$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa File: 71685FB25F6411EFB16D4552C4F9AE02.roa (raw, json) Hash identifier: swi4PXSK/F+KN97GlDzhN7O3Kmz0645WUAiVa8gtnyQ= Subject key identifier: DA:F4:FB:67:8B:16:00:EC:C9:3E:73:B0:45:F6:A7:5E:24:FE:7F:61 Certificate issuer: /CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Certificate serial: 30 Authority key identifier: 91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa Signing time: Wed 09 Oct 2024 06:49:45 +0000 ROA not before: Wed 09 Oct 2024 06:49:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 192.206.156.0/24 maxlen: 24 192.206.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 06:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Validity Not Before: Oct 9 06:49:44 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67062788-388c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a7:e9:63:50:37:d1:b5:53:42:62:21:3d:88: 39:48:cb:3e:28:e9:0f:64:31:2a:89:44:6c:b8:ce: 12:2e:7c:e9:ee:d6:2e:44:d5:e1:3f:f4:d9:c8:f1: ba:a0:04:3a:3a:dc:c2:99:ad:ad:67:a5:6e:46:16: a3:3f:22:72:fc:ed:40:58:43:e1:40:18:1f:29:ea: 83:4e:c8:99:a5:d8:23:ca:ca:6c:c1:51:b5:2a:c9: 5c:f8:55:fb:34:42:07:62:47:90:c8:46:19:12:98: 16:c3:3f:1f:a0:4a:fe:a4:8f:d3:84:76:eb:56:87: b6:1a:18:07:95:da:7a:a6:a6:c1:5b:8b:e2:26:7e: 53:53:ae:d1:4c:ed:84:13:e6:5c:5b:3c:2a:64:73: e5:d4:e4:50:f5:44:f5:63:d1:3a:e0:a7:ed:c9:de: cd:bd:e5:98:dd:ea:fe:42:dc:a2:3c:9f:c5:e3:ea: 51:ff:05:60:3c:15:c8:c8:47:7c:30:1a:8d:85:bc: 5a:cb:38:7c:f7:9f:1d:d3:84:ab:3d:87:66:a2:7a: ba:ef:a7:c2:ac:3a:54:48:fa:b2:02:5c:81:e7:ca: 5b:28:73:82:c2:05:4a:2e:62:0c:f0:d1:f4:26:85: 7d:33:80:f7:48:75:cf:de:8a:37:42:cf:7c:ad:66: 0a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F4:FB:67:8B:16:00:EC:C9:3E:73:B0:45:F6:A7:5E:24:FE:7F:61 X509v3 Authority Key Identifier: keyid:91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.206.156.0/23 Signature Algorithm: sha256WithRSAEncryption 00:43:49:63:40:3b:3c:6f:49:ff:c2:19:9a:d2:71:35:9a:e2: 41:2b:31:9f:45:89:68:41:3a:e9:ad:c5:59:22:99:dd:8b:70: 90:90:a5:50:c3:5b:7b:3f:b4:93:4c:d8:f1:8e:88:58:f3:85: 00:9c:6d:e9:c3:dc:70:79:a2:23:43:47:0c:da:ad:e7:38:b3: 8d:06:f6:d4:71:ae:28:c6:46:e5:fe:1d:d8:f0:4c:cc:6f:7f: d4:c9:72:e9:22:ad:ae:e6:1d:29:39:1c:c1:a6:e9:1d:a3:3f: 11:0b:a2:f3:7d:ed:0d:10:aa:1c:fb:4f:1c:29:91:19:4a:f4: a2:34:cf:13:36:b1:fb:99:b6:12:82:03:82:12:b2:c8:fb:1f: 3f:59:0f:b8:1b:86:61:6c:5d:ed:15:1c:10:1e:1c:83:35:87: 22:57:6f:dc:a8:10:91:e6:ea:bf:f8:ed:2c:65:5d:b6:9e:25: 05:e5:a2:4a:86:d7:a3:3b:ed:4f:80:c9:df:85:9a:85:dd:d3: 68:88:db:87:b0:59:c1:80:c5:3b:d5:bc:ad:1f:95:5b:61:f8: c5:90:b8:f8:a7:aa:9a:ec:73:a5:d0:6b:9d:37:0d:6d:f4:5e: 78:53:06:62:ab:0e:9f:62:25:ee:ce:92:fe:62:cd:85:83:a9: e0:54:df:06 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoOTFBQTc3ODNGQjAyNzgxOTgzOEM0QTkxQzkxQzYwRDQx RkIzRUVBQjAeFw0yNDEwMDkwNjQ5NDRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyNzg4LTM4OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDep+ljUDfRtVNCYiE9iDlIyz4o6Q9kMSqJRGy4zhIufOnu1i5E1eE/9NnI8bqg BDo63MKZra1npW5GFqM/InL87UBYQ+FAGB8p6oNOyJml2CPKymzBUbUqyVz4Vfs0 QgdiR5DIRhkSmBbDPx+gSv6kj9OEdutWh7YaGAeV2nqmpsFbi+ImflNTrtFM7YQT 5lxbPCpkc+XU5FD1RPVj0Trgp+3J3s295Zjd6v5C3KI8n8Xj6lH/BWA8FcjIR3ww Go2FvFrLOHz3nx3ThKs9h2aierrvp8KsOlRI+rICXIHnylsoc4LCBUouYgzw0fQm hX0zgPdIdc/eijdCz3ytZgopAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2vT7Z4sW AOzJPnOwRfanXiT+f2EwHwYDVR0jBBgwFoAUkap3g/sCeBmDjEqRyRxg1B+z7qsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyL0U1RjQ1QUQwNUY1 NDExRUY4RDE4QkUyM0M0RjlBRTAyL2thcDNnX3NDZUJtRGpFcVJ5UnhnMUItejdx cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2FwM2dfc0NlQm1EakVxUnlSeGcxQi16N3FzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTY3Mi9FNUY0NUFEMDVGNTQxMUVGOEQxOEJFMjNDNEY5QUUwMi83MTY4NUZCMjVG NjQxMUVGQjE2RDQ1NTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcDOnDANBgkqhkiG9w0BAQsFAAOCAQEAAENJY0A7PG9J/8IZ mtJxNZriQSsxn0WJaEE66a3FWSKZ3YtwkJClUMNbez+0k0zY8Y6IWPOFAJxt6cPc cHmiI0NHDNqt5zizjQb21HGuKMZG5f4d2PBMzG9/1Mly6SKtruYdKTkcwabpHaM/ EQui833tDRCqHPtPHCmRGUr0ojTPEzax+5m2EoIDghKyyPsfP1kPuBuGYWxd7RUc EB4cgzWHIldv3KgQkebqv/jtLGVdtp4lBeWiSobXozvtT4DJ34Wahd3TaIjbh7BZ wYDFO9W8rR+VW2H4xZC4+KeqmuxzpdBrnTcNbfReeFMGYqsOn2Il7s6S/mLNhYOp 4FTfBg== -----END CERTIFICATE-----Generated at Mon Oct 21 07:54:13 2024 by rpki-client on console-ams.rpki-client.org