$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa File: 74F996F62F2511EF8D78DC62C4F9AE02.roa (raw, json) Hash identifier: eJnBEPq3CmdNLCDHBUVvXs0kbXTnJ+d7CSKfSteaNso= Subject key identifier: 06:20:B5:0B:DF:7B:D9:15:A0:32:1A:A6:10:F1:F1:DE:E0:C7:60:DE Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 76 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa Signing time: Thu 20 Jun 2024 17:09:46 +0000 ROA not before: Thu 20 Jun 2024 17:09:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9411 IP address blocks: 158.108.0.0/16 maxlen: 16 158.108.0.0/20 maxlen: 20 158.108.16.0/20 maxlen: 20 158.108.32.0/20 maxlen: 20 158.108.48.0/20 maxlen: 20 158.108.64.0/20 maxlen: 20 158.108.80.0/20 maxlen: 20 158.108.96.0/20 maxlen: 20 158.108.112.0/20 maxlen: 20 158.108.128.0/20 maxlen: 20 158.108.144.0/20 maxlen: 20 158.108.160.0/20 maxlen: 20 158.108.176.0/20 maxlen: 20 158.108.192.0/20 maxlen: 20 158.108.208.0/20 maxlen: 20 158.108.224.0/20 maxlen: 20 158.108.240.0/20 maxlen: 20 192.102.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Jun 20 17:09:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6674625a-3d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:70:c3:95:7e:96:c3:bb:39:3a:3e:50:50:be: 21:de:37:fa:f8:2e:41:8c:cb:68:af:b2:a7:67:25: 92:90:e1:a4:1a:f9:f8:83:9a:b5:8c:30:0d:e6:35: b5:15:5b:bf:78:89:3f:39:23:7b:79:6f:5b:76:10: 5a:5a:50:0c:ed:83:27:72:8c:65:2a:ab:4a:cf:1f: 1b:c0:3c:5b:65:fe:1d:60:02:8e:59:91:5b:08:bb: 0c:b9:03:9f:41:be:19:e9:63:49:f3:57:80:9b:cb: 1a:be:1d:51:db:6e:a5:a9:ff:f5:87:fa:55:20:a9: 5a:56:75:8e:17:cd:c7:9c:b9:93:e6:54:f4:78:27: 22:b7:e7:d7:e8:2c:93:ab:34:b4:cf:ec:0a:a2:6f: 1d:8d:fc:0a:a1:db:3c:fe:40:47:8b:ca:1f:a1:2b: 15:7e:cf:cc:76:af:7f:a7:fb:18:65:40:90:0f:99: d1:73:47:f1:3e:0e:9f:da:bb:fc:85:be:00:ea:42: e9:d9:03:e3:d0:d5:44:f9:1d:ac:0a:cc:4f:2b:56: 23:4a:9d:22:c6:65:5f:88:d0:86:cb:1e:df:fa:86: 2c:1d:ab:a9:3b:f1:c6:42:c6:0c:77:36:99:f1:f4: 8d:e2:25:73:c9:d0:77:f5:4b:6a:e4:d0:72:5f:0e: 25:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:20:B5:0B:DF:7B:D9:15:A0:32:1A:A6:10:F1:F1:DE:E0:C7:60:DE X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/74F996F62F2511EF8D78DC62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.108.0.0/16 192.102.83.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:01:78:94:70:11:48:a1:81:d4:f0:81:98:b7:06:c7:d9:22: f5:30:4f:b2:4a:04:cf:f3:9b:45:b1:b3:f3:49:69:cd:3b:bc: 52:2a:1c:0d:da:2b:27:3b:13:05:c4:35:e9:06:cc:81:a3:16: ef:a4:04:69:5a:f7:1a:4e:62:7c:b6:f7:3f:67:73:04:c2:fa: 9f:80:0f:50:0e:7b:b0:66:d0:1f:6c:b2:ec:b7:12:02:bc:d2: 8d:d0:e2:c4:b5:53:17:8a:8a:55:b1:fe:4d:f0:1a:32:26:01: 96:c1:10:e8:09:b4:3b:79:bc:8a:2d:43:5b:3b:9b:d3:6d:30: bd:8f:c5:d9:a8:9d:35:cc:3f:54:e9:15:44:67:19:ab:a7:f8: d9:c9:d3:59:61:30:7d:70:14:88:b3:e7:f7:d6:5b:2e:d3:90: 30:84:e7:3b:3b:3b:9c:3b:e4:95:32:24:79:ae:cd:8d:1f:37: 39:9d:1c:da:29:6a:b5:50:9e:0d:10:91:12:0c:9f:4b:f4:05: 0f:dc:6b:61:22:2d:34:dc:57:1d:8b:15:b4:02:bc:9e:c1:0c: 6f:df:27:0d:d9:9f:f2:0b:a6:cc:ab:8b:1b:88:49:48:ac:d1: 05:f2:e2:90:21:87:c0:69:81:2f:10:f2:61:49:96:e7:97:e8: 76:52:37:29 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RkE0OTExMC8GA1UEBRMoQ0Q2NUU2NzQwQkFFN0VCMzNCRDVFNTM4QzlFRTZERThC MzM1NDQzMTAeFw0yNDA2MjAxNzA5NDZaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzQ2MjVhLTNkM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCcMOVfpbDuzk6PlBQviHeN/r4LkGMy2ivsqdnJZKQ4aQa+fiDmrWMMA3mNbUV W794iT85I3t5b1t2EFpaUAztgydyjGUqq0rPHxvAPFtl/h1gAo5ZkVsIuwy5A59B vhnpY0nzV4Cbyxq+HVHbbqWp//WH+lUgqVpWdY4XzcecuZPmVPR4JyK359foLJOr NLTP7Aqibx2N/Aqh2zz+QEeLyh+hKxV+z8x2r3+n+xhlQJAPmdFzR/E+Dp/au/yF vgDqQunZA+PQ1UT5HawKzE8rViNKnSLGZV+I0IbLHt/6hiwdq6k78cZCxgx3Npnx 9I3iJXPJ0Hf1S2rk0HJfDiV9AgMBAAGjggKaMIICljAdBgNVHQ4EFgQUBiC1C997 2RWgMhqmEPHx3uDHYN4wHwYDVR0jBBgwFoAUzWXmdAuufrM71eU4ye5t6LM1RDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZGQTQ5L0E0QzBDQTk2OTAw OTExRUU5RTU0QTAzM0M0RjlBRTAyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveldYbWRBdXVmck03MWVVNHllNXQ2TE0xUkRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi83NEY5OTZGNjJG MjUxMUVGOEQ3OERDNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAkBggrBgEFBQcBBwEB/wQV MBMwEQQCAAEwCwMDAJ5sAwQAwGZTMA0GCSqGSIb3DQEBCwUAA4IBAQCNAXiUcBFI oYHU8IGYtwbH2SL1ME+ySgTP85tFsbPzSWnNO7xSKhwN2isnOxMFxDXpBsyBoxbv pARpWvcaTmJ8tvc/Z3MEwvqfgA9QDnuwZtAfbLLstxICvNKN0OLEtVMXiopVsf5N 8BoyJgGWwRDoCbQ7ebyKLUNbO5vTbTC9j8XZqJ01zD9U6RVEZxmrp/jZydNZYTB9 cBSIs+f31lsu05AwhOc7OzucO+SVMiR5rs2NHzc5nRzaKWq1UJ4NEJESDJ9L9AUP 3GthIi003FcdixW0AryewQxv3ycN2Z/yC6bMq4sbiElIrNEF8uKQIYfAaYEvEPJh SZbnl+h2Ujcp -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:20 2024 by rpki-client on console-ams.rpki-client.org