$ rpki-client -vvf rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/65AF30D422D211EAB3ABA447C4F9AE02.roa File: 65AF30D422D211EAB3ABA447C4F9AE02.roa (raw, json) Hash identifier: Gk9fLK1w1PhazvKtIKN9AYlf9o1o2jXmZMjpuJtNJp0= Subject key identifier: 2F:6B:B3:90:48:87:F3:E0:EA:5B:C7:32:D9:A0:45:81:1C:46:A4:73 Certificate issuer: /CN=A9171560/serialNumber=E9C410C7DDD52670AB8F8216C87614B10EC3177A Certificate serial: 0C22 Authority key identifier: E9:C4:10:C7:DD:D5:26:70:AB:8F:82:16:C8:76:14:B1:0E:C3:17:7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6cQQx93VJnCrj4IWyHYUsQ7DF3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/65AF30D422D211EAB3ABA447C4F9AE02.roa Signing time: Sat 30 Mar 2024 19:27:36 +0000 ROA not before: Sat 30 Mar 2024 19:27:36 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136255 IP address blocks: 65.18.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/6cQQx93VJnCrj4IWyHYUsQ7DF3o.crl rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/6cQQx93VJnCrj4IWyHYUsQ7DF3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6cQQx93VJnCrj4IWyHYUsQ7DF3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171560/serialNumber=E9C410C7DDD52670AB8F8216C87614B10EC3177A Validity Not Before: Mar 30 19:27:36 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660867a8-d6d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2d:a8:ee:52:f3:b4:d3:7b:2a:bb:3e:4b:b1: b9:8b:e7:45:7f:e0:09:11:3b:24:e1:e5:f5:b0:a3: 74:b1:58:2d:7f:b2:52:15:df:17:18:3e:af:42:d9: 79:28:f2:dd:e9:80:6a:84:2c:80:81:36:d6:75:bf: 16:15:c3:82:ec:0f:31:75:68:09:8a:87:a9:0f:20: 28:52:ed:a2:24:60:ba:45:7a:e5:54:f3:2c:6e:f0: bb:4e:97:10:87:73:6c:2a:d8:96:fe:b9:2f:91:79: f2:c0:dd:0f:05:16:4c:97:17:12:d8:18:98:f3:9c: 50:70:a2:d2:c3:f1:08:92:6f:eb:7a:08:c4:31:1c: a2:5b:6a:4b:83:ad:37:22:7f:2f:fb:6b:29:4f:58: 8a:1b:fe:a2:42:d0:7c:9d:26:e4:6f:aa:7f:25:ee: 06:ab:bb:30:98:95:a1:ea:cd:6c:47:a7:b6:46:c6: a5:f5:d2:55:8e:69:82:93:84:22:b8:cd:96:0c:d2: 09:fd:d3:dc:f5:1a:10:48:21:15:c9:a4:34:16:ca: 1f:3b:f6:47:4c:8a:47:e7:0c:3c:13:44:99:70:23: 40:8c:10:96:e5:7e:7c:7f:6e:fb:55:d7:ef:4f:b9: 12:78:db:49:16:ae:f2:dd:1e:4d:3f:4f:58:9f:7f: b3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6B:B3:90:48:87:F3:E0:EA:5B:C7:32:D9:A0:45:81:1C:46:A4:73 X509v3 Authority Key Identifier: keyid:E9:C4:10:C7:DD:D5:26:70:AB:8F:82:16:C8:76:14:B1:0E:C3:17:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/6cQQx93VJnCrj4IWyHYUsQ7DF3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6cQQx93VJnCrj4IWyHYUsQ7DF3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/65AF30D422D211EAB3ABA447C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 65.18.112.0/20 Signature Algorithm: sha256WithRSAEncryption 08:c3:7f:99:f5:8a:5d:bd:b7:f1:9c:54:e3:5e:2a:7e:fa:1e: b7:56:c8:14:42:a3:d4:b3:54:3c:76:de:ea:d3:82:29:29:3e: 37:fa:d1:b8:ab:7f:f9:03:3b:1a:98:82:d8:df:55:e7:96:b1: 61:43:f7:0d:ad:ee:4c:54:44:a4:ed:5e:08:b5:2d:5f:e9:0f: 28:39:b7:b0:a6:f1:9e:ac:b8:51:25:83:8a:ad:04:72:88:c2: d3:d6:28:01:95:a3:e6:1c:35:11:b6:d1:d0:6d:ab:e7:d3:dc: a6:d4:74:e7:ae:05:f1:eb:f7:d7:2f:3e:c2:c7:52:52:aa:c1: 67:73:bf:32:fe:ab:f5:66:ea:4d:51:e2:6e:63:61:45:c2:6f: ab:34:85:03:7b:f2:fd:45:b6:d3:cf:ce:90:5f:9f:d3:5b:e2: d3:ce:3f:4a:46:05:3a:b0:ae:75:e5:52:6b:29:73:26:52:e1: e0:50:2d:08:04:0c:d5:b7:22:49:00:5f:57:32:69:5d:a5:b7: 57:c9:e8:cd:64:87:be:c8:19:62:0a:83:9b:51:8e:cb:eb:a4: 04:6e:8b:01:40:31:30:a1:9b:f7:2a:7b:40:db:d8:b3:2b:2a: 7e:69:36:0f:27:0d:ac:4c:0c:b2:7d:a6:02:17:07:d6:97:e2: 20:f2:dd:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE1NjAxMTAvBgNVBAUTKEU5QzQxMEM3RERENTI2NzBBQjhGODIxNkM4NzYxNEIx MEVDMzE3N0EwHhcNMjQwMzMwMTkyNzM2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4NjdhOC1kNmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArC2o7lLztNN7Krs+S7G5i+dFf+AJETsk4eX1sKN0sVgtf7JSFd8XGD6vQtl5 KPLd6YBqhCyAgTbWdb8WFcOC7A8xdWgJioepDyAoUu2iJGC6RXrlVPMsbvC7TpcQ h3NsKtiW/rkvkXnywN0PBRZMlxcS2BiY85xQcKLSw/EIkm/regjEMRyiW2pLg603 In8v+2spT1iKG/6iQtB8nSbkb6p/Je4Gq7swmJWh6s1sR6e2Rsal9dJVjmmCk4Qi uM2WDNIJ/dPc9RoQSCEVyaQ0FsofO/ZHTIpH5ww8E0SZcCNAjBCW5X58f277Vdfv T7kSeNtJFq7y3R5NP09Yn3+z1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFC9rs5BI h/Pg6lvHMtmgRYEcRqRzMB8GA1UdIwQYMBaAFOnEEMfd1SZwq4+CFsh2FLEOwxd6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTU2MC9BNzcwM0U5RUU0 MUQxMUU5OEY1Qjk4MTlDNEY5QUUwMi82Y1FReDkzVkpuQ3JqNElXeUhZVXNRN0RG M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZjUVF4OTNWSm5Dcmo0SVd5SFlVc1E3REYzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE1NjAvQTc3MDNFOUVFNDFEMTFFOThGNUI5ODE5QzRGOUFFMDIvNjVBRjMwRDQy MkQyMTFFQUIzQUJBNDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARBEnAwDQYJKoZIhvcNAQELBQADggEBAAjDf5n1il29t/Gc VONeKn76HrdWyBRCo9SzVDx23urTgikpPjf60birf/kDOxqYgtjfVeeWsWFD9w2t 7kxURKTtXgi1LV/pDyg5t7Cm8Z6suFElg4qtBHKIwtPWKAGVo+YcNRG20dBtq+fT 3KbUdOeuBfHr99cvPsLHUlKqwWdzvzL+q/Vm6k1R4m5jYUXCb6s0hQN78v1FttPP zpBfn9Nb4tPOP0pGBTqwrnXlUmspcyZS4eBQLQgEDNW3IkkAX1cyaV2lt1fJ6M1k h77IGWIKg5tRjsvrpARuiwFAMTChm/cqe0Db2LMrKn5pNg8nDaxMDLJ9pgIXB9aX 4iDy3VM= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:24 2024 by rpki-client on console-fra.rpki-client.org