$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A7A72BF24B0611EF91534014C4F9AE02.roa File: A7A72BF24B0611EF91534014C4F9AE02.roa (raw, json) Hash identifier: tpIDXPbJu6zPe7XObk9p1REPuzk+8UuPULKUARa3/pk= Subject key identifier: 34:E5:92:C9:65:BF:91:F9:EE:C0:12:6F:0D:C6:3A:73:7C:EF:B1:B9 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 09DD Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A7A72BF24B0611EF91534014C4F9AE02.roa Signing time: Fri 16 Aug 2024 04:31:39 +0000 ROA not before: Fri 16 Aug 2024 04:31:39 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 14618 IP address blocks: 27.124.61.0/24 maxlen: 24 182.173.70.0/24 maxlen: 24 182.173.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 20:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2525 (0x9dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Aug 16 04:31:39 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bed62b-dd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a5:0b:3e:cf:b1:ae:0e:17:d9:8a:6b:6f:5e: 62:41:42:45:61:b5:25:8b:7b:35:70:24:38:d8:9e: f1:3b:01:6c:40:c7:91:22:ea:70:3a:a2:8c:05:72: 15:de:c1:3f:23:39:a1:d5:03:86:99:74:d8:00:ea: 91:a2:fa:2e:0a:c7:ed:0b:9f:35:bd:11:bc:7b:3a: 59:a3:f5:70:18:52:ad:e0:67:e5:23:81:bf:74:d8: 08:d7:85:6d:83:9b:dd:6f:aa:f5:23:e5:f6:f6:55: f5:ed:b7:11:a8:80:15:4f:4f:69:7c:0e:6b:f3:3d: 3d:20:b2:71:b1:1e:26:49:75:a9:83:29:08:37:8d: c7:00:bb:91:52:4a:e3:79:16:0f:42:30:a4:36:3b: b0:18:c4:30:96:d3:56:be:8f:af:0e:28:3d:a5:eb: 82:72:f9:f2:3e:db:74:c3:24:bd:3d:21:1e:65:f2: f5:17:5d:ea:71:6d:cc:8e:e2:5b:01:56:e2:79:e7: 7f:90:87:38:52:f9:00:37:65:3e:c9:fa:56:1b:e4: d8:f6:37:41:23:0c:83:64:5d:ad:0e:c2:30:9f:8c: 4f:91:5a:71:55:c3:a1:92:c5:97:b5:d6:9a:c0:11: 87:c7:0c:48:dc:70:29:8d:ba:e6:1b:b5:d2:bb:9b: 0d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E5:92:C9:65:BF:91:F9:EE:C0:12:6F:0D:C6:3A:73:7C:EF:B1:B9 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/A7A72BF24B0611EF91534014C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.124.61.0/24 182.173.70.0/23 Signature Algorithm: sha256WithRSAEncryption 44:a4:a8:0c:7d:81:d3:a0:81:10:08:ac:a8:0d:d7:d1:a7:86: bd:bf:20:ca:cf:44:5a:65:cd:2c:e6:48:be:a5:bc:1f:fc:ac: 28:ff:3f:37:49:8e:90:48:ec:0b:60:1a:97:43:f5:1d:69:a1: a4:70:22:d8:73:18:16:d3:2a:cd:06:46:0e:a6:e9:b7:ee:9b: 02:b1:37:1a:d8:60:e8:e7:62:51:46:cb:9f:f0:89:a8:10:77: 17:96:81:79:d7:72:0f:b8:49:16:0a:4a:78:5a:41:6b:b8:a4: df:7c:3a:77:9c:db:70:fd:54:28:a1:8d:d8:7b:ab:73:41:32: 94:b8:97:68:9a:6b:da:9d:10:b1:2a:2a:66:26:8f:bc:19:32: 8f:cf:70:c7:ab:a2:45:68:14:d3:6e:93:48:a7:7c:4f:3d:9a: 6d:0b:1a:23:90:83:b2:17:e1:4f:7d:84:e4:78:5d:3b:6c:e4: 95:5f:2a:99:c0:9d:81:0d:ae:4c:3c:7a:a7:36:38:cd:73:1b: 31:65:d8:05:1d:b4:27:54:8e:22:da:d2:25:92:36:8b:94:c5: e9:d7:c6:0f:3e:4c:a9:3f:bc:f6:77:f8:b7:fd:ef:96:87:5b: 05:ad:fd:99:00:85:28:77:99:4b:84:e5:f6:ec:29:bd:1e:f4: e3:26:fa:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjQwODE2MDQzMTM5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJlZDYyYi1kZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KULPs+xrg4X2Yprb15iQUJFYbUli3s1cCQ42J7xOwFsQMeRIupwOqKMBXIV 3sE/Izmh1QOGmXTYAOqRovouCsftC581vRG8ezpZo/VwGFKt4GflI4G/dNgI14Vt g5vdb6r1I+X29lX17bcRqIAVT09pfA5r8z09ILJxsR4mSXWpgykIN43HALuRUkrj eRYPQjCkNjuwGMQwltNWvo+vDig9peuCcvnyPtt0wyS9PSEeZfL1F13qcW3MjuJb AVbieed/kIc4UvkAN2U+yfpWG+TY9jdBIwyDZF2tDsIwn4xPkVpxVcOhksWXtdaa wBGHxwxI3HApjbrmG7XSu5sN3QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDTlksll v5H57sASbw3GOnN877G5MB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEM2NjEvMEJCRDlFQTI4MzZEMTFFQUI0QTJENzZEQzRGOUFFMDIvQTdBNzJCRjI0 QjA2MTFFRjkxNTM0MDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAbfD0DBAG2rUYwDQYJKoZIhvcNAQELBQADggEBAESkqAx9 gdOggRAIrKgN19Gnhr2/IMrPRFplzSzmSL6lvB/8rCj/PzdJjpBI7AtgGpdD9R1p oaRwIthzGBbTKs0GRg6m6bfumwKxNxrYYOjnYlFGy5/wiagQdxeWgXnXcg+4SRYK SnhaQWu4pN98Onec23D9VCihjdh7q3NBMpS4l2iaa9qdELEqKmYmj7wZMo/PcMer okVoFNNuk0infE89mm0LGiOQg7IX4U99hOR4XTts5JVfKpnAnYENrkw8eqc2OM1z GzFl2AUdtCdUjiLa0iWSNouUxenXxg8+TKk/vPZ3+Lf975aHWwWt/ZkAhSh3mUuE 5fbsKb0e9OMm+sA= -----END CERTIFICATE-----Generated at Tue Oct 22 21:25:52 2024 by rpki-client on console-fra.rpki-client.org