$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/DF4EFA76CA7811EE838E0A73C4F9AE02.roa File: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (raw, json) Hash identifier: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw= Subject key identifier: 68:D8:4A:0C:7B:29:99:20:AA:93:66:3F:57:93:0C:AD:13:74:E0