$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa File: B287525CE81011EA926BE66FC4F9AE02.roa (raw, json) Hash identifier: AZIhgqLWerQ3SC2VeU9Yc9XviSys6Kjh8ndBrTDQGLY= Subject key identifier: 12:96:83:23:6A:EC:BD:D2:12:A3:5B:39:34:C2:14:3A:CB:71:E7:F7 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0781 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa Signing time: Mon 30 Sep 2024 21:40:16 +0000 ROA not before: Mon 30 Sep 2024 21:40:16 +0000 ROA not after: Thu 30 Jan 2025 00:00:00 +0000 asID: 56132 IP address blocks: 130.194.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1921 (0x781) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Sep 30 21:40:16 2024 GMT Not After : Jan 30 00:00:00 2025 GMT Subject: CN=66fb1ac0-db70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bd:19:02:f5:89:26:00:96:b7:32:fc:b2:03: 6b:85:cc:bb:8b:20:a6:2b:b8:35:7f:05:1c:53:4e: b0:a9:42:cd:dd:c2:f9:54:46:40:c3:95:33:99:a5: 85:b4:fc:a3:dc:63:ae:a2:35:0f:fa:0e:48:0d:73: 31:ec:db:01:71:0b:8c:b5:59:bd:a1:92:de:02:59: 12:a3:d7:81:ac:61:63:cf:35:e5:8f:62:49:41:c0: 8f:fd:ea:5f:72:0e:39:e2:1d:e3:24:55:79:19:f4: 91:43:49:be:7f:dc:f6:22:29:70:8f:ac:66:f7:0f: e3:9d:2e:39:b4:46:87:9c:b8:35:2c:89:ea:5f:64: 0d:00:68:06:d2:59:54:70:13:cd:37:71:f4:f9:9c: 3c:a2:b2:0d:d5:77:29:3c:4e:04:15:58:67:50:1e: 71:e4:8d:cd:42:e9:43:1f:e1:f5:f3:a3:5e:2c:29: df:c1:3c:95:45:fc:3c:02:c6:5b:d8:ef:13:2c:8c: 13:8e:80:54:b3:22:dd:0b:ae:25:e7:5c:4e:8b:8a: ac:f0:99:02:6b:34:b1:ed:18:46:24:48:2b:1e:02: 57:11:bf:66:bc:c4:3d:d1:73:66:f4:1b:36:6d:67: a1:30:7a:7d:30:c6:28:35:9a:14:ee:ca:44:60:e0: 66:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:96:83:23:6A:EC:BD:D2:12:A3:5B:39:34:C2:14:3A:CB:71:E7:F7 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:24:02:7b:70:f1:ee:d7:19:0f:83:94:75:3d:37:82:2c:13: 0f:d2:82:57:a0:16:a4:86:07:f6:aa:ce:b8:aa:aa:46:b4:88: 30:4d:71:82:5a:c0:67:47:84:6f:74:fc:0b:a7:61:ff:47:bc: 4f:15:ad:0a:d8:a0:cb:1b:42:53:75:9b:7f:59:bd:de:24:79: 6c:00:7a:5a:9b:97:50:a0:65:32:85:0b:92:c3:d8:fc:bf:bb: 14:6d:27:32:91:3c:1c:78:48:12:4e:bb:e7:fa:a5:0b:04:a2: 9d:9d:92:5a:00:6d:cd:2c:ac:15:a4:24:6b:e8:8f:00:7e:86: a0:15:40:78:3b:63:02:32:ae:8b:2d:a4:fe:28:31:a2:82:58: 5a:31:99:8b:45:a7:e0:e8:8f:fb:f9:9c:ff:15:61:46:90:c4: a3:c6:7d:f7:77:b8:f9:bb:25:06:0a:93:2d:45:c8:17:cc:25: bf:e3:2f:55:02:52:fa:ae:9d:8f:6d:ee:0b:53:e8:1d:51:3e: 0e:cd:64:61:7e:10:d7:cf:95:4f:5f:85:4f:32:e6:4a:44:3b: 0b:75:e3:24:67:ef:7e:c0:f1:b4:1d:5b:02:18:2c:36:d4:6f: 77:27:3d:09:f8:65:79:bf:6b:a5:23:64:5d:b2:54:a0:bc:00: 5f:c5:34:b4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjQwOTMwMjE0MDE2WhcNMjUwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiMWFjMC1kYjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL0ZAvWJJgCWtzL8sgNrhcy7iyCmK7g1fwUcU06wqULN3cL5VEZAw5UzmaWF tPyj3GOuojUP+g5IDXMx7NsBcQuMtVm9oZLeAlkSo9eBrGFjzzXlj2JJQcCP/epf cg454h3jJFV5GfSRQ0m+f9z2Iilwj6xm9w/jnS45tEaHnLg1LInqX2QNAGgG0llU cBPNN3H0+Zw8orIN1XcpPE4EFVhnUB5x5I3NQulDH+H186NeLCnfwTyVRfw8AsZb 2O8TLIwTjoBUsyLdC64l51xOi4qs8JkCazSx7RhGJEgrHgJXEb9mvMQ90XNm9Bs2 bWehMHp9MMYoNZoU7spEYOBm3QIDAQABo4IClDCCApAwHQYDVR0OBBYEFBKWgyNq 7L3SEqNbOTTCFDrLcef3MB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U1RDYvNUE1MkY5MTJFNzVBMTFFQUI5NkY5RDYwQzRGOUFFMDIvQjI4NzUyNUNF ODEwMTFFQTkyNkJFNjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCCwjANBgkqhkiG9w0BAQsFAAOCAQEAqiQCe3Dx7tcZD4OU dT03giwTD9KCV6AWpIYH9qrOuKqqRrSIME1xglrAZ0eEb3T8C6dh/0e8TxWtCtig yxtCU3Wbf1m93iR5bAB6WpuXUKBlMoULksPY/L+7FG0nMpE8HHhIEk675/qlCwSi nZ2SWgBtzSysFaQka+iPAH6GoBVAeDtjAjKuiy2k/igxooJYWjGZi0Wn4OiP+/mc /xVhRpDEo8Z993e4+bslBgqTLUXIF8wlv+MvVQJS+q6dj23uC1PoHVE+Ds1kYX4Q 18+VT1+FTzLmSkQ7C3XjJGfvfsDxtB1bAhgsNtRvdyc9Cfhleb9rpSNkXbJUoLwA X8U0tA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org