$ rpki-client -vvf rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa File: 7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa (raw, json) Hash identifier: Rq0/wPDZoxUWm9Ix/asVsIswJip/Stkn47tVY0gOTrA= Subject key identifier: E8:23:33:4A:E5:C3:54:CE:4B:55:E8:69:9B:8D:C3:14:C1:13:52:1C Certificate issuer: /CN=A91883D3/serialNumber=EB3C8F24BBADC94134871D6E5FD0B7C58B49D3C9 Certificate serial: 04 Authority key identifier: EB:3C:8F:24:BB:AD:C9:41:34:87:1D:6E:5F:D0:B7:C5:8B:49:D3:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa Signing time: Tue 20 Aug 2024 21:02:23 +0000 ROA not before: Tue 20 Aug 2024 21:02:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 14618 IP address blocks: 64.251.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.crl rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91883D3/serialNumber=EB3C8F24BBADC94134871D6E5FD0B7C58B49D3C9 Validity Not Before: Aug 20 21:02:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66c5045e-9a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:31:8e:b2:e0:5b:fd:08:73:0a:cd:0e:72: 4f:36:cd:03:4a:34:73:55:f0:42:18:da:36:1d:da: 4e:ea:7f:e5:8e:3d:e2:2b:3c:a3:97:3f:d4:ef:d8: e3:65:8a:4a:f4:fc:d6:55:c9:92:62:10:17:60:c6: 8a:52:f5:9a:bc:a6:4f:5d:8b:f3:9f:04:cc:6d:2e: 64:a7:70:a0:28:0f:0c:0a:fd:27:ac:8d:de:c3:61: d9:3e:bf:a7:14:d0:d2:56:2e:55:99:6a:4a:68:43: ac:6c:22:29:ef:58:0f:02:b4:70:ed:75:21:e3:1a: 81:9f:92:f4:42:d8:8b:a4:ed:22:60:96:04:21:61: 82:95:ef:12:86:85:21:97:cf:d8:10:e0:6e:d1:a4: 8c:4f:03:32:6d:3b:70:23:fc:03:52:fb:b0:a5:db: 13:e4:6b:69:4b:d0:ad:42:a7:e9:20:51:17:e9:b0: fa:06:82:a8:c9:97:99:fc:fc:48:01:84:39:a0:58: 47:a8:fd:56:b0:cc:f5:9f:be:8e:45:6b:42:1b:d9: b5:2d:0f:18:f3:a3:c9:2c:c3:a9:11:3e:df:eb:c0: fc:d6:23:3e:49:cb:c9:df:f7:c2:40:97:b8:9e:9f: d3:53:89:9e:55:84:3d:10:ab:70:0c:d8:8a:f5:a7: b7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:23:33:4A:E5:C3:54:CE:4B:55:E8:69:9B:8D:C3:14:C1:13:52:1C X509v3 Authority Key Identifier: keyid:EB:3C:8F:24:BB:AD:C9:41:34:87:1D:6E:5F:D0:B7:C5:8B:49:D3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/7ECAB97A5F3711EFA2A15F6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.251.192.0/21 Signature Algorithm: sha256WithRSAEncryption 14:db:00:1f:7c:b9:a8:66:2b:28:17:43:21:da:6c:58:94:4c: 27:7f:d1:39:a1:00:86:07:3b:da:5c:05:9c:fb:f4:6b:66:da: 7a:b1:c4:97:ab:bc:ed:94:7d:fa:30:0a:02:4b:d4:8a:99:65: 10:ba:dd:f6:5d:64:80:6f:ea:cc:23:29:08:0b:44:27:57:8f: e2:73:f7:76:39:cc:c7:0f:2d:e2:41:02:91:bc:1c:d4:41:8c: ef:a0:1b:a6:83:df:65:42:ec:cf:a4:34:88:b7:9c:db:f4:a2: 64:5e:b1:97:7a:22:19:2b:b5:41:31:86:e3:b4:63:35:f0:32: 31:07:7c:37:f9:03:d9:fe:43:31:42:37:41:71:da:68:93:30: a1:1f:b8:a6:20:ad:d5:64:6b:66:37:38:b2:9f:81:c8:14:10: 43:52:a3:7f:d1:a0:bb:6f:7d:87:d6:c1:22:2d:de:d8:94:f0: 41:1b:99:18:45:56:37:3f:b9:e8:eb:13:08:ad:7a:80:36:02: e5:cc:f3:39:82:20:aa:02:a5:77:1b:87:8a:3d:72:74:cf:ee: 7b:db:78:7e:80:42:20:41:ec:4d:d6:3d:96:1a:66:10:04:12: e8:ab:a7:03:24:d4:16:f4:93:18:e7:83:f0:fc:6a:f3:f0:d5: 82:20:d2:7b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 ODNEMzExMC8GA1UEBRMoRUIzQzhGMjRCQkFEQzk0MTM0ODcxRDZFNUZEMEI3QzU4 QjQ5RDNDOTAeFw0yNDA4MjAyMTAyMjNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzUwNDVlLTlhMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0TjGOsuBb/QhzCs0Ock82zQNKNHNV8EIY2jYd2k7qf+WOPeIrPKOXP9Tv2ONl ikr0/NZVyZJiEBdgxopS9Zq8pk9di/OfBMxtLmSncKAoDwwK/Sesjd7DYdk+v6cU 0NJWLlWZakpoQ6xsIinvWA8CtHDtdSHjGoGfkvRC2Iuk7SJglgQhYYKV7xKGhSGX z9gQ4G7RpIxPAzJtO3Aj/ANS+7Cl2xPka2lL0K1Cp+kgURfpsPoGgqjJl5n8/EgB hDmgWEeo/VawzPWfvo5Fa0Ib2bUtDxjzo8ksw6kRPt/rwPzWIz5Jy8nf98JAl7ie n9NTiZ5VhD0Qq3AM2Ir1p7dvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6CMzSuXD VM5LVehpm43DFMETUhwwHwYDVR0jBBgwFoAU6zyPJLutyUE0hx1uX9C3xYtJ08kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4M0QzLzhEMDNFRjM2NUUz NjExRUZBQzkyRDMxNEM0RjlBRTAyLzZ6eVBKTHV0eVVFMGh4MXVYOUMzeFl0SjA4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNnp5UEpMdXR5VUUwaHgxdVg5QzN4WXRKMDhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODNEMy84RDAzRUYzNjVFMzYxMUVGQUM5MkQzMTRDNEY5QUUwMi83RUNBQjk3QTVG MzcxMUVGQTJBMTVGNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA0D7wDANBgkqhkiG9w0BAQsFAAOCAQEAFNsAH3y5qGYrKBdD IdpsWJRMJ3/ROaEAhgc72lwFnPv0a2baerHEl6u87ZR9+jAKAkvUipllELrd9l1k gG/qzCMpCAtEJ1eP4nP3djnMxw8t4kECkbwc1EGM76AbpoPfZULsz6Q0iLec2/Si ZF6xl3oiGSu1QTGG47RjNfAyMQd8N/kD2f5DMUI3QXHaaJMwoR+4piCt1WRrZjc4 sp+ByBQQQ1Kjf9Ggu299h9bBIi3e2JTwQRuZGEVWNz+56OsTCK16gDYC5czzOYIg qgKldxuHij1ydM/ue9t4foBCIEHsTdY9lhpmEAQS6KunAyTUFvSTGOeD8Pxq8/DV giDSew== -----END CERTIFICATE-----Generated at Mon Oct 21 06:55:35 2024 by rpki-client on console-fra.rpki-client.org