$ rpki-client -vvf rpki.apnic.net/member_repository/A914F937/26B4981E5B2311EEB8773F70C4F9AE02/8D88B9125B2311EE86CC6A71C4F9AE02.roa File: 8D88B9125B2311EE86CC6A71C4F9AE02.roa (raw, json) Hash identifier: K64KDPi5IA1n4NsggDwjziZoO8m7GMY/mXI66wYP0r0= Subject key identifier: 1F:65:A9:A4:CF:13:12:2D:B5:72:BE:2E:83:00:FF:C8:17:2D:A6:C7 Certificate issuer: /CN=A914F937/serialNumber=88A2CB4624801BC9C7ADA223839FC3C536C7FB26 Certificate serial: 59 Authority key identifier: 88:A2:CB:46:24:80:1B:C9:C7:AD:A2:23:83:9F:C3:C5:36:C7:FB:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iKLLRiSAG8nHraIjg5_DxTbH-yY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F937/26B4981E5B2311EEB8773F70C4F9AE02/8D88B9125B2311EE86CC6A71C4F9AE02.roa Signing time: Thu 07 Mar 2024 06:49:59 +0000 ROA not before: Thu 07 Mar 2024 06:49:59 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4768 IP address blocks: 192.146.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F937/26B4981E5B2311EEB8773F70C4F9AE02/iKLLRiSAG8nHraIjg5_DxTbH-yY.crl rsync://rpki.apnic.net/member_repository/A914F937/26B4981E5B2311EEB8773F70C4F9AE02/iKLLRiSAG8nHraIjg5_DxTbH-yY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iKLLRiSAG8nHraIjg5_DxTbH-yY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F937/serialNumber=88A2CB4624801BC9C7ADA223839FC3C536C7FB26 Validity Not Before: Mar 7 06:49:59 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e96396-4c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:b7:d2:de:b8:1c:c5:ab:0b:f3:96:0e:bc: f2:6d:b3:4a:78:2b:8f:59:c2:2d:27:fd:3f:3f:c5: 70:2a:ab:2b:f5:a7:71:44:5e:8e:6f:e8:b8:d8:10: a2:57:eb:6f:36:b2:2b:88:11:2a:ff:27:35:ad:fb: ea:9f:59:b6:d4:75:b0:ff:51:98:8d:52:a6:ac:79: 85:78:18:0b:3d:fd:83:81:30:29:ea:78:22:a8:40: c5:0d:19:74:01:ca:29:92:24:7a:18:8c:b6:49:f6: 7c:e2:94:ae:a0:38:19:c8:01:56:29:32:f8:00:c2: 2c:7f:5c:cf:97:60:18:03:1d:8c:c1:1a:4b:48:80: fd:3f:74:53:88:df:12:fb:0e:ac:14:29:db:1b:3a: 62:70:5c:b9:79:c2:03:a4:2a:7d:eb:36:85:d1:12: d7:dc:eb:87:61:b2:7e:70:3d:26:f4:2f:d4:8e:26: 8a:39:ab:ae:c8:4f:be:dc:be:44:10:33:66:1c:8d: 75:d4:c2:08:94:32:a7:6a:b7:65:49:d7:f3:db:1a: 2a:b0:14:7b:a8:b3:be:cb:ed:8d:b8:6d:61:a6:15: ba:dc:a6:be:2a:fc:fd:8c:8c:4a:79:e2:d2:9b:de: b6:bc:1d:44:dc:9b:a7:8b:de:69:96:e5:dd:cf:39: 14:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:65:A9:A4:CF:13:12:2D:B5:72:BE:2E:83:00:FF:C8:17:2D:A6:C7 X509v3 Authority Key Identifier: keyid:88:A2:CB:46:24:80:1B:C9:C7:AD:A2:23:83:9F:C3:C5:36:C7:FB:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F937/26B4981E5B2311EEB8773F70C4F9AE02/iKLLRiSAG8nHraIjg5_DxTbH-yY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iKLLRiSAG8nHraIjg5_DxTbH-yY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F937/26B4981E5B2311EEB8773F70C4F9AE02/8D88B9125B2311EE86CC6A71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.146.219.0/24 