$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/2434E2E24FAD11EDA19F8316C4F9AE02.roa File: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (raw, json) Hash identifier: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE= Subject key identifier: 0C:B7:1F:3C:3D:F2:19:C3:09:15:61:3B:B7:09:58:54:29:75:1B:8C Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 0183 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/2434E2E24FAD11EDA19F8316C4F9AE02.roa Signing time: Fri 25 Oct 2024 02:47:14 +0000 ROA not before: Fri 25 Oct 2024 02:47:14 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 38719 IP address blocks: 65.254.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Oct 25 02:47:14 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b06b2-4698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:47:5e:01:dd:97:3a:0e:6e:9e:39:0f:05:e4: 5e:1b:ec:63:2a:6e:54:31:d9:76:1a:7a:16:58:e9: bb:91:50:5f:c5:d9:ac:e0:a5:b2:d4:c6:2d:d1:ec: 95:a7:96:2e:4a:cf:4e:a0:f9:d7:0b:92:74:75:9d: cd:db:54:05:15:a2:81:8c:ec:da:82:01:8d:2a:66: 79:bd:3e:91:11:8a:ed:43:fc:1e:bf:bf:7f:9c:8d: 8b:ba:3a:61:0e:bb:d0:98:99:70:4d:9e:7b:d9:5b: 4e:56:99:10:73:16:ab:7e:66:22:2e:ce:7f:a3:c8: be:46:aa:48:c2:16:49:a5:19:dd:8c:8a:8b:1d:1b: f8:d0:cb:1a:b3:d4:9d:c3:1e:c8:6d:00:24:1e:37: ac:84:e6:77:ed:86:9b:ed:b6:26:84:c0:31:5a:39: 11:34:8c:b5:cb:40:d3:5e:cd:30:50:df:d7:15:86: 83:e7:cc:f0:95:98:6a:cd:b5:d9:b3:01:f9:aa:6c: a3:ae:51:30:fa:4a:9a:f5:66:76:6c:88:9f:c1:83: 4d:cc:35:47:36:24:00:4f:b6:6a:1a:3b:de:09:74: 06:2a:c6:96:48:7c:5d:92:7d:32:06:54:03:ae:d1: a0:31:b7:18:df:48:fd:d7:ec:1b:b9:f9:92:3c:22: 15:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:B7:1F:3C:3D:F2:19:C3:09:15:61:3B:B7:09:58:54:29:75:1B:8C X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/2434E2E24FAD11EDA19F8316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 65.254.92.0/22 Signature Algorithm: sha256WithRSAEncryption a1:2d:5c:2b:ee:23:d4:0e:55:91:9b:1f:fd:dd:60:bc:1b:b1: 50:fa:c3:e4:e9:4f:f2:c7:b4:88:44:b3:7f:d3:28:7f:79:1b: 4c:87:47:2b:c4:4f:b3:98:4d:6f:d7:bf:f7:1b:0a:57:8a:27: 2c:81:90:35:06:f2:76:86:29:4f:18:a4:57:0d:76:dc:db:e2: aa:ab:20:42:b4:06:61:f3:35:6a:89:d0:a8:f6:6b:e1:6c:3d: 2c:69:f0:fe:4d:df:12:f2:df:cd:d3:cd:fb:f2:fd:9c:fa:3a: a4:73:e0:87:2b:8d:fc:94:aa:6c:a0:bc:d6:e0:9e:e2:c6:7b: 72:f8:42:a6:8c:73:8a:41:9c:ed:43:b7:60:fd:42:0f:1a:1f: 39:61:70:d7:77:08:10:6c:96:47:90:90:fa:0c:c5:55:32:3b: 79:05:e1:74:b3:18:66:32:ac:73:fe:cc:28:46:3a:bd:41:a3: 25:30:c4:4f:84:20:e3:0b:20:6b:4e:f2:25:1c:29:3a:72:8a: 29:f3:85:16:e8:be:0d:a5:c7:68:1e:8e:4d:89:37:a7:6f:07: 67:52:6f:b1:1b:10:a0:2f:0a:b2:2d:71:ad:4d:f5:92:e2:17: 15:0f:14:55:a2:0a:d4:38:1c:b7:c5:c2:12:79:e0:8c:77:f9: 87:bd:e1:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjQxMDI1MDI0NzE0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMDZiMi00Njk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9kdeAd2XOg5unjkPBeReG+xjKm5UMdl2GnoWWOm7kVBfxdms4KWy1MYt0eyV p5YuSs9OoPnXC5J0dZ3N21QFFaKBjOzaggGNKmZ5vT6REYrtQ/wev79/nI2Lujph DrvQmJlwTZ572VtOVpkQcxarfmYiLs5/o8i+RqpIwhZJpRndjIqLHRv40Msas9Sd wx7IbQAkHjeshOZ37Yab7bYmhMAxWjkRNIy1y0DTXs0wUN/XFYaD58zwlZhqzbXZ swH5qmyjrlEw+kqa9WZ2bIifwYNNzDVHNiQAT7ZqGjveCXQGKsaWSHxdkn0yBlQD rtGgMbcY30j91+wbufmSPCIVMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAy3Hzw9 8hnDCRVhO7cJWFQpdRuMMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc0OEUvNEQ3ODkyNkE0RkE5MTFFREFERTUxNTdDQzRGOUFFMDIvMjQzNEUyRTI0 RkFEMTFFREExOUY4MzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJB/lwwDQYJKoZIhvcNAQELBQADggEBAKEtXCvuI9QOVZGb H/3dYLwbsVD6w+TpT/LHtIhEs3/TKH95G0yHRyvET7OYTW/Xv/cbCleKJyyBkDUG 8naGKU8YpFcNdtzb4qqrIEK0BmHzNWqJ0Kj2a+FsPSxp8P5N3xLy383Tzfvy/Zz6 OqRz4IcrjfyUqmygvNbgnuLGe3L4QqaMc4pBnO1Dt2D9Qg8aHzlhcNd3CBBslkeQ kPoMxVUyO3kF4XSzGGYyrHP+zChGOr1BoyUwxE+EIOMLIGtO8iUcKTpyiinzhRbo vg2lx2gejk2JN6dvB2dSb7EbEKAvCrItca1N9ZLiFxUPFFWiCtQ4HLfFwhJ54Ix3 +Ye94W8= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org