$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa File: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (raw, json) Hash identifier: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk= Subject key identifier: AC:46:9B:3B:C5:7E:D8:BE:5C:F7:0E:0C:E9:7C:47:A8:E1:CC:6B:84 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: A4 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa Signing time: Mon 02 Sep 2024 15:52:09 +0000 ROA not before: Mon 02 Sep 2024 15:52:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 17705 IP address blocks: 192.138.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Sep 2 15:52:09 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d5df29-a2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:63:48:c9:d3:0c:b0:b8:32:16:d9:dd:7a:9b: 01:f8:76:be:07:7a:c7:9a:d2:53:f6:44:69:cd:09: be:b2:3c:81:46:6f:1c:bd:b9:0d:ee:a2:5b:80:8a: 89:61:bb:34:9c:95:45:be:ee:08:9a:72:1b:df:14: d1:81:9b:0d:54:ad:8d:7b:17:cb:df:e1:dd:c8:8f: 39:87:24:46:1b:22:1b:8e:9c:93:4e:15:26:ca:1d: 19:ed:3d:fa:6e:77:f5:55:44:3a:db:79:21:cf:04: 7f:3d:a3:fb:37:01:af:b1:83:8c:a6:dc:bc:45:3d: 1a:5f:77:a7:30:95:61:42:c6:c0:ba:bc:b3:a0:34: 71:7d:79:a5:c4:23:91:39:d6:61:30:28:72:fa:11: 0d:32:05:ae:31:79:6c:0c:3f:5e:32:51:19:a2:73: e0:83:ed:aa:e3:f8:ca:f0:8e:66:06:31:83:1e:a4: 17:d6:81:be:a2:8b:20:f7:81:66:91:77:a7:00:cc: fd:a9:90:ab:8e:ac:bf:ed:14:62:b4:f2:71:f0:5f: 24:fe:cc:56:86:b5:d6:6e:8d:63:9c:f9:45:3c:55: b4:9c:69:b3:a7:48:e6:1d:b8:35:32:93:b1:67:14: ac:9a:82:25:80:33:42:08:f4:07:3a:6d:31:a6:47: e6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:46:9B:3B:C5:7E:D8:BE:5C:F7:0E:0C:E9:7C:47:A8:E1:CC:6B:84 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.138.251.0/24 Signature Algorithm: sha256WithRSAEncryption 17:6f:5d:4f:d1:25:d7:46:54:7f:db:26:ca:cf:8c:37:02:e5: 3a:d2:40:c1:69:bf:c2:51:c8:07:c6:bf:4e:43:0f:b1:5d:b0: 23:f8:90:42:c0:54:5c:68:89:a8:57:da:9b:44:88:37:a4:54: 6b:3e:bd:02:14:f8:35:ab:91:d4:1f:eb:66:9f:16:72:ad:6d: 5e:c8:96:7c:c0:b5:36:1c:72:9f:05:3e:fd:6f:2c:4a:32:80: 8a:92:fd:d7:0b:ef:58:57:45:83:7f:be:c3:fe:da:5f:05:61: 45:5c:b9:52:d9:fe:a6:ff:0d:14:ae:af:9c:d3:2f:4a:d3:f9: 41:3a:a9:4b:4d:6f:a5:4d:f1:0b:e0:31:12:09:11:42:a5:7f: 4e:c3:8c:2a:03:96:38:27:37:91:5a:ff:ff:c1:a9:2b:60:25: b4:ea:79:aa:1b:73:73:9e:05:21:69:b9:e1:89:02:87:d4:7d: c8:20:06:58:96:a0:c8:9f:7c:84:60:fb:75:2b:32:ef:0b:86: 53:c8:26:54:a7:b5:f1:ea:57:3f:f0:46:af:ce:4a:46:4e:5d: e9:0a:e8:f8:3b:3d:1a:3c:41:e3:fc:0d:fb:83:86:5b:ef:e6: 5a:63:ec:48:15:a0:24:b2:70:e3:71:f6:3a:f2:4b:06:d9:ad: 05:e9:4a:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjQwOTAyMTU1MjA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1ZGYyOS1hMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWNIydMMsLgyFtndepsB+Ha+B3rHmtJT9kRpzQm+sjyBRm8cvbkN7qJbgIqJ Ybs0nJVFvu4ImnIb3xTRgZsNVK2NexfL3+HdyI85hyRGGyIbjpyTThUmyh0Z7T36 bnf1VUQ623khzwR/PaP7NwGvsYOMpty8RT0aX3enMJVhQsbAuryzoDRxfXmlxCOR OdZhMChy+hENMgWuMXlsDD9eMlEZonPgg+2q4/jK8I5mBjGDHqQX1oG+oosg94Fm kXenAMz9qZCrjqy/7RRitPJx8F8k/sxWhrXWbo1jnPlFPFW0nGmzp0jmHbg1MpOx ZxSsmoIlgDNCCPQHOm0xpkfmIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKxGmzvF fti+XPcODOl8R6jhzGuEMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBNzIvNEY1NkMwMUM3NzlEMTFFRUJCNDlFMjY5QzRGOUFFMDIvNjdCMEFDQkM4 RTUwMTFFRTk1REZDMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAivswDQYJKoZIhvcNAQELBQADggEBABdvXU/RJddGVH/b JsrPjDcC5TrSQMFpv8JRyAfGv05DD7FdsCP4kELAVFxoiahX2ptEiDekVGs+vQIU +DWrkdQf62afFnKtbV7IlnzAtTYccp8FPv1vLEoygIqS/dcL71hXRYN/vsP+2l8F YUVcuVLZ/qb/DRSur5zTL0rT+UE6qUtNb6VN8QvgMRIJEUKlf07DjCoDljgnN5Fa ///BqStgJbTqeaobc3OeBSFpueGJAofUfcggBliWoMiffIRg+3UrMu8LhlPIJlSn tfHqVz/wRq/OSkZOXekK6Pg7PRo8QeP8DfuDhlvv5lpj7EgVoCSycONx9jrySwbZ rQXpSms= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:17 2024 by rpki-client on console-ams.rpki-client.org