$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/94472FA8459511EDA982510FC4F9AE02.roa File: 94472FA8459511EDA982510FC4F9AE02.roa (raw, json) Hash identifier: c+lWVnyi5AvZK74bdKBUde662hULr8JkfhSNLO1Lvpc= Subject key identifier: 76:A9:09:F0:2D:12:29:A3:EE:AC:B8:C0:E3:B2:D7:70:BA:59:BC:08 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 3563 Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/94472FA8459511EDA982510FC4F9AE02.roa Signing time: Thu 10 Oct 2024 14:50:40 +0000 ROA not before: Thu 10 Oct 2024 14:50:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133847 IP address blocks: 175.29.96.0/21 maxlen: 24 175.29.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13667 (0x3563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 10 14:50:40 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6707e9bf-7fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:27:0b:2b:61:7f:b0:7e:89:92:e1:08:95:55: 92:1a:e6:e0:89:fc:60:b4:80:a0:da:2f:cc:2d:a3: e7:a3:e3:9d:5b:4c:35:04:28:cc:22:4f:f1:ce:dd: f0:8a:79:5d:ce:4a:be:5f:1a:5f:4e:cf:48:54:91: da:55:d2:bc:c3:db:d2:44:e6:4a:56:53:0e:09:2b: e2:90:36:62:66:e1:6b:11:a8:51:72:08:c0:63:76: af:1d:ad:10:3a:90:94:eb:19:f0:ad:c5:c9:6d:77: bf:7a:20:3b:12:50:0f:38:de:92:e9:2d:f3:64:1c: 7b:4d:98:05:1c:76:cb:32:ad:00:f5:a9:2a:6a:d9: e9:44:cd:ae:79:f4:83:ec:0d:46:6d:35:b0:f6:02: e1:76:b5:b1:95:f8:30:59:e3:e6:ee:01:5e:27:d2: fd:9c:76:5d:0d:9e:87:e7:a3:08:09:56:ae:07:af: c9:72:42:4c:cb:20:95:e4:cc:30:f2:e1:32:06:e0: 72:d1:09:b7:89:67:5e:2d:2d:bc:17:0a:67:ed:5e: 14:bf:01:0b:fe:3f:aa:54:62:2f:44:89:6a:eb:2b: 7d:23:15:c1:83:d3:91:6d:fb:ec:2c:ce:d8:8f:f2: 2a:b0:8b:7c:78:82:9e:f5:00:39:c8:0e:dc:ef:55: b0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A9:09:F0:2D:12:29:A3:EE:AC:B8:C0:E3:B2:D7:70:BA:59:BC:08 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/94472FA8459511EDA982510FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.96.0/21 175.29.208.0/20 Signature Algorithm: sha256WithRSAEncryption ad:a1:9b:87:3b:3b:70:fe:b0:c4:37:cb:a7:36:db:4a:71:15: b2:43:31:ba:2c:24:8c:2c:05:8d:57:59:fd:d1:cd:ac:16:e9: 2c:e7:bc:e9:72:b4:5b:bb:27:3d:76:89:3a:22:3c:55:ca:8a: 40:b7:83:76:37:c3:46:0d:59:ab:9c:53:c4:00:13:56:d9:d1: 0c:d4:ba:9b:df:4b:00:fd:1a:b1:5f:9a:64:df:c5:30:ca:b9: 54:1f:c6:d8:1a:74:31:0d:dc:5a:e9:bc:79:94:aa:aa:31:09: 39:51:6b:4d:01:46:61:65:f4:3b:b9:68:f3:9a:e7:2d:01:40: 5d:4e:c4:8f:dc:cc:b2:f0:6f:87:c2:d1:30:cb:e9:5d:7d:47: d2:fe:aa:d6:16:e0:04:70:a5:04:33:7a:34:a4:c8:8a:eb:89: b8:0f:01:30:d8:57:1a:44:7c:c8:eb:be:7a:bd:6c:4a:d1:0f: e2:13:f8:ec:95:04:9a:c8:d0:5b:9b:19:e8:40:08:69:10:0b: a0:23:d6:d4:42:f1:be:4f:64:e8:96:6f:41:8a:a5:fc:e4:46: f2:6c:5f:a8:c1:93:78:8a:c3:0c:14:90:b0:5f:56:9a:72:f4: b7:c2:21:82:02:00:ae:19:41:58:a0:79:07:d2:35:a2:8b:05: 5e:64:ef:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjQxMDEwMTQ1MDQwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZTliZi03ZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzycLK2F/sH6JkuEIlVWSGubgifxgtICg2i/MLaPno+OdW0w1BCjMIk/xzt3w inldzkq+XxpfTs9IVJHaVdK8w9vSROZKVlMOCSvikDZiZuFrEahRcgjAY3avHa0Q OpCU6xnwrcXJbXe/eiA7ElAPON6S6S3zZBx7TZgFHHbLMq0A9akqatnpRM2uefSD 7A1GbTWw9gLhdrWxlfgwWePm7gFeJ9L9nHZdDZ6H56MICVauB6/JckJMyyCV5Mww 8uEyBuBy0Qm3iWdeLS28Fwpn7V4UvwEL/j+qVGIvRIlq6yt9IxXBg9ORbfvsLM7Y j/IqsIt8eIKe9QA5yA7c71Ww8QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHapCfAt Eimj7qy4wOOy13C6WbwIMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvOTQ0NzJGQTg0 NTk1MTFFREE5ODI1MTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAOvHWADBASvHdAwDQYJKoZIhvcNAQELBQADggEBAK2hm4c7 O3D+sMQ3y6c220pxFbJDMbosJIwsBY1XWf3RzawW6SznvOlytFu7Jz12iToiPFXK ikC3g3Y3w0YNWaucU8QAE1bZ0QzUupvfSwD9GrFfmmTfxTDKuVQfxtgadDEN3Frp vHmUqqoxCTlRa00BRmFl9Du5aPOa5y0BQF1OxI/czLLwb4fC0TDL6V19R9L+qtYW 4ARwpQQzejSkyIrribgPATDYVxpEfMjrvnq9bErRD+IT+OyVBJrI0FubGehACGkQ C6Aj1tRC8b5PZOiWb0GKpfzkRvJsX6jBk3iKwwwUkLBfVppy9LfCIYICAK4ZQVig eQfSNaKLBV5k77I= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:08 2024 by rpki-client on console-ams.rpki-client.org