$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/A7FBA00E778811EDAE39280CC4F9AE02.roa File: A7FBA00E778811EDAE39280CC4F9AE02.roa (raw, json) Hash identifier: njIHJmxKeV2BVx6lxWDKyEYjZNNc7SzKULaYDH9DiQE= Subject key identifier: 65:81:91:DB:61:4F:80:1B:F1:3C:AE:D6:8C:FD:3F:FB:6E:10:F2:A1 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0339 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/A7FBA00E778811EDAE39280CC4F9AE02.roa Signing time: Mon 04 Nov 2024 02:00:39 +0000 ROA not before: Mon 04 Nov 2024 02:00:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142005 IP address blocks: 64.25.32.0/20 maxlen: 24 206.127.144.0/20 maxlen: 24 209.35.96.0/23 maxlen: 24 209.35.114.0/23 maxlen: 24 209.35.156.0/23 maxlen: 24 209.35.188.0/23 maxlen: 24 216.107.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Nov 4 02:00:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67282ac7-2f4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f9:1b:5f:b8:20:b9:7a:97:9b:44:9c:ff:2c: 88:da:6a:72:b1:b7:d5:70:8a:30:cf:3a:1c:1d:2b: 3e:85:71:a1:bb:f8:78:1c:db:bd:0b:34:8a:d1:d8: 45:59:f8:30:f9:01:bd:16:00:32:d4:73:b8:72:40: 51:67:f2:96:d0:1d:78:0d:a5:75:7d:0c:34:75:75: 46:56:e6:05:fd:8c:b5:fe:cf:f8:04:f5:c8:bc:f6: 63:62:3a:bd:d9:e7:04:2d:d7:08:db:e4:02:52:37: da:fb:a1:0d:9a:11:c5:ea:58:e2:83:38:f8:c0:52: 40:26:2b:ac:c7:13:26:f7:05:25:05:c6:6c:3a:33: b3:4c:d3:b3:2d:af:bf:cc:2c:a0:a6:00:85:18:05: e9:08:0b:c2:d1:84:b0:41:9f:81:fa:2b:ab:69:36: 75:ea:2a:3f:38:54:72:58:11:e0:40:e9:56:82:5d: 9c:0a:e2:bf:53:b3:52:ec:7c:71:57:e2:e5:13:79: 75:4f:f7:26:3f:89:a1:86:71:0c:14:90:5b:64:b4: 25:48:86:33:65:8d:48:4b:1c:c0:bd:17:d5:6a:54: 8a:c6:ee:4d:7d:d8:69:bd:7a:1e:18:5d:e1:41:60: 08:df:fc:8a:30:e1:d6:0a:4e:b1:bc:8b:f2:a9:95: 7d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:81:91:DB:61:4F:80:1B:F1:3C:AE:D6:8C:FD:3F:FB:6E:10:F2:A1 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/A7FBA00E778811EDAE39280CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.25.32.0/20 206.127.144.0/20 209.35.96.0/23 209.35.114.0/23 209.35.156.0/23 209.35.188.0/23 216.107.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:1f:57:df:2f:05:d3:ca:d8:44:51:98:94:d0:64:6a:21:4e: 36:ae:27:2a:94:10:28:9e:ed:af:08:00:47:e5:c7:6b:24:18: 19:d9:2a:7a:be:ea:a7:c1:68:bf:be:25:c4:e5:6b:fb:88:fa: c6:a0:dd:3f:be:b8:c8:54:4a:c9:fc:46:c7:ef:59:cb:b8:78: 07:6d:62:10:05:ee:d8:c9:61:77:bc:0b:7d:1e:a1:fe:24:42: e7:b8:b9:aa:6e:21:3a:57:94:db:df:86:74:a6:02:06:d6:e4: e2:1c:fe:01:4b:7c:85:65:0a:4c:da:d7:ce:79:ae:96:3c:a6: 73:be:31:5a:88:c2:92:10:9f:8f:a1:e9:8b:c6:f9:27:80:2b: 3f:c3:61:66:18:94:01:0b:d5:7c:15:90:a6:73:62:0e:b1:2a: e0:92:21:a5:60:83:83:2a:c6:a9:1b:12:44:23:8b:51:57:3a: 09:62:97:68:6c:fd:78:70:2a:c9:65:fe:2c:1e:4d:8e:49:52: 5d:21:28:8e:02:bd:93:b8:11:0c:0c:cf:72:79:a7:c1:17:fe: d4:a1:59:0b:4c:90:46:e9:4b:d9:d3:e1:5b:b4:95:70:a2:de: 1b:70:6b:8b:a9:07:3f:fa:ab:0a:ca:50:43:99:9e:91:c3:a6: a6:58:f4:49 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjQxMTA0MDIwMDM5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI4MmFjNy0yZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPkbX7gguXqXm0Sc/yyI2mpysbfVcIowzzocHSs+hXGhu/h4HNu9CzSK0dhF Wfgw+QG9FgAy1HO4ckBRZ/KW0B14DaV1fQw0dXVGVuYF/Yy1/s/4BPXIvPZjYjq9 2ecELdcI2+QCUjfa+6ENmhHF6ljigzj4wFJAJiusxxMm9wUlBcZsOjOzTNOzLa+/ zCygpgCFGAXpCAvC0YSwQZ+B+iuraTZ16io/OFRyWBHgQOlWgl2cCuK/U7NS7Hxx V+LlE3l1T/cmP4mhhnEMFJBbZLQlSIYzZY1ISxzAvRfValSKxu5NfdhpvXoeGF3h QWAI3/yKMOHWCk6xvIvyqZV9IwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFGWBkdth T4Ab8Tyu1oz9P/tuEPKhMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQyQzUvMUY0MDRFMzBBNEU5MTFFQ0FGM0ZCMTUyQzRGOUFFMDIvQTdGQkEwMEU3 Nzg4MTFFREFFMzkyODBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBARAGSADBATOf5ADBAHRI2ADBAHRI3IDBAHRI5wDBAHRI7wD BATYa/AwDQYJKoZIhvcNAQELBQADggEBADwfV98vBdPK2ERRmJTQZGohTjauJyqU ECie7a8IAEflx2skGBnZKnq+6qfBaL++JcTla/uI+sag3T++uMhUSsn8RsfvWcu4 eAdtYhAF7tjJYXe8C30eof4kQue4uapuITpXlNvfhnSmAgbW5OIc/gFLfIVlCkza 1855rpY8pnO+MVqIwpIQn4+h6YvG+SeAKz/DYWYYlAEL1XwVkKZzYg6xKuCSIaVg g4MqxqkbEkQji1FXOglil2hs/XhwKsll/iweTY5JUl0hKI4CvZO4EQwMz3J5p8EX /tShWQtMkEbpS9nT4Vu0lXCi3htwa4upBz/6qwrKUEOZnpHDpqZY9Ek= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:34 2024 by rpki-client on console-ams.rpki-client.org