$ rpki-client -vvf rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/39C67EFCB77711EFACD51778C4F9AE02.roa File: 39C67EFCB77711EFACD51778C4F9AE02.roa (raw, json) Hash identifier: 8rIyXoL5Gs7jLLbRH396TCE4QCJidAVlris0YAU7RL0= Subject key identifier: 2D:E6:74:C4:57:F0:22:11:D5:1A:E7:13:99:D4:D5:82:E8:E7:26:09 Certificate issuer: /CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470 Certificate serial: 07D2 Authority key identifier: 9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/39C67EFCB77711EFACD51778C4F9AE02.roa Signing time: Wed 11 Dec 2024 04:20:17 +0000 ROA not before: Wed 11 Dec 2024 04:20:17 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137899 IP address blocks: 114.134.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 22:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917190F Validity Not Before: Dec 11 04:20:17 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67591301-1a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:76:46:ae:5f:2e:de:27:cf:99:7b:58:98:15: 61:34:16:cb:92:49:95:f8:40:c2:5f:4a:90:29:77: e4:0b:b4:55:96:c3:e8:6b:10:8d:0c:d5:25:d0:a4: ed:89:5b:1c:60:c2:c7:f2:6f:1c:27:e9:91:24:e3: b4:fa:1e:b6:30:60:36:89:7f:37:72:26:e2:a4:db: 26:8a:b3:ed:d8:ce:e4:bf:46:99:a3:13:7e:2e:8a: 58:bb:60:8d:c2:7d:26:cb:1b:12:48:f9:ed:a6:cf: f8:16:13:70:1e:db:f3:27:43:03:cf:86:db:b0:6a: 8b:28:43:36:c8:97:3c:d1:79:40:46:16:b2:60:28: 99:14:20:2b:f0:6a:3a:40:c9:49:05:56:c0:65:7d: a4:76:6f:ea:05:57:00:20:b7:8c:b0:71:13:57:f7: ff:63:1c:83:b1:ed:33:37:60:b9:ea:f9:8d:54:d5: 1f:b4:c5:be:85:da:7e:d1:2f:d5:cb:27:dc:4d:3a: 25:7d:87:df:88:af:21:4c:81:4c:20:b5:87:72:b0: b9:75:13:f4:44:4a:21:f9:52:a4:36:7a:7b:0d:4e: ab:b6:04:46:68:e7:a6:c3:fd:cb:2f:3a:56:e6:7d: 62:d1:35:87:9f:2f:f6:3b:bc:44:8a:26:8d:02:f9: bf:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E6:74:C4:57:F0:22:11:D5:1A:E7:13:99:D4:D5:82:E8:E7:26:09 X509v3 Authority Key Identifier: keyid:9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/39C67EFCB77711EFACD51778C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.134.188.0/23 Signature Algorithm: sha256WithRSAEncryption 37:a6:cd:89:8f:d1:82:5b:74:70:c9:b4:76:17:3c:cd:d7:0d: 54:b8:9f:08:f2:0f:f6:d8:74:4e:80:fe:5c:72:13:fd:34:f6: 15:a9:4d:10:a9:a7:a1:a3:b1:4d:08:1f:c3:30:37:4e:7a:0a: a4:7b:9e:63:26:e6:29:36:35:cc:09:e6:b0:cb:f5:06:df:72: 80:94:de:74:e6:37:41:87:5d:47:63:d9:03:50:f8:40:16:7d: 49:65:31:f7:31:f4:0d:46:54:4f:3e:75:fb:26:27:b5:af:d8: e2:0c:48:38:46:a8:94:e9:0d:9c:ed:74:f0:31:03:c4:f6:c0: 17:45:7c:fa:1d:19:38:c1:9f:16:4a:15:ac:6d:9b:de:a2:68: 40:6e:6c:e1:1b:2e:e5:ae:67:3d:be:83:4d:87:5c:d8:a5:2c: fd:09:f2:d7:15:e6:91:22:5f:3d:0c:15:f7:f6:84:df:b0:53: 5c:bb:35:5d:b2:89:22:1a:bd:75:cb:73:7b:16:da:9f:7c:8b: 8c:da:02:14:f7:72:60:2e:bc:2b:af:d5:f3:7a:22:03:35:15: 5d:51:03:4a:30:71:57:29:d6:64:52:ed:0a:6c:69:a9:83:e8: f0:8a:60:37:15:d4:9e:92:ea:7e:d5:61:96:9d:04:e3:5d:77: 1c:8d:95:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MEYxMTAvBgNVBAUTKDlEMDc0NDZFRjk5RjNDNTdDMjlDNTgyRDZCN0FDQTQ3 MzVGNEU0NzAwHhcNMjQxMjExMDQyMDE3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MTMwMS0xYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXZGrl8u3ifPmXtYmBVhNBbLkkmV+EDCX0qQKXfkC7RVlsPoaxCNDNUl0KTt iVscYMLH8m8cJ+mRJOO0+h62MGA2iX83cibipNsmirPt2M7kv0aZoxN+LopYu2CN wn0myxsSSPntps/4FhNwHtvzJ0MDz4bbsGqLKEM2yJc80XlARhayYCiZFCAr8Go6 QMlJBVbAZX2kdm/qBVcAILeMsHETV/f/YxyDse0zN2C56vmNVNUftMW+hdp+0S/V yyfcTTolfYffiK8hTIFMILWHcrC5dRP0REoh+VKkNnp7DU6rtgRGaOemw/3LLzpW 5n1i0TWHny/2O7xEiiaNAvm/LQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC3mdMRX 8CIR1RrnE5nU1YLo5yYJMB8GA1UdIwQYMBaAFJ0HRG75nzxXwpxYLWt6ykc19ORw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkwRi9CM0NBNzZDMEZB MzExMUVBQkQyNDlFN0FDNEY5QUUwMi9uUWRFYnZtZlBGZkNuRmd0YTNyS1J6WDA1 SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RZEVidm1mUEZmQ25GZ3RhM3JLUnpYMDVIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE5MEYvQjNDQTc2QzBGQTMxMTFFQUJEMjQ5RTdBQzRGOUFFMDIvMzlDNjdFRkNC Nzc3MTFFRkFDRDUxNzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFyhrwwDQYJKoZIhvcNAQELBQADggEBADemzYmP0YJbdHDJ tHYXPM3XDVS4nwjyD/bYdE6A/lxyE/009hWpTRCpp6GjsU0IH8MwN056CqR7nmMm 5ik2NcwJ5rDL9QbfcoCU3nTmN0GHXUdj2QNQ+EAWfUllMfcx9A1GVE8+dfsmJ7Wv 2OIMSDhGqJTpDZztdPAxA8T2wBdFfPodGTjBnxZKFaxtm96iaEBubOEbLuWuZz2+ g02HXNilLP0J8tcV5pEiXz0MFff2hN+wU1y7NV2yiSIavXXLc3sW2p98i4zaAhT3 cmAuvCuv1fN6IgM1FV1RA0owcVcp1mRS7QpsaamD6PCKYDcV1J6S6n7VYZadBONd dxyNlck= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:48 2025 by rpki-client