$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/B979F0F4BE4211EE9D6A1D6CC4F9AE02.roa File: B979F0F4BE4211EE9D6A1D6CC4F9AE02.roa (raw, json) Hash identifier: 0bfhohRWkw+mHnMOok0JegQjrp5R3WBkt6xVLjqYhaM= Subject key identifier: 85:F8:FC:25:CE:16:34:DA:2D:73:5D:04:60:80:DD:B3:DC:B1:51:A5 Certificate issuer: /CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Certificate serial: 46 Authority key identifier: 4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/B979F0F4BE4211EE9D6A1D6CC4F9AE02.roa Signing time: Wed 15 May 2024 08:42:48 +0000 ROA not before: Wed 15 May 2024 08:42:48 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 8075 IP address blocks: 164.75.128.0/24 maxlen: 24 164.75.129.0/24 maxlen: 24 164.75.130.0/24 maxlen: 24 164.75.131.0/24 maxlen: 24 164.75.132.0/24 maxlen: 24 164.75.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Validity Not Before: May 15 08:42:48 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66447587-139a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:23:ee:82:7c:05:7e:b1:21:14:ab:15:92: 19:1f:5d:ce:4d:10:f2:eb:ed:b7:7c:af:69:d8:39: e7:c7:4d:11:6c:cf:ae:03:8d:79:89:b5:a2:47:55: f4:4b:d9:0d:81:f1:1a:af:72:64:49:9d:3e:39:10: 9a:86:b1:4b:92:76:59:2d:11:9c:39:e2:02:cc:c2: 81:ed:e0:31:ea:3f:56:dd:b2:51:88:e2:94:2c:fd: 49:6b:35:c5:4f:7a:53:9f:c4:7e:3b:84:46:e5:e3: 86:54:4f:65:be:88:de:9e:20:9e:c7:73:f8:73:ba: d6:16:cc:23:b5:93:64:a1:b7:86:68:9a:53:5a:ec: 5a:82:f2:f5:90:3e:34:48:76:6f:32:48:37:27:74: 5d:32:e0:cb:1b:24:0d:68:37:dc:c6:39:35:7e:e8: 2d:23:20:a8:84:1a:f4:bf:66:1a:91:4d:55:2d:e2: 72:95:10:b1:f2:2a:7b:f8:a6:0f:e0:7c:bb:6e:27: d7:50:be:27:c1:6d:de:ef:1a:dc:90:05:d8:c0:a0: 21:65:c1:6f:11:f5:7f:ca:3b:f1:95:b4:8e:0d:22: 40:39:99:12:4e:1b:d2:9b:a1:47:5b:b5:e2:c6:1c: 53:9b:f4:77:4c:f5:e6:ca:70:1e:39:cf:8a:1c:42: 6f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F8:FC:25:CE:16:34:DA:2D:73:5D:04:60:80:DD:B3:DC:B1:51:A5 X509v3 Authority Key Identifier: keyid:4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/B979F0F4BE4211EE9D6A1D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.75.128.0-164.75.133.255 Signature Algorithm: sha256WithRSAEncryption 04:d5:ca:ca:35:36:26:e7:d0:38:f8:b7:22:02:73:15:67:ff: b0:b7:53:6c:7f:c6:97:71:84:a7:13:8b:0e:cf:8f:1d:80:22: f8:8e:d7:8d:c6:d7:08:2b:0a:f4:ed:0e:0b:29:a5:0b:99:42: 2c:35:06:c4:d5:ad:0e:c8:fd:58:59:5d:37:97:df:63:fc:72: 5f:da:49:1e:ec:b0:36:05:f4:a0:e9:6d:0c:c2:c7:ba:26:31: 2a:e1:7e:ed:1f:7f:86:d2:41:ef:18:b0:e4:1a:c7:35:1d:3b: 95:0c:aa:d8:ad:15:51:f2:b4:82:fd:5b:a0:f2:e4:98:04:69: 8c:25:d0:4d:da:4f:b7:54:3c:d7:fb:57:9b:f9:b6:08:ee:10: 6c:29:be:10:0b:84:c3:09:d8:ac:ff:56:0a:4d:59:a1:bd:88: 7e:b3:43:6d:09:90:e5:8d:c0:8b:95:ef:f5:fa:8a:ea:b0:08: 5c:25:3c:50:1c:b0:58:c8:a7:a2:cf:a9:08:a6:73:e1:fa:34: d2:4c:0e:17:b5:a6:31:f7:e7:0b:d6:5b:e4:6d:17:3e:4c:02: b7:2e:1e:df:87:65:af:8d:ec:f9:d3:c6:24:26:d6:cc:3e:d3: 84:e8:17:ec:80:cf:58:a6:83:45:a2:93:8e:a8:53:07:72:34: bb:0d:97:0d -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkJEMzExMC8GA1UEBRMoNEJFNTA2OEIzN0IxNjMyNTMwRkY1MjIzODZFN0I3RkIw MTg4RTlFQTAeFw0yNDA1MTUwODQyNDhaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDQ3NTg3LTEzOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK7iPugnwFfrEhFKsVkhkfXc5NEPLr7bd8r2nYOefHTRFsz64DjXmJtaJHVfRL 2Q2B8RqvcmRJnT45EJqGsUuSdlktEZw54gLMwoHt4DHqP1bdslGI4pQs/UlrNcVP elOfxH47hEbl44ZUT2W+iN6eIJ7Hc/hzutYWzCO1k2Sht4ZomlNa7FqC8vWQPjRI dm8ySDcndF0y4MsbJA1oN9zGOTV+6C0jIKiEGvS/ZhqRTVUt4nKVELHyKnv4pg/g fLtuJ9dQvifBbd7vGtyQBdjAoCFlwW8R9X/KO/GVtI4NIkA5mRJOG9KboUdbteLG HFOb9HdM9ebKcB45z4ocQm+FAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUhfj8Jc4W NNotc10EYIDds9yxUaUwHwYDVR0jBBgwFoAUS+UGizexYyUw/1Ijhue3+wGI6eow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQkQzL0U4MEYxMzdDQjk5 MjExRUVBQjlGMUQxOUM0RjlBRTAyL1MtVUdpemV4WXlVd18xSWpodWUzLXdHSTZl by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUy1VR2l6ZXhZeVV3XzFJamh1ZTMtd0dJNmVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy9FODBGMTM3Q0I5OTIxMUVFQUI5RjFEMTlDNEY5QUUwMi9COTc5RjBGNEJF NDIxMUVFOUQ2QTFENkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQHpEuAAwQBpEuEMA0GCSqGSIb3DQEBCwUAA4IBAQAE1crK NTYm59A4+LciAnMVZ/+wt1Nsf8aXcYSnE4sOz48dgCL4jteNxtcIKwr07Q4LKaUL mUIsNQbE1a0OyP1YWV03l99j/HJf2kke7LA2BfSg6W0Mwse6JjEq4X7tH3+G0kHv GLDkGsc1HTuVDKrYrRVR8rSC/Vug8uSYBGmMJdBN2k+3VDzX+1eb+bYI7hBsKb4Q C4TDCdis/1YKTVmhvYh+s0NtCZDljcCLle/1+orqsAhcJTxQHLBYyKeiz6kIpnPh +jTSTA4XtaYx9+cL1lvkbRc+TAK3Lh7fh2Wvjez508YkJtbMPtOE6BfsgM9YpoNF opOOqFMHcjS7DZcN -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:07 2024 by rpki-client on console-ams.rpki-client.org