$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/4DAFC184ADC011ED897A4050C4F9AE02.roa File: 4DAFC184ADC011ED897A4050C4F9AE02.roa (raw, json) Hash identifier: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4= Subject key identifier: 9C:9A:3D:34:D7:65:E5:88:A7:CC:57:4B:43:ED:27:16:7C:5B:DA:07 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 09AA Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/4DAFC184ADC011ED897A4050C4F9AE02.roa Signing time: Sat 02 Nov 2024 19:58:30 +0000 ROA not before: Sat 02 Nov 2024 19:58:30 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58877 IP address blocks: 137.166.0.0/16 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2474 (0x9aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Nov 2 19:58:30 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67268466-160c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:60:82:f2:d4:ce:64:ba:da:e1:66:29:9b:54: b2:3e:4d:e3:18:da:5f:bb:af:21:1b:ce:b9:08:2b: aa:58:54:93:00:8a:92:a4:b1:10:8b:51:b7:e5:72: 97:0b:e7:9c:be:ee:6b:fd:ad:60:90:47:74:55:66: ff:88:9d:38:95:bd:45:78:72:29:ae:c7:9e:15:49: 70:c5:fc:2f:39:a7:db:18:cf:05:78:d0:49:4d:a5: 9d:20:e1:3e:54:9d:38:d7:50:57:f2:ca:1a:ef:de: 0e:64:4c:47:22:17:03:0b:2a:69:a9:0e:00:a4:fd: 3a:c9:d0:62:72:40:65:e3:0b:50:45:27:b2:3c:cd: 03:d0:d2:ce:14:1d:80:b9:48:93:b9:e0:e9:77:44: 4f:82:1f:b9:89:70:32:fc:4d:50:56:b3:ca:d3:ed: f4:78:76:9c:90:f7:e8:30:e9:27:87:bd:d2:be:65: 81:68:de:a1:eb:ae:fa:be:40:21:e2:43:cd:b0:1a: f4:67:8c:e5:cf:c9:1f:51:9b:5b:cb:a0:cb:bc:88: c1:ca:67:af:20:1d:ad:fa:77:02:5b:3c:85:37:a2: ec:0f:d1:0f:c8:f0:36:a9:be:ff:4c:c3:b6:c9:79: 18:95:d8:5f:b4:23:9d:7a:5c:77:67:07:9e:78:0d: 0a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9A:3D:34:D7:65:E5:88:A7:CC:57:4B:43:ED:27:16:7C:5B:DA:07 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/4DAFC184ADC011ED897A4050C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 137.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:82:b5:c4:48:9d:46:41:5b:09:69:19:4c:6d:d9:8a:a5:16: 1d:47:86:c0:68:cc:b1:23:88:03:f7:43:ad:9e:92:b8:cc:f4: ad:4c:65:39:51:32:08:a6:8c:06:c9:63:89:93:85:46:66:c3: b5:cc:fa:65:18:98:90:fa:a4:0e:5e:07:41:07:1f:c4:b1:dd: 38:56:51:47:7d:a4:0c:c6:0a:8c:57:5a:5a:bb:d1:c0:a8:52: 2b:d1:5f:32:8f:1c:67:cb:4e:9b:02:a3:44:8b:48:b9:ed:67: 1c:39:b2:ca:aa:f9:3d:bd:e2:61:f8:b8:90:6e:e6:15:e7:b0: 78:7d:7b:14:38:2b:e6:c9:a1:ec:ed:fc:0e:a2:c5:52:2f:9b: 4a:83:c9:2f:5e:8c:aa:73:42:71:a4:e9:b5:c9:7e:08:f3:1f: b1:8e:1c:c0:83:af:43:ae:f2:d6:d2:3b:a4:b6:5d:dd:4c:f9: fc:8b:3a:e5:17:c4:99:ee:64:ab:d8:e4:23:15:12:00:89:65: 45:c1:74:38:d6:d4:da:97:6c:13:0d:3a:82:82:18:43:a3:ec: 99:cd:0f:ec:00:f0:5b:25:f3:27:4f:c8:7a:12:a5:c8:08:1a: 69:83:47:0c:a5:0a:f0:4e:d4:5d:fd:c4:1f:f1:7a:b0:1f:b1: 0f:72:51:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjQxMTAyMTk1ODMwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ODQ2Ni0xNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2CC8tTOZLra4WYpm1SyPk3jGNpfu68hG865CCuqWFSTAIqSpLEQi1G35XKX C+ecvu5r/a1gkEd0VWb/iJ04lb1FeHIprseeFUlwxfwvOafbGM8FeNBJTaWdIOE+ VJ0411BX8soa794OZExHIhcDCyppqQ4ApP06ydBickBl4wtQRSeyPM0D0NLOFB2A uUiTueDpd0RPgh+5iXAy/E1QVrPK0+30eHackPfoMOknh73SvmWBaN6h6676vkAh 4kPNsBr0Z4zlz8kfUZtby6DLvIjBymevIB2t+ncCWzyFN6LsD9EPyPA2qb7/TMO2 yXkYldhftCOdelx3ZweeeA0KUQIDAQABo4IClDCCApAwHQYDVR0OBBYEFJyaPTTX ZeWIp8xXS0PtJxZ8W9oHMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E3QTYvNDU3QThFODI3M0I2MTFFQTlCOEMxRjVDQzRGOUFFMDIvNERBRkMxODRB REMwMTFFRDg5N0E0MDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCJpjANBgkqhkiG9w0BAQsFAAOCAQEALYK1xEidRkFbCWkZ TG3ZiqUWHUeGwGjMsSOIA/dDrZ6SuMz0rUxlOVEyCKaMBsljiZOFRmbDtcz6ZRiY kPqkDl4HQQcfxLHdOFZRR32kDMYKjFdaWrvRwKhSK9FfMo8cZ8tOmwKjRItIue1n HDmyyqr5Pb3iYfi4kG7mFeeweH17FDgr5smh7O38DqLFUi+bSoPJL16MqnNCcaTp tcl+CPMfsY4cwIOvQ67y1tI7pLZd3Uz5/Is65RfEme5kq9jkIxUSAIllRcF0ONbU 2pdsEw06goIYQ6Psmc0P7ADwWyXzJ0/IehKlyAgaaYNHDKUK8E7UXf3EH/F6sB+x D3JR1w== -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:46 2024 by rpki-client on console-ams.rpki-client.org