$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/37F43E66A27311EFA8731822C4F9AE02.roa File: 37F43E66A27311EFA8731822C4F9AE02.roa (raw, json) Hash identifier: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw= Subject key identifier: 0C:52:C5:00:B2:5A:8E:16:C1:D7:93:14:09:68:D6:99:63:92:75:6C Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0525 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/37F43E66A27311EFA8731822C4F9AE02.roa Signing time: Thu 14 Nov 2024 10:28:42 +0000 ROA not before: Thu 14 Nov 2024 10:28:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 104.161.192.0/20 maxlen: 24 104.161.208.0/20 maxlen: 24 161.32.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Nov 14 10:28:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6735d0d9-dd03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:af:ef:19:5d:4a:9f:f4:98:08:f7:7f:ac:2d: 86:a6:59:cc:8b:52:ed:1f:6d:93:40:b9:e2:df:f8: 78:34:aa:c7:e8:a9:2d:1a:5f:43:67:2d:01:2e:eb: f3:57:85:62:8b:86:55:77:57:e6:36:55:8c:de:97: 5b:d3:19:1c:78:90:b2:51:b4:80:09:b5:ae:61:fd: 3d:cf:95:90:44:bb:29:3d:03:6d:92:15:06:a6:b0: ae:fd:fd:8e:be:7a:cf:db:ea:c5:71:8f:18:c4:d5: 58:d5:cf:83:c2:46:33:21:15:57:4a:2f:ad:c1:04: c1:bb:1f:8b:8f:41:10:28:18:2d:ca:c8:5b:c5:bc: f6:fd:93:37:06:df:26:b2:41:6a:c1:6b:09:8d:3c: c4:f5:45:51:b1:b0:e0:fc:23:0e:1f:28:c3:2a:b7: 2a:d9:39:09:50:9a:ed:f5:46:81:bd:3e:11:37:14: 44:1c:95:d9:95:2d:f4:f9:3e:bf:90:9c:11:46:71: a0:f9:65:5a:08:cf:71:b1:14:60:b2:50:87:5c:76: 84:e9:8d:75:a1:ce:43:3d:92:75:e9:90:42:28:83: a5:84:05:9a:16:49:63:4d:44:4c:2c:15:cb:a2:c4: 0d:d7:ac:91:a2:13:01:fb:8b:28:96:8d:14:c9:25: e5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:52:C5:00:B2:5A:8E:16:C1:D7:93:14:09:68:D6:99:63:92:75:6C X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/37F43E66A27311EFA8731822C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.161.192.0/19 161.32.64.0/20 Signature Algorithm: sha256WithRSAEncryption 39:33:78:87:74:fe:17:ba:d5:47:87:80:90:49:ca:64:64:62: 89:4a:76:80:4b:10:08:a5:82:65:f4:e7:9e:cd:17:fe:0f:59: 0b:2d:fd:7b:ea:4d:b1:17:78:8c:14:cd:3e:97:81:42:9c:55: 7c:e3:54:be:2c:1b:51:66:df:f3:55:ab:5e:2f:b1:a7:9b:54: f8:39:ce:c2:ea:31:93:1e:35:88:23:8d:a5:f0:7a:4b:42:13: bd:86:97:da:8f:b6:6e:33:a1:48:d3:0c:72:c5:b3:83:4e:63: aa:1b:68:63:fb:77:c7:4b:86:5a:5b:1f:b6:10:d3:5e:a8:34: 5e:32:fe:c9:9b:f6:79:1c:64:5c:eb:14:cb:4c:d3:6d:fd:82: ea:6a:ba:0f:fc:24:f5:62:55:4e:c6:30:8c:ef:a6:22:51:b9: b2:11:f4:d5:96:51:ad:bf:d5:08:15:6f:41:a4:7b:17:58:2f: 33:72:ed:6a:4f:0a:ad:b9:fe:dd:85:26:f2:9f:a8:3a:9f:9e: f5:56:9d:e4:80:74:1c:0b:52:a6:0a:41:2e:9d:b4:ef:4c:fc: 99:02:2c:e4:7c:f2:13:02:fc:4c:5c:c2:01:68:03:5b:2e:fb: e0:dc:f0:17:83:57:52:28:2b:c9:67:14:a5:f4:9b:56:97:cd: b6:38:56:6d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjQxMTE0MTAyODQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM1ZDBkOS1kZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6/vGV1Kn/SYCPd/rC2GplnMi1LtH22TQLni3/h4NKrH6KktGl9DZy0BLuvz V4Vii4ZVd1fmNlWM3pdb0xkceJCyUbSACbWuYf09z5WQRLspPQNtkhUGprCu/f2O vnrP2+rFcY8YxNVY1c+DwkYzIRVXSi+twQTBux+Lj0EQKBgtyshbxbz2/ZM3Bt8m skFqwWsJjTzE9UVRsbDg/CMOHyjDKrcq2TkJUJrt9UaBvT4RNxREHJXZlS30+T6/ kJwRRnGg+WVaCM9xsRRgslCHXHaE6Y11oc5DPZJ16ZBCKIOlhAWaFkljTURMLBXL osQN16yRohMB+4solo0UySXlVwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAxSxQCy Wo4WwdeTFAlo1pljknVsMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvNENCRkY0QUVERkYxMTFFQjg5NEYzMDY3QzRGOUFFMDIvMzdGNDNFNjZB MjczMTFFRkE4NzMxODIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAVoocADBAShIEAwDQYJKoZIhvcNAQELBQADggEBADkzeId0 /he61UeHgJBJymRkYolKdoBLEAilgmX0557NF/4PWQst/XvqTbEXeIwUzT6XgUKc VXzjVL4sG1Fm3/NVq14vsaebVPg5zsLqMZMeNYgjjaXwektCE72Gl9qPtm4zoUjT DHLFs4NOY6obaGP7d8dLhlpbH7YQ016oNF4y/smb9nkcZFzrFMtM0239gupqug/8 JPViVU7GMIzvpiJRubIR9NWWUa2/1QgVb0GkexdYLzNy7WpPCq25/t2FJvKfqDqf nvVWneSAdBwLUqYKQS6dtO9M/JkCLOR88hMC/ExcwgFoA1su++Dc8BeDV1IoK8ln FKX0m1aXzbY4Vm0= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:29 2024 by rpki-client on console-ams.rpki-client.org