$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/EA7554AC82D011EA8BCCCA64C4F9AE02.roa File: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (raw, json) Hash identifier: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8= Subject key identifier: 62:9D:6F:74:A1:44:24:5E:95:6D:E3:28:24:62:31:70:2D:2E:AC:BF Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0998 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/EA7554AC82D011EA8BCCCA64C4F9AE02.roa Signing time: Thu 14 Nov 2024 19:58:58 +0000 ROA not before: Thu 14 Nov 2024 19:58:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 63527 IP address blocks: 63.140.1.0/24 maxlen: 24 63.140.2.0/24 maxlen: 24 63.140.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Nov 14 19:58:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67365682-b69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2f:a0:4a:d4:76:04:f0:35:e6:5b:23:bf:dd: b8:f7:8f:8e:72:b3:94:bd:df:37:3f:27:22:14:d4: 03:05:fb:72:10:d4:6d:12:29:d3:e7:c0:9b:de:90: f2:7f:5d:7a:51:74:f5:f9:f1:95:a8:55:fc:c9:76: b5:fa:1d:13:35:8a:fb:ef:25:bd:87:02:03:47:09: 59:21:35:3b:c4:bc:7e:d4:21:e0:70:5f:de:ae:90: 01:e0:e7:bc:9b:a5:66:1a:20:07:de:7c:3a:6b:d5: 7c:e1:ae:e9:1a:84:24:70:65:92:41:89:94:f4:7f: 65:c2:b6:9c:9c:25:d4:e9:21:e4:ba:1c:46:ff:d1: 55:1d:c4:0a:38:a3:7f:30:d6:f8:e1:6f:01:39:74: fc:76:46:a0:c0:3c:c6:28:06:13:d5:80:39:88:47: 59:6f:46:9a:73:f9:eb:26:28:70:68:cd:05:ed:d3: b8:b1:06:e2:47:24:28:c0:52:e8:d8:71:5c:01:e3: 55:a3:b6:d2:4b:e7:d1:05:87:dc:a5:4e:a9:5b:05: 89:62:a2:c8:0f:26:5d:03:79:d6:20:7a:00:20:5b: 81:dd:f8:36:12:42:8f:21:61:47:2e:38:bd:c2:ed: 0d:b7:39:d8:6a:f8:39:ac:fc:f7:27:99:9a:2c:b3: 20:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9D:6F:74:A1:44:24:5E:95:6D:E3:28:24:62:31:70:2D:2E:AC:BF X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/EA7554AC82D011EA8BCCCA64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 63.140.1.0-63.140.2.255 63.140.12.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:76:bd:da:85:8a:d9:87:6b:c6:ad:20:ce:76:14:3f:b4:b8: d5:3d:a4:ea:5c:e4:0d:8c:5e:fc:c7:05:d2:07:ec:ef:0f:6b: fa:56:35:01:fb:4b:f1:b3:73:86:35:3a:9e:ed:a3:71:26:bb: 06:06:7c:b2:ef:ba:98:2c:fc:dd:b4:90:3b:9a:a9:0e:70:73: 5f:51:39:d8:f2:df:f0:22:2d:38:04:19:f0:a7:7f:4f:c7:35: 6d:ba:92:d4:cb:3f:c2:eb:82:ca:b5:54:ae:59:9c:3d:29:53: 15:e4:ac:4b:11:26:71:a6:91:6f:7d:e2:49:c3:93:84:a8:37: ee:e0:79:a4:34:32:51:74:a4:a7:be:be:14:25:a1:44:8d:6a: 05:3a:12:aa:5f:b5:e2:1f:a2:af:ab:49:83:e2:a6:49:42:cc: d1:e0:7b:50:28:85:21:ea:b0:c5:95:ca:39:18:55:9e:53:f7: 94:a2:ce:c7:ff:04:cb:4c:b1:f3:45:ab:87:c8:35:88:8b:f3: d4:1e:4a:c2:9a:b5:6a:e1:e6:aa:37:15:01:ab:f5:58:bc:b0: 83:c5:30:91:a0:93:07:13:a1:77:72:f6:75:67:4c:3f:29:21: c7:c2:85:49:c9:5b:77:c7:d9:76:59:f7:1e:00:5b:97:b0:95: 74:2b:2f:c8 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjQxMTE0MTk1ODU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NTY4Mi1iNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApC+gStR2BPA15lsjv92494+OcrOUvd83PyciFNQDBftyENRtEinT58Cb3pDy f116UXT1+fGVqFX8yXa1+h0TNYr77yW9hwIDRwlZITU7xLx+1CHgcF/erpAB4Oe8 m6VmGiAH3nw6a9V84a7pGoQkcGWSQYmU9H9lwracnCXU6SHkuhxG/9FVHcQKOKN/ MNb44W8BOXT8dkagwDzGKAYT1YA5iEdZb0aac/nrJihwaM0F7dO4sQbiRyQowFLo 2HFcAeNVo7bSS+fRBYfcpU6pWwWJYqLIDyZdA3nWIHoAIFuB3fg2EkKPIWFHLji9 wu0NtznYavg5rPz3J5maLLMgaQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGKdb3Sh RCRelW3jKCRiMXAtLqy/MB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMkU3NjdFMzI4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvRUE3NTU0QUM4 MkQwMTFFQThCQ0NDQTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAD+MAQMEAD+MAgMEAD+MDDANBgkqhkiG9w0BAQsFAAOC AQEAPXa92oWK2Ydrxq0gznYUP7S41T2k6lzkDYxe/McF0gfs7w9r+lY1AftL8bNz hjU6nu2jcSa7BgZ8su+6mCz83bSQO5qpDnBzX1E52PLf8CItOAQZ8Kd/T8c1bbqS 1Ms/wuuCyrVUrlmcPSlTFeSsSxEmcaaRb33iScOThKg37uB5pDQyUXSkp76+FCWh RI1qBToSql+14h+ir6tJg+KmSULM0eB7UCiFIeqwxZXKORhVnlP3lKLOx/8Ey0yx 80Wrh8g1iIvz1B5Kwpq1auHmqjcVAav1WLywg8UwkaCTBxOhd3L2dWdMPykhx8KF Sclbd8fZdln3HgBbl7CVdCsvyA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:41 2024 by rpki-client on console-fra.rpki-client.org