$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa File: C4245600E55A11ED98D38780C4F9AE02.roa (raw, json) Hash identifier: yju+fZAWtM3RsMZrSlngexqtu4I3chkHV+7N/8ZbBdQ= Subject key identifier: 3E:7A:8E:A3:91:A6:26:2D:0C:2D:0F:A7:DB:D2:69:74:E7:EA:39:3C Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 05CC Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa Signing time: Thu 04 Jul 2024 23:41:19 +0000 ROA not before: Thu 04 Jul 2024 23:41:19 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17766 IP address blocks: 192.150.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Jul 4 23:41:19 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6687331f-9c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e6:e6:60:21:af:04:9d:89:88:05:1f:fb:fc: 07:66:66:ce:11:7a:6b:24:a0:51:8f:4d:71:1d:c3: 5b:b3:7c:83:cd:40:f4:fa:88:9b:9c:56:46:2f:cb: 1c:1f:f1:1e:b9:87:2c:5d:c6:48:2f:0f:7a:a3:fa: 32:b6:80:fd:48:b4:a5:da:a5:3e:d3:96:7c:a1:bb: 81:33:2a:a7:26:5e:61:c2:a8:16:ae:3f:c2:25:05: 9f:cd:ea:19:66:44:b5:44:54:25:6b:5c:41:ad:1f: 69:6a:25:f2:f6:32:e0:8b:71:27:2b:ec:ec:dd:2c: b8:6c:a0:5d:84:cc:4f:ec:67:bc:d2:86:17:01:e2: cf:59:d9:21:0d:51:e1:ac:65:80:a9:7d:36:b6:0e: 1b:53:02:10:91:15:52:77:4e:45:21:90:77:ce:bb: 3c:13:ff:b2:d4:07:5d:6e:70:ab:8a:a0:d7:fd:f9: b2:97:3e:19:f6:b7:e0:cc:e9:71:a8:eb:88:b3:bd: f1:4e:1e:01:a1:42:be:ca:98:88:6e:b2:83:d4:e0: 0f:cd:17:b7:31:13:fe:48:fe:01:c3:42:5a:a3:38: 22:e4:68:7c:2b:e5:b4:7a:f9:60:cf:1e:82:b3:1b: 2d:d6:f2:98:c3:f9:7d:28:18:d8:10:25:bb:37:80: 7c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7A:8E:A3:91:A6:26:2D:0C:2D:0F:A7:DB:D2:69:74:E7:EA:39:3C X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.150.129.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:ad:9d:5e:4a:cc:6a:e5:41:2b:a7:9e:49:3d:4d:3c:a1:7c: 90:f0:a2:ad:61:71:8c:41:cf:5a:9c:08:b4:15:06:b1:4b:ef: 92:4e:5d:89:ef:c8:18:6a:0c:51:7e:58:fb:78:2b:6d:fd:a8: 75:65:56:70:3e:da:ed:d4:1d:5a:9b:49:4c:a2:de:8c:34:94: 62:44:13:9d:f7:b0:24:4f:16:3e:ed:65:18:49:ef:9b:9f:ef: 3d:c0:03:ae:ab:0f:0b:32:62:c1:65:29:ea:ec:a0:e4:f4:39: 92:1d:e5:df:5b:54:bb:f9:a9:61:5a:36:99:55:67:63:7d:7a: 41:9b:a7:1f:49:3c:ca:a6:5d:fe:3d:b7:bb:90:fb:6c:96:22: 34:fa:c6:f0:9f:5a:a6:32:01:78:05:0e:05:0b:c8:a1:46:01: b8:96:42:3e:ec:36:10:a1:18:59:1d:56:84:3a:af:ea:d9:67: 20:e6:4d:87:d8:b2:4a:d4:77:7e:5b:2b:97:ac:d9:46:9b:d7: 93:0e:d7:92:89:0b:7e:cb:e8:d2:2e:f2:b5:6c:f7:fb:83:f5: 29:71:20:e8:78:28:ba:57:97:18:ef:d8:02:4e:a8:ed:58:65: 9e:1b:e6:c3:c3:fe:0f:9c:f3:d2:2f:e9:11:e2:07:4b:7c:70: 0d:e6:77:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjQwNzA0MjM0MTE5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3MzMxZi05YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ebmYCGvBJ2JiAUf+/wHZmbOEXprJKBRj01xHcNbs3yDzUD0+oibnFZGL8sc H/EeuYcsXcZILw96o/oytoD9SLSl2qU+05Z8obuBMyqnJl5hwqgWrj/CJQWfzeoZ ZkS1RFQla1xBrR9paiXy9jLgi3EnK+zs3Sy4bKBdhMxP7Ge80oYXAeLPWdkhDVHh rGWAqX02tg4bUwIQkRVSd05FIZB3zrs8E/+y1AddbnCriqDX/fmylz4Z9rfgzOlx qOuIs73xTh4BoUK+ypiIbrKD1OAPzRe3MRP+SP4Bw0Jaozgi5Gh8K+W0evlgzx6C sxst1vKYw/l9KBjYECW7N4B8QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD56jqOR piYtDC0Pp9vSaXTn6jk8MB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDRTYvMDNBMDE3ODQ3QkQwMTFFQjg1QTY2OTgwQzRGOUFFMDIvQzQyNDU2MDBF NTVBMTFFRDk4RDM4NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAloEwDQYJKoZIhvcNAQELBQADggEBADutnV5KzGrlQSun nkk9TTyhfJDwoq1hcYxBz1qcCLQVBrFL75JOXYnvyBhqDFF+WPt4K239qHVlVnA+ 2u3UHVqbSUyi3ow0lGJEE533sCRPFj7tZRhJ75uf7z3AA66rDwsyYsFlKersoOT0 OZId5d9bVLv5qWFaNplVZ2N9ekGbpx9JPMqmXf49t7uQ+2yWIjT6xvCfWqYyAXgF DgULyKFGAbiWQj7sNhChGFkdVoQ6r+rZZyDmTYfYskrUd35bK5es2Uab15MO15KJ C37L6NIu8rVs9/uD9SlxIOh4KLpXlxjv2AJOqO1YZZ4b5sPD/g+c89Iv6RHiB0t8 cA3mdys= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:42 2024 by rpki-client on console-ams.rpki-client.org