$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/753F0A48CFB611EE83724A58C4F9AE02.roa File: 753F0A48CFB611EE83724A58C4F9AE02.roa (raw, json) Hash identifier: uUlOQpzZO3P5eVMM621nQ4qWEKEyn8v2Q1jC2RCuf4E= Subject key identifier: 4D:5A:24:E1:25:15:F8:56:61:39:33:C4:EB:25:4A:F3:48:1B:3B:62 Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 19E5 Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/753F0A48CFB611EE83724A58C4F9AE02.roa Signing time: Thu 30 May 2024 16:38:29 +0000 ROA not before: Thu 30 May 2024 16:38:29 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24440 IP address blocks: 72.255.0.0/18 maxlen: 24 139.135.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6629 (0x19e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: May 30 16:38:29 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ab84-0be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:3b:91:4d:21:26:5a:a8:b5:48:ff:93:2b:b0: d5:86:44:c8:4b:d8:b3:ec:ca:e7:c4:9d:d6:bd:64: ea:8e:4c:2e:a5:c7:5b:dd:85:9e:f2:69:e8:85:d4: 92:97:bb:b9:98:8d:04:a8:43:64:37:9d:94:86:4b: f1:3c:27:f0:98:4b:98:e1:71:4f:5a:3f:8e:50:ea: e9:51:b7:1f:2b:4b:80:76:3d:92:1e:cd:39:70:83: 20:18:53:36:19:c3:1e:19:bc:25:99:1d:af:8b:03: 56:70:2d:7d:52:fe:c3:ef:66:ca:ec:52:3d:62:74: 20:ec:a5:53:59:81:eb:77:e9:b3:37:6a:1f:f4:e0: 90:2a:3c:85:69:ec:de:57:80:6a:5f:34:ae:f2:35: 49:86:80:06:9b:de:7b:ef:10:a9:a9:cf:ab:cc:2b: 4c:a9:1c:91:47:76:38:0c:e1:df:95:fa:8c:09:e8: 56:d7:46:cf:f9:57:96:26:a7:d7:34:8f:d5:42:80: 99:02:bf:39:e9:1b:c9:58:20:ac:73:8a:14:9b:44: c4:bd:86:fa:38:44:01:a9:b1:6a:ce:2c:0e:e1:29: 2e:d8:40:ac:cc:ca:6f:a1:87:46:c3:0d:36:bc:65: d8:02:c9:10:2b:c0:31:5e:f9:04:66:34:72:5f:30: 2d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5A:24:E1:25:15:F8:56:61:39:33:C4:EB:25:4A:F3:48:1B:3B:62 X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/753F0A48CFB611EE83724A58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.255.0.0/18 139.135.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9d:60:73:d7:86:b0:21:d6:93:15:76:e8:3c:a0:5c:d6:fc:69: b3:61:22:94:63:8e:52:8d:a2:7e:fa:68:73:38:7f:85:50:6b: ff:b1:f4:fe:9a:f4:44:fe:40:70:7e:75:99:0e:1c:e2:40:a9: 4f:de:be:e4:89:49:a1:75:13:ad:5c:0e:8a:2b:8e:63:5c:6a: fd:96:a3:19:2c:fa:04:e6:44:5d:d4:da:38:20:7b:34:5a:06: e3:ab:41:14:a4:f7:82:b1:ca:52:13:db:cb:d5:8f:a1:ce:ee: 9d:9f:7b:9f:eb:14:40:1a:51:60:cb:2c:82:55:67:f9:0f:49: 91:37:3f:84:7d:77:79:89:7f:79:03:a7:fa:0c:1e:11:6a:1d: ec:c4:33:e6:db:dc:40:4c:4f:76:0e:43:c7:4e:14:3f:69:14: 75:6f:51:76:98:55:32:4c:fb:ac:d4:e2:e8:fd:57:b1:6a:1b: 3e:c3:4f:b9:2f:ae:e2:40:00:7a:e7:08:1c:a6:7b:4d:03:03: cc:ea:af:3c:d3:22:34:03:c3:ec:77:37:5f:1a:36:ed:b2:fd: d2:ae:2d:ed:d2:f8:b9:2b:5b:6b:05:1c:24:2d:92:71:83:73: 6a:44:66:72:00:43:62:9f:25:2d:e6:8b:b3:b9:3c:18:1d:c2: 5c:04:1c:4d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjQwNTMwMTYzODI5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YWI4NC0wYmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/juRTSEmWqi1SP+TK7DVhkTIS9iz7MrnxJ3WvWTqjkwupcdb3YWe8mnohdSS l7u5mI0EqENkN52UhkvxPCfwmEuY4XFPWj+OUOrpUbcfK0uAdj2SHs05cIMgGFM2 GcMeGbwlmR2viwNWcC19Uv7D72bK7FI9YnQg7KVTWYHrd+mzN2of9OCQKjyFaeze V4BqXzSu8jVJhoAGm9577xCpqc+rzCtMqRyRR3Y4DOHflfqMCehW10bP+VeWJqfX NI/VQoCZAr856RvJWCCsc4oUm0TEvYb6OEQBqbFqziwO4Sku2ECszMpvoYdGww02 vGXYAskQK8AxXvkEZjRyXzAt7wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE1aJOEl FfhWYTkzxOslSvNIGztiMB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvM0Q5ODFDQ0MzQTFFMTFFNzlBQTBENTFDQzRGOUFFMDIvNzUzRjBBNDhD RkI2MTFFRTgzNzI0QTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAZI/wADBAWLhyAwDQYJKoZIhvcNAQELBQADggEBAJ1gc9eG sCHWkxV26DygXNb8abNhIpRjjlKNon76aHM4f4VQa/+x9P6a9ET+QHB+dZkOHOJA qU/evuSJSaF1E61cDoorjmNcav2Woxks+gTmRF3U2jggezRaBuOrQRSk94KxylIT 28vVj6HO7p2fe5/rFEAaUWDLLIJVZ/kPSZE3P4R9d3mJf3kDp/oMHhFqHezEM+bb 3EBMT3YOQ8dOFD9pFHVvUXaYVTJM+6zU4uj9V7FqGz7DT7kvruJAAHrnCByme00D A8zqrzzTIjQDw+x3N18aNu2y/dKuLe3S+LkrW2sFHCQtknGDc2pEZnIAQ2KfJS3m i7O5PBgdwlwEHE0= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:54 2024 by rpki-client on console-fra.rpki-client.org