$ rpki-client -vvf rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/6C510F98B51C11EAA1649251C4F9AE02.roa File: 6C510F98B51C11EAA1649251C4F9AE02.roa (raw, json) Hash identifier: XN60w0eRqVpxeIfX7b6c8hnme3sk6Z9ebx38NO7BFYw= Subject key identifier: EF:70:3B:5A:F1:DF:18:0A:B4:E5:26:5F:A6:24:5B:48:73:24:A4:41 Certificate issuer: /CN=A912B600/serialNumber=477E22E1BD3AD5204E3ADC2DECD6D2A194ACFA58 Certificate serial: 10E8 Authority key identifier: 47:7E:22:E1:BD:3A:D5:20:4E:3A:DC:2D:EC:D6:D2:A1:94:AC:FA:58 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/R34i4b061SBOOtwt7NbSoZSs-lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/6C510F98B51C11EAA1649251C4F9AE02.roa Signing time: Sat 24 Aug 2024 15:01:04 +0000 ROA not before: Sat 24 Aug 2024 15:01:04 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38466 IP address blocks: 188.214.64.0/20 maxlen: 20 188.214.64.0/24 maxlen: 24 188.214.65.0/24 maxlen: 24 188.214.66.0/24 maxlen: 24 188.214.67.0/24 maxlen: 24 188.214.68.0/24 maxlen: 24 188.214.69.0/24 maxlen: 24 188.214.70.0/24 maxlen: 24 188.214.71.0/24 maxlen: 24 188.214.72.0/24 maxlen: 24 188.214.73.0/24 maxlen: 24 188.214.74.0/24 maxlen: 24 188.214.75.0/24 maxlen: 24 188.214.76.0/24 maxlen: 24 188.214.77.0/24 maxlen: 24 188.214.78.0/24 maxlen: 24 188.214.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/R34i4b061SBOOtwt7NbSoZSs-lg.crl rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/R34i4b061SBOOtwt7NbSoZSs-lg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/R34i4b061SBOOtwt7NbSoZSs-lg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4328 (0x10e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B600/serialNumber=477E22E1BD3AD5204E3ADC2DECD6D2A194ACFA58 Validity Not Before: Aug 24 15:01:04 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c9f5af-0090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:32:a0:e0:ab:7d:49:b0:4b:9d:a2:b7:5a:24: ee:a3:bb:ef:1a:03:98:60:d2:96:c9:72:13:ff:80: b0:db:8a:f9:b9:4a:1e:c5:96:f3:3b:c1:05:86:5d: 93:3f:2b:ac:a7:41:b9:83:6f:21:f1:48:bb:de:1a: a8:6a:37:75:84:34:5f:72:42:98:53:e4:7d:e2:f6: 4a:a0:3d:74:2c:b5:52:2a:34:5d:18:86:bd:38:5c: 75:18:31:38:1a:91:1b:34:a4:e7:0b:b0:ec:7c:f9: fa:d4:d9:7d:3b:90:3e:dd:c1:f7:da:4b:e7:3b:83: e2:0d:47:08:4e:6b:b3:05:dc:53:f3:78:82:57:c1: ff:89:07:65:f4:f6:92:b4:36:bc:a0:74:d0:7d:43: e8:7c:5f:59:3f:7d:d7:c5:27:f9:19:eb:0d:e5:a4: 4c:fe:ea:f8:4d:58:1e:f1:3b:0a:44:9d:47:8f:2e: 5e:3e:8d:af:b6:3c:db:b2:b6:c0:cf:75:bb:5a:a6: 2e:79:ce:0f:1e:f9:be:1f:df:6d:22:a6:c0:d8:27: 7f:a3:1c:87:13:1e:b6:86:61:44:4e:23:fc:2c:93: 4b:e2:50:d1:3b:12:8a:2b:ed:ab:c6:0e:ee:f9:75: f9:46:50:7a:fb:07:3b:6a:5b:7b:fc:36:ec:ec:a4: 37:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:70:3B:5A:F1:DF:18:0A:B4:E5:26:5F:A6:24:5B:48:73:24:A4:41 X509v3 Authority Key Identifier: keyid:47:7E:22:E1:BD:3A:D5:20:4E:3A:DC:2D:EC:D6:D2:A1:94:AC:FA:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/R34i4b061SBOOtwt7NbSoZSs-lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/R34i4b061SBOOtwt7NbSoZSs-lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/6C510F98B51C11EAA1649251C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.214.64.