Signature Algorithm: sha256WithRSAEncryption c2:c7:61:7c:ac:13:26:91:38:df:fc:e8:c9:aa:7a:5e:0c:e4: df:71:f4:b3:2c:c3:3a:ba:d9:83:cf:36:b9:d4:4e:ef:be:55: ca:e9:aa:7d:92:26:ac:0e:f9:b9:28:96:2f:02:6b:34:23:a8: 70:bd:96:41:68:1e:61:b6:c2:bb:08:d4:77:4a:96:10:58:b9: 7c:ff:0b:41:db:aa:07:9b:ce:85:46:49:6f:da:32:cb:2e:8d: cb:5a:ce:ab:6d:d0:6b:f4:73:7f:f8:90:a2:2a:3d:b2:73:be: eb:45:c8:29:65:9b:74:c8:a2:9c:ad:d5:9a:c1:6f:ec:cc:a1: 9d:c5:b1:53:e1:0b:7e:9d:16:a9:ea:22:50:21:ad:95:67:fa: d0:0b:09:e0:32:c8:79:43:a8:ad:05:d6:7f:e9:24:9a:3f:21: e0:ff:ac:a1:54:50:20:4c:87:91:9b:63:68:1b:ee:f4:c0:06: c9:44:2b:c8:57:8f:24:21:91:92:b8:38:7d:b1:8a:f8:65:a3: 08:9c:e6:df:c3:18:42:e0:39:ae:2f:38:72:9b:4a:9c:4c:14: 59:e3:ea:59:a9:43:40:43:da:6e:fd:9e:a1:5f:83:93:1a:ce: 79:b7:25:cb:dc:65:10:fa:a2:55:a7:0e:25:81:a5:9a:78:71: 82:3e:58:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RjkzNzExMC8GA1UEBRMoODhBMkNCNDYyNDgwMUJDOUM3QURBMjIzODM5RkMzQzUz NkM3RkIyNjAeFw0yNDAzMDcwNjQ5NTlaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTk2Mzk2LTRjNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEobfS3rgcxasL85YOvPJts0p4K49Zwi0n/T8/xXAqqyv1p3FEXo5v6LjYEKJX 6282siuIESr/JzWt++qfWbbUdbD/UZiNUqaseYV4GAs9/YOBMCnqeCKoQMUNGXQB yimSJHoYjLZJ9nzilK6gOBnIAVYpMvgAwix/XM+XYBgDHYzBGktIgP0/dFOI3xL7 DqwUKdsbOmJwXLl5wgOkKn3rNoXREtfc64dhsn5wPSb0L9SOJoo5q67IT77cvkQQ M2YcjXXUwgiUMqdqt2VJ1/PbGiqwFHuos77L7Y24bWGmFbrcpr4q/P2MjEp54tKb 3ra8HUTcm6eL3mmW5d3PORS1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH2WppM8T Ei21cr4ugwD/yBctpscwHwYDVR0jBBgwFoAUiKLLRiSAG8nHraIjg5/DxTbH+yYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGOTM3LzI2QjQ5ODFFNUIy MzExRUVCODc3M0Y3MEM0RjlBRTAyL2lLTExSaVNBRzhuSHJhSWpnNV9EeFRiSC15 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUtMTFJpU0FHOG5IcmFJamc1X0R4VGJILXlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjkzNy8yNkI0OTgxRTVCMjMxMUVFQjg3NzNGNzBDNEY5QUUwMi84RDg4QjkxMjVC MjMxMUVFODZDQzZBNzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMCS2zANBgkqhkiG9w0BAQsFAAOCAQEAwsdhfKwTJpE43/zo yap6Xgzk33H0syzDOrrZg882udRO775VyumqfZImrA75uSiWLwJrNCOocL2WQWge YbbCuwjUd0qWEFi5fP8LQduqB5vOhUZJb9oyyy6Ny1rOq23Qa/Rzf/iQoio9snO+ 60XIKWWbdMiinK3VmsFv7MyhncWxU+ELfp0WqeoiUCGtlWf60AsJ4DLIeUOorQXW f+kkmj8h4P+soVRQIEyHkZtjaBvu9MAGyUQryFePJCGRkrg4fbGK+GWjCJzm38MY QuA5ri84cptKnEwUWePqWalDQEPabv2eoV+DkxrOebcly9xlEPqiVacOJYGlmnhx gj5YCA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:56 2024 by rpki-client on console-fra.rpki-client.org