$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa File: 7A1D009C0EB611ECB5408277C4F9AE02.roa (raw, json) Hash identifier: InP2ZGCygpqo7jQ5/iXnWywhtU95neHUOm+r+LrIH0s= Subject key identifier: 76:0A:25:11:C6:AA:79:26:3C:9F:69:ED:E8:44:6D:2E:C8:C9:4F:D8 Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 19E6 Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa Signing time: Thu 30 May 2024 16:38:30 +0000 ROA not before: Thu 30 May 2024 16:38:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9541 IP address blocks: 72.255.0.0/18 maxlen: 24 139.135.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6630 (0x19e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: May 30 16:38:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ab86-a28a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:8b:b3:42:91:e7:26:08:ae:2d:a5:93:9a: 8d:f6:26:67:05:6f:b3:cf:69:be:1f:b3:26:63:96: b4:e5:21:e2:6e:cb:60:cc:6b:a2:99:34:87:09:7d: 4c:e5:83:7f:86:3a:ea:10:23:9d:c8:56:fb:47:25: 90:a4:62:4c:15:05:e2:de:b9:a5:83:12:75:10:a8: a2:cb:18:c5:db:d9:0f:73:f4:b4:c2:3e:66:68:95: 9f:22:ca:7f:a9:db:45:5c:4e:db:99:ea:af:ac:b0: a8:c4:6c:8e:c4:73:07:3a:55:c3:1d:37:71:85:5d: fd:f1:04:2d:6f:25:98:33:ba:78:b3:ea:28:0c:74: bc:9c:37:af:ac:45:c2:ec:75:0e:40:44:af:ce:70: bd:eb:3c:ae:d6:54:50:2d:90:e6:3c:80:4c:f8:ec: b5:29:44:66:99:81:06:e7:99:7d:14:50:9b:06:5e: 23:e3:91:2c:3a:6d:d0:bf:c8:5a:5f:f9:55:dc:fb: fc:ba:d7:46:9f:5e:63:2e:85:45:84:61:12:c8:10: b7:5a:14:d8:97:29:f4:1f:71:55:65:bb:59:ca:da: ae:b3:04:31:f5:7b:5f:68:ea:14:08:30:b1:6a:d7: 4d:5c:6c:16:4b:fd:e8:6f:61:f5:43:e3:81:cd:1f: 4d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0A:25:11:C6:AA:79:26:3C:9F:69:ED:E8:44:6D:2E:C8:C9:4F:D8 X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.255.0.0/18 139.135.32.0/19 Signature Algorithm: sha256WithRSAEncryption 22:53:d8:56:45:fd:da:33:34:55:bd:3e:d9:e5:fd:eb:b5:c1: 8b:d2:02:ca:ff:c0:f2:b5:c0:1a:ab:59:66:50:1b:1e:60:25: 5e:50:a3:84:71:c3:14:b2:48:7f:9f:e4:66:ad:3a:0c:b1:e3: 22:1a:fc:be:85:1a:e7:10:ea:96:f3:83:1b:98:90:b8:0e:01: 46:e1:3d:08:7b:24:8f:14:99:d9:de:9d:eb:13:5d:b0:ab:cc: 58:25:cf:83:d9:98:9e:74:ae:26:b6:09:48:fc:e6:c4:54:08: 69:7e:0d:1b:0c:c7:1b:1f:e2:87:10:64:71:24:f9:48:a7:2f: f9:15:c3:cc:8a:74:48:86:8b:27:7d:47:a6:ca:e2:f4:d1:2c: eb:1c:cb:71:de:37:51:e4:17:ac:00:f0:42:f6:09:ba:80:cd: c3:7f:cb:ea:20:6e:3e:e0:4e:0d:4b:6b:10:00:06:a9:8f:78: 87:bf:10:06:ef:2b:35:64:3c:2d:50:47:e4:15:cd:db:4b:75: af:c2:57:9f:21:c6:1c:3a:e5:84:73:e1:c4:6a:3f:32:5a:58: 9a:46:a4:ca:a5:d1:ff:53:23:ff:4a:50:a7:df:d6:10:fa:3a: 61:34:8c:9d:98:69:03:c1:03:05:39:bc:17:63:22:d0:f6:86: 8e:d0:b7:5f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjQwNTMwMTYzODMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YWI4Ni1hMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0duLs0KR5yYIri2lk5qN9iZnBW+zz2m+H7MmY5a05SHibstgzGuimTSHCX1M 5YN/hjrqECOdyFb7RyWQpGJMFQXi3rmlgxJ1EKiiyxjF29kPc/S0wj5maJWfIsp/ qdtFXE7bmeqvrLCoxGyOxHMHOlXDHTdxhV398QQtbyWYM7p4s+ooDHS8nDevrEXC 7HUOQESvznC96zyu1lRQLZDmPIBM+Oy1KURmmYEG55l9FFCbBl4j45EsOm3Qv8ha X/lV3Pv8utdGn15jLoVFhGESyBC3WhTYlyn0H3FVZbtZytquswQx9XtfaOoUCDCx atdNXGwWS/3ob2H1Q+OBzR9NdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHYKJRHG qnkmPJ9p7ehEbS7IyU/YMB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvM0Q5ODFDQ0MzQTFFMTFFNzlBQTBENTFDQzRGOUFFMDIvN0ExRDAwOUMw RUI2MTFFQ0I1NDA4Mjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAZI/wADBAWLhyAwDQYJKoZIhvcNAQELBQADggEBACJT2FZF /dozNFW9Ptnl/eu1wYvSAsr/wPK1wBqrWWZQGx5gJV5Qo4RxwxSySH+f5GatOgyx 4yIa/L6FGucQ6pbzgxuYkLgOAUbhPQh7JI8UmdnenesTXbCrzFglz4PZmJ50ria2 CUj85sRUCGl+DRsMxxsf4ocQZHEk+UinL/kVw8yKdEiGiyd9R6bK4vTRLOscy3He N1HkF6wA8EL2CbqAzcN/y+ogbj7gTg1LaxAABqmPeIe/EAbvKzVkPC1QR+QVzdtL da/CV58hxhw65YRz4cRqPzJaWJpGpMql0f9TI/9KUKff1hD6OmE0jJ2YaQPBAwU5 vBdjItD2ho7Qt18= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:45 2024 by rpki-client on console-fra.rpki-client.org