a:2e:64:f3:36:fa:9a:5c:a6:38:a2:c0:45:d6:ff:e1: b6:0e:70:2e:51:74:fe:f7:83:4c:f7:ec:aa:bc:91:d0:77:03: 94:de:81:fa:33:e6:1d:3e:a5:0a:d6:f4:d2:83:f4:a5:1c:ff: 95:72:f4:cc:3f:39:95:7b:8c:4c:51:ee:b9:d6:49:fc:30:b8: 9e:a1:1b:21:43:5f:f3:47:29:0b:cf:0a:39:d9:17:cf:5b:bb: 89:da:2a:39:0f:83:4d:ed:ba:0b:df:dd:a4:37:7d:71:3d:6c: 96:0e:f9:00:80:3d:26:da:6e:d0:46:e2:fb:2e:61:32:64:1a: 5d:ac:66:eb:e5:c1:d1:82:02:80:d4:3e:df:7a:b9:b3:97:0a: 2c:19:f9:29:a6:ec:ec:ce:92:44:53:c8:9a:62:37:62:ad:31: 0c:e6:e3:92:db:f0:ae:d9:70:cc:78:51:be:04:31:44:e3:28: 3e:a9:5d:49:16:bd:9c:59:5b:9d:b5:15:73:74:20:24:6d:e9: 1f:e4:8d:a8:7c:9f:e9:00:0c:12:01:31:a2:13:80:f2:67:4b: 77:1c:28:d5:44:f7:9a:7b:08:30:18:8d:62:5f:88:3a:6e:64: 77:84:87:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKERFOUQ2NDAxNjI5MUVBMkExNkYzQjc5NTZBMEY0MDM1 QjcwOUU1NDcwHhcNMjQwNTMwMTEwODU3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4NWU0OS1kNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XbQpZVqqWrCkgjF5lSAeAIEURXiSGJW3oh84wzweb7v9hlG3xECheMcAVTp GlusFVais9gLdYHGSyTZ8AQrNKlUXvU4/mW1n0dDrH+tqVEEsZyiFccUZdtHL14D W8dINydSUGdMUW6KQQBxRW15V3HIdZvkAEdP3w+pdkJn33u6Qnbw3hrC7bRw5loH mQrM/EE3/RrzCq3IqBOhW0W70BD+MNPR/b0YUYoE15nR1iRLQpLhEoKw87OCIhRK hFLkKb3j0eHuP2kMv4/3erqOB1fTLHZXehqUF3m7HSpZurn0a9oGBtkqoHwhNK3a E0tjzsC7RAifcr8waRY9RvwKXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGo758HF Z2zFb6DDbZZhRJ0dSBQ2MB8GA1UdIwQYMBaAFN6dZAFikeoqFvO3lWoPQDW3CeVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS84RDk0NzFGNjI5 MDYxMUU1OTNCRkM2MjZDNEY5QUUwMi8zcDFrQVdLUjZpb1c4N2VWYWc5QU5iY0o1 VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNwMWtBV0tSNmlvVzg3ZVZhZzlBTmJjSjVVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvOEQ5NDcxRjYyOTA2MTFFNTkzQkZDNjI2QzRGOUFFMDIvQzQwRjA5OUEx RTc0MTFFRjgxOEZBRTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPRD3gwDQYJKoZIhvcNAQELBQADggEBAKZnTlU7R3E2iBRD E7MVWnro+48xii5k8zb6mlymOKLARdb/4bYOcC5RdP73g0z37Kq8kdB3A5Tegfoz 5h0+pQrW9NKD9KUc/5Vy9Mw/OZV7jExR7rnWSfwwuJ6hGyFDX/NHKQvPCjnZF89b u4naKjkPg03tugvf3aQ3fXE9bJYO+QCAPSbabtBG4vsuYTJkGl2sZuvlwdGCAoDU Pt96ubOXCiwZ+Smm7OzOkkRTyJpiN2KtMQzm45Lb8K7ZcMx4Ub4EMUTjKD6pXUkW vZxZW521FXN0ICRt6R/kjah8n+kADBIBMaITgPJnS3ccKNVE95p7CDAYjWJfiDpu ZHeEh98= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:06 2024 by rpki-client on console-ams.rpki-client.org