$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa File: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (raw, json) Hash identifier: v+Ks9nZk5YSGi8jwz8W2ujGkO89h3nHyAUbCbrfDviU= Subject key identifier: 27:F9:87:BC:D6:9C:B5:F9:E3:95:DF:B6:10:61:2E:DF:B6:3E:17:91 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 1596 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa Signing time: Fri 12 Jul 2024 17:25:14 +0000 ROA not before: Fri 12 Jul 2024 17:25:14 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 0 IP address blocks: 36.255.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5526 (0x1596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jul 12 17:25:14 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669166f9-e486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:bb:3d:a1:73:03:61:46:1f:7b:12:c0:94: cd:42:3a:22:53:7c:13:8d:fb:ab:bd:7b:1b:83:75: 6e:5e:fb:71:c4:cd:01:19:e5:25:a3:43:1b:3d:af: 61:8e:3d:ab:b7:0b:d1:02:4f:a6:25:95:43:ae:a6: 35:9a:fc:5c:24:46:fe:65:7a:03:08:dd:fd:1b:5e: 37:9b:75:99:ce:ee:cc:7f:07:29:b4:ca:d3:1c:04: a7:ad:c3:ab:45:c7:b9:48:98:c1:85:21:16:84:c4: 24:f3:c9:ea:b4:61:7d:60:83:3f:91:3c:34:61:fb: ee:c5:a0:84:4c:66:39:b8:3f:10:fc:3c:d4:df:d4: f8:74:6b:6d:17:5c:66:0f:0e:36:33:0c:8b:8a:37: a1:91:cb:b0:0b:ed:fe:e3:76:40:cb:51:47:44:29: ec:3b:56:31:ae:c4:93:cc:c1:a4:d6:65:5e:f2:8d: 9e:ff:be:93:d6:10:8d:bf:c0:c1:4b:5b:c0:a5:54: 6c:85:a3:2a:98:bd:39:0a:3d:81:23:04:01:18:72: 26:eb:fe:49:39:19:1f:99:93:ed:5d:cc:55:7c:49: d5:74:69:e4:d1:04:d4:9a:e0:49:34:62:c1:45:37: a4:8b:7e:fe:94:29:b4:99:e9:34:46:c6:11:5c:b0: f2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F9:87:BC:D6:9C:B5:F9:E3:95:DF:B6:10:61:2E:DF:B6:3E:17:91 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.56.0/22 Signature Algorithm: sha256WithRSAEncryption 53:4b:89:84:57:8f:bf:ef:06:12:20:1e:40:f6:1a:6c:3c:70: 8e:0e:5b:68:12:de:10:18:19:24:5b:b9:c9:59:ff:ab:4b:f1: 52:f0:36:8d:37:a3:94:50:98:89:6e:0b:0c:d2:2b:f3:07:73: d6:d7:72:d3:4b:c3:19:67:41:84:d0:b6:51:fc:43:9c:9e:27: 0c:3d:76:9e:ca:c4:ad:7c:e9:6b:cb:3b:e8:8d:18:13:e6:97: 5b:7d:13:df:8e:1b:03:19:67:9f:b3:cd:d5:60:c7:90:3a:f3: 06:a8:5f:d2:3a:8e:6a:f1:7b:73:e7:04:8e:50:05:76:95:5d: 47:a5:3a:52:92:6b:ac:6a:fe:78:b6:e7:57:2b:8b:b0:25:62: 20:80:9d:e3:3c:2e:69:63:6b:ff:3f:b1:2b:10:5b:f4:69:16: 78:88:25:03:7a:7f:94:a8:41:6d:60:93:d6:ca:35:78:9b:61: aa:5a:50:b6:93:c7:3f:3d:2a:cf:9b:4a:1c:b2:9b:a2:71:09: 0c:f6:82:aa:e0:f7:62:0e:bc:fe:fb:e8:fd:df:41:ce:48:3b: 77:cd:7c:5f:08:c8:04:b9:94:4c:89:ad:64:6a:70:99:ce:d0: 3e:0f:e5:0d:3c:f8:df:30:ac:f8:59:07:e9:96:e6:c3:f7:10: 58:d8:8b:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjQwNzEyMTcyNTE0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxNjZmOS1lNDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw427PaFzA2FGH3sSwJTNQjoiU3wTjfurvXsbg3VuXvtxxM0BGeUlo0MbPa9h jj2rtwvRAk+mJZVDrqY1mvxcJEb+ZXoDCN39G143m3WZzu7MfwcptMrTHASnrcOr Rce5SJjBhSEWhMQk88nqtGF9YIM/kTw0YfvuxaCETGY5uD8Q/DzU39T4dGttF1xm Dw42MwyLijehkcuwC+3+43ZAy1FHRCnsO1YxrsSTzMGk1mVe8o2e/76T1hCNv8DB S1vApVRshaMqmL05Cj2BIwQBGHIm6/5JORkfmZPtXcxVfEnVdGnk0QTUmuBJNGLB RTeki37+lCm0mek0RsYRXLDywwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCf5h7zW nLX545XfthBhLt+2PheRMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEOTEvRUE2NzJBNUMxOUU3MTFFOEIyNDNENTdDQzRGOUFFMDIvOUM3OURCRDIz RTc5MTFFQkJGRkFDOTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIk/zgwDQYJKoZIhvcNAQELBQADggEBAFNLiYRXj7/vBhIg HkD2Gmw8cI4OW2gS3hAYGSRbuclZ/6tL8VLwNo03o5RQmIluCwzSK/MHc9bXctNL wxlnQYTQtlH8Q5yeJww9dp7KxK186WvLO+iNGBPml1t9E9+OGwMZZ5+zzdVgx5A6 8waoX9I6jmrxe3PnBI5QBXaVXUelOlKSa6xq/ni251cri7AlYiCAneM8Lmlja/8/ sSsQW/RpFniIJQN6f5SoQW1gk9bKNXibYapaULaTxz89Ks+bShyym6JxCQz2gqrg 92IOvP776P3fQc5IO3fNfF8IyAS5lEyJrWRqcJnO0D4P5Q08+N8wrPhZB+mW5sP3 EFjYi3M= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:21 2024 by rpki-client on console-ams.rpki-client.org