$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/BFDC8CE68AAB11EF93DB792CC4F9AE02.roa File: BFDC8CE68AAB11EF93DB792CC4F9AE02.roa (raw, json) Hash identifier: sVEWr8cHjR39v6HfMG/t80nfPCrUOYbbrrhYH6aQohw= Subject key identifier: 5A:73:E2:8B:54:94:DD:DD:36:05:DE:1E:83:10:20:16:3F:78:87:55 Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 011B Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/BFDC8CE68AAB11EF93DB792CC4F9AE02.roa Signing time: Tue 15 Oct 2024 04:12:54 +0000 ROA not before: Tue 15 Oct 2024 04:12:54 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 18256 IP address blocks: 87.124.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Oct 15 04:12:54 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=670debc5-0118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:84:f8:eb:ab:71:ca:73:ff:8d:e6:80:8c:8a: 02:2d:04:08:79:49:a0:37:78:2d:34:fc:dc:3e:e2: 60:8e:6f:09:16:38:3c:4e:bf:dd:ec:c1:e6:09:15: 03:08:4b:ad:7e:ab:03:02:d3:85:ad:d1:8c:37:bf: 10:d8:4c:f5:62:6e:43:1c:c9:67:f7:9c:e4:d9:26: 6a:1b:21:61:39:ba:c1:f8:ba:6d:ce:68:03:68:b3: 31:51:2e:f6:45:b0:cf:6c:85:1d:07:4b:c8:06:64: 6c:66:18:a5:93:fb:d5:e2:d9:aa:d9:a2:42:f6:20: 4a:14:4f:96:77:a0:f8:17:46:89:68:73:dd:52:24: 0d:25:79:38:ae:16:29:e0:ee:ae:e2:74:98:b9:2d: fe:e1:5f:31:fe:8c:ca:36:b0:c6:12:8a:d7:df:b6: 78:3a:18:4d:e2:aa:59:92:41:57:3e:55:4a:16:ec: 72:28:05:80:f3:81:50:07:20:7a:f7:32:f1:b5:aa: 85:c3:7c:c2:8e:c1:e7:f8:22:8a:18:88:9c:20:30: ab:b9:ab:e3:aa:09:4d:82:79:f8:c5:f9:f4:cc:c2: c9:59:ee:54:89:23:90:c7:55:0e:f9:4f:9f:7f:f4: 16:41:86:89:48:90:1b:82:94:a9:83:2a:0a:04:80: 3a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:73:E2:8B:54:94:DD:DD:36:05:DE:1E:83:10:20:16:3F:78:87:55 X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/BFDC8CE68AAB11EF93DB792CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 87.124.71.0/24 Signature Algorithm: sha256WithRSAEncryption 31:c1:d6:60:5a:e3:6d:aa:10:6d:f8:7e:86:ed:cd:b8:af:da: e2:f8:6f:e6:d5:d5:75:8c:80:0a:9d:22:16:fd:3b:44:c2:33: 29:4f:ae:b5:1f:7d:f4:c3:c8:15:c9:40:ce:84:a0:66:d0:3d: 5b:1b:0b:a3:68:96:07:3f:f5:5f:12:95:9a:f7:b4:3e:d1:3d: a3:d1:f4:1a:28:ae:08:8f:23:7c:2f:26:0b:66:86:44:00:3d: 70:0d:ed:30:7b:76:ac:ba:66:14:00:97:de:58:01:06:23:f8: 54:28:a7:7a:5d:af:3c:1b:22:87:69:e4:62:e3:e3:98:4f:b6: c8:92:c8:dd:d6:19:53:b5:cb:f8:b4:86:c2:b5:51:c4:6a:4e: 35:76:c2:09:af:55:06:6d:cc:fa:2e:b7:01:f8:0c:9b:30:43: f3:53:d7:53:7e:ee:33:f8:39:5d:bb:04:c1:1c:05:e4:25:29: cd:7b:33:76:ff:e1:06:13:d1:74:a5:4e:df:36:6f:08:df:56: c0:da:5a:fc:cb:d8:5e:5d:99:63:63:fc:3d:b9:af:39:68:81: bb:e4:c7:71:7d:c3:44:85:c2:9b:23:c9:1e:f7:78:6c:d4:53: 2f:d8:67:ce:bc:8d:70:70:2b:6b:08:e7:3c:dc:dc:7d:b1:3c: ab:14:32:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjQxMDE1MDQxMjU0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkZWJjNS0wMTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYT466txynP/jeaAjIoCLQQIeUmgN3gtNPzcPuJgjm8JFjg8Tr/d7MHmCRUD CEutfqsDAtOFrdGMN78Q2Ez1Ym5DHMln95zk2SZqGyFhObrB+LptzmgDaLMxUS72 RbDPbIUdB0vIBmRsZhilk/vV4tmq2aJC9iBKFE+Wd6D4F0aJaHPdUiQNJXk4rhYp 4O6u4nSYuS3+4V8x/ozKNrDGEorX37Z4OhhN4qpZkkFXPlVKFuxyKAWA84FQByB6 9zLxtaqFw3zCjsHn+CKKGIicIDCruavjqglNgnn4xfn0zMLJWe5UiSOQx1UO+U+f f/QWQYaJSJAbgpSpgyoKBIA6VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFpz4otU lN3dNgXeHoMQIBY/eIdVMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQkZEQzhDRTY4 QUFCMTFFRjkzREI3OTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABXfEcwDQYJKoZIhvcNAQELBQADggEBADHB1mBa422qEG34 fobtzbiv2uL4b+bV1XWMgAqdIhb9O0TCMylPrrUfffTDyBXJQM6EoGbQPVsbC6No lgc/9V8SlZr3tD7RPaPR9BoorgiPI3wvJgtmhkQAPXAN7TB7dqy6ZhQAl95YAQYj +FQop3pdrzwbIodp5GLj45hPtsiSyN3WGVO1y/i0hsK1UcRqTjV2wgmvVQZtzPou twH4DJswQ/NT11N+7jP4OV27BMEcBeQlKc17M3b/4QYT0XSlTt82bwjfVsDaWvzL 2F5dmWNj/D25rzlogbvkx3F9w0SFwpsjyR73eGzUUy/YZ868jXBwK2sI5zzc3H2x PKsUMkQ= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org