$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/753F0A48CFB611EE83724A58C4F9AE02.roa File: 753F0A48CFB611EE83724A58C4F9AE02.roa (raw, json) Hash identifier: ttLFwjEhNzZVnfyoPhVIHQRZuOsybetLySd0OOG9Z5E= Subject key identifier: 14:F2:9C:1E:3F:18:DD:4C:EF:E0:CE:FE:51:46:6A:2D:24:04:70:37 Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 19AD Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/753F0A48CFB611EE83724A58C4F9AE02.roa Signing time: Tue 20 Feb 2024 06:10:15 +0000 ROA not before: Tue 20 Feb 2024 06:10:15 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 24440 IP address blocks: 72.255.0.0/18 maxlen: 24 139.135.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6573 (0x19ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: Feb 20 06:10:15 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65d44247-4219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6c:aa:5c:75:2e:e1:74:91:f9:28:8a:25:85: 6b:34:46:02:74:8b:e1:54:ad:2e:f1:04:a4:22:0d: 7e:fc:ce:72:d0:3e:26:d1:08:2c:b5:06:b8:23:50: 8b:5a:dc:4e:76:3b:43:4c:f6:71:bf:d7:32:d3:43: 2d:a8:a0:3a:33:56:3f:4d:47:a2:ee:55:f2:76:3a: 47:6f:08:82:42:22:24:b3:0c:79:1f:59:e7:17:6d: 27:a0:0d:9a:cc:f3:cd:3a:28:9a:13:88:6c:76:e5: 70:21:9d:38:e9:05:6b:22:34:d4:09:75:64:31:c1: f0:79:e1:df:48:d5:1c:ff:0b:e8:49:e9:0d:5b:8b: 2b:f2:d0:6c:90:ec:17:6e:1a:14:eb:21:b8:b4:19: 99:d0:35:9b:b3:b8:cb:9d:51:9d:59:55:01:66:d8: 28:12:6c:07:e8:1d:a3:e8:97:16:32:2b:85:4c:c7: d1:76:20:a4:4d:85:df:08:2d:9a:7f:f1:cb:90:15: e1:f3:d5:bb:17:14:56:7d:92:43:8e:13:39:ff:cd: 54:d9:fe:05:33:1e:d4:d8:30:ef:11:8a:6c:7d:08: aa:e7:ed:8d:4c:50:dd:00:ec:f2:bc:9f:b5:b3:88: 23:70:22:bf:c9:52:f9:bf:3c:81:d5:fc:58:87:74: 0e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F2:9C:1E:3F:18:DD:4C:EF:E0:CE:FE:51:46:6A:2D:24:04:70:37 X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/753F0A48CFB611EE83724A58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.255.0.0/18 139.135.32.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:41:69:36:85:10:8f:2b:d3:98:40:07:ca:30:36:3b:50:97: c8:ca:83:cd:7b:2c:9f:d8:c8:14:34:e5:57:9e:fe:61:d8:2c: 51:fc:14:ee:6d:62:6b:1d:e5:26:ba:55:c9:e7:16:62:fa:ff: 3a:68:e9:7f:ca:8c:19:f6:8b:e0:1a:cc:33:7c:13:21:ea:19: 61:78:6b:b0:37:a0:ad:a3:3d:6e:7e:fd:38:8f:ba:d7:04:77: 3e:8d:32:8c:cb:ee:c6:95:5b:94:da:99:b8:3b:c8:c2:af:97: c0:c7:3c:9d:80:69:34:44:54:78:3b:b1:71:bb:06:a3:ef:af: b1:7a:da:2b:0b:2e:0d:7e:6d:37:2b:00:09:7e:b9:cd:9a:f3: 66:22:c3:f0:bf:cd:1f:05:87:36:46:a8:f4:18:b7:33:5e:24: 64:c4:d1:71:43:a2:e2:00:b8:d3:c3:7f:1d:bd:16:35:2c:8c: 78:43:68:90:41:30:f4:ee:d2:26:5b:a6:e1:91:4e:be:63:f7: 88:db:9a:2a:96:0f:6e:7d:f1:48:e9:3c:dd:e0:e6:0f:6d:bd: 37:88:71:c6:27:cd:c0:4e:d2:9d:80:74:cf:b0:90:90:69:fc: b3:c3:cb:ab:70:38:ec:83:b6:cc:58:bc:fe:15:23:c9:13:8b: 25:f9:6a:d9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjQwMjIwMDYxMDE1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0NDI0Ny00MjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42yqXHUu4XSR+SiKJYVrNEYCdIvhVK0u8QSkIg1+/M5y0D4m0QgstQa4I1CL WtxOdjtDTPZxv9cy00MtqKA6M1Y/TUei7lXydjpHbwiCQiIkswx5H1nnF20noA2a zPPNOiiaE4hsduVwIZ046QVrIjTUCXVkMcHweeHfSNUc/wvoSekNW4sr8tBskOwX bhoU6yG4tBmZ0DWbs7jLnVGdWVUBZtgoEmwH6B2j6JcWMiuFTMfRdiCkTYXfCC2a f/HLkBXh89W7FxRWfZJDjhM5/81U2f4FMx7U2DDvEYpsfQiq5+2NTFDdAOzyvJ+1 s4gjcCK/yVL5vzyB1fxYh3QOuQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBTynB4/ GN1M7+DO/lFGai0kBHA3MB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvM0Q5ODFDQ0MzQTFFMTFFNzlBQTBENTFDQzRGOUFFMDIvNzUzRjBBNDhD RkI2MTFFRTgzNzI0QTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAZI/wADBAWLhyAwDQYJKoZIhvcNAQELBQADggEBACxBaTaF EI8r05hAB8owNjtQl8jKg817LJ/YyBQ05Vee/mHYLFH8FO5tYmsd5Sa6VcnnFmL6 /zpo6X/KjBn2i+AazDN8EyHqGWF4a7A3oK2jPW5+/TiPutcEdz6NMozL7saVW5Ta mbg7yMKvl8DHPJ2AaTREVHg7sXG7BqPvr7F62isLLg1+bTcrAAl+uc2a82Yiw/C/ zR8FhzZGqPQYtzNeJGTE0XFDouIAuNPDfx29FjUsjHhDaJBBMPTu0iZbpuGRTr5j 94jbmiqWD2598UjpPN3g5g9tvTeIccYnzcBO0p2AdM+wkJBp/LPDy6twOOyDtsxY vP4VI8kTiyX5atk= -----END CERTIFICATE-----Generated at Tue May 28 19:32:23 2024 by rpki-client on console-ams.rpki-client.org