$ rpki-client -vvf rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/7B6600CA4B0911EEA98A477BC4F9AE02.roa File: 7B6600CA4B0911EEA98A477BC4F9AE02.roa (raw, json) Hash identifier: SZT7YWEJWIQJIzqvuyU6R+BOppDK1dPhj2pxKF0KR6c= Subject key identifier: F7:6C:99:7B:15:4A:CC:16:A7:C7:8E:2B:49:1E:29:BD:CA:08:65:6B Certificate issuer: /CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF Certificate serial: 06A0 Authority key identifier: 3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/7B6600CA4B0911EEA98A477BC4F9AE02.roa Signing time: Tue 26 Mar 2024 09:59:31 +0000 ROA not before: Tue 26 Mar 2024 09:59:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139831 IP address blocks: 131.226.64.0/18 maxlen: 18 131.226.64.0/22 maxlen: 24 131.226.68.0/22 maxlen: 24 131.226.74.0/23 maxlen: 24 131.226.76.0/23 maxlen: 24 131.226.80.0/22 maxlen: 24 131.226.84.0/22 maxlen: 24 131.226.88.0/22 maxlen: 24 131.226.92.0/22 maxlen: 24 131.226.96.0/22 maxlen: 23 131.226.100.0/22 maxlen: 23 131.226.100.0/24 maxlen: 24 131.226.104.0/22 maxlen: 23 131.226.108.0/22 maxlen: 23 131.226.112.0/22 maxlen: 23 131.226.116.0/23 maxlen: 23 131.226.118.0/23 maxlen: 23 131.226.120.0/23 maxlen: 23 131.226.122.0/23 maxlen: 23 131.226.124.0/23 maxlen: 23 139.135.64.0/18 maxlen: 18 139.135.64.0/22 maxlen: 22 139.135.68.0/22 maxlen: 22 139.135.72.0/22 maxlen: 22 139.135.76.0/22 maxlen: 22 139.135.80.0/22 maxlen: 22 139.135.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145456/serialNumber=3FB0A56E20F194C7749879D4D225B3F97E9EBECF Validity Not Before: Mar 26 09:59:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66029c83-9853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5b:73:66:84:9e:93:8e:fc:d2:82:07:dc:98: 8f:d8:16:2b:a9:9a:15:6b:ea:bb:12:75:ed:78:dc: 30:8a:f0:f8:a7:98:c7:0d:16:65:78:5f:8c:f5:f9: a8:58:fa:b5:30:8c:dc:3c:87:87:39:58:60:58:23: a4:97:cb:98:fd:61:2c:68:8b:cb:7c:b9:64:05:e7: ac:89:6b:e0:63:be:75:b0:77:34:dc:53:90:0f:95: f1:50:6b:c1:b3:bd:51:2d:a4:57:c2:2f:66:16:4a: 39:7b:da:b5:64:5f:88:df:c8:26:d1:b9:a2:35:70: 1c:f4:08:a0:b0:d6:0a:b1:b3:fe:e0:80:85:fa:5f: 05:d4:95:e7:dc:7b:81:01:dd:fe:44:13:09:35:dd: b0:f3:4e:1b:20:fd:34:13:1d:15:90:59:b4:2c:17: bc:1a:5e:64:a2:cd:25:50:9f:c9:b7:32:63:ac:a7: 8e:d7:9d:2b:bc:d3:88:02:fb:3e:94:62:5d:36:37: 31:7c:6e:1f:9e:9f:dc:52:f8:d9:3c:2f:74:db:60: 21:32:93:f9:0f:2e:c4:78:87:5f:10:dc:25:46:53: 43:f9:26:c2:97:3b:fb:55:8c:ee:79:64:21:53:7c: b2:f3:de:a1:40:08:b1:b9:24:ed:d0:06:a0:6c:4c: b0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6C:99:7B:15:4A:CC:16:A7:C7:8E:2B:49:1E:29:BD:CA:08:65:6B X509v3 Authority Key Identifier: