$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa File: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (raw, json) Hash identifier: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y= Subject key identifier: AB:18:C2:6B:5B:1B:B0:1E:C0:FE:67:89:05:EA:16:47:19:C9:31:E9 Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 014E Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa Signing time: Tue 19 Nov 2024 03:06:55 +0000 ROA not before: Tue 19 Nov 2024 03:06:55 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 19905 IP address blocks: 119.15.0.0/22 maxlen: 24 119.15.4.0/22 maxlen: 24 119.15.8.0/24 maxlen: 24 119.15.9.0/24 maxlen: 24 119.15.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7 Validity Not Before: Nov 19 03:06:55 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673c00cf-0ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4e:7d:f3:29:a4:41:ba:52:00:00:9b:05:39: ac:92:4a:87:0a:18:8e:c2:15:30:c8:79:f4:c1:ba: 0c:a7:d4:d1:55:19:7a:18:ee:67:c7:40:52:71:fe: 98:cf:44:69:e3:b4:1c:a2:c1:97:cf:87:c0:02:a7: 47:f2:f8:f6:b0:65:a5:c3:c0:f1:af:a7:73:f8:fc: 44:0a:bd:25:99:03:42:6a:bf:74:e6:38:e5:93:e0: 5f:e7:86:dd:cf:e2:92:15:ff:fe:d0:f0:bb:f9:2d: 21:8c:59:a6:97:bf:4a:fe:15:fa:93:e7:b7:cc:01: 23:5d:2c:d5:4e:11:16:3b:a0:9a:75:3a:25:35:4d: c7:5b:4b:4e:b1:53:19:52:31:39:21:95:f5:4b:99: 3e:4a:c4:79:c5:99:ed:40:ed:15:94:d4:5a:2e:20: e6:fb:dc:5b:7f:f3:7b:2b:d8:d5:20:b9:6e:f2:65: 66:11:01:09:10:db:69:ad:db:86:d2:63:1a:71:cd: 76:8f:76:60:c9:56:ad:68:a4:bf:3f:ec:e9:dd:42: 7b:8d:6c:04:07:89:6d:3a:62:12:19:44:b3:c8:ea: db:ac:4b:52:41:d9:6c:be:23:54:e1:4c:92:81:7b: 5b:9b:ed:1e:e1:71:a5:b1:84:72:54:1a:a6:36:87: 83:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:18:C2:6B:5B:1B:B0:1E:C0:FE:67:89:05:EA:16:47:19:C9:31:E9 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.0.0-119.15.9.255 119.15.13.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:b5:8e:6a:0f:f4:4d:ba:ef:e5:0d:bd:64:95:a5:76:d5:7b: de:c0:48:3a:a3:9e:33:9d:11:54:10:17:88:b9:91:cb:50:08: cc:56:71:a9:8d:a6:9d:02:f8:99:2a:62:cb:5f:4d:1b:d8:c8: c3:0f:80:f9:b0:d5:9d:e6:a5:50:24:40:4f:8f:cb:4b:55:7f: 34:ae:b0:64:5a:e0:d8:0c:8d:32:3c:5b:1d:f0:38:dc:31:ea: 76:3f:a1:04:7f:43:f9:17:67:46:aa:77:02:39:54:8e:32:79: 40:65:a3:4d:68:b8:93:be:94:ae:56:5e:19:b2:78:3c:46:03: 3e:de:95:3c:4e:3c:38:1d:d8:4c:d6:ad:68:d9:d4:6e:6e:23: 79:2f:76:41:d8:8f:4d:ee:03:bb:45:94:14:4f:65:c2:09:30: d9:0b:32:5c:40:a7:43:ed:c1:54:4e:6f:34:07:5e:df:bb:85: ea:04:28:ce:fb:60:d1:ba:7c:94:ff:5f:ad:d1:73:a6:ba:de: ee:05:f3:a3:53:3f:47:55:f8:bb:ce:34:01:ae:d4:b7:6d:dd: c4:8c:17:9c:86:a4:b3:95:cb:f4:4c:1c:f7:84:55:e2:8a:9c: 08:97:21:db:22:df:e7:c3:12:81:89:0b:76:9d:3d:96:8b:d8: 86:2a:1b:12 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjQxMTE5MDMwNjU1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNjMDBjZi0wZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6k598ymkQbpSAACbBTmskkqHChiOwhUwyHn0wboMp9TRVRl6GO5nx0BScf6Y z0Rp47QcosGXz4fAAqdH8vj2sGWlw8Dxr6dz+PxECr0lmQNCar905jjlk+Bf54bd z+KSFf/+0PC7+S0hjFmml79K/hX6k+e3zAEjXSzVThEWO6CadTolNU3HW0tOsVMZ UjE5IZX1S5k+SsR5xZntQO0VlNRaLiDm+9xbf/N7K9jVILlu8mVmEQEJENtprduG 0mMacc12j3ZgyVataKS/P+zp3UJ7jWwEB4ltOmISGUSzyOrbrEtSQdlsviNU4UyS gXtbm+0e4XGlsYRyVBqmNoeDbQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKsYwmtb G7AewP5niQXqFkcZyTHpMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY0QTcvQzgwNTVGRDZDOTI1MTFFRDgwOTM2MTQ5QzRGOUFFMDIvQjM0RDFBMjZG NkM4MTFFRUJDNEJFMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMwCwMDAHcPAwQBdw8IAwQAdw8NMA0GCSqGSIb3DQEBCwUAA4IB AQAftY5qD/RNuu/lDb1klaV21XvewEg6o54znRFUEBeIuZHLUAjMVnGpjaadAviZ KmLLX00b2MjDD4D5sNWd5qVQJEBPj8tLVX80rrBkWuDYDI0yPFsd8DjcMep2P6EE f0P5F2dGqncCOVSOMnlAZaNNaLiTvpSuVl4Zsng8RgM+3pU8Tjw4HdhM1q1o2dRu biN5L3ZB2I9N7gO7RZQUT2XCCTDZCzJcQKdD7cFUTm80B17fu4XqBCjO+2DRunyU /1+t0XOmut7uBfOjUz9HVfi7zjQBrtS3bd3EjBechqSzlcv0TBz3hFXiipwIlyHb It/nwxKBiQt2nT2Wi9iGKhsS -----END CERTIFICATE-----Generated at Sun Feb 16 15:33:20 2025 by rpki-client