$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/510308503E8211EBA910FF57C4F9AE02.roa File: 510308503E8211EBA910FF57C4F9AE02.roa (raw, json) Hash identifier: wuKDqTU6tn7/5jHE2t79EVQ5kpnRehQRwOUq9/41axU= Subject key identifier: D2:62:D8:DD:E6:43:84:74:DC:27:BD:B9:02:BD:D1:5F:F4:88:4D:90 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 0655 Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/510308503E8211EBA910FF57C4F9AE02.roa Signing time: Tue 16 Apr 2024 21:00:02 +0000 ROA not before: Tue 16 Apr 2024 21:00:02 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138915 IP address blocks: 194.26.72.0/24 maxlen: 24 194.26.73.0/24 maxlen: 24 194.26.74.0/24 maxlen: 24 194.26.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Apr 16 21:00:02 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661ee6d2-acba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ce:f0:d7:70:b5:66:64:73:7b:1b:a8:ea:e4: 86:ee:12:51:df:0e:3a:1e:35:38:0b:a3:bf:a7:2c: 09:7d:2f:a7:48:a7:44:63:b3:42:73:52:38:35:59: a0:4f:60:39:4b:0e:0f:ad:74:7d:3b:a7:c9:fe:8c: 1e:d4:29:ed:a9:b9:3d:e1:80:b1:cc:f7:b1:0d:cb: 94:a3:ce:b3:88:cb:eb:fb:94:06:dd:23:d8:f4:7f: b8:af:86:22:e6:ed:96:a0:37:e9:40:9c:d6:ba:e6: c1:3b:66:00:70:31:da:bd:37:ec:d2:9a:9e:fa:b9: a0:41:70:e7:24:73:b9:ad:f2:3e:08:78:fe:77:1c: 5f:a7:97:b4:9e:9c:b6:94:3b:c9:f2:36:d5:94:9e: 1c:9c:e1:48:18:18:aa:e8:60:4f:14:ec:6d:00:d6: 00:3b:f4:bc:2d:40:d5:b0:0f:0f:fa:50:0b:de:72: 35:ba:46:ea:07:68:01:0d:fd:e3:33:1d:3e:0c:4c: 60:48:ff:dc:14:68:9c:f8:2f:62:a2:f2:d8:20:fd: bd:93:6c:91:a8:0c:b9:16:6c:f2:e2:73:34:ba:f4: 08:6d:93:06:a1:0e:df:c4:2f:bc:84:c6:36:10:41: 9f:e8:a6:8c:f7:ab:65:86:8a:75:6e:8f:e9:26:49: c4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:62:D8:DD:E6:43:84:74:DC:27:BD:B9:02:BD:D1:5F:F4:88:4D:90 X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/510308503E8211EBA910FF57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.26.72.0/22 Signature Algorithm: sha256WithRSAEncryption 37:16:39:11:a0:5a:5a:58:eb:63:39:ff:d0:64:96:0a:99:1e: 0c:36:b8:cf:b2:87:33:a8:86:16:fd:52:3d:4e:9e:d5:4c:e2: 7b:de:60:a1:8a:64:85:b1:e0:d5:19:f1:94:f4:a2:22:ef:e6: 8b:9b:7d:5a:78:79:c1:f5:8e:8c:15:f8:4e:2d:aa:6f:64:c1: 6d:eb:8b:10:47:1a:37:ab:1b:b6:50:e1:fe:dc:36:f5:86:a5: f1:ac:ca:c7:6f:e4:67:18:f3:4a:36:fd:24:2a:ba:df:6e:d5: 25:9e:c0:b9:c1:1f:82:5b:09:25:12:ec:82:18:f1:82:e8:c7: 32:f5:83:17:71:80:e4:05:c3:29:b7:39:e6:ce:22:dc:01:c4: 62:ec:09:8d:30:a2:43:37:c7:32:25:8f:cb:cb:b7:d4:c9:66: ea:9d:41:c2:d4:6c:fd:94:a4:6d:07:8c:51:cb:e8:d1:6a:68: 84:56:3b:f2:18:fa:47:06:45:f5:33:e7:e1:f1:9e:ab:a5:17: 3d:b3:4a:14:7c:e3:40:3e:ff:ea:c0:6e:4d:f5:d9:41:1f:df: 89:15:b3:fa:c6:0a:be:3e:4b:28:4a:95:c2:b9:77:f1:b7:b1: e3:a4:be:b5:78:21:ff:df:5a:2a:5c:f6:f8:2a:46:fb:27:c0: 25:be:0e:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjQwNDE2MjEwMDAyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlZTZkMi1hY2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq87w13C1ZmRzexuo6uSG7hJR3w46HjU4C6O/pywJfS+nSKdEY7NCc1I4NVmg T2A5Sw4PrXR9O6fJ/owe1Cntqbk94YCxzPexDcuUo86ziMvr+5QG3SPY9H+4r4Yi 5u2WoDfpQJzWuubBO2YAcDHavTfs0pqe+rmgQXDnJHO5rfI+CHj+dxxfp5e0npy2 lDvJ8jbVlJ4cnOFIGBiq6GBPFOxtANYAO/S8LUDVsA8P+lAL3nI1ukbqB2gBDf3j Mx0+DExgSP/cFGic+C9iovLYIP29k2yRqAy5Fmzy4nM0uvQIbZMGoQ7fxC+8hMY2 EEGf6KaM96tlhop1bo/pJknE5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJi2N3m Q4R03Ce9uQK90V/0iE2QMB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4QUYvRUUwQUVFQ0EzRTgxMTFFQjlBQkQ5MjBGQzRGOUFFMDIvNTEwMzA4NTAz RTgyMTFFQkE5MTBGRjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALCGkgwDQYJKoZIhvcNAQELBQADggEBADcWORGgWlpY62M5 /9BklgqZHgw2uM+yhzOohhb9Uj1OntVM4nveYKGKZIWx4NUZ8ZT0oiLv5oubfVp4 ecH1jowV+E4tqm9kwW3rixBHGjerG7ZQ4f7cNvWGpfGsysdv5GcY80o2/SQqut9u 1SWewLnBH4JbCSUS7IIY8YLoxzL1gxdxgOQFwym3OebOItwBxGLsCY0wokM3xzIl j8vLt9TJZuqdQcLUbP2UpG0HjFHL6NFqaIRWO/IY+kcGRfUz5+HxnqulFz2zShR8 40A+/+rAbk312UEf34kVs/rGCr4+SyhKlcK5d/G3seOkvrV4If/fWipc9vgqRvsn wCW+Ds4= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org