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:f7:0d:1e:af:7f:c3:c5:9c:e7:66:3a:39:c2:8d:b7:25:f3: f8:89:bd:f3:d7:84:d9:d4:ef:be:ce:b1:9c:67:19:72:f3:fa: e6:3b:2e:95:bb:bb:b6:93:09:7b:b3:b8:83:30:81:93:26:ac: 3f:0a:3c:5e:72:3a:7b:00:1f:8a:b4:36:41:92:7b:5f:51:63: f1:68:c4:71:38:f6:3c:bf:af:91:31:8b:c5:02:39:5f:d6:f5: 45:a7:99:a2:6b:cb:3e:6f:9c:ad:68:5b:74:68:2b:33:22:d1: 88:76:29:2e:4b:4c:fd:d7:e2:cf:f3:b1:0a:6f:ee:f8:73:9c: 36:19:e0:09:ca:94:4a:97:61:53:cd:49:b0:6e:c8:cd:9a:c1: b1:fd:11:b2:a6:55:7a:3d:03:e0:59:d4:a4:bc:af:01:36:68: df:3a:46:b8:08:2d:c3:62:b7:2a:a3:02:91:1c:6b:81:17:e3: 80:b9:95:a3:15:20:6a:2d:ea:79:db:f4:ec:52:9c:d4:fa:e9: 78:0b:f3:75:08:84:4f:ad:43:05:8f:48:70:a9:b3:9d:3a:40: 17:68:11:78:91:21:19:48:f6:22:6e:da:5b:5e:c4:c1:2f:be: 08:55:ea:3e:5a:0b:a6:4f:bf:6a:13:b3:6e:8d:f2:57:94:f3: c3:09:0d:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2MDAxMTAvBgNVBAUTKDQ3N0UyMkUxQkQzQUQ1MjA0RTNBREMyREVDRDZEMkEx OTRBQ0ZBNTgwHhcNMjQwODI0MTUwMTA0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM5ZjVhZi0wMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzKg4Kt9SbBLnaK3WiTuo7vvGgOYYNKWyXIT/4Cw24r5uUoexZbzO8EFhl2T Pyusp0G5g28h8Ui73hqoajd1hDRfckKYU+R94vZKoD10LLVSKjRdGIa9OFx1GDE4 GpEbNKTnC7DsfPn61Nl9O5A+3cH32kvnO4PiDUcITmuzBdxT83iCV8H/iQdl9PaS tDa8oHTQfUPofF9ZP33XxSf5GesN5aRM/ur4TVge8TsKRJ1Hjy5ePo2vtjzbsrbA z3W7WqYuec4PHvm+H99tIqbA2Cd/oxyHEx62hmFETiP8LJNL4lDROxKKK+2rxg7u +XX5RlB6+wc7alt7/Dbs7KQ3SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9wO1rx 3xgKtOUmX6YkW0hzJKRBMB8GA1UdIwQYMBaAFEd+IuG9OtUgTjrcLezW0qGUrPpY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjYwMC8zQjA2RjMwNjA0 MzUxMUU5OUUwOUNDNjNDNEY5QUUwMi9SMzRpNGIwNjFTQk9PdHd0N05iU29aU3Mt bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1IzNGk0YjA2MVNCT090d3Q3TmJTb1pTcy1sZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI2MDAvM0IwNkYzMDYwNDM1MTFFOTlFMDlDQzYzQzRGOUFFMDIvNkM1MTBGOThC NTFDMTFFQUExNjQ5MjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAS81kAwDQYJKoZIhvcNAQELBQADggEBADz3DR6vf8PFnOdm OjnCjbcl8/iJvfPXhNnU777OsZxnGXLz+uY7LpW7u7aTCXuzuIMwgZMmrD8KPF5y OnsAH4q0NkGSe19RY/FoxHE49jy/r5Exi8UCOV/W9UWnmaJryz5vnK1oW3RoKzMi 0Yh2KS5LTP3X4s/zsQpv7vhznDYZ4AnKlEqXYVPNSbBuyM2awbH9EbKmVXo9A+BZ 1KS8rwE2aN86RrgILcNityqjApEca4EX44C5laMVIGot6nnb9OxSnNT66XgL83UI hE+tQwWPSHCps506QBdoEXiRIRlI9iJu2ltexMEvvghV6j5aC6ZPv2oTs26N8leU 88MJDW4= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:40 2024 by rpki-client on console-fra.rpki-client.org