$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa File: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (raw, json) Hash identifier: lu8oWRNPgJxFZ7Lozlet3TlMRukqbbGr2PrraLSuCsA= Subject key identifier: B9:41:02:98:E0:05:17:7B:3E:41:AA:50:C6:06:35:D9:8A:A1:17:ED Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0C6C Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa Signing time: Tue 08 Oct 2024 16:02:34 +0000 ROA not before: Tue 08 Oct 2024 16:02:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7642 IP address blocks: 83.137.200.0/21 maxlen: 21 83.137.200.0/23 maxlen: 24 83.137.202.0/23 maxlen: 24 83.137.204.0/23 maxlen: 24 83.137.206.0/23 maxlen: 24 185.215.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Oct 8 16:02:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6705579a-0377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e9:e5:d0:ef:01:0e:fb:e2:1f:ef:a5:fc:e0: 03:b0:62:d1:c7:74:80:dd:f9:0b:96:1c:f8:fb:25: 91:b8:93:9f:89:4c:33:96:33:68:7c:bb:45:8f:3a: 2e:e8:74:4d:81:e0:51:85:33:0c:75:7e:72:6f:32: be:68:2a:1a:bc:9d:c9:02:3a:34:c5:6f:9a:4e:15: 7d:c3:70:6f:e4:3b:94:e4:70:91:70:eb:ed:ad:eb: 21:28:12:e3:bd:15:b9:21:cd:ad:03:26:26:a6:08: 1c:eb:bb:43:be:7b:f1:c1:a0:dd:ee:b0:70:cd:6e: 24:33:a1:cd:5f:29:69:1d:bf:39:0d:d5:41:d5:c4: 5f:41:16:47:40:c9:a9:f9:4b:24:47:72:15:88:e3: a6:cc:e1:d8:2e:73:23:d0:f8:a4:95:11:40:9d:e9: c9:42:44:8e:55:cd:78:e8:4b:51:fc:df:8c:e5:f3: 6d:27:fd:9a:a4:56:24:57:7a:8e:72:da:16:7a:1a: 72:af:02:98:be:59:c9:f0:bb:58:71:f0:7b:7a:5f: e1:58:24:74:75:a7:e9:32:4d:72:17:40:65:bb:b1: f2:c5:e0:11:94:e7:fe:ec:9d:df:c6:b3:22:88:df: 3d:9f:03:18:8c:e8:41:45:0c:d7:b0:e6:ba:8c:ee: 07:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:41:02:98:E0:05:17:7B:3E:41:AA:50:C6:06:35:D9:8A:A1:17:ED X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.137.200.0/21 185.215.32.0/22 Signature Algorithm: sha256WithRSAEncryption ae:65:c3:06:1e:ec:fa:ad:f3:29:28:0a:21:11:4b:52:9a:4f: cb:47:8c:fe:51:5b:75:3f:f6:47:34:5d:6e:8f:98:90:94:73: ce:87:ca:f7:44:2a:6d:29:97:23:32:f0:07:6e:9a:6c:1d:24: e2:fb:dc:0f:cf:95:bd:07:09:86:ea:5d:6e:82:7e:fc:8f:4d: f3:46:13:61:d0:14:11:68:d0:9c:52:6f:9e:ca:69:16:f1:0d: 37:2e:29:fe:73:ef:0f:5b:24:dc:1e:12:cb:df:9f:18:d9:57: 52:85:d2:c4:af:39:04:5e:e9:e9:17:14:07:32:5a:c1:45:60: db:4a:44:6f:7a:de:50:6d:25:1e:50:e4:ef:57:87:8d:a9:f1: d8:d4:a7:a1:4b:9a:f8:3a:ca:d5:0b:32:8e:55:98:9d:f0:7a: 9e:8c:b0:be:55:dd:47:46:8b:27:ac:c6:ee:8f:0f:a0:5a:34: cc:2a:67:d2:f8:9a:9f:ff:64:2e:aa:04:91:5b:27:4b:a7:6e: e3:aa:89:06:b8:07:21:50:70:a1:46:00:2d:43:f2:59:50:61: 24:ee:4d:4d:49:33:f9:b2:de:11:b5:4f:f3:b6:47:02:d7:fe: 27:3c:55:74:54:11:fa:5e:fe:63:c3:f4:7b:f8:c4:a3:9a:10: ab:fe:8c:01 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjQxMDA4MTYwMjM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1NTc5YS0wMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvunl0O8BDvviH++l/OADsGLRx3SA3fkLlhz4+yWRuJOfiUwzljNofLtFjzou 6HRNgeBRhTMMdX5ybzK+aCoavJ3JAjo0xW+aThV9w3Bv5DuU5HCRcOvtreshKBLj vRW5Ic2tAyYmpggc67tDvnvxwaDd7rBwzW4kM6HNXylpHb85DdVB1cRfQRZHQMmp +UskR3IViOOmzOHYLnMj0PiklRFAnenJQkSOVc146EtR/N+M5fNtJ/2apFYkV3qO ctoWehpyrwKYvlnJ8LtYcfB7el/hWCR0dafpMk1yF0Blu7HyxeARlOf+7J3fxrMi iN89nwMYjOhBRQzXsOa6jO4HDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLlBApjg BRd7PkGqUMYGNdmKoRftMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMzM0EvOEY0N0E5RkFFOTdEMTFFOUE5REI1RTUyQzRGOUFFMDIvMERGMzMxQzI4 Rjk0MTFFQUE1RTdCNTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANTicgDBAK51yAwDQYJKoZIhvcNAQELBQADggEBAK5lwwYe 7Pqt8ykoCiERS1KaT8tHjP5RW3U/9kc0XW6PmJCUc86HyvdEKm0plyMy8Adummwd JOL73A/Plb0HCYbqXW6CfvyPTfNGE2HQFBFo0JxSb57KaRbxDTcuKf5z7w9bJNwe EsvfnxjZV1KF0sSvOQRe6ekXFAcyWsFFYNtKRG963lBtJR5Q5O9Xh42p8djUp6FL mvg6ytULMo5VmJ3wep6MsL5V3UdGiyesxu6PD6BaNMwqZ9L4mp//ZC6qBJFbJ0un buOqiQa4ByFQcKFGAC1D8llQYSTuTU1JM/my3hG1T/O2RwLX/ic8VXRUEfpe/mPD 9Hv4xKOaEKv+jAE= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:10 2024 by rpki-client on console-ams.rpki-client.org