$ rpki-client -vvf rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/FFCBC5B4819B11EBA2616775C4F9AE02.roa File: FFCBC5B4819B11EBA2616775C4F9AE02.roa (raw, json) Hash identifier: RGi1AxOawoRwJgRmO0k5Zv8or/SKX/S2c9c3Whib2CM= Subject key identifier: B6:2E:E4:16:84:16:27:D8:85:BA:B2:7A:8D:9D:19:A6:AF:29:EB:C2 Certificate issuer: /CN=A915E18D/serialNumber=7B2F95CE6FDC2531BBCA3E53C1D6ED1BA2AA3604 Certificate serial: 06E3 Authority key identifier: 7B:2F:95:CE:6F:DC:25:31:BB:CA:3E:53:C1:D6:ED:1B:A2:AA:36:04 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/FFCBC5B4819B11EBA2616775C4F9AE02.roa Signing time: Sat 02 Nov 2024 21:40:54 +0000 ROA not before: Sat 02 Nov 2024 21:40:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132847 IP address blocks: 89.147.120.0/22 maxlen: 24 176.116.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.crl rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E18D/serialNumber=7B2F95CE6FDC2531BBCA3E53C1D6ED1BA2AA3604 Validity Not Before: Nov 2 21:40:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67269c65-4d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:eb:4a:0e:15:d1:5c:96:96:73:3e:e8:a1:c4: 62:c6:32:58:60:a2:38:e0:8f:5f:1b:8e:a1:a5:11: 1c:31:7f:74:b2:32:1d:0a:95:b2:7d:59:f6:4d:02: a0:47:36:fa:b6:b9:14:d1:cd:c3:52:e0:b7:d7:e9: 3f:b1:99:09:7a:ea:0b:71:52:fb:fc:0a:15:af:3b: 21:6c:7d:70:2b:ae:54:a4:80:ec:2b:7d:62:29:1a: 77:8b:06:c9:c7:71:03:3e:1b:bb:0e:67:b7:b8:3d: 3a:5d:89:e7:03:91:c1:f6:49:0a:ed:44:82:51:93: 5c:d2:be:a1:4b:2c:86:f7:05:48:84:82:27:21:6e: 1e:72:15:e6:93:1c:ac:ca:58:2a:32:9b:ab:f7:a8: 34:e4:60:7c:18:19:96:42:3d:22:43:ef:1d:85:e8: c9:75:c2:3a:14:4c:3f:f9:2d:72:e5:02:91:c8:72: 46:e5:f6:56:f7:c5:d6:a8:f4:b0:03:d2:a1:92:6d: e1:74:42:b0:7d:73:8b:f9:05:df:6e:c1:e8:1f:b5: 67:da:da:c6:2a:6d:be:28:66:ec:8c:8f:cd:ed:f1: 59:8b:6d:c9:da:4b:cd:6c:ce:1a:3c:b6:87:30:9d: 21:9c:24:79:a6:14:a1:30:fc:8a:98:ce:7e:d3:60: f0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2E:E4:16:84:16:27:D8:85:BA:B2:7A:8D:9D:19:A6:AF:29:EB:C2 X509v3 Authority Key Identifier: keyid:7B:2F:95:CE:6F:DC:25:31:BB:CA:3E:53:C1:D6:ED:1B:A2:AA:36:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ey-Vzm_cJTG7yj5TwdbtG6KqNgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E18D/70015C422AE211EBBBFC4F0AC4F9AE02/FFCBC5B4819B11EBA2616775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 89.147.120.0/22 176.116.127.0/24 Signature Algorithm: sha256WithRSAEncryption 85:69:a8:5b:32:f0:ff:58:33:0b:bd:e0:85:0f:89:fe:b2:8a: f6:24:e9:f9:3b:79:05:7d:e6:9f:7d:3f:23:77:ae:fa:e0:b6: 10:93:26:37:a3:d9:1c:2d:6e:74:bc:a4:66:c4:ed:1c:f1:ea: ba:12:fd:5b:b3:42:5b:8c:da:b1:d1:a8:bf:18:e3:83:8d:3e: 45:83:45:7f:34:c3:c3:f3:13:76:de:28:f4:59:43:fa:38:fd: 20:28:e8:e1:df:84:12:fb:f1:83:cb:7a:af:4c:3a:00:03:db: bc:59:f3:b9:2c:0f:6c:09:66:2f:a5:1e:a5:5e:0f:41:00:6f: 20:b3:9e:b2:dc:10:38:e6:dc:6b:91:57:2c:17:cb:83:f4:c1: cb:0e:35:bb:f9:fb:bc:88:80:7e:34:59:de:50:c4:43:dd:69: 7c:65:3f:5a:88:fc:0a:14:28:b5:4a:25:81:f3:46:ab:7b:05: 23:a6:2d:38:51:67:15:5d:83:dc:f6:e7:96:f1:9c:82:49:36: b2:97:ee:db:41:75:89:71:02:37:10:5c:2d:c2:03:7f:84:53: 94:fe:17:34:c3:69:13:dc:0a:65:49:48:59:12:db:7d:03:30: 9c:33:11:40:34:79:67:2e:72:8e:79:8a:e2:79:00:04:2c:4c: da:b3:30:88 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUxOEQxMTAvBgNVBAUTKDdCMkY5NUNFNkZEQzI1MzFCQkNBM0U1M0MxRDZFRDFC QTJBQTM2MDQwHhcNMjQxMTAyMjE0MDU0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2OWM2NS00ZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuutKDhXRXJaWcz7oocRixjJYYKI44I9fG46hpREcMX90sjIdCpWyfVn2TQKg Rzb6trkU0c3DUuC31+k/sZkJeuoLcVL7/AoVrzshbH1wK65UpIDsK31iKRp3iwbJ x3EDPhu7Dme3uD06XYnnA5HB9kkK7USCUZNc0r6hSyyG9wVIhIInIW4echXmkxys ylgqMpur96g05GB8GBmWQj0iQ+8dhejJdcI6FEw/+S1y5QKRyHJG5fZW98XWqPSw A9Khkm3hdEKwfXOL+QXfbsHoH7Vn2trGKm2+KGbsjI/N7fFZi23J2kvNbM4aPLaH MJ0hnCR5phShMPyKmM5+02DwzwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLYu5BaE FifYhbqyeo2dGaavKevCMB8GA1UdIwQYMBaAFHsvlc5v3CUxu8o+U8HW7RuiqjYE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTE4RC83MDAxNUM0MjJB RTIxMUVCQkJGQzRGMEFDNEY5QUUwMi9leS1Wem1fY0pURzd5ajVUd2RidEc2S3FO Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2V5LVZ6bV9jSlRHN3lqNVR3ZGJ0RzZLcU5nUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUUxOEQvNzAwMTVDNDIyQUUyMTFFQkJCRkM0RjBBQzRGOUFFMDIvRkZDQkM1QjQ4 MTlCMTFFQkEyNjE2Nzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJZk3gDBACwdH8wDQYJKoZIhvcNAQELBQADggEBAIVpqFsy 8P9YMwu94IUPif6yivYk6fk7eQV95p99PyN3rvrgthCTJjej2RwtbnS8pGbE7Rzx 6roS/VuzQluM2rHRqL8Y44ONPkWDRX80w8PzE3beKPRZQ/o4/SAo6OHfhBL78YPL eq9MOgAD27xZ87ksD2wJZi+lHqVeD0EAbyCznrLcEDjm3GuRVywXy4P0wcsONbv5 +7yIgH40Wd5QxEPdaXxlP1qI/AoUKLVKJYHzRqt7BSOmLThRZxVdg9z255bxnIJJ NrKX7ttBdYlxAjcQXC3CA3+EU5T+FzTDaRPcCmVJSFkS230DMJwzEUA0eWcuco55 iuJ5AAQsTNqzMIg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:41 2024 by rpki-client on console-ams.rpki-client.org