$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/C7821E3038E311EF94CEFA33C4F9AE02.roa File: C7821E3038E311EF94CEFA33C4F9AE02.roa (raw, json) Hash identifier: CYRhwTR2JfGYLXjzwYpN6txEE5fhtvaH0LDwpY9BCRI= Subject key identifier: EA:8D:04:BC:D0:0F:C5:A1:31:A3:F4:84:71:07:8A:B3:A6:10:5A:88 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: 02 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/C7821E3038E311EF94CEFA33C4F9AE02.roa Signing time: Wed 03 Jul 2024 02:27:23 +0000 ROA not before: Wed 03 Jul 2024 02:27:23 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 1221 IP address blocks: 192.135.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Jul 3 02:27:23 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6684b70b-71df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:50:e4:a8:4c:c1:9e:fa:3b:11:f6:8f:b3:15: 72:0b:19:97:95:15:e2:f9:99:e0:de:b9:e7:55:ce: 4b:b2:4a:f7:6f:aa:b2:93:e0:6e:c9:92:76:ba:06: 2f:cc:a4:02:26:e3:41:f2:08:eb:70:ff:70:de:a4: 98:dc:17:03:60:94:53:82:c7:43:9c:de:6a:3e:46: 88:f1:fc:22:6e:a9:69:e8:e9:6e:de:09:b2:8e:68: ef:3f:5c:d7:04:7d:3e:12:31:d4:18:68:07:db:fd: ae:37:bd:45:af:a0:e2:5a:06:67:2a:fa:08:4c:c8: 0c:53:72:17:6c:82:2d:94:5f:61:64:60:84:ff:b2: a6:64:c7:c6:80:06:81:08:00:80:00:e7:2f:8e:33: ae:62:e0:3d:3b:42:c9:a9:eb:1b:92:54:51:4f:e4: b6:8c:c2:0a:c9:b7:0c:15:55:74:78:07:b5:af:bc: fd:60:94:36:16:c9:68:41:9d:3f:57:60:b3:d6:98: 3e:e9:cd:4e:d8:b2:fc:5a:69:95:2e:3c:d9:a8:69: 5f:df:61:88:38:1e:da:26:b4:fc:f7:f5:3b:d9:2d: 69:7c:e0:45:ae:63:48:ad:ea:09:dc:ff:8f:14:c7: 9b:4f:f0:f1:e8:29:bc:75:fa:43:3c:c4:d8:92:7e: 97:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8D:04:BC:D0:0F:C5:A1:31:A3:F4:84:71:07:8A:B3:A6:10:5A:88 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/C7821E3038E311EF94CEFA33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.135.208.0/24 Signature Algorithm: sha256WithRSAEncryption 14:59:90:14:cb:65:75:51:67:da:d9:82:f2:5b:7b:eb:fa:49: c4:98:8e:81:c5:31:51:a8:19:c3:65:ed:7c:5f:f4:73:52:02: 8b:db:85:94:dc:96:0f:dd:82:19:26:dc:92:92:08:1e:5b:e1: 40:c2:6b:3a:6e:81:05:05:17:b5:b6:74:a2:c9:1d:c2:27:87: 70:0e:79:fb:35:f7:14:50:0e:b7:f3:72:42:f8:0f:cc:13:fb: fa:2b:41:eb:9a:10:1a:84:b8:a5:74:78:fc:25:90:6a:13:ca: ac:78:3c:c7:8f:62:92:e7:bc:d1:7d:f6:d8:08:14:27:48:6a: 51:50:15:bb:56:e0:b2:0e:42:7b:b0:df:b7:19:60:df:4e:b4: ea:18:ea:de:98:24:20:78:e2:ba:4d:8c:b2:6c:04:2a:36:a2: 18:1c:05:7a:4c:de:94:e0:45:49:5b:db:f3:a0:b0:e6:0b:a7: cf:7c:6c:12:1c:98:0d:78:1a:3c:b7:cf:8e:1f:c0:d8:4c:b1: 34:6d:64:6b:95:57:a5:d9:3f:4f:ba:e1:35:2a:25:ad:39:16: de:f7:b2:df:1d:c4:3a:d2:c1:6e:1b:ba:f1:06:d7:a6:c9:d9: e0:20:04:cd:11:27:db:a2:fd:07:50:8d:a9:ea:67:50:81:34: ee:fa:8c:22 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 ODQyNDExMC8GA1UEBRMoNzRBMTE2NjlDNDNFNTNCMEYyMUQ0QjQxM0Y5MkQ5RUE5 MTMxNTUwMzAeFw0yNDA3MDMwMjI3MjNaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODRiNzBiLTcxZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0UOSoTMGe+jsR9o+zFXILGZeVFeL5meDeuedVzkuySvdvqrKT4G7Jkna6Bi/M pAIm40HyCOtw/3DepJjcFwNglFOCx0Oc3mo+Rojx/CJuqWno6W7eCbKOaO8/XNcE fT4SMdQYaAfb/a43vUWvoOJaBmcq+ghMyAxTchdsgi2UX2FkYIT/sqZkx8aABoEI AIAA5y+OM65i4D07Qsmp6xuSVFFP5LaMwgrJtwwVVXR4B7WvvP1glDYWyWhBnT9X YLPWmD7pzU7YsvxaaZUuPNmoaV/fYYg4HtomtPz39TvZLWl84EWuY0it6gnc/48U x5tP8PHoKbx1+kM8xNiSfpcXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6o0EvNAP xaExo/SEcQeKs6YQWogwHwYDVR0jBBgwFoAUdKEWacQ+U7DyHUtBP5LZ6pExVQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4NDI0Lzc5M0VBNkRBMzhF MzExRUY5MTRCMkYzM0M0RjlBRTAyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEtFV2FjUS1VN0R5SFV0QlA1TFo2cEV4VlFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQyNC83OTNFQTZEQTM4RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9DNzgyMUUzMDM4 RTMxMUVGOTRDRUZBMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMCH0DANBgkqhkiG9w0BAQsFAAOCAQEAFFmQFMtldVFn2tmC 8lt76/pJxJiOgcUxUagZw2XtfF/0c1ICi9uFlNyWD92CGSbckpIIHlvhQMJrOm6B BQUXtbZ0oskdwieHcA55+zX3FFAOt/NyQvgPzBP7+itB65oQGoS4pXR4/CWQahPK rHg8x49ikue80X322AgUJ0hqUVAVu1bgsg5Ce7Dftxlg30606hjq3pgkIHjiuk2M smwEKjaiGBwFekzelOBFSVvb86Cw5gunz3xsEhyYDXgaPLfPjh/A2EyxNG1ka5VX pdk/T7rhNSolrTkW3vey3x3EOtLBbhu68QbXpsnZ4CAEzREn26L9B1CNqepnUIE0 7vqMIg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org