$ rpki-client -vvf rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/8595A74A373C11ECA3E8C51BC4F9AE02.roa File: 8595A74A373C11ECA3E8C51BC4F9AE02.roa (raw, json) Hash identifier: +veyd8W47YCvCuitg3o8ThOGXu4XRgXC3k1LgL4ZMH8= Subject key identifier: 86:D3:5F:78:18:47:D7:52:05:28:0C:C5:E0:42:CA:83:2B:70:61:1D Certificate issuer: /CN=A912E92E/serialNumber=1782FC2C4D24A0E2640D15B3190DEE98F36B8F3C Certificate serial: 07A6 Authority key identifier: 17:82:FC:2C:4D:24:A0:E2:64:0D:15:B3:19:0D:EE:98:F3:6B:8F:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4L8LE0koOJkDRWzGQ3umPNrjzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/8595A74A373C11ECA3E8C51BC4F9AE02.roa Signing time: Mon 22 Jul 2024 16:33:23 +0000 ROA not before: Mon 22 Jul 2024 16:33:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135352 IP address blocks: 43.225.60.0/22 maxlen: 24 2404:cc80::/32 maxlen: 33 2404:cc80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/F4L8LE0koOJkDRWzGQ3umPNrjzw.crl rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/F4L8LE0koOJkDRWzGQ3umPNrjzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4L8LE0koOJkDRWzGQ3umPNrjzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E92E/serialNumber=1782FC2C4D24A0E2640D15B3190DEE98F36B8F3C Validity Not Before: Jul 22 16:33:23 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=669e89d3-a3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cb:cb:30:fe:b9:6e:4a:95:f2:8d:3f:4f:40: c0:3f:7e:52:28:f5:a3:d0:7b:5b:ab:cc:76:89:ec: b1:2d:58:b5:b7:20:bb:48:95:ba:b1:8e:a4:d3:79: 6f:f2:5d:cb:c4:e8:1e:6d:0c:7f:47:a1:5b:c8:8c: 78:7c:67:e9:e9:cc:eb:4a:ac:56:e3:a6:5b:8b:17: 3e:6d:87:4e:4b:3e:e1:83:6c:ba:77:03:e2:85:6c: 85:ca:ee:82:35:99:85:8d:1f:af:07:01:4f:f0:20: 49:52:f1:ad:fc:83:3d:54:e9:c5:9a:b4:94:3c:84: 33:be:9f:77:e7:65:54:60:13:45:64:7a:2a:10:a5: 5b:3e:33:92:6d:c7:90:04:a8:cd:9e:11:39:cd:41: 4b:ae:2a:2e:2c:c1:d3:f6:aa:48:35:d0:bb:b7:66: 42:c3:18:ab:4c:1b:df:00:e1:29:bf:25:b7:71:3c: 62:10:fa:01:64:c3:63:33:28:ec:ce:cc:b4:a7:1f: d6:a3:84:98:8d:dd:98:35:6e:11:d9:d1:1e:89:4b: 5a:85:25:2d:66:b2:19:cd:de:be:ae:54:41:aa:ca: 32:19:fc:23:78:b2:32:58:90:32:8f:58:31:c8:f7: fd:f9:a3:6e:6c:12:dc:6b:45:f5:35:06:20:70:59: b3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D3:5F:78:18:47:D7:52:05:28:0C:C5:E0:42:CA:83:2B:70:61:1D X509v3 Authority Key Identifier: keyid:17:82:FC:2C:4D:24:A0:E2:64:0D:15:B3:19:0D:EE:98:F3:6B:8F:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/F4L8LE0koOJkDRWzGQ3umPNrjzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4L8LE0koOJkDRWzGQ3umPNrjzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/8595A74A373C11ECA3E8C51BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.60.0/22 