$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/73DC26744B0611EF8698EB13C4F9AE02.roa File: 73DC26744B0611EF8698EB13C4F9AE02.roa (raw, json) Hash identifier: q2qiG5I1h48FE1sHS8+LOYTmVuXvhpp22zaeNzgF5iI= Subject key identifier: BE:5B:16:86:D7:4D:A7:6A:7B:BD:22:48:E1:1F:9A:C6:B6:D4:48:44 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 09C0 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/73DC26744B0611EF8698EB13C4F9AE02.roa Signing time: Fri 26 Jul 2024 04:20:56 +0000 ROA not before: Fri 26 Jul 2024 04:20:56 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 8987 IP address blocks: 27.124.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 20:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Jul 26 04:20:56 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66a32428-efe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:c1:17:aa:a1:4f:39:bb:12:91:63:f6:d3: 7e:c1:2c:34:08:be:ba:c3:0f:90:d2:a2:2d:50:e0: fb:db:99:37:b7:d0:b1:f4:00:ae:96:07:89:b4:26: 40:57:34:dc:a1:b9:88:c9:82:e5:72:a6:3d:b7:ce: d1:ea:ec:66:02:ef:8a:e9:10:23:9d:c3:96:18:ee: 1f:fa:79:fc:0e:d9:92:10:23:d0:ee:27:80:c9:d4: b8:4b:02:d7:02:06:88:2b:14:87:1f:86:15:c8:a9: f5:7b:ea:c5:e6:65:2c:56:8b:ce:7a:8a:aa:8d:90: fa:95:47:c3:67:5c:0c:03:3e:15:e4:d1:cc:73:54: 1b:a8:91:a0:ef:8b:86:9b:97:3d:63:f0:d1:a4:be: 66:2c:38:d6:c9:23:72:b8:98:bf:d3:b8:9e:11:1c: b9:d5:8f:ac:80:5b:6b:22:a3:b3:46:2f:27:2b:b0: a0:38:36:35:4e:16:35:28:12:c5:b1:54:41:3a:e9: c8:1c:35:7c:a9:f1:cd:4f:44:2a:f6:02:34:21:15: e1:83:b3:66:31:ad:05:88:6a:4c:61:b1:bf:73:c7: ba:46:ce:52:d0:53:01:56:45:20:4c:59:92:22:ce: e2:e8:a0:44:62:99:b1:a0:16:d6:66:a0:97:d4:b2: 76:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5B:16:86:D7:4D:A7:6A:7B:BD:22:48:E1:1F:9A:C6:B6:D4:48:44 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/73DC26744B0611EF8698EB13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.124.61.0/24 Signature Algorithm: sha256WithRSAEncryption b1:98:a0:30:ea:99:95:1e:d1:e8:d8:53:00:24:3a:ea:85:5b: 5b:92:5e:6a:4f:02:b2:7b:ad:14:75:c0:b3:9b:24:72:ea:ab: a3:81:c9:9a:d8:64:cc:3a:82:49:68:4c:74:5b:12:b6:fb:c2: dd:62:9d:b8:a5:78:b6:c6:04:c0:e1:f4:3f:e7:f3:96:62:06: d8:64:ea:06:ab:02:f5:29:55:45:5e:5e:87:ab:3f:ff:7a:f6: 56:a5:94:03:de:78:59:03:2d:7f:90:9e:ae:0c:6e:9b:f7:fb: 14:ac:97:cd:ca:3f:14:ff:cc:28:56:04:9a:00:20:ee:16:36: 5b:73:9c:da:73:eb:4a:95:7e:4e:67:32:81:dd:d4:31:50:e8: 17:a7:84:7c:41:28:f2:bf:c3:b3:61:df:66:e3:aa:84:7e:39: 36:38:95:d1:9c:8c:86:be:7f:d9:54:fd:13:be:90:f4:c9:64: ca:10:65:68:30:7d:ac:3d:e7:dc:64:09:7b:d9:a6:2e:76:91: 1e:e1:a3:8f:49:26:c4:b4:37:bb:d4:d7:ac:17:44:b5:20:8e: 8d:cb:62:24:92:f8:9e:53:c6:7f:8c:06:a4:24:40:0c:9a:ff: 0a:ec:ba:93:a0:21:31:96:c4:71:bc:bf:5f:50:97:03:1d:2a: 4c:47:d9:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjQwNzI2MDQyMDU2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzMjQyOC1lZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArv/BF6qhTzm7EpFj9tN+wSw0CL66ww+Q0qItUOD725k3t9Cx9ACulgeJtCZA VzTcobmIyYLlcqY9t87R6uxmAu+K6RAjncOWGO4f+nn8DtmSECPQ7ieAydS4SwLX AgaIKxSHH4YVyKn1e+rF5mUsVovOeoqqjZD6lUfDZ1wMAz4V5NHMc1QbqJGg74uG m5c9Y/DRpL5mLDjWySNyuJi/07ieERy51Y+sgFtrIqOzRi8nK7CgODY1ThY1KBLF sVRBOunIHDV8qfHNT0Qq9gI0IRXhg7NmMa0FiGpMYbG/c8e6Rs5S0FMBVkUgTFmS Is7i6KBEYpmxoBbWZqCX1LJ2QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL5bFobX Tadqe70iSOEfmsa21EhEMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMEJCRDlFQTI4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvNzNEQzI2NzQ0 QjA2MTFFRjg2OThFQjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAbfD0wDQYJKoZIhvcNAQELBQADggEBALGYoDDqmZUe0ejY UwAkOuqFW1uSXmpPArJ7rRR1wLObJHLqq6OByZrYZMw6gkloTHRbErb7wt1inbil eLbGBMDh9D/n85ZiBthk6garAvUpVUVeXoerP/969lallAPeeFkDLX+Qnq4Mbpv3 +xSsl83KPxT/zChWBJoAIO4WNltznNpz60qVfk5nMoHd1DFQ6BenhHxBKPK/w7Nh 32bjqoR+OTY4ldGcjIa+f9lU/RO+kPTJZMoQZWgwfaw959xkCXvZpi52kR7ho49J JsS0N7vU16wXRLUgjo3LYiSS+J5Txn+MBqQkQAya/wrsupOgITGWxHG8v19QlwMd KkxH2T4= -----END CERTIFICATE-----Generated at Tue Oct 22 21:25:52 2024 by rpki-client on console-fra.rpki-client.org