$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/2DAB7B74BE4211EE970F4140C4F9AE02.roa File: 2DAB7B74BE4211EE970F4140C4F9AE02.roa (raw, json) Hash identifier: 2rZsjl0GWlyH/aquB5nfmeBqtZ6M2FK/78474UsGD0w= Subject key identifier: E6:C9:87:B0:B9:A5:FE:9F:7F:8A:B2:46:22:C4:C5:01:17:CF:1B:5C Certificate issuer: /CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Certificate serial: 45 Authority key identifier: 4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/2DAB7B74BE4211EE970F4140C4F9AE02.roa Signing time: Wed 15 May 2024 08:42:47 +0000 ROA not before: Wed 15 May 2024 08:42:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45442 IP address blocks: 164.75.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Validity Not Before: May 15 08:42:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66447586-afe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9a:eb:50:4d:e4:9c:a1:df:57:4b:30:44:59: 54:31:4b:fd:c6:7b:b9:76:d6:92:3f:7b:b8:62:bb: f8:9b:85:4d:4d:d3:9b:64:d7:27:89:59:56:06:92: e1:50:6b:bc:0d:4d:00:78:28:a2:48:7a:9a:86:e2: 8a:c5:29:0e:7b:ed:73:c0:f7:85:b9:cf:d8:49:e8: f3:6d:70:e7:be:0b:c9:b6:60:fb:05:d4:2d:de:b9: fc:d1:6b:56:a2:3c:7f:e6:b6:4e:ab:d2:ab:45:67: 65:27:6b:21:6d:1e:a2:a4:6f:d2:5a:eb:fe:4d:1d: 46:a6:f7:3d:8a:fe:74:0b:42:1b:27:c9:43:ce:a3: b9:f2:eb:fa:00:fe:5e:24:f0:a1:90:fd:eb:29:60: 8f:ba:3d:da:e3:57:e8:ed:c0:fa:86:ea:ac:ec:d6: 87:c1:23:c8:09:ed:9b:b8:d1:6b:07:c2:88:e4:6b: 24:28:d9:9d:b5:d9:e3:64:b0:e9:81:86:04:03:bf: 78:1f:6d:5f:af:f7:da:8f:12:bb:f8:38:eb:0c:0e: 76:72:91:d5:76:d9:cf:a1:fe:1f:c8:5a:6a:c9:b9: f2:b1:1e:47:e7:74:49:91:c7:6d:9c:9d:a9:79:eb: ea:c5:91:b7:25:cb:4f:4d:ed:cc:59:97:51:3f:29: af:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C9:87:B0:B9:A5:FE:9F:7F:8A:B2:46:22:C4:C5:01:17:CF:1B:5C X509v3 Authority Key Identifier: keyid:4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/2DAB7B74BE4211EE970F4140C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.75.128.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:da:f8:4e:61:d4:02:c4:0a:1c:7e:b0:b6:5c:52:b4:8d:33: 29:8d:31:23:2a:19:4a:88:95:c8:7b:e5:f6:1e:d7:94:dc:4a: bb:d3:d2:68:46:0a:4b:6f:b3:89:09:b3:e8:a5:8f:08:9f:0f: c6:66:57:ac:20:fc:6f:c3:8b:14:01:87:1e:01:c6:94:4f:23: 2f:bc:87:2b:41:18:ba:6a:d4:c1:b6:10:a0:ef:4e:ae:1a:55: 16:70:32:1e:85:aa:5b:dc:d0:62:e6:a2:7e:da:99:0b:b1:7b: 27:91:42:24:1d:c4:1e:8f:93:d9:4a:49:79:a3:98:fe:63:7a: 79:e2:dd:fb:a6:5f:b2:e4:04:75:86:56:b4:fe:ec:78:b9:36: c3:e2:5c:84:0b:84:2c:c5:df:04:b0:c4:f0:e9:6c:59:23:8e: c6:a1:22:bd:96:59:8e:ce:b7:98:be:2a:6f:15:30:b8:0b:a8: 88:08:25:ae:c7:9b:f0:87:66:14:26:54:95:9f:2e:be:df:b2: 50:36:83:1f:82:a9:1e:ab:60:43:af:30:f6:06:c9:1e:8f:46: d6:94:aa:b4:da:5c:de:bf:16:19:22:3d:b7:3e:db:71:d6:1e: 64:24:d6:26:ac:7f:ed:26:95:2a:6d:87:c0:cf:cc:46:b7:cc: e8:f3:76:d2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkJEMzExMC8GA1UEBRMoNEJFNTA2OEIzN0IxNjMyNTMwRkY1MjIzODZFN0I3RkIw MTg4RTlFQTAeFw0yNDA1MTUwODQyNDdaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDQ3NTg2LWFmZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2mutQTeScod9XSzBEWVQxS/3Ge7l21pI/e7hiu/ibhU1N05tk1yeJWVYGkuFQ a7wNTQB4KKJIepqG4orFKQ577XPA94W5z9hJ6PNtcOe+C8m2YPsF1C3eufzRa1ai PH/mtk6r0qtFZ2UnayFtHqKkb9Ja6/5NHUam9z2K/nQLQhsnyUPOo7ny6/oA/l4k 8KGQ/espYI+6PdrjV+jtwPqG6qzs1ofBI8gJ7Zu40WsHwojkayQo2Z212eNksOmB hgQDv3gfbV+v99qPErv4OOsMDnZykdV22c+h/h/IWmrJufKxHkfndEmRx22cnal5 6+rFkbcly09N7cxZl1E/Ka+5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5smHsLml /p9/irJGIsTFARfPG1wwHwYDVR0jBBgwFoAUS+UGizexYyUw/1Ijhue3+wGI6eow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQkQzL0U4MEYxMzdDQjk5 MjExRUVBQjlGMUQxOUM0RjlBRTAyL1MtVUdpemV4WXlVd18xSWpodWUzLXdHSTZl by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUy1VR2l6ZXhZeVV3XzFJamh1ZTMtd0dJNmVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy9FODBGMTM3Q0I5OTIxMUVFQUI5RjFEMTlDNEY5QUUwMi8yREFCN0I3NEJF NDIxMUVFOTcwRjQxNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKRLgDANBgkqhkiG9w0BAQsFAAOCAQEAjNr4TmHUAsQKHH6w tlxStI0zKY0xIyoZSoiVyHvl9h7XlNxKu9PSaEYKS2+ziQmz6KWPCJ8PxmZXrCD8 b8OLFAGHHgHGlE8jL7yHK0EYumrUwbYQoO9OrhpVFnAyHoWqW9zQYuaiftqZC7F7 J5FCJB3EHo+T2UpJeaOY/mN6eeLd+6ZfsuQEdYZWtP7seLk2w+JchAuELMXfBLDE 8OlsWSOOxqEivZZZjs63mL4qbxUwuAuoiAglrseb8IdmFCZUlZ8uvt+yUDaDH4Kp HqtgQ68w9gbJHo9G1pSqtNpc3r8WGSI9tz7bcdYeZCTWJqx/7SaVKm2HwM/MRrfM 6PN20g== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:17 2024 by rpki-client on console-ams.rpki-client.org