$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/65DCB430F25A11E9937D9D73C4F9AE02.roa File: 65DCB430F25A11E9937D9D73C4F9AE02.roa (raw, json) Hash identifier: gaKPScXkAxsuY8VAZ/bdwS1+gAnXATdqGjlvtSNl84I= Subject key identifier: A6:96:47:06:28:00:03:64:0A:39:EA:EA:02:A1:6C:87:2E:4C:41:8B Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0C77 Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/65DCB430F25A11E9937D9D73C4F9AE02.roa Signing time: Fri 04 Oct 2024 18:27:05 +0000 ROA not before: Fri 04 Oct 2024 18:27:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 63969 IP address blocks: 59.152.96.0/20 maxlen: 24 103.85.156.0/22 maxlen: 24 144.48.116.0/22 maxlen: 24 182.48.64.0/19 maxlen: 24 2404:4f80:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: Oct 4 18:27:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67003379-4d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f2:0d:29:14:2a:a7:de:61:92:eb:6a:f9:d5: c5:c2:34:10:88:33:4d:2d:2a:40:b9:1d:57:f6:58: c1:9b:fd:a3:82:5c:d5:30:00:c7:1a:66:6f:af:88: 55:2a:88:cb:88:ca:72:12:f5:a6:32:a1:12:09:0a: a6:6e:6f:33:0e:7d:32:58:83:1e:d3:83:c6:f3:20: 2d:61:7e:e9:ff:6e:01:29:42:98:66:26:ac:54:5e: 17:5a:81:b7:cc:0c:71:e1:9a:5e:8f:66:fd:24:52: 16:6c:60:8f:40:44:38:a4:b4:17:a1:f6:f1:a4:d3: da:dd:04:0a:2d:6d:d2:e5:e1:62:21:9a:8d:36:df: 3a:6c:95:95:8e:49:31:89:43:b3:c2:b2:e0:2d:cd: 20:67:26:25:0f:3f:69:58:9d:0a:dc:56:c4:21:8e: 4e:bb:fc:02:8a:9b:2e:f9:71:70:66:0f:b6:8a:bd: b8:19:4f:e0:dd:31:cf:2d:6e:5c:6c:f2:b4:61:67: ac:5d:2d:7f:25:6b:d1:97:17:79:6a:f7:e4:79:5c: dd:e6:7f:cd:ff:9a:12:50:fe:6a:b0:ac:fe:e6:2c: b5:36:64:ad:c0:d1:0c:e2:15:71:7d:de:b8:ac:00: ae:12:c7:eb:2c:c6:e0:e4:89:67:4e:26:13:a5:16: 15:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:96:47:06:28:00:03:64:0A:39:EA:EA:02:A1:6C:87:2E:4C:41:8B X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/65DCB430F25A11E9937D9D73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.96.0/20 103.85.156.0/22 144.48.116.0/22 182.48.64.0/19 IPv6: 2404:4f80:29::/48 Signature Algorithm: sha256WithRSAEncryption 3f:24:b7:17:a6:93:be:d6:02:3f:24:f4:0c:3f:25:a4:d0:1d: 92:3e:9d:c4:06:50:c8:c4:05:46:89:80:d1:fb:ca:e4:60:81: 41:b6:00:6f:5e:9f:d6:32:85:fe:14:b4:1b:1d:8c:43:5c:54: f8:fc:15:32:e6:15:aa:a3:1b:ae:ce:c4:de:ac:fb:df:25:a3: 66:7a:f8:8f:b6:f8:37:49:b9:91:3a:63:99:a0:3d:36:08:17: e5:b7:04:16:67:7a:de:1f:58:ec:7e:33:59:db:1c:9e:c1:6c: e9:f7:1e:c8:c7:17:8d:df:42:d5:db:8a:5b:b8:08:49:01:39: db:fa:9a:4c:7e:62:95:32:63:a6:61:23:2b:a6:e6:c2:92:0a: 49:9a:8c:d2:d1:f1:39:01:9b:80:a6:2d:cc:29:0d:eb:5b:e3: 39:de:11:09:c7:c9:39:4c:15:cd:ba:22:99:91:a9:25:88:bf: e7:7a:e2:e5:4d:1e:ab:72:d3:31:d8:27:7a:c7:80:5a:b0:8c: 17:69:4f:cf:5d:b1:e4:2a:93:4e:8c:4d:67:7e:18:b1:cb:96: ca:9a:89:1d:c6:50:e8:18:20:e9:14:19:f6:fc:0e:a3:0a:05: 89:10:83:9c:b0:37:23:e2:a5:2c:f9:71:c0:aa:1a:1d:92:17: 8e:bc:a7:9c -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjQxMDA0MTgyNzA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwMzM3OS00ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/INKRQqp95hkutq+dXFwjQQiDNNLSpAuR1X9ljBm/2jglzVMADHGmZvr4hV KojLiMpyEvWmMqESCQqmbm8zDn0yWIMe04PG8yAtYX7p/24BKUKYZiasVF4XWoG3 zAxx4Zpej2b9JFIWbGCPQEQ4pLQXofbxpNPa3QQKLW3S5eFiIZqNNt86bJWVjkkx iUOzwrLgLc0gZyYlDz9pWJ0K3FbEIY5Ou/wCipsu+XFwZg+2ir24GU/g3THPLW5c bPK0YWesXS1/JWvRlxd5avfkeVzd5n/N/5oSUP5qsKz+5iy1NmStwNEM4hVxfd64 rACuEsfrLMbg5IlnTiYTpRYVMQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKaWRwYo AANkCjnq6gKhbIcuTEGLMB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5OTgvQUIzNEZCRDRGMjU4MTFFOUI3NUUzQzcwQzRGOUFFMDIvNjVEQ0I0MzBG MjVBMTFFOTkzN0Q5RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAQ7mGADBAJnVZwDBAKQMHQDBAW2MEAwDwQCAAIwCQMHACQE T4AAKTANBgkqhkiG9w0BAQsFAAOCAQEAPyS3F6aTvtYCPyT0DD8lpNAdkj6dxAZQ yMQFRomA0fvK5GCBQbYAb16f1jKF/hS0Gx2MQ1xU+PwVMuYVqqMbrs7E3qz73yWj Znr4j7b4N0m5kTpjmaA9NggX5bcEFmd63h9Y7H4zWdscnsFs6fceyMcXjd9C1duK W7gISQE52/qaTH5ilTJjpmEjK6bmwpIKSZqM0tHxOQGbgKYtzCkN61vjOd4RCcfJ OUwVzboimZGpJYi/53ri5U0eq3LTMdgneseAWrCMF2lPz12x5CqTToxNZ34YscuW ypqJHcZQ6Bgg6RQZ9vwOowoFiRCDnLA3I+KlLPlxwKoaHZIXjrynnA== -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:26 2024 by rpki-client on console-fra.rpki-client.org