$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/73DC26744B0611EF8698EB13C4F9AE02.roa File: 73DC26744B0611EF8698EB13C4F9AE02.roa (raw, json) Hash identifier: ybrtkQR3uxqIC7ty9/ANRKrx+CuUtT0biIda1i5SZAg= Subject key identifier: 04:0A:63:25:16:BF:48:36:42:F9:51:96:77:4B:36:5C:0B:A4:B2:9F Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0A16 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/73DC26744B0611EF8698EB13C4F9AE02.roa Signing time: Wed 06 Nov 2024 20:09:55 +0000 ROA not before: Wed 06 Nov 2024 20:09:55 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 8987 IP address blocks: 27.124.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Nov 6 20:09:55 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bcd13-f000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:24:9e:d6:8b:47:2f:48:1c:6f:62:25:45:c9: 56:42:24:8c:8b:25:9e:1e:7e:e7:40:0a:32:56:de: fa:2d:64:54:98:b5:a9:43:94:f6:de:fe:59:4e:9a: 06:85:30:2d:71:02:06:af:9a:ad:39:60:76:d7:bb: bd:41:4a:82:ba:ca:a6:17:3c:b0:39:fb:22:3e:9d: 82:dc:dd:f4:04:e4:3e:58:70:76:50:94:7f:a2:94: 11:9d:ea:98:09:d1:0f:5f:e6:c7:d5:15:ed:c3:96: cc:50:56:76:ff:30:2d:4c:03:eb:03:ba:e6:7b:5c: 97:84:c7:35:7f:df:6c:bf:f8:14:01:63:9c:0a:30: 7b:f6:1d:ed:4c:10:5b:4a:27:1c:8e:d5:e2:68:cc: f8:ac:12:be:ae:5d:2d:56:db:a7:b2:29:f9:55:d4: f8:2f:9b:06:9f:62:c1:57:70:8f:5e:d1:a6:94:e3: ae:05:40:b1:cf:b2:7b:49:fa:55:7b:ab:95:59:b1: da:e2:4b:bd:0f:be:11:d5:33:e3:4e:db:3e:cf:02: 75:1f:99:3e:11:5d:33:5b:43:a9:dd:65:04:90:41: 52:77:16:d4:8b:73:0e:bf:fd:6e:65:64:a1:07:a3: d7:06:09:1f:ae:b2:f8:92:5d:82:8d:35:bc:ec:57: 98:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:0A:63:25:16:BF:48:36:42:F9:51:96:77:4B:36:5C:0B:A4:B2:9F X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/73DC26744B0611EF8698EB13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.124.61.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:c5:82:4b:81:ec:1b:59:f9:99:6a:36:d2:c8:a2:40:22:5a: 57:2c:5e:00:68:94:e9:04:99:8e:2c:14:66:8b:d2:ae:01:5f: dc:38:e0:fa:a3:ba:57:cb:96:f1:c3:60:17:07:9f:b1:6e:1a: 72:4f:a0:b5:15:d5:2a:d2:e8:02:3f:18:61:4e:4a:a4:97:5b: 0f:f7:f3:57:a3:4e:79:61:61:8e:bb:0d:2d:3d:2b:3e:dd:54: 39:fd:bb:44:35:7c:00:6d:62:e8:73:d0:3f:7e:12:61:d3:56: e5:74:77:63:c3:b4:ee:d6:39:62:56:09:1b:76:0b:76:79:62: 9c:04:77:c0:52:0c:ca:72:c8:fe:e2:57:56:47:f3:c3:96:4e: 1b:cb:c6:c5:5a:d3:88:57:9d:f1:5c:fa:2e:fb:2c:73:b2:4c: fa:86:ff:20:8c:7b:12:ef:f7:f5:a0:ee:76:63:bc:f2:4d:7a: 45:40:61:aa:bf:3f:50:05:a9:3f:0f:00:75:de:b3:38:c2:cf: 80:82:59:51:f9:9b:dc:28:65:b8:7d:22:51:d3:d9:f4:eb:7f: 86:5c:2d:c0:f8:0a:55:8f:df:d2:1b:91:1c:20:f7:43:88:0b: 30:ad:0e:aa:bb:4b:86:23:1e:7e:9f:66:b6:5a:d1:ef:b5:e9: 24:df:27:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjQxMTA2MjAwOTU1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiY2QxMy1mMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxySe1otHL0gcb2IlRclWQiSMiyWeHn7nQAoyVt76LWRUmLWpQ5T23v5ZTpoG hTAtcQIGr5qtOWB217u9QUqCusqmFzywOfsiPp2C3N30BOQ+WHB2UJR/opQRneqY CdEPX+bH1RXtw5bMUFZ2/zAtTAPrA7rme1yXhMc1f99sv/gUAWOcCjB79h3tTBBb SiccjtXiaMz4rBK+rl0tVtunsin5VdT4L5sGn2LBV3CPXtGmlOOuBUCxz7J7SfpV e6uVWbHa4ku9D74R1TPjTts+zwJ1H5k+EV0zW0Op3WUEkEFSdxbUi3MOv/1uZWSh B6PXBgkfrrL4kl2CjTW87FeYlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAQKYyUW v0g2QvlRlndLNlwLpLKfMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMEJCRDlFQTI4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvNzNEQzI2NzQ0 QjA2MTFFRjg2OThFQjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbfD0wDQYJKoZIhvcNAQELBQADggEBAIrFgkuB7BtZ+Zlq NtLIokAiWlcsXgBolOkEmY4sFGaL0q4BX9w44PqjulfLlvHDYBcHn7FuGnJPoLUV 1SrS6AI/GGFOSqSXWw/381ejTnlhYY67DS09Kz7dVDn9u0Q1fABtYuhz0D9+EmHT VuV0d2PDtO7WOWJWCRt2C3Z5YpwEd8BSDMpyyP7iV1ZH88OWThvLxsVa04hXnfFc +i77LHOyTPqG/yCMexLv9/Wg7nZjvPJNekVAYaq/P1AFqT8PAHXeszjCz4CCWVH5 m9woZbh9IlHT2fTrf4ZcLcD4ClWP39IbkRwg90OICzCtDqq7S4YjHn6fZrZa0e+1 6STfJ1Y= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:42 2024 by rpki-client on console-fra.rpki-client.org