$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa File: 7A90F2402C3C11EE81B24651C4F9AE02.roa (raw, json) Hash identifier: oZUQe7vF9965udCpvU+/bwZotZkJzZlfqtmcro6cyHo= Subject key identifier: 7E:2D:DF:3F:C1:D4:17:6A:69:DB:D3:6E:2E:6A:B4:6B:51:49:ED:2E Certificate issuer: /CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34 Certificate serial: 295F Authority key identifier: E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:30:13 +0000 ROA not before: Tue 16 Jul 2024 14:30:13 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7470 IP address blocks: 134.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10591 (0x295f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34 Validity Not Before: Jul 16 14:30:13 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669683f5-5305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d3:80:c5:54:6c:aa:46:3b:b3:91:af:33:dc: 79:99:ce:ea:29:15:46:d0:31:7a:b4:d7:2d:e2:b0: 74:c1:f2:b0:11:eb:22:e3:0f:f8:0b:54:92:af:15: 3e:d3:41:51:6a:c7:c1:f9:53:2e:c5:75:f2:05:fb: 54:66:12:55:b6:8f:62:28:3d:4c:78:f7:ea:0f:c3: c7:ec:8f:1f:5f:96:34:69:c2:6a:03:43:14:52:99: 5c:52:1c:f9:7b:47:9d:26:19:0f:e2:05:34:72:16: ba:62:12:c4:f4:ab:02:ee:04:fb:08:80:80:d8:32: f8:49:a4:83:b7:f8:59:93:7c:3a:a5:e4:35:e1:6d: 67:50:bc:53:97:c4:ca:54:8e:29:39:14:54:1a:b1: e5:dc:6d:4f:7b:44:50:66:fd:82:2e:e4:a4:fe:a6: 98:5e:af:4e:74:c1:e2:79:95:f9:06:59:cc:62:d3: 26:b3:69:39:31:76:e9:b3:a2:aa:3b:df:39:c5:bd: 8a:f0:80:f1:7d:2f:94:3f:ce:60:e6:cc:4b:55:c2: 77:59:7d:09:5a:fa:3b:56:00:72:2c:2e:47:37:bb: be:1b:d8:b7:4d:44:c7:43:33:ba:17:44:67:77:f0: 68:4b:b8:de:3f:76:fb:e7:ae:5d:09:8b:99:58:24: fe:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2D:DF:3F:C1:D4:17:6A:69:DB:D3:6E:2E:6A:B4:6B:51:49:ED:2E X509v3 Authority Key Identifier: keyid:E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:01:16:9a:26:b3:dc:cf:1c:3d:ec:2b:a5:30:83:5f:ae:d5: a2:b9:fd:27:3b:bf:f4:f1:2e:91:62:e0:21:8f:0a:f3:34:88: 5b:66:49:b7:7b:3b:15:d2:69:26:8d:29:a2:2c:cd:67:af:2b: b4:c8:65:31:a7:e1:41:74:37:d8:b7:91:41:73:3b:a5:da:2c: 51:d2:06:f2:e0:b9:bd:6f:ab:95:89:a8:5c:da:44:fd:0e:39: e9:9f:78:1d:3f:e4:84:21:d4:c7:89:e2:40:68:af:6c:c1:5c: ea:29:12:39:3c:47:da:19:1a:d9:6b:ec:29:23:e2:a3:75:60: ff:38:cd:e2:9f:a1:2b:aa:89:46:71:f4:1d:58:98:e3:76:0f: 21:52:4a:f4:dd:e0:0e:dd:4f:d1:0a:e1:1e:9f:5a:da:74:bc: cb:3f:bd:5b:27:28:72:31:60:9e:17:f4:34:88:26:1c:3f:fb: 77:2f:f2:5d:cf:c5:32:a8:5a:31:f7:f0:99:d5:f6:f4:6d:a8: 5a:c2:52:5e:89:2a:ac:60:46:b2:76:bb:2e:97:da:00:3b:e5: 35:0c:9f:11:62:06:35:f2:35:f0:a6:a9:01:59:64:02:7e:52: 74:2a:a8:8a:43:25:71:01:03:d1:e6:c6:8f:b6:57:67:9c:8e: 62:b7:88:df -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICKV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKEU4N0RDNkM1QzcxMDQzOTA1N0Q4QUJFRDkwQzI2RDBD OUM4NzJCMzQwHhcNMjQwNzE2MTQzMDEzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODNmNS01MzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdOAxVRsqkY7s5GvM9x5mc7qKRVG0DF6tNct4rB0wfKwEesi4w/4C1SSrxU+ 00FRasfB+VMuxXXyBftUZhJVto9iKD1MePfqD8PH7I8fX5Y0acJqA0MUUplcUhz5 e0edJhkP4gU0cha6YhLE9KsC7gT7CICA2DL4SaSDt/hZk3w6peQ14W1nULxTl8TK VI4pORRUGrHl3G1Pe0RQZv2CLuSk/qaYXq9OdMHieZX5BlnMYtMms2k5MXbps6Kq O985xb2K8IDxfS+UP85g5sxLVcJ3WX0JWvo7VgByLC5HN7u+G9i3TUTHQzO6F0Rn d/BoS7jeP3b7565dCYuZWCT+xwIDAQABo4IClDCCApAwHQYDVR0OBBYEFH4t3z/B 1BdqadvTbi5qtGtRSe0uMB8GA1UdIwQYMBaAFOh9xsXHEEOQV9ir7ZDCbQychys0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy82QjhCOUQwRTM2 RkYxMUU0OTkwNEFDNjZDNEY5QUUwMi82SDNHeGNjUVE1QlgyS3Z0a01KdERKeUhL elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZIM0d4Y2NRUTVCWDJLdnRrTUp0REp5SEt6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNkI4QjlEMEUzNkZGMTFFNDk5MDRBQzY2QzRGOUFFMDIvN0E5MEYyNDAy QzNDMTFFRTgxQjI0NjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCGxDANBgkqhkiG9w0BAQsFAAOCAQEAhAEWmiaz3M8cPewr pTCDX67Vorn9Jzu/9PEukWLgIY8K8zSIW2ZJt3s7FdJpJo0poizNZ68rtMhlMafh QXQ32LeRQXM7pdosUdIG8uC5vW+rlYmoXNpE/Q456Z94HT/khCHUx4niQGivbMFc 6ikSOTxH2hka2WvsKSPio3Vg/zjN4p+hK6qJRnH0HViY43YPIVJK9N3gDt1P0Qrh Hp9a2nS8yz+9WycocjFgnhf0NIgmHD/7dy/yXc/FMqhaMffwmdX29G2oWsJSXokq rGBGsna7LpfaADvlNQyfEWIGNfI18KapAVlkAn5SdCqoikMlcQED0ebGj7ZXZ5yO YreI3w== -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:24 2024 by rpki-client on console-fra.rpki-client.org