$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/349FE3280DA811EBB62F0126C4F9AE02.roa File: 349FE3280DA811EBB62F0126C4F9AE02.roa (raw, json) Hash identifier: P8l1FNXOYT7PgZwkM5WwT5I4kFXlU2g1aMiRVrxecW0= Subject key identifier: E2:AF:A8:0E:50:13:45:BD:23:6D:92:21:57:C4:91:2E:60:0B:5F:17 Certificate issuer: /CN=A916A983/serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5 Certificate serial: 1285 Authority key identifier: 88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/349FE3280DA811EBB62F0126C4F9AE02.roa Signing time: Wed 24 Jul 2024 17:35:11 +0000 ROA not before: Wed 24 Jul 2024 17:35:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 19905 IP address blocks: 192.74.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.crl rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4741 (0x1285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983 Validity Not Before: Jul 24 17:35:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a13b4f-0756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:61:6d:db:7b:4d:d2:dc:2c:f4:89:e2:77:1e: 8f:1d:79:3b:59:1e:d2:cd:1e:59:67:90:f0:96:4b: 27:38:b8:fc:59:78:d7:1d:27:ef:dc:05:9a:45:74: 64:b6:ad:a3:c3:0e:b3:53:ee:7e:35:08:d9:b7:8b: 0a:ad:77:42:1d:50:bf:1a:1a:6b:c6:69:a9:fd:4b: ba:8f:a1:77:47:b4:25:77:1f:6b:c5:12:d9:c1:6f: a2:d4:43:b6:90:30:7f:d5:de:9f:ad:60:02:ce:36: 68:bc:ba:c5:69:c3:eb:49:7c:06:21:61:01:e0:ca: e9:dd:02:3d:ce:cf:71:58:83:ef:ad:dc:ad:64:39: 0a:81:93:53:59:04:1e:13:ff:ee:cf:d9:29:c7:01: 67:83:7d:8f:23:69:b1:d5:f8:c7:8d:90:38:7f:d7: 4b:7f:4f:eb:e9:e4:ed:9b:6c:64:4e:a0:15:4f:b2: 16:58:c8:13:f9:15:fc:54:04:cb:5f:43:49:6d:76: 7b:12:23:09:89:c8:5e:b8:a4:cc:bb:25:af:c2:a0: 26:8d:a2:5c:72:af:91:70:a6:e8:68:b6:43:13:92: ab:d1:9c:0d:13:c6:25:70:da:1d:5b:d0:b8:46:f3: 8c:89:93:ac:af:db:3c:d2:d4:47:15:ae:ce:83:6f: 25:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:AF:A8:0E:50:13:45:BD:23:6D:92:21:57:C4:91:2E:60:0B:5F:17 X509v3 Authority Key Identifier: keyid:88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/349FE3280DA811EBB62F0126C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.74.139.0/24 Signature Algorithm: sha256WithRSAEncryption 04:2a:c9:48:a6:75:c7:f9:39:84:0e:b3:dc:08:24:33:16:53: 86:22:66:3a:37:ad:9a:75:6c:5f:4b:1d:ae:22:bb:19:c3:96: 4a:ab:e8:50:1d:b8:13:78:81:01:ca:84:5e:97:85:69:b3:b1: 41:57:02:3f:b5:ae:4b:c2:52:3f:d7:4f:fe:69:73:9d:c0:e8: 72:31:d2:f7:a4:ef:30:94:53:80:32:d3:f6:b7:4c:1f:b6:01: 1d:14:4e:b1:bd:32:0d:e8:e9:40:5c:eb:82:3e:9a:cc:eb:67: ad:bb:a2:a8:37:42:db:20:80:c0:77:47:3a:43:ab:66:af:67: e4:ff:43:a4:bf:85:30:de:4d:db:f8:cb:6a:a3:10:0a:f9:46: 1c:ed:41:67:69:dd:ad:bf:26:b2:5b:bc:5d:fb:ed:26:ae:37: bd:ef:a6:9f:b9:68:84:34:13:93:42:09:df:73:db:eb:60:7c: 33:aa:7d:ec:3a:39:79:bf:2e:73:b4:68:3a:6b:c9:85:db:3b: 80:a8:59:e8:dc:a0:20:67:42:27:a8:cc:61:d7:00:da:ef:cc: d7:f4:f5:1a:05:b2:6e:27:2f:ec:78:71:11:87:da:72:89:3d: 5d:68:f4:37:e2:d8:b3:7c:79:64:8c:cb:10:a6:61:6e:23:7b: de:cd:88:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDg4RDg3QjEwMkY1QzI3NzFDMzY3MDY0RTIwNDlCNjhB OTAzQzcxQjUwHhcNMjQwNzI0MTczNTExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExM2I0Zi0wNzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+GFt23tN0tws9Inidx6PHXk7WR7SzR5ZZ5DwlksnOLj8WXjXHSfv3AWaRXRk tq2jww6zU+5+NQjZt4sKrXdCHVC/Ghprxmmp/Uu6j6F3R7Qldx9rxRLZwW+i1EO2 kDB/1d6frWACzjZovLrFacPrSXwGIWEB4Mrp3QI9zs9xWIPvrdytZDkKgZNTWQQe E//uz9kpxwFng32PI2mx1fjHjZA4f9dLf0/r6eTtm2xkTqAVT7IWWMgT+RX8VATL X0NJbXZ7EiMJicheuKTMuyWvwqAmjaJccq+RcKboaLZDE5Kr0ZwNE8YlcNodW9C4 RvOMiZOsr9s80tRHFa7Og28lTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOKvqA5Q E0W9I22SIVfEkS5gC18XMB8GA1UdIwQYMBaAFIjYexAvXCdxw2cGTiBJtoqQPHG1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8wRTA4MkU3MkNE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9pTmg3RUM5Y0ozSERad1pPSUVtMmlwQThj YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lOaDdFQzljSjNIRFp3Wk9JRW0yaXBBOGNiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMEUwODJFNzJDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvMzQ5RkUzMjgw REE4MTFFQkI2MkYwMTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADASoswDQYJKoZIhvcNAQELBQADggEBAAQqyUimdcf5OYQO s9wIJDMWU4YiZjo3rZp1bF9LHa4iuxnDlkqr6FAduBN4gQHKhF6XhWmzsUFXAj+1 rkvCUj/XT/5pc53A6HIx0vek7zCUU4Ay0/a3TB+2AR0UTrG9Mg3o6UBc64I+mszr Z627oqg3QtsggMB3RzpDq2avZ+T/Q6S/hTDeTdv4y2qjEAr5RhztQWdp3a2/JrJb vF377SauN73vpp+5aIQ0E5NCCd9z2+tgfDOqfew6OXm/LnO0aDpryYXbO4CoWejc oCBnQieozGHXANrvzNf09RoFsm4nL+x4cRGH2nKJPV1o9Dfi2LN8eWSMyxCmYW4j e97NiIg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:23:24 2025 by rpki-client