$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/1671D380603711EF97BB395FC4F9AE02.roa File: 1671D380603711EF97BB395FC4F9AE02.roa (raw, json) Hash identifier: YABE0cos6VtRV6egJC6YTrl7tEuiiHleDpqVdQV913A= Subject key identifier: A6:AF:7C:E5:90:99:A4:A2:63:25:26:91:92:5E:E4:A0:D2:C9:86:73 Certificate issuer: /CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417 Certificate serial: 0ABA Authority key identifier: 80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/1671D380603711EF97BB395FC4F9AE02.roa Signing time: Sat 14 Sep 2024 20:38:23 +0000 ROA not before: Sat 14 Sep 2024 20:38:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 27.106.192.0/23 maxlen: 23 218.100.52.0/23 maxlen: 23 218.100.54.0/24 maxlen: 24 218.100.76.0/24 maxlen: 24 218.100.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.crl rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 19:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2746 (0xaba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417 Validity Not Before: Sep 14 20:38:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e5f43f-fbbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4e:5d:fd:3b:5a:7d:b9:9f:86:ff:20:85:72: 9f:7a:5b:d1:63:05:a3:af:8a:1e:ce:a1:4d:33:de: 70:d2:4f:85:0c:f4:96:dc:ee:9a:b9:32:3e:f9:6d: 68:f1:92:c1:5a:94:b7:ac:ce:f2:fa:a8:27:b3:3d: e3:54:19:75:76:65:1e:be:1c:58:ad:1b:14:3d:1d: 5f:3b:d8:36:b1:f7:7d:b4:fa:61:aa:43:fe:ae:03: 28:93:16:a1:bd:f9:c8:dd:8a:b5:d4:fc:39:10:88: e4:9e:3f:89:b3:06:73:3c:a2:81:0b:33:4a:b7:f0: 19:85:a4:74:1d:fa:50:cc:9d:60:97:1e:2c:e8:81: eb:65:b3:34:01:19:30:be:a3:97:33:e7:ab:6f:39: 98:3e:1a:4c:c5:5f:63:11:d9:9d:d0:f6:1d:52:f2: e0:e6:cd:14:7b:9b:18:69:2e:cc:4d:7c:76:a0:8b: eb:69:66:43:e8:fd:a7:52:b5:36:8b:2b:cc:c8:ea: dc:ac:80:23:ee:11:a4:31:2b:29:c8:e9:dc:5a:d0: ee:be:04:d0:a4:cc:00:c8:99:1e:43:9a:35:d0:2c: fe:da:7d:7f:1f:ef:e8:4a:63:70:b3:3f:91:07:57: fa:13:42:61:31:6c:c4:78:a5:a5:73:24:1e:80:28: bb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AF:7C:E5:90:99:A4:A2:63:25:26:91:92:5E:E4:A0:D2:C9:86:73 X509v3 Authority Key Identifier: keyid:80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/1671D380603711EF97BB395FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.106.192.0/23 218.100.52.0-218.100.54.255 218.100.76.0/24 218.100.78.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:5e:ec:4b:d1:a5:cf:ce:0b:fd:6b:d3:38:35:84:0e:24:ac: 71:1d:7d:e7:98:c7:aa:c7:fe:81:e7:b8:6d:ff:92:82:5e:da: c1:a3:22:0d:e5:ed:e1:66:69:3b:f7:ba:59:80:e9:a7:b2:c0: 6f:1e:54:52:01:7b:a2:9e:f1:50:fc:dc:73:2d:96:5b:66:50: 77:c0:3d:f9:d2:f6:9d:99:af:13:ef:66:45:49:af:d9:b4:32: 78:db:03:a3:cc:d5:58:cc:28:a6:75:53:90:1f:62:dc:ba:c1: fc:11:f5:53:c2:85:37:68:61:91:12:66:dc:9c:4d:8d:c5:f4: 4e:53:8b:33:8e:eb:82:31:50:51:97:67:ed:b0:a1:c9:70:d6: 75:3b:2d:19:cd:47:d7:d1:79:24:24:17:60:c9:e5:5d:f1:8e: cf:32:f2:1f:90:7f:51:07:47:96:8f:8d:06:7b:4c:13:70:f8: b6:a6:59:5e:8d:d9:27:01:aa:42:2a:6a:b7:81:51:7b:73:53: c1:9b:c8:04:48:59:6c:41:4b:c3:94:bc:cb:7e:12:c7:98:41: cc:c6:d5:0a:db:2a:ff:9a:84:fc:be:e1:40:93:bc:a2:4b:8a: 47:5d:bc:18:9d:8b:6b:dd:13:e3:68:34:61:85:11:7e:83:c3: ce:e3:43:ad -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNTExMTAvBgNVBAUTKDgwNjcwNjYzNzk1MEVGOERBRTdCRUJEMUM5QTc0QkIx RjI2NUQ0MTcwHhcNMjQwOTE0MjAzODIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU1ZjQzZi1mYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU5d/Ttafbmfhv8ghXKfelvRYwWjr4oezqFNM95w0k+FDPSW3O6auTI++W1o 8ZLBWpS3rM7y+qgnsz3jVBl1dmUevhxYrRsUPR1fO9g2sfd9tPphqkP+rgMokxah vfnI3Yq11Pw5EIjknj+JswZzPKKBCzNKt/AZhaR0HfpQzJ1glx4s6IHrZbM0ARkw vqOXM+erbzmYPhpMxV9jEdmd0PYdUvLg5s0Ue5sYaS7MTXx2oIvraWZD6P2nUrU2 iyvMyOrcrIAj7hGkMSspyOncWtDuvgTQpMwAyJkeQ5o10Cz+2n1/H+/oSmNwsz+R B1f6E0JhMWzEeKWlcyQegCi7JQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFKavfOWQ maSiYyUmkZJe5KDSyYZzMB8GA1UdIwQYMBaAFIBnBmN5UO+Nrnvr0cmnS7HyZdQX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY1MS9BODgzRTgxQzNE ODIxMUVBOUYyNjczNzBDNEY5QUUwMi9nR2NHWTNsUTc0MnVlLXZSeWFkTHNmSmwx QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHY0dZM2xRNzQydWUtdlJ5YWRMc2ZKbDFCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGNTEvQTg4M0U4MUMzRDgyMTFFQTlGMjY3MzcwQzRGOUFFMDIvMTY3MUQzODA2 MDM3MTFFRjk3QkIzOTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAEbasAwDAMEAtpkNAMEANpkNgMEANpkTAMEANpkTjANBgkq hkiG9w0BAQsFAAOCAQEAHF7sS9Glz84L/WvTODWEDiSscR1955jHqsf+gee4bf+S gl7awaMiDeXt4WZpO/e6WYDpp7LAbx5UUgF7op7xUPzccy2WW2ZQd8A9+dL2nZmv E+9mRUmv2bQyeNsDo8zVWMwopnVTkB9i3LrB/BH1U8KFN2hhkRJm3JxNjcX0TlOL M47rgjFQUZdn7bChyXDWdTstGc1H19F5JCQXYMnlXfGOzzLyH5B/UQdHlo+NBntM E3D4tqZZXo3ZJwGqQipqt4FRe3NTwZvIBEhZbEFLw5S8y34Sx5hBzMbVCtsq/5qE /L7hQJO8okuKR128GJ2La90T42g0YYURfoPDzuNDrQ== -----END CERTIFICATE-----Generated at Tue Oct 22 21:15:10 2024 by rpki-client on console-ams.rpki-client.org