$ rpki-client -vvf rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/9C06E51EE37A11EA84A20810C4F9AE02.roa File: 9C06E51EE37A11EA84A20810C4F9AE02.roa (raw, json) Hash identifier: maGIW10auxPqCj749VnwJ932XyvRLeAm2wgEbABGHH0= Subject key identifier: 79:2B:C1:36:AC:17:3F:B9:E6:3C:A2:FC:B9:8E:CA:D7:DD:A0:44:43 Certificate issuer: /CN=A9191A09/serialNumber=E68ED124EF657B679BD12A58FA035014E0DFE827 Certificate serial: 0CB8 Authority key identifier: E6:8E:D1:24:EF:65:7B:67:9B:D1:2A:58:FA:03:50:14:E0:DF:E8:27 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/9C06E51EE37A11EA84A20810C4F9AE02.roa Signing time: Thu 14 Dec 2023 15:00:41 +0000 ROA not before: Thu 14 Dec 2023 15:00:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24492 IP address blocks: 185.175.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.crl rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191A09/serialNumber=E68ED124EF657B679BD12A58FA035014E0DFE827 Validity Not Before: Dec 14 15:00:41 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b1898-9b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:1f:73:c4:b6:cd:52:8e:47:5b:a8:9b:2e: 10:81:b4:9b:af:20:2b:f6:88:18:66:52:0f:4c:44: e8:73:71:cb:e9:c0:8b:9f:27:26:e7:1f:c4:6f:1e: d2:d6:9e:b8:03:5b:cb:47:db:9a:52:ab:9d:de:b1: e9:f0:ae:b5:fd:19:81:ca:29:a2:31:0e:dc:16:61: a9:21:8e:a4:35:25:b8:15:8b:8f:ff:03:b1:30:c3: 59:38:54:f4:9d:fe:a6:53:a8:ee:fa:1c:d4:83:da: 12:37:1f:cd:8e:6b:51:38:a6:05:b5:27:63:53:a2: 89:6a:02:49:be:ce:cb:e6:e0:ba:8d:d2:29:61:94: de:8a:fa:7f:eb:99:6c:f3:02:50:f2:1a:0b:46:de: ee:3b:b1:5e:f7:f9:36:8e:69:e2:a4:42:84:12:65: 73:fa:e0:73:fe:15:fa:8e:e5:b8:c1:e5:78:c2:3f: 97:33:78:1f:8a:55:e3:a5:6c:51:ab:ed:92:38:b2: 57:2c:70:fe:34:e5:25:1e:1a:66:7b:67:f3:e9:bf: 67:8a:c1:c0:32:43:0a:42:0d:32:0b:c1:9a:31:67: b9:83:77:a4:55:68:88:99:79:65:1c:c7:9e:d6:20: 17:90:39:4d:c4:61:fa:7e:dd:b0:69:9c:37:83:76: fe:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2B:C1:36:AC:17:3F:B9:E6:3C:A2:FC:B9:8E:CA:D7:DD:A0:44:43 X509v3 Authority Key Identifier: keyid:E6:8E:D1:24:EF:65:7B:67:9B:D1:2A:58:FA:03:50:14:E0:DF:E8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/9C06E51EE37A11EA84A20810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.175.228.0/22 Signature Algorithm: sha256WithRSAEncryption cc:34:41:4c:95:2d:ca:ab:e9:c8:df:53:a4:87:83:ec:66:cb: 73:48:2a:05:4a:8d:99:f2:8a:63:0c:51:6b:51:4e:cd:b1:4f: 8e:15:f7:d2:05:f8:e2:cb:7f:8e:a7:a7:3b:7b:2a:9a:0b:cf: bc:03:45:9f:7b:1a:87:75:52:38:22:d7:95:2c:9c:b8:22:c4: 82:31:6b:f9:ab:47:b7:59:0b:2a:0c:47:2b:b5:63:29:fe:5f: e1:c2:cc:37:bd:f8:23:65:0d:77:a6:db:fc:30:90:83:e8:8b: a3:e4:4e:37:20:ca:91:47:2c:46:05:e4:48:2b:c7:2e:a1:61: 6c:ee:38:bd:32:34:42:e1:88:5e:6e:60:e7:71:dd:ab:4f:5a: 02:7f:18:a9:77:68:15:6a:b1:66:9d:9d:45:d9:77:44:a3:09: 5a:5c:00:0b:97:62:77:9e:dc:31:24:a6:6c:e7:ce:4e:d9:49: e4:42:10:24:2c:f6:31:46:97:12:2c:46:af:31:a1:2a:6c:80: 61:0e:55:9e:3e:3f:98:f8:96:d8:e0:96:4c:98:55:6a:bd:03: c7:6c:8b:ed:3d:a4:83:72:ae:61:1a:51:21:f9:4b:82:f0:7f: ba:c3:c7:74:af:93:6e:56:43:c5:f7:09:82:a0:c5:a9:78:86: 56:48:7a:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFBMDkxMTAvBgNVBAUTKEU2OEVEMTI0RUY2NTdCNjc5QkQxMkE1OEZBMDM1MDE0 RTBERkU4MjcwHhcNMjMxMjE0MTUwMDQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiMTg5OC05YjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYUfc8S2zVKOR1uomy4QgbSbryAr9ogYZlIPTEToc3HL6cCLnycm5x/Ebx7S 1p64A1vLR9uaUqud3rHp8K61/RmByimiMQ7cFmGpIY6kNSW4FYuP/wOxMMNZOFT0 nf6mU6ju+hzUg9oSNx/NjmtROKYFtSdjU6KJagJJvs7L5uC6jdIpYZTeivp/65ls 8wJQ8hoLRt7uO7Fe9/k2jmnipEKEEmVz+uBz/hX6juW4weV4wj+XM3gfilXjpWxR q+2SOLJXLHD+NOUlHhpme2fz6b9nisHAMkMKQg0yC8GaMWe5g3ekVWiImXllHMee 1iAXkDlNxGH6ft2waZw3g3b+4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHkrwTas Fz+55jyi/LmOytfdoERDMB8GA1UdIwQYMBaAFOaO0STvZXtnm9EqWPoDUBTg3+gn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUEwOS8zQzQxMkMzNkJG MzkxMUU5ODk3RDdDMkVDNEY5QUUwMi81bzdSSk85bGUyZWIwU3BZLWdOUUZPRGY2 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzVvN1JKTzlsZTJlYjBTcFktZ05RRk9EZjZDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFBMDkvM0M0MTJDMzZCRjM5MTFFOTg5N0Q3QzJFQzRGOUFFMDIvOUMwNkU1MUVF MzdBMTFFQTg0QTIwODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5r+QwDQYJKoZIhvcNAQELBQADggEBAMw0QUyVLcqr6cjf U6SHg+xmy3NIKgVKjZnyimMMUWtRTs2xT44V99IF+OLLf46npzt7KpoLz7wDRZ97 God1Ujgi15UsnLgixIIxa/mrR7dZCyoMRyu1Yyn+X+HCzDe9+CNlDXem2/wwkIPo i6PkTjcgypFHLEYF5Egrxy6hYWzuOL0yNELhiF5uYOdx3atPWgJ/GKl3aBVqsWad nUXZd0SjCVpcAAuXYnee3DEkpmznzk7ZSeRCECQs9jFGlxIsRq8xoSpsgGEOVZ4+ P5j4ltjglkyYVWq9A8dsi+09pINyrmEaUSH5S4Lwf7rDx3Svk25WQ8X3CYKgxal4 hlZIemg= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org