IPv6: 2404:cc80::/32 Signature Algorithm: sha256WithRSAEncryption 65:50:57:22:07:f4:1f:fd:22:3b:62:6b:19:56:0f:a1:2d:a8: ab:59:4a:b6:a2:1a:fb:63:13:93:4d:80:f2:de:87:d6:0d:24: 2f:29:c1:a8:ca:d8:62:9f:43:bc:0e:2d:da:b0:49:9f:a1:57: 08:28:e2:23:2a:d7:c7:d6:43:86:6f:86:98:81:d0:c6:b8:a1: dd:79:4f:fe:3b:a9:c5:b7:3d:2f:46:92:f4:01:ee:a9:97:e5: ca:5d:e0:8c:45:ce:dd:a1:64:51:9c:b8:3d:4e:69:14:30:45: 8f:9a:80:eb:6e:a5:32:a1:20:22:73:0e:e5:37:8f:cc:51:56: 9a:16:4c:30:75:34:9b:ec:f1:a1:b2:9b:f6:1d:0c:2b:dc:dd: 2c:15:c8:fd:a6:8d:3a:bc:da:c1:b5:59:c9:81:8d:b2:a4:9c: 22:66:23:c0:4d:1b:9a:db:16:5b:b5:ae:e9:a7:61:29:c5:d3: 3a:e9:61:fc:ce:02:02:a0:1b:4c:ee:c8:1f:11:1e:41:58:d3: ac:02:98:83:63:38:21:b4:79:ba:e4:b2:e1:d3:ca:9e:99:27: d8:73:64:10:01:1b:4d:53:21:b0:1e:96:31:c2:ad:bd:fe:e4: 03:94:c3:f5:20:19:1a:6e:9c:2b:6b:1f:aa:4a:34:63:19:e5: c1:ae:88:fd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU5MkUxMTAvBgNVBAUTKDE3ODJGQzJDNEQyNEEwRTI2NDBEMTVCMzE5MERFRTk4 RjM2QjhGM0MwHhcNMjQwNzIyMTYzMzIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllODlkMy1hM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscvLMP65bkqV8o0/T0DAP35SKPWj0Htbq8x2ieyxLVi1tyC7SJW6sY6k03lv 8l3LxOgebQx/R6FbyIx4fGfp6czrSqxW46Zbixc+bYdOSz7hg2y6dwPihWyFyu6C NZmFjR+vBwFP8CBJUvGt/IM9VOnFmrSUPIQzvp9352VUYBNFZHoqEKVbPjOSbceQ BKjNnhE5zUFLriouLMHT9qpINdC7t2ZCwxirTBvfAOEpvyW3cTxiEPoBZMNjMyjs zsy0px/Wo4SYjd2YNW4R2dEeiUtahSUtZrIZzd6+rlRBqsoyGfwjeLIyWJAyj1gx yPf9+aNubBLca0X1NQYgcFmzHwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIbTX3gY R9dSBSgMxeBCyoMrcGEdMB8GA1UdIwQYMBaAFBeC/CxNJKDiZA0VsxkN7pjza488 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTkyRS9BMDA5OUE4MDI3 RDExMUU2QUU3QkYyN0NDNEY5QUUwMi9GNEw4TEUwa29PSmtEUld6R1EzdW1QTnJq encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y0TDhMRTBrb09Ka0RSV3pHUTN1bVBOcmp6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU5MkUvQTAwOTlBODAyN0QxMTFFNkFFN0JGMjdDQzRGOUFFMDIvODU5NUE3NEEz NzNDMTFFQ0EzRThDNTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAIr4TwwDQQCAAIwBwMFACQEzIAwDQYJKoZIhvcNAQELBQAD ggEBAGVQVyIH9B/9IjtiaxlWD6EtqKtZSraiGvtjE5NNgPLeh9YNJC8pwajK2GKf Q7wOLdqwSZ+hVwgo4iMq18fWQ4ZvhpiB0Ma4od15T/47qcW3PS9GkvQB7qmX5cpd 4IxFzt2hZFGcuD1OaRQwRY+agOtupTKhICJzDuU3j8xRVpoWTDB1NJvs8aGym/Yd DCvc3SwVyP2mjTq82sG1WcmBjbKknCJmI8BNG5rbFlu1rumnYSnF0zrpYfzOAgKg G0zuyB8RHkFY06wCmINjOCG0ebrksuHTyp6ZJ9hzZBABG01TIbAeljHCrb3+5AOU w/UgGRpunCtrH6pKNGMZ5cGuiP0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:58 2024 by rpki-client on console-ams.rpki-client.org