$ rpki-client -vvf rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/06B5C9F2BE4C11EEA9314929C4F9AE02.roa File: 06B5C9F2BE4C11EEA9314929C4F9AE02.roa (raw, json) Hash identifier: 2/Ftunk18DWk1z6jxOsX2JBWOcMTbhRLeLLl78CtQBA= Subject key identifier: DE:AF:1F:B4:1A:A8:8B:EA:18:E3:37:46:41:D1:9A:21:60:EF:00:76 Certificate issuer: /CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF Certificate serial: 06FB Authority key identifier: 3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/06B5C9F2BE4C11EEA9314929C4F9AE02.roa Signing time: Tue 10 Sep 2024 08:02:54 +0000 ROA not before: Tue 10 Sep 2024 08:02:54 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138915 IP address blocks: 139.135.124.0/24 maxlen: 24 139.135.125.0/24 maxlen: 24 139.135.126.0/23 maxlen: 23 139.135.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF Validity Not Before: Sep 10 08:02:54 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66dffd2d-dcce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:95:31:63:2b:57:32:44:5b:73:16:fc:54:a8: 0a:5d:e6:64:97:47:f7:78:96:5c:86:65:1f:a0:0d: 81:d2:ed:c2:4b:d7:12:aa:0c:fb:3f:11:b1:b2:f7: 4d:7c:9a:2f:84:78:dd:19:68:f3:8b:15:93:69:2f: 76:ca:23:fd:a5:7f:9d:e3:f2:9c:82:d7:24:f2:50: 67:75:09:df:5c:8d:3a:3e:d4:77:f2:87:10:6b:87: b2:fc:fd:39:b5:b2:e2:dd:0c:dc:20:5f:c5:f9:54: 3e:56:c5:f8:8e:e6:b8:ef:05:43:35:41:46:f8:1e: d9:5e:4d:1a:97:b1:24:96:9e:94:b3:f3:9c:5a:2d: 04:dc:7c:2e:62:35:ea:46:c4:d0:23:2a:c4:9d:7d: 4b:57:5f:83:18:85:82:3b:19:1b:4e:d5:dc:e9:e4: 96:08:16:64:7c:e3:37:90:9b:fd:65:e3:da:39:09: 7b:c9:66:c3:ac:bc:6d:03:40:e5:fa:d9:35:35:51: f6:c4:dd:72:8f:c5:3f:b2:fe:66:e3:57:a1:80:8d: 0a:55:e9:7d:0c:79:22:ce:7d:17:96:fb:38:44:d8: e7:cb:90:55:7d:fb:ef:1a:1c:12:64:9b:3c:68:31: c7:a7:75:85:1a:f9:2b:8f:74:64:f2:52:0d:42:d3: f3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AF:1F:B4:1A:A8:8B:EA:18:E3:37:46:41:D1:9A:21:60:EF:00:76 X509v3 Authority Key Identifier: keyid:3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/06B5C9F2BE4C11EEA9314929C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.135.124.0/22 Signature Algorithm: sha256WithRSAEncryption 63:e6:90:de:38:d7:40:69:c1:97:f3:4c:35:30:2f:14:93:56: 30:fe:40:18:30:ad:1e:37:db:f8:1e:74:27:44:5d:47:4f:e8: 31:25:29:bf:54:9b:58:bb:8b:aa:d9:b4:ed:c7:59:2d:be:28: 79:45:be:aa:da:4c:7c:6e:73:56:d5:24:41:ec:5c:4b:b8:55: 40:2c:68:68:7f:c6:34:6e:3d:fc:16:f5:19:17:c1:01:7f:59: 48:10:e6:19:f1:bd:18:e9:6d:94:41:51:c7:72:97:9c:94:82: c3:75:03:a1:7f:80:1b:bf:27:72:74:0e:89:a2:f4:f9:1e:bd: 8b:7d:11:c5:e3:f2:5f:c2:22:07:a0:86:93:36:95:40:71:26: ff:f9:c7:0c:03:b9:52:21:1b:9b:57:63:23:d3:32:ea:bc:8a: 97:e6:12:fb:e0:17:bf:b6:03:64:cf:17:00:14:e0:08:46:e0: 23:38:52:f4:48:bc:24:41:b3:59:71:ad:d4:34:69:32:8a:4a: 7f:16:ef:66:7c:63:c7:65:20:42:10:64:cd:85:62:16:ab:fb: 65:cd:76:da:c2:1b:21:9a:25:c6:c0:5a:80:57:d7:19:22:1d: 74:1f:33:3b:75:0e:ed:76:72:1c:3d:da:49:e7:14:0d:e3:1d: 5a:96:25:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NTYxMTAvBgNVBAUTKDNGQjBBNTZFMjBGMTk0Qzc3NDk4NzlENEQyMjVCM0Y5 N0U5RUJFQ0YwHhcNMjQwOTEwMDgwMjU0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRmZmQyZC1kY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pUxYytXMkRbcxb8VKgKXeZkl0f3eJZchmUfoA2B0u3CS9cSqgz7PxGxsvdN fJovhHjdGWjzixWTaS92yiP9pX+d4/Kcgtck8lBndQnfXI06PtR38ocQa4ey/P05 tbLi3QzcIF/F+VQ+VsX4jua47wVDNUFG+B7ZXk0al7Eklp6Us/OcWi0E3HwuYjXq RsTQIyrEnX1LV1+DGIWCOxkbTtXc6eSWCBZkfOM3kJv9ZePaOQl7yWbDrLxtA0Dl +tk1NVH2xN1yj8U/sv5m41ehgI0KVel9DHkizn0Xlvs4RNjny5BVffvvGhwSZJs8 aDHHp3WFGvkrj3Rk8lINQtPzKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN6vH7Qa qIvqGOM3RkHRmiFg7wB2MB8GA1UdIwQYMBaAFD+wpW4g8ZTHdJh51NIls/l+nr7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ1Ni83NzE5QzcxMDMw NjYxMUVCODUyNTEzNTVDNEY5QUUwMi9QN0NsYmlEeGxNZDBtSG5VMGlXei1YNmV2 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3Q2xiaUR4bE1kMG1IblUwaVd6LVg2ZXZzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NTYvNzcxOUM3MTAzMDY2MTFFQjg1MjUxMzU1QzRGOUFFMDIvMDZCNUM5RjJC RTRDMTFFRUE5MzE0OTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKLh3wwDQYJKoZIhvcNAQELBQADggEBAGPmkN4410BpwZfz TDUwLxSTVjD+QBgwrR432/gedCdEXUdP6DElKb9Um1i7i6rZtO3HWS2+KHlFvqra THxuc1bVJEHsXEu4VUAsaGh/xjRuPfwW9RkXwQF/WUgQ5hnxvRjpbZRBUcdyl5yU gsN1A6F/gBu/J3J0Domi9PkevYt9EcXj8l/CIgeghpM2lUBxJv/5xwwDuVIhG5tX YyPTMuq8ipfmEvvgF7+2A2TPFwAU4AhG4CM4UvRIvCRBs1lxrdQ0aTKKSn8W72Z8 Y8dlIEIQZM2FYhar+2XNdtrCGyGaJcbAWoBX1xkiHXQfMzt1Du12chw92knnFA3j HVqWJUo= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:44 2024 by rpki-client on console-fra.rpki-client.org