$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/DC25866C6E6011EF830E7360C4F9AE02.roa File: DC25866C6E6011EF830E7360C4F9AE02.roa (raw, json) Hash identifier: OxiDT0SIFYyQoxxlhldZuYHR+pzMlUPJXfn9ZyBjWvM= Subject key identifier: 61:A6:AD:57:2D:3B:E5:D4:47:E3:C3:8D:1D:41:0F:04:87:C8:6F:5F Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Certificate serial: 0104 Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/DC25866C6E6011EF830E7360C4F9AE02.roa Signing time: Mon 09 Sep 2024 04:06:16 +0000 ROA not before: Mon 09 Sep 2024 04:06:16 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132876 IP address blocks: 87.124.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934 Validity Not Before: Sep 9 04:06:16 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66de7438-6a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:49:3b:16:fa:5c:e6:57:ec:ef:9d:0b:05:f1: d5:9a:b6:0b:0c:9f:01:da:b3:20:e6:3f:cc:39:69: db:00:01:2c:dd:1d:09:7a:1f:27:3f:0f:8f:d0:0b: 94:21:00:30:5b:c0:82:63:ea:5a:97:0f:6f:5b:0d: 6a:bc:18:f6:ad:a9:d4:51:4b:67:54:f7:a7:e6:3f: aa:12:e3:e8:b5:33:51:f5:02:02:b1:5a:53:17:fb: c1:7d:8b:b5:3a:0c:4d:69:61:65:c4:cc:e6:e7:bb: d4:51:7b:31:81:93:5c:1d:0d:60:47:a3:f3:dc:fb: 8f:5c:a2:24:85:fc:09:4a:29:b2:43:0f:e8:6b:00: a8:38:3f:ae:60:c3:af:67:49:e7:f3:78:30:12:c4: c4:5a:e5:1a:9e:86:05:33:e7:8c:3d:82:9f:51:5f: f5:fd:fa:ff:ed:cf:d8:99:f4:27:47:b6:74:51:a8: 9f:93:e3:03:22:0a:e1:99:5d:da:ef:95:22:45:fa: fe:7d:0c:7a:f9:85:19:1a:b8:26:27:88:36:b5:b4: 68:ac:cc:7b:c4:ed:5b:5b:6c:64:bf:17:5b:9f:3a: eb:c0:12:95:16:02:33:45:9a:0c:31:71:26:df:64: ea:32:6b:eb:bc:6a:16:4e:f6:79:59:80:24:81:b7: 96:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A6:AD:57:2D:3B:E5:D4:47:E3:C3:8D:1D:41:0F:04:87:C8:6F:5F X509v3 Authority Key Identifier: keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/DC25866C6E6011EF830E7360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 87.124.0.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:06:75:3a:1f:78:16:d5:21:92:7a:64:37:82:ca:87:29:29: b4:ed:26:8d:71:df:0e:b1:ea:f8:92:22:90:e9:3c:5e:76:5c: fb:8f:ca:88:b2:91:2e:65:03:45:33:77:18:d4:97:a6:2c:c0: 82:76:3e:3c:38:d7:bd:54:1d:fd:53:1d:2e:c6:47:ce:5c:c7: de:eb:0e:d1:89:25:14:e7:c8:03:c4:54:79:ff:24:68:a8:eb: fb:63:a2:88:46:35:0d:b2:88:3e:cf:0a:cf:6c:d5:2a:f6:08: e7:45:d1:dc:62:32:20:45:23:d8:e2:12:20:a5:90:e2:ab:65: 36:49:e5:a6:4c:5d:24:9c:99:a0:c9:74:b7:ce:24:90:76:74: 42:e4:84:93:f9:5f:f4:f3:7e:dd:bc:6c:7a:fd:39:89:9a:68: 50:1f:b4:01:c2:96:00:aa:96:f2:66:b2:9d:4b:11:30:9d:eb: 65:24:72:26:7a:b0:f5:38:03:62:bc:f4:2e:b7:cb:86:76:26: 1c:ca:86:4b:4a:85:22:5e:0a:90:71:36:0d:ff:98:d8:d8:f0: 77:b2:41:f3:fd:2c:59:a7:39:f7:38:fe:2e:55:6b:e6:af:1e: cb:5f:43:7a:d1:1e:ce:67:d5:34:56:25:34:90:d1:f8:06:f3: d3:13:d6:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF NEMzMkM5MzQwHhcNMjQwOTA5MDQwNjE2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlNzQzOC02YTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ek7Fvpc5lfs750LBfHVmrYLDJ8B2rMg5j/MOWnbAAEs3R0Jeh8nPw+P0AuU IQAwW8CCY+palw9vWw1qvBj2ranUUUtnVPen5j+qEuPotTNR9QICsVpTF/vBfYu1 OgxNaWFlxMzm57vUUXsxgZNcHQ1gR6Pz3PuPXKIkhfwJSimyQw/oawCoOD+uYMOv Z0nn83gwEsTEWuUanoYFM+eMPYKfUV/1/fr/7c/YmfQnR7Z0Uaifk+MDIgrhmV3a 75UiRfr+fQx6+YUZGrgmJ4g2tbRorMx7xO1bW2xkvxdbnzrrwBKVFgIzRZoMMXEm 32TqMmvrvGoWTvZ5WYAkgbeWUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGGmrVct O+XUR+PDjR1BDwSHyG9fMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvREMyNTg2NkM2 RTYwMTFFRjgzMEU3MzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABXfAAwDQYJKoZIhvcNAQELBQADggEBAH4GdTofeBbVIZJ6 ZDeCyocpKbTtJo1x3w6x6viSIpDpPF52XPuPyoiykS5lA0UzdxjUl6YswIJ2Pjw4 171UHf1THS7GR85cx97rDtGJJRTnyAPEVHn/JGio6/tjoohGNQ2yiD7PCs9s1Sr2 COdF0dxiMiBFI9jiEiClkOKrZTZJ5aZMXSScmaDJdLfOJJB2dELkhJP5X/Tzft28 bHr9OYmaaFAftAHClgCqlvJmsp1LETCd62UkciZ6sPU4A2K89C63y4Z2JhzKhktK hSJeCpBxNg3/mNjY8HeyQfP9LFmnOfc4/i5Va+avHstfQ3rRHs5n1TRWJTSQ0fgG 89MT1hY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org