$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/E7D3D36A406911EC83A0470DC4F9AE02.roa File: E7D3D36A406911EC83A0470DC4F9AE02.roa (raw, json) Hash identifier: +ib6RAEe+5LAGLH6s/8tcu3FX1tLpOFWYX5Ht1EUe74= Subject key identifier: E0:4C:4C:9D:B4:08:3B:84:D0:16:F8:5A:BB:CA:D1:8F:3F:8D:E2:7D Certificate issuer: /CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547 Certificate serial: 24B3 Authority key identifier: DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/E7D3D36A406911EC83A0470DC4F9AE02.roa Signing time: Thu 30 May 2024 11:08:56 +0000 ROA not before: Thu 30 May 2024 11:08:56 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135566 IP address blocks: 209.15.96.0/24 maxlen: 24 209.15.97.0/24 maxlen: 24 209.15.98.0/24 maxlen: 24 209.15.99.0/24 maxlen: 24 209.15.100.0/24 maxlen: 24 209.15.101.0/24 maxlen: 24 209.15.102.0/24 maxlen: 24 209.15.103.0/24 maxlen: 24 209.15.104.0/24 maxlen: 24 209.15.105.0/24 maxlen: 24 209.15.108.0/24 maxlen: 24 209.15.109.0/24 maxlen: 24 209.15.110.0/24 maxlen: 24 209.15.111.0/24 maxlen: 24 209.15.112.0/24 maxlen: 24 209.15.113.0/24 maxlen: 24 209.15.114.0/24 maxlen: 24 209.15.115.0/24 maxlen: 24 209.15.116.0/24 maxlen: 24 209.15.117.0/24 maxlen: 24 209.15.118.0/24 maxlen: 24 209.15.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.crl rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9395 (0x24b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547 Validity Not Before: May 30 11:08:56 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66585e48-1f45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:01:44:41:eb:cf:10:ea:43:fc:2f:8d:ac:b6: f8:f0:90:e8:64:6b:2b:f6:1e:85:21:26:a3:9f:0d: 01:85:c5:1e:eb:6f:ca:d5:d3:39:17:6f:42:f5:05: ca:bb:ac:8c:04:73:d1:a6:80:e4:d7:1b:6f:59:72: ca:0a:38:3f:35:11:dc:cd:17:77:a4:b4:28:fb:8a: 29:0f:b0:55:ae:5b:2d:df:ee:44:d3:ec:2c:77:6c: 4d:84:70:0e:3b:68:c8:2a:1a:13:c7:da:d0:49:0e: 06:58:be:19:47:05:60:ec:7c:13:58:ac:a1:db:ba: 84:1b:09:2d:ad:e6:d6:32:55:4f:b8:fd:51:2b:46: df:80:7b:b7:24:e5:b5:97:ff:70:94:9d:14:24:0e: c1:77:49:d3:b1:ab:c1:c2:4c:9c:f0:37:3f:07:13: 46:ee:74:0e:c2:ec:2a:24:d5:80:cb:45:2d:8e:f3: 0f:cf:a0:57:a7:f0:0f:0d:b4:a0:2e:12:20:b4:ba: 9e:3e:40:9f:9d:e6:2c:47:8b:f8:83:8e:12:5e:c4: 5f:53:d9:9c:99:f6:5c:5a:0b:83:b9:56:0d:4e:79: 46:04:73:8a:57:e3:e7:db:4f:24:36:ba:4e:67:0e: a3:33:15:08:f2:11:a3:c4:61:7e:d7:55:99:06:09: 10:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4C:4C:9D:B4:08:3B:84:D0:16:F8:5A:BB:CA:D1:8F:3F:8D:E2:7D X509v3 Authority Key Identifier: keyid:DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/E7D3D36A406911EC83A0470DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.15.96.0-209.15.105.255 209.15.108.0-209.15.119.255 Signature Algorithm: sha256WithRSAEncryption 0a:34:11:d3:6e:29:e4:18:27:80:25:b9:fa:1e:8b:e7:5e:27: 3a:6f:e4:67:07:93:b6:95:43:99:90:70:75:fd:ff:f2:7a:5b: 2c:48:49:d4:a5:4f:34:00:4e:b4:e3:d0:d2:d9:b7:44:58:5b: c2:89:8f:b0:09:63:73:ac:b6:d8:86:ba:4d:ab:16:e8:cb:71: a2:46:5b:ca:01:32:f2:b2:78:73:60:7a:4a:a5:42:75:a5:31: a3:ee:af:6a:a6:e4:ca:7e:13:95:cd:21:e4:8d:ef:b3:57:07: 3d:cb:29:27:ad:9a:d8:b7:57:6a:e0:3f:5f:32:31:f2:46:d1: 62:f6:ff:80:9d:0f:45:8e:c5:6a:c7:12:73:d0:d3:53:a3:5c: 6f:0c:1c:6a:4f:37:6b:92:7b:3f:5c:18:96:56:a9:7d:40:40: 16:8b:6f:ac:6b:72:5a:c9:68:04:73:18:72:36:88:56:be:0d: 49:0e:af:b8:72:8e:69:e7:de:17:43:49:b5:83:5d:9e:99:dc: 62:7c:a4:06:51:48:81:10:bc:a7:8f:bc:d8:ae:c5:1b:2e:cb: 18:91:48:fa:54:35:41:15:f0:97:d5:c8:0f:a5:88:0b:90:50: 73:a2:41:d3:ef:0d:a1:2b:57:81:50:42:17:f1:c1:9c:8c:b9: d2:be:75:cc -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICJLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKERFOUQ2NDAxNjI5MUVBMkExNkYzQjc5NTZBMEY0MDM1 QjcwOUU1NDcwHhcNMjQwNTMwMTEwODU2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4NWU0OC0xZjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgFEQevPEOpD/C+NrLb48JDoZGsr9h6FISajnw0BhcUe62/K1dM5F29C9QXK u6yMBHPRpoDk1xtvWXLKCjg/NRHczRd3pLQo+4opD7BVrlst3+5E0+wsd2xNhHAO O2jIKhoTx9rQSQ4GWL4ZRwVg7HwTWKyh27qEGwktrebWMlVPuP1RK0bfgHu3JOW1 l/9wlJ0UJA7Bd0nTsavBwkyc8Dc/BxNG7nQOwuwqJNWAy0UtjvMPz6BXp/APDbSg LhIgtLqePkCfneYsR4v4g44SXsRfU9mcmfZcWguDuVYNTnlGBHOKV+Pn208kNrpO Zw6jMxUI8hGjxGF+11WZBgkQYwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFOBMTJ20 CDuE0Bb4WrvK0Y8/jeJ9MB8GA1UdIwQYMBaAFN6dZAFikeoqFvO3lWoPQDW3CeVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS84RDk0NzFGNjI5 MDYxMUU1OTNCRkM2MjZDNEY5QUUwMi8zcDFrQVdLUjZpb1c4N2VWYWc5QU5iY0o1 VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNwMWtBV0tSNmlvVzg3ZVZhZzlBTmJjSjVVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvOEQ5NDcxRjYyOTA2MTFFNTkzQkZDNjI2QzRGOUFFMDIvRTdEM0QzNkE0 MDY5MTFFQzgzQTA0NzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEBdEPYAMEAdEPaDAMAwQC0Q9sAwQD0Q9wMA0GCSqGSIb3 DQEBCwUAA4IBAQAKNBHTbinkGCeAJbn6HovnXic6b+RnB5O2lUOZkHB1/f/yelss SEnUpU80AE6049DS2bdEWFvCiY+wCWNzrLbYhrpNqxboy3GiRlvKATLysnhzYHpK pUJ1pTGj7q9qpuTKfhOVzSHkje+zVwc9yyknrZrYt1dq4D9fMjHyRtFi9v+AnQ9F jsVqxxJz0NNTo1xvDBxqTzdrkns/XBiWVql9QEAWi2+sa3JayWgEcxhyNohWvg1J Dq+4co5p594XQ0m1g12emdxifKQGUUiBELynj7zYrsUbLssYkUj6VDVBFfCX1cgP pYgLkFBzokHT7w2hK1eBUEIX8cGcjLnSvnXM -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:06 2024 by rpki-client on console-ams.rpki-client.org