keyid:3F:B0:A5:6E:20:F1:94:C7:74:98:79:D4:D2:25:B3:F9:7E:9E:BE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/P7ClbiDxlMd0mHnU0iWz-X6evs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7ClbiDxlMd0mHnU0iWz-X6evs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145456/7719C710306611EB85251355C4F9AE02/7B6600CA4B0911EEA98A477BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.226.64.0/18 139.135.64.0/18 Signature Algorithm: sha256WithRSAEncryption 39:bf:dc:32:cc:6b:be:95:62:7b:a7:e7:29:8b:86:ce:0c:14: 84:92:e3:3b:b6:65:55:af:30:2b:e3:ab:3b:5e:61:e8:aa:59: 25:50:e8:fe:23:f4:fc:3b:b1:2c:22:1a:53:ba:f6:8e:d7:8c: 06:60:ed:a8:f1:99:a5:ef:7e:32:94:c3:cb:b4:d9:8c:f6:20: 5d:e5:72:57:4d:7d:c0:7c:7f:7d:e2:70:ee:97:14:10:0f:89: 35:ab:52:92:dd:9f:6d:9a:1f:f0:8e:0e:32:6d:8e:4b:84:4d: bc:b4:17:36:53:59:2a:91:71:fc:14:a7:8c:b1:5d:7b:81:f1: 87:2b:1f:9d:25:e2:6b:71:19:05:b1:2e:4c:2a:3c:66:99:1e: 09:cc:e1:0a:de:7e:98:68:50:3b:64:d6:1d:ce:e8:5b:94:03: 6d:c6:2d:36:9a:73:c9:18:28:2d:30:42:12:09:fe:a0:d1:e9: 34:2f:37:2d:82:85:68:d2:d1:e2:78:0e:81:ae:3d:d7:1c:e7: 79:a7:45:ac:7e:6d:86:a5:b0:35:52:ea:d3:f9:8e:7f:27:d7: b6:eb:c2:e4:f8:7a:5e:10:ed:da:5a:4f:35:39:17:e6:8e:b4: 84:a6:e3:58:94:bc:69:ae:ca:ef:50:60:ca:ac:7b:7b:04:c5: 6c:dc:e8:ea -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NTYxMTAvBgNVBAUTKDNGQjBBNTZFMjBGMTk0Qzc3NDk4NzlENEQyMjVCM0Y5 N0U5RUJFQ0YwHhcNMjQwMzI2MDk1OTMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAyOWM4My05ODUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ltzZoSek4780oIH3JiP2BYrqZoVa+q7EnXteNwwivD4p5jHDRZleF+M9fmo WPq1MIzcPIeHOVhgWCOkl8uY/WEsaIvLfLlkBeesiWvgY751sHc03FOQD5XxUGvB s71RLaRXwi9mFko5e9q1ZF+I38gm0bmiNXAc9AigsNYKsbP+4ICF+l8F1JXn3HuB Ad3+RBMJNd2w804bIP00Ex0VkFm0LBe8Gl5kos0lUJ/JtzJjrKeO150rvNOIAvs+ lGJdNjcxfG4fnp/cUvjZPC9022AhMpP5Dy7EeIdfENwlRlND+SbClzv7VYzueWQh U3yy896hQAixuSTt0AagbEywRQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPdsmXsV SswWp8eOK0keKb3KCGVrMB8GA1UdIwQYMBaAFD+wpW4g8ZTHdJh51NIls/l+nr7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ1Ni83NzE5QzcxMDMw NjYxMUVCODUyNTEzNTVDNEY5QUUwMi9QN0NsYmlEeGxNZDBtSG5VMGlXei1YNmV2 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3Q2xiaUR4bE1kMG1IblUwaVd6LVg2ZXZzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NTYvNzcxOUM3MTAzMDY2MTFFQjg1MjUxMzU1QzRGOUFFMDIvN0I2NjAwQ0E0 QjA5MTFFRUE5OEE0NzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAaD4kADBAaLh0AwDQYJKoZIhvcNAQELBQADggEBADm/3DLM a76VYnun5ymLhs4MFISS4zu2ZVWvMCvjqzteYeiqWSVQ6P4j9Pw7sSwiGlO69o7X jAZg7ajxmaXvfjKUw8u02Yz2IF3lcldNfcB8f33icO6XFBAPiTWrUpLdn22aH/CO DjJtjkuETby0FzZTWSqRcfwUp4yxXXuB8YcrH50l4mtxGQWxLkwqPGaZHgnM4Qre fphoUDtk1h3O6FuUA23GLTaac8kYKC0wQhIJ/qDR6TQvNy2ChWjS0eJ4DoGuPdcc 53mnRax+bYalsDVS6tP5jn8n17brwuT4el4Q7dpaTzU5F+aOtISm41iUvGmuyu9Q YMqse3sExWzc6Oo= -----END CERTIFICATE-----Generated at Fri May 17 00:24:20 2024 by rpki-client on console-fra.rpki-client.org