$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/1E7AFF46066811ED8098BF45C4F9AE02.roa File: 1E7AFF46066811ED8098BF45C4F9AE02.roa (raw, json) Hash identifier: HDKfZcZPdG/X8OI7B4ViCixu1TPq6S9evUYdHeDQj+k= Subject key identifier: 8A:5B:1A:DF:9A:3E:8F:BF:D3:10:95:BB:E6:D7:30:3A:B9:90:D0:FE Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 141F Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/1E7AFF46066811ED8098BF45C4F9AE02.roa Signing time: Fri 12 Jul 2024 17:54:51 +0000 ROA not before: Fri 12 Jul 2024 17:54:51 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136907 IP address blocks: 146.174.128.0/18 maxlen: 18 146.174.128.0/20 maxlen: 20 146.174.144.0/20 maxlen: 20 146.174.160.0/20 maxlen: 20 146.174.176.0/20 maxlen: 20 149.232.128.0/19 maxlen: 19 149.232.128.0/20 maxlen: 20 149.232.144.0/20 maxlen: 20 159.138.67.0/24 maxlen: 24 159.138.78.0/24 maxlen: 24 159.138.112.0/21 maxlen: 21 159.138.113.0/24 maxlen: 24 159.138.114.0/24 maxlen: 24 159.138.116.0/24 maxlen: 24 159.138.208.0/21 maxlen: 21 166.108.192.0/18 maxlen: 18 166.108.192.0/20 maxlen: 20 166.108.208.0/20 maxlen: 20 166.108.224.0/20 maxlen: 20 166.108.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Aug 2024 17:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5151 (0x141f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Jul 12 17:54:51 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66916dea-627b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:62:83:15:61:12:b5:b6:9c:8c:de:e2:72: a8:16:51:73:0f:20:79:26:7d:9b:01:40:f3:ea:01: c3:5f:fc:7b:84:0f:a2:e2:90:31:4f:55:80:47:26: d2:57:27:f9:3f:4e:fa:0c:52:8d:27:ef:f5:e1:fc: 2f:f5:74:7c:39:46:4f:a0:c9:83:78:87:d7:30:9b: 4b:aa:5d:81:04:a4:43:5d:82:1d:0e:aa:0b:71:da: 03:bd:16:b0:0e:32:7e:b0:5f:aa:c4:de:65:16:1c: c8:ed:5d:16:f1:15:1e:ba:3d:39:ae:6d:01:74:7f: 85:c2:4c:ef:83:40:37:fb:d9:d0:c7:00:38:0e:f5: 35:fb:ca:06:c4:64:2d:f7:47:55:0d:ea:e0:4a:f8: 57:24:39:c4:4f:64:56:c6:72:e3:b6:a1:41:9c:cf: 34:44:ee:58:e7:5d:1b:d5:d1:bd:61:dc:02:7b:02: ac:57:e1:be:f1:8c:5b:04:0a:19:4f:46:a1:1c:c3: 01:e4:58:83:89:49:2e:42:70:bf:08:a1:2c:ff:f6: 8a:a5:56:81:24:be:dc:cd:dc:f3:3a:11:f5:56:0e: bd:3b:b1:b0:f0:d5:e1:44:61:78:43:94:e0:df:eb: 15:32:10:4d:5e:b3:ad:2a:05:01:32:c4:6c:85:7d: c3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:5B:1A:DF:9A:3E:8F:BF:D3:10:95:BB:E6:D7:30:3A:B9:90:D0:FE X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/1E7AFF46066811ED8098BF45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.174.128.0/18 149.232.128.0/19 159.138.67.0/24 159.138.78.0/24 159.138.112.0/21 159.138.208.0/21 166.108.192.0/18 Signature Algorithm: sha256WithRSAEncryption 7f:0b:71:74:7c:06:ea:74:2c:d7:ab:89:52:2b:e6:aa:1d:0a: e1:8d:b4:04:85:dc:9f:0c:30:80:7c:a0:c2:a4:7c:e7:dc:f8: 93:4e:0b:45:c4:f1:e5:55:18:c3:6a:90:eb:3a:b9:74:07:f7: c3:e8:f5:34:88:11:bb:e7:15:8b:91:b7:c2:98:81:81:8d:70: 8d:3e:83:d4:85:fc:d6:7f:68:aa:71:8a:40:25:52:7e:a9:17: 95:45:a5:41:ac:80:b1:8a:3e:0f:b9:58:f7:c2:5a:7f:fd:a4: b2:35:bd:1a:fc:63:58:a4:a0:3c:0a:4d:06:69:08:42:4a:e4: fd:27:19:0d:c2:55:d6:c5:44:0b:ab:52:35:c4:8c:db:4a:7e: a9:ca:6f:ca:c9:7b:ad:07:94:89:8a:22:91:7a:14:5e:05:9d: 3e:05:b2:08:20:00:9e:a6:3b:f6:f8:20:f1:67:a5:9e:65:22: 2b:53:88:db:4f:a5:ac:f4:df:2a:d8:c1:03:76:57:10:7e:c0: 6e:39:08:1f:87:5b:dd:cb:f3:9b:1a:2a:2e:a1:4b:07:6e:60: b7:49:74:01:fe:db:91:ce:df:0a:c8:2f:0c:90:40:fd:16:a0: b0:7b:49:d5:63:5c:fc:e4:2b:e6:ef:2b:72:95:d3:5e:6b:5c: 89:ba:de:bf -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICFB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjQwNzEyMTc1NDUxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxNmRlYS02MjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0pigxVhErW2nIze4nKoFlFzDyB5Jn2bAUDz6gHDX/x7hA+i4pAxT1WARybS Vyf5P076DFKNJ+/14fwv9XR8OUZPoMmDeIfXMJtLql2BBKRDXYIdDqoLcdoDvRaw DjJ+sF+qxN5lFhzI7V0W8RUeuj05rm0BdH+Fwkzvg0A3+9nQxwA4DvU1+8oGxGQt 90dVDergSvhXJDnET2RWxnLjtqFBnM80RO5Y510b1dG9YdwCewKsV+G+8YxbBAoZ T0ahHMMB5FiDiUkuQnC/CKEs//aKpVaBJL7czdzzOhH1Vg69O7Gw8NXhRGF4Q5Tg 3+sVMhBNXrOtKgUBMsRshX3DsQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFIpbGt+a Po+/0xCVu+bXMDq5kND+MB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNjk3RTM1NkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvMUU3QUZGNDYw NjY4MTFFRDgwOThCRjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAaSroADBAWV6IADBACfikMDBACfik4DBAOfinADBAOfitAD BAambMAwDQYJKoZIhvcNAQELBQADggEBAH8LcXR8Bup0LNeriVIr5qodCuGNtASF 3J8MMIB8oMKkfOfc+JNOC0XE8eVVGMNqkOs6uXQH98Po9TSIEbvnFYuRt8KYgYGN cI0+g9SF/NZ/aKpxikAlUn6pF5VFpUGsgLGKPg+5WPfCWn/9pLI1vRr8Y1ikoDwK TQZpCEJK5P0nGQ3CVdbFRAurUjXEjNtKfqnKb8rJe60HlImKIpF6FF4FnT4Fsggg AJ6mO/b4IPFnpZ5lIitTiNtPpaz03yrYwQN2VxB+wG45CB+HW93L85saKi6hSwdu YLdJdAH+25HO3wrILwyQQP0WoLB7SdVjXPzkK+bvK3KV015rXIm63r8= -----END CERTIFICATE-----Generated at Fri Jul 26 19:30:41 2024 by rpki-client on console-fra.rpki-client.org