$ rpki-client -vvf rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/394BF592B77711EFACD51778C4F9AE02.roa File: 394BF592B77711EFACD51778C4F9AE02.roa (raw, json) Hash identifier: LHaIgZmgEGGhHJxPJAJ50n+DoMeW6y27wrzIMYcgRDs= Subject key identifier: AB:97:80:D4:95:87:76:73:B3:BA:88:F4:8A:98:77:92:82:75:40:06 Certificate issuer: /CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470 Certificate serial: 07D1 Authority key identifier: 9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/394BF592B77711EFACD51778C4F9AE02.roa Signing time: Wed 11 Dec 2024 04:20:16 +0000 ROA not before: Wed 11 Dec 2024 04:20:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137283 IP address blocks: 114.134.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 22:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917190F Validity Not Before: Dec 11 04:20:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67591300-9b52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7a:6f:22:66:bd:fc:9e:f0:01:8f:40:14:96: a3:ca:ff:27:9b:b8:57:1d:f5:88:00:cf:fa:bb:c8: 27:25:f2:86:ae:35:a0:26:d0:8c:b4:9a:52:ae:cb: da:7e:ec:8c:9d:b7:f6:d5:03:dd:dc:5c:8b:4b:39: 88:fd:38:15:3e:32:00:71:ae:97:e3:2e:80:26:fb: 07:53:86:d2:20:43:3f:9d:7b:2a:88:d6:a6:67:23: 46:c0:01:1b:91:49:cb:a9:d6:66:e0:30:a6:20:c9: 16:48:bd:8a:1c:61:09:04:f6:53:46:ce:d5:4a:ed: 4e:cb:bb:3d:2e:b0:45:af:98:56:54:9e:21:33:90: ec:74:c8:a1:7b:54:61:98:1f:c8:62:fe:a0:8a:80: 48:20:50:c8:5a:b3:ba:5a:d4:65:04:ca:ea:53:d2: 8d:16:33:59:ca:88:fe:02:f7:c0:a4:78:f5:82:dd: 30:78:09:96:4d:6f:73:e4:fa:3a:ec:56:98:f5:7c: 8e:fb:22:c5:05:1d:49:39:d5:46:19:f3:ca:a2:e5: d9:99:56:c5:26:4b:68:c2:dc:fd:59:2b:ba:a0:b6: a1:9a:6c:ca:37:8f:43:cd:bb:c8:96:cc:b0:ac:3c: 0e:39:53:f0:de:5a:c1:94:a3:dd:f2:d0:5d:f8:d2: 0d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:97:80:D4:95:87:76:73:B3:BA:88:F4:8A:98:77:92:82:75:40:06 X509v3 Authority Key Identifier: keyid:9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/394BF592B77711EFACD51778C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.134.188.0/23 Signature Algorithm: sha256WithRSAEncryption 66:c4:a0:dd:30:4d:38:aa:9d:fa:9c:a2:db:97:d5:21:60:37: 74:e3:3e:24:b5:38:69:f7:55:bb:33:8f:bb:27:7f:13:d0:5d: fb:c0:bd:2d:ea:d5:ce:58:6e:b6:83:49:e8:01:bb:ff:f6:79: 4c:78:c1:ee:18:dd:10:75:4c:ff:c6:59:01:98:4b:76:1b:0f: 85:51:7e:9a:65:e1:2b:0a:dc:49:cf:c6:46:ca:0c:d7:d7:27: b8:9a:8a:03:ab:ae:6f:c0:a5:e2:10:8f:fd:dc:f6:74:d2:f7: f8:e7:a2:18:94:94:03:53:6c:fc:16:25:22:ff:d2:4d:7c:d2: fd:1f:c7:e3:03:5f:9b:83:63:d5:5c:2d:1f:08:20:17:9f:bd: 98:50:cb:20:e3:4c:57:2c:4d:02:8f:4a:d4:9a:64:db:48:c7: 3c:a6:6c:80:23:18:35:e2:0e:b0:da:17:90:85:e3:91:b4:68: ae:42:39:88:0a:30:be:87:1f:d1:17:2f:db:23:94:98:27:6a: e8:ae:29:af:94:76:eb:d6:da:a1:3a:b6:0f:0a:42:6e:1f:b5: 6c:84:02:f4:f5:ae:60:09:d8:f3:c1:18:db:13:66:23:9f:92: fb:6c:58:f0:34:89:77:54:78:1a:52:a9:f3:a6:63:98:ba:ca: 56:33:ca:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MEYxMTAvBgNVBAUTKDlEMDc0NDZFRjk5RjNDNTdDMjlDNTgyRDZCN0FDQTQ3 MzVGNEU0NzAwHhcNMjQxMjExMDQyMDE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MTMwMC05YjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnpvIma9/J7wAY9AFJajyv8nm7hXHfWIAM/6u8gnJfKGrjWgJtCMtJpSrsva fuyMnbf21QPd3FyLSzmI/TgVPjIAca6X4y6AJvsHU4bSIEM/nXsqiNamZyNGwAEb kUnLqdZm4DCmIMkWSL2KHGEJBPZTRs7VSu1Oy7s9LrBFr5hWVJ4hM5DsdMihe1Rh mB/IYv6gioBIIFDIWrO6WtRlBMrqU9KNFjNZyoj+AvfApHj1gt0weAmWTW9z5Po6 7FaY9XyO+yLFBR1JOdVGGfPKouXZmVbFJktowtz9WSu6oLahmmzKN49DzbvIlsyw rDwOOVPw3lrBlKPd8tBd+NINeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKuXgNSV h3Zzs7qI9IqYd5KCdUAGMB8GA1UdIwQYMBaAFJ0HRG75nzxXwpxYLWt6ykc19ORw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkwRi9CM0NBNzZDMEZB MzExMUVBQkQyNDlFN0FDNEY5QUUwMi9uUWRFYnZtZlBGZkNuRmd0YTNyS1J6WDA1 SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RZEVidm1mUEZmQ25GZ3RhM3JLUnpYMDVIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE5MEYvQjNDQTc2QzBGQTMxMTFFQUJEMjQ5RTdBQzRGOUFFMDIvMzk0QkY1OTJC Nzc3MTFFRkFDRDUxNzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFyhrwwDQYJKoZIhvcNAQELBQADggEBAGbEoN0wTTiqnfqc otuX1SFgN3TjPiS1OGn3Vbszj7snfxPQXfvAvS3q1c5YbraDSegBu//2eUx4we4Y 3RB1TP/GWQGYS3YbD4VRfppl4SsK3EnPxkbKDNfXJ7iaigOrrm/ApeIQj/3c9nTS 9/jnohiUlANTbPwWJSL/0k180v0fx+MDX5uDY9VcLR8IIBefvZhQyyDjTFcsTQKP StSaZNtIxzymbIAjGDXiDrDaF5CF45G0aK5COYgKML6HH9EXL9sjlJgnauiuKa+U duvW2qE6tg8KQm4ftWyEAvT1rmAJ2PPBGNsTZiOfkvtsWPA0iXdUeBpSqfOmY5i6 ylYzyuA= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:13 2025 by rpki-client