$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa File: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (raw, json) Hash identifier: hshI8UyYGQ+vkpU3ZjtQTaxFUssk1c7EXyRF9j20I3E= Subject key identifier: 17:B1:A1:5D:65:A7:C5:82:81:A9:46:59:E6:4C:EE:7C:69:97:3C:38 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 1626 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa Signing time: Mon 15 Jul 2024 07:52:49 +0000 ROA not before: Mon 15 Jul 2024 07:52:49 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 18190 IP address blocks: 155.137.88.0/24 maxlen: 24 155.137.89.0/24 maxlen: 24 155.137.90.0/24 maxlen: 24 209.141.8.0/24 maxlen: 24 209.141.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5670 (0x1626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Jul 15 07:52:49 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6694d551-94df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:10:53:3a:1f:a1:60:fa:bf:ea:9f:ae:2b:f1: 4a:a5:9e:36:6a:f3:7e:52:07:95:f5:a8:f7:33:9a: 53:99:ab:5c:7c:c5:a5:40:dd:af:18:35:42:00:dc: c2:73:49:b4:5b:ba:d9:e2:65:0a:45:10:dd:ab:1a: 9d:0e:ee:31:66:20:4b:2b:b8:47:e6:08:21:3e:57: 84:ab:36:6a:4e:fe:3c:af:98:76:dd:ee:d6:15:d2: 57:f7:77:39:77:51:af:97:47:2a:45:05:0d:7a:2e: e0:6e:4f:03:5e:90:f8:6c:82:d1:48:55:c6:b6:13: 3f:99:05:9d:b3:f3:21:fc:16:82:1e:cf:44:27:71: 4a:43:9d:5f:58:0b:f0:53:e3:49:bb:aa:36:94:d7: 5e:a1:e8:d3:76:23:c5:a9:44:8e:01:c0:e7:5e:ed: f5:9f:31:04:6c:0a:ea:aa:34:ff:18:6d:0b:f5:96: 35:22:75:e1:70:a5:ad:85:e2:ff:30:24:57:c7:2c: 49:9f:77:a4:43:3f:2a:85:7e:d8:4a:b5:3f:b7:dd: e0:e8:ca:04:b4:df:87:04:64:89:2c:a3:88:32:91: ab:6b:d8:d7:65:89:1f:bc:26:e9:f6:4b:80:0d:fe: 8f:ce:4a:c9:72:f1:8f:d9:51:c9:d8:9e:96:a7:d4: c0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B1:A1:5D:65:A7:C5:82:81:A9:46:59:E6:4C:EE:7C:69:97:3C:38 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.137.88.0-155.137.90.255 209.141.8.0/24 209.141.12.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:df:01:80:b8:21:d0:bb:1f:b4:ce:45:c3:15:b2:05:55:29: 57:13:c0:7d:07:19:27:6b:b7:17:b0:92:f9:32:9b:a2:15:de: a7:58:10:b1:13:1b:94:89:7a:2c:2e:e9:01:88:4e:8e:10:83: 06:f6:37:3c:3d:77:da:76:d4:c2:d4:cd:0e:e7:c5:9e:01:5d: 87:df:8a:f9:b9:b4:77:53:3e:9d:67:9a:ee:fa:bb:36:87:a2: 5a:d6:a2:3a:53:0a:80:f1:d9:7e:8f:1b:fd:67:c1:58:9e:17: 5a:28:33:3b:93:ee:17:88:06:d1:01:e3:cd:f1:d1:c6:df:d8: 37:6b:bf:e2:90:33:d5:dc:ca:11:39:9e:42:28:02:e5:dc:6c: 53:8e:3c:d4:2e:41:d1:39:fe:6b:02:ac:8c:ab:00:25:e2:74: 78:c0:7c:ce:b0:cb:9c:00:1b:f9:75:51:d9:b7:75:9c:91:29: 50:ca:72:66:c6:e2:d4:c5:bd:87:dd:38:8c:27:f6:2c:54:c6: f7:c8:61:ac:e8:4c:a1:ff:c3:04:59:b6:02:09:39:32:4b:77: 0c:b2:8a:9a:18:15:bf:94:ae:a7:f7:58:bf:e7:11:11:4c:a8: ba:60:0b:57:67:03:7d:37:d5:0f:d5:57:d1:7e:7b:c9:b4:1a: c3:7b:78:ed -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICFiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjQwNzE1MDc1MjQ5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk0ZDU1MS05NGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBBTOh+hYPq/6p+uK/FKpZ42avN+UgeV9aj3M5pTmatcfMWlQN2vGDVCANzC c0m0W7rZ4mUKRRDdqxqdDu4xZiBLK7hH5gghPleEqzZqTv48r5h23e7WFdJX93c5 d1Gvl0cqRQUNei7gbk8DXpD4bILRSFXGthM/mQWds/Mh/BaCHs9EJ3FKQ51fWAvw U+NJu6o2lNdeoejTdiPFqUSOAcDnXu31nzEEbArqqjT/GG0L9ZY1InXhcKWtheL/ MCRXxyxJn3ekQz8qhX7YSrU/t93g6MoEtN+HBGSJLKOIMpGra9jXZYkfvCbp9kuA Df6PzkrJcvGP2VHJ2J6Wp9TABwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBexoV1l p8WCgalGWeZM7nxplzw4MB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNTkvNDRBNkZGNjQwMENCMTFFOEJFQjFFRjEwQzRGOUFFMDIvQUZCNTBEN0Ey QUFEMTFFRUE1RDk3MDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEA5uJWAMEAJuJWgMEANGNCAMEAdGNDDANBgkqhkiG9w0B AQsFAAOCAQEAOt8BgLgh0LsftM5FwxWyBVUpVxPAfQcZJ2u3F7CS+TKbohXep1gQ sRMblIl6LC7pAYhOjhCDBvY3PD132nbUwtTNDufFngFdh9+K+bm0d1M+nWea7vq7 NoeiWtaiOlMKgPHZfo8b/WfBWJ4XWigzO5PuF4gG0QHjzfHRxt/YN2u/4pAz1dzK ETmeQigC5dxsU4481C5B0Tn+awKsjKsAJeJ0eMB8zrDLnAAb+XVR2bd1nJEpUMpy Zsbi1MW9h904jCf2LFTG98hhrOhMof/DBFm2Agk5Mkt3DLKKmhgVv5Sup/dYv+cR EUyoumALV2cDfTfVD9VX0X57ybQaw3t47Q== -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:52 2024 by rpki-client on console-fra.rpki-client.org