$ rpki-client -vvf rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa File: 85C3AC9A39E511EF99FD7A11C4F9AE02.roa (raw, json) Hash identifier: B8Xb2sYgtypSv3e1Q/ixe1JBQsd2MMr7LDz0OuJS7tw= Subject key identifier: AF:B3:27:53:33:E3:A1:02:A9:97:FE:75:06:CE:20:B2:FB:E4:41:1E Certificate issuer: /CN=A9167003/serialNumber=A8FC0636E68186475548794DDFA4690BFFD4CCB6 Certificate serial: 2A Authority key identifier: A8:FC:06:36:E6:81:86:47:55:48:79:4D:DF:A4:69:0B:FF:D4:CC:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa Signing time: Thu 05 Sep 2024 07:50:33 +0000 ROA not before: Thu 05 Sep 2024 07:50:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 10022 IP address blocks: 192.188.185.0/24 maxlen: 24 192.203.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.crl rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167003/serialNumber=A8FC0636E68186475548794DDFA4690BFFD4CCB6 Validity Not Before: Sep 5 07:50:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d962c9-fbfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:95:50:54:64:0b:66:98:5b:51:df:31:7d: ba:97:73:74:72:b2:fd:bc:6d:b3:30:d4:2e:aa:52: d5:73:2a:81:64:75:72:72:18:90:9a:23:93:bc:c4: 0f:e8:48:0a:8b:39:d9:95:e1:01:3e:47:e0:41:2c: 80:d6:ae:15:72:37:fa:1a:3b:c1:63:97:03:6c:29: 1d:8b:e0:9b:fb:8c:5f:25:7e:36:d8:70:62:4a:c6: 77:c5:7e:88:05:79:cd:f5:c5:71:d5:1c:bf:5d:4e: 84:c3:f3:bd:bd:71:e0:ba:ee:65:5d:66:6c:a8:24: e3:1c:9f:dc:19:86:6a:66:e2:c6:be:bd:49:bc:01: 1c:55:f7:f4:ba:84:b0:3a:f9:49:42:5c:37:13:3b: 61:95:c8:43:79:30:b8:eb:75:a9:38:b2:56:91:17: 06:ed:9b:fe:eb:6e:13:b9:39:3b:b4:a8:58:f8:6d: 8a:42:5d:c9:9a:a8:e5:1b:e0:b3:71:e4:21:4e:0b: c9:96:e0:41:71:84:b5:3a:23:10:81:b8:a8:67:e6: 37:0b:df:8a:a2:af:9e:a0:96:a1:19:3c:4b:a5:e9: f8:f3:53:c2:61:4c:84:a7:d5:89:e1:ac:4f:f7:9d: 6a:f7:35:be:e6:13:9d:99:87:62:d6:26:63:c1:ab: 6c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B3:27:53:33:E3:A1:02:A9:97:FE:75:06:CE:20:B2:FB:E4:41:1E X509v3 Authority Key Identifier: keyid:A8:FC:06:36:E6:81:86:47:55:48:79:4D:DF:A4:69:0B:FF:D4:CC:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.188.185.0/24 192.203.216.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:d9:40:3d:08:b2:45:ae:c2:5b:bb:22:5b:a5:2b:b7:ce:a0: 9b:4c:9b:0d:86:52:c4:0e:e4:06:b8:b7:b2:c7:f5:6b:9c:c6: f1:64:31:6e:1d:b2:b4:09:05:c2:79:39:fc:ce:18:46:f3:e3: 5b:3a:af:ff:c0:70:73:a2:c4:1a:89:8c:ea:fb:4e:18:c2:dc: cb:7e:c2:0c:d2:01:3c:15:50:03:9c:0a:ff:91:e5:88:86:d9: ea:a9:53:cb:bc:79:65:38:54:79:8b:ae:82:fb:3c:da:0e:c6: bb:04:94:3c:9e:fe:93:20:33:4c:35:81:94:a7:31:e9:27:3d: ac:50:eb:b1:5e:eb:a5:ce:3c:cd:a5:e2:d1:1f:aa:d3:5a:99: 4f:96:51:14:f8:fc:4a:fc:0c:ee:de:e7:58:47:d3:0a:f1:a7: 6b:ef:0b:45:4a:b6:b7:a8:08:8d:34:82:dc:84:f4:59:b3:91: df:9b:b0:d3:ee:37:d8:3a:ff:ee:76:19:aa:3c:ee:a8:99:76: b0:a3:34:aa:28:f1:91:dd:5b:bb:2b:ed:5e:3a:b6:dc:1b:56: c8:a8:34:9a:b3:5b:4c:dd:64:e4:7d:8c:69:42:c8:0c:a7:77: a1:26:33:21:f4:b6:23:d0:f1:92:db:bd:e1:72:43:ef:c6:77: 7b:ed:0a:00 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzAwMzExMC8GA1UEBRMoQThGQzA2MzZFNjgxODY0NzU1NDg3OTREREZBNDY5MEJG RkQ0Q0NCNjAeFw0yNDA5MDUwNzUwMzNaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDk2MmM5LWZiZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC825VQVGQLZphbUd8xfbqXc3Rysv28bbMw1C6qUtVzKoFkdXJyGJCaI5O8xA/o SAqLOdmV4QE+R+BBLIDWrhVyN/oaO8FjlwNsKR2L4Jv7jF8lfjbYcGJKxnfFfogF ec31xXHVHL9dToTD8729ceC67mVdZmyoJOMcn9wZhmpm4sa+vUm8ARxV9/S6hLA6 +UlCXDcTO2GVyEN5MLjrdak4slaRFwbtm/7rbhO5OTu0qFj4bYpCXcmaqOUb4LNx 5CFOC8mW4EFxhLU6IxCBuKhn5jcL34qir56glqEZPEul6fjzU8JhTISn1YnhrE/3 nWr3Nb7mE52Zh2LWJmPBq2xtAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUr7MnUzPj oQKpl/51Bs4gsvvkQR4wHwYDVR0jBBgwFoAUqPwGNuaBhkdVSHlN36RpC//UzLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3MDAzLzI2QTZCMDU4MzJC QjExRUZBODNENjEyRkM0RjlBRTAyL3FQd0dOdWFCaGtkVlNIbE4zNlJwQ19fVXpM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcVB3R051YUJoa2RWU0hsTjM2UnBDX19VekxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAwMy8yNkE2QjA1ODMyQkIxMUVGQTgzRDYxMkZDNEY5QUUwMi84NUMzQUM5QTM5 RTUxMUVGOTlGRDdBMTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAMC8uQMEAMDL2DANBgkqhkiG9w0BAQsFAAOCAQEAWtlAPQiy Ra7CW7siW6Urt86gm0ybDYZSxA7kBri3ssf1a5zG8WQxbh2ytAkFwnk5/M4YRvPj Wzqv/8Bwc6LEGomM6vtOGMLcy37CDNIBPBVQA5wK/5HliIbZ6qlTy7x5ZThUeYuu gvs82g7GuwSUPJ7+kyAzTDWBlKcx6Sc9rFDrsV7rpc48zaXi0R+q01qZT5ZRFPj8 SvwM7t7nWEfTCvGna+8LRUq2t6gIjTSC3IT0WbOR35uw0+432Dr/7nYZqjzuqJl2 sKM0qijxkd1buyvtXjq23BtWyKg0mrNbTN1k5H2MaULIDKd3oSYzIfS2I9Dxktu9 4XJD78Z3e+0KAA== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:16 2024 by rpki-client on console-fra.rpki-client.org