$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/EF31EA383CCB11EEB6AD691FC4F9AE02.roa File: EF31EA383CCB11EEB6AD691FC4F9AE02.roa (raw, json) Hash identifier: LKyo8UKKRt94IwNVw+BYvwFitvh4rH3nAgtVixwg9l4= Subject key identifier: 56:BD:D1:5A:8F:32:78:D1:E6:D7:AC:E3:D0:96:42:99:26:6E:BD:DE Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1D8B Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/EF31EA383CCB11EEB6AD691FC4F9AE02.roa Signing time: Sat 12 Oct 2024 16:24:00 +0000 ROA not before: Sat 12 Oct 2024 16:24:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58424 IP address blocks: 146.88.200.0/21 maxlen: 24 167.179.0.0/23 maxlen: 24 167.179.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7563 (0x1d8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Oct 12 16:24:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670aa2a0-7999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:51:5d:04:1b:5c:7c:e3:60:4e:68:fd:2c:e4: ea:b1:83:94:d0:2c:37:71:e3:8c:dd:a7:dd:4e:1a: 17:02:86:d0:40:94:0b:a5:5d:54:e5:88:76:a5:d7: 06:24:41:72:cb:e1:b2:8f:96:d4:a4:0e:4e:aa:33: c2:70:ed:0e:ee:51:86:76:bd:fb:ff:64:cc:cc:ce: 46:86:3c:92:3c:e3:c3:76:33:9f:a0:9f:6f:7c:c0: ee:de:c4:15:47:b0:a0:f3:0a:26:6c:ae:1e:39:23: cb:ed:e8:0d:80:1f:98:ba:00:71:e6:a2:95:38:bc: 96:a8:99:f2:a7:f3:71:64:fc:30:7f:45:d7:49:5c: 41:29:9f:76:e2:83:5a:89:e6:68:2c:a7:6f:7b:a6: 8d:29:c0:d3:ff:e3:47:cb:43:76:f3:ba:97:23:f6: a9:1a:d3:2a:88:5c:26:60:af:97:67:85:53:59:4d: a9:1a:14:24:63:27:84:38:74:16:66:cd:b0:af:86: 7d:da:0a:f8:c1:c3:ad:52:0e:13:c7:b8:e9:b6:1b: bb:ac:b0:38:22:79:00:d6:15:de:5a:2f:7e:b7:a7: 96:07:6b:45:40:5c:c5:bc:a7:8e:e1:f6:01:af:aa: 60:ae:76:4f:94:1d:88:73:52:7b:76:f9:5d:d7:a2: 46:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BD:D1:5A:8F:32:78:D1:E6:D7:AC:E3:D0:96:42:99:26:6E:BD:DE X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/EF31EA383CCB11EEB6AD691FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.88.200.0/21 167.179.0.0/23 167.179.20.0/23 Signature Algorithm: sha256WithRSAEncryption 62:aa:99:36:fd:be:f6:22:e2:dd:60:db:a4:88:43:be:d3:7d: f6:69:09:c7:52:01:bf:8f:60:05:31:c3:78:9c:1f:48:47:53: cc:eb:e9:ed:9f:82:59:40:9f:df:f9:7b:23:04:d6:ee:48:ba: 8b:f9:9f:d0:26:67:01:e3:ba:78:4d:cd:59:df:e8:70:82:3d: 33:76:6b:fb:cc:3d:73:65:96:a0:41:da:b4:08:82:5e:37:92: f5:be:3d:94:30:2b:b4:23:8e:77:b5:0e:ae:fb:53:ca:f7:2d: 28:97:70:e1:f4:b2:68:a9:b5:2e:5c:8c:e5:38:70:73:42:4c: ab:8d:d2:8b:87:88:34:b8:62:84:4a:a4:c2:bc:5f:09:14:a3: 05:23:0b:42:ff:2c:38:10:c4:e9:b8:ef:82:67:d2:11:77:34: 04:da:2d:db:01:af:df:f4:0b:56:32:5e:78:7d:37:11:66:79: a0:e5:46:04:0e:ea:7f:15:b4:72:2b:f2:10:86:06:c6:22:05: b9:82:53:d1:1e:4e:02:5a:3f:da:9a:76:d4:e6:f4:77:cf:d7: 33:c9:d0:39:c0:c0:f7:8b:e5:67:d1:0f:7b:46:58:8b:2e:c1: f9:4f:ce:78:11:53:4a:d4:13:c3:45:b6:d0:72:77:47:45:d2: 3e:94:a5:65 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjQxMDEyMTYyNDAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBhYTJhMC03OTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFFdBBtcfONgTmj9LOTqsYOU0Cw3ceOM3afdThoXAobQQJQLpV1U5Yh2pdcG JEFyy+Gyj5bUpA5OqjPCcO0O7lGGdr37/2TMzM5GhjySPOPDdjOfoJ9vfMDu3sQV R7Cg8wombK4eOSPL7egNgB+YugBx5qKVOLyWqJnyp/NxZPwwf0XXSVxBKZ924oNa ieZoLKdve6aNKcDT/+NHy0N287qXI/apGtMqiFwmYK+XZ4VTWU2pGhQkYyeEOHQW Zs2wr4Z92gr4wcOtUg4Tx7jpthu7rLA4InkA1hXeWi9+t6eWB2tFQFzFvKeO4fYB r6pgrnZPlB2Ic1J7dvld16JGgwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFa90VqP MnjR5tes49CWQpkmbr3eMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIzQkMvMzA0MTk3RTg4RjlCMTFFNkJFQzVDQjI1QzRGOUFFMDIvRUYzMUVBMzgz Q0NCMTFFRUI2QUQ2OTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAOSWMgDBAGnswADBAGnsxQwDQYJKoZIhvcNAQELBQADggEB AGKqmTb9vvYi4t1g26SIQ77TffZpCcdSAb+PYAUxw3icH0hHU8zr6e2fgllAn9/5 eyME1u5Iuov5n9AmZwHjunhNzVnf6HCCPTN2a/vMPXNllqBB2rQIgl43kvW+PZQw K7Qjjne1Dq77U8r3LSiXcOH0smiptS5cjOU4cHNCTKuN0ouHiDS4YoRKpMK8XwkU owUjC0L/LDgQxOm474Jn0hF3NATaLdsBr9/0C1YyXnh9NxFmeaDlRgQO6n8VtHIr 8hCGBsYiBbmCU9EeTgJaP9qadtTm9HfP1zPJ0DnAwPeL5WfRD3tGWIsuwflPzngR U0rUE8NFttByd0dF0j6UpWU= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:03 2024 by rpki-client on console-fra.rpki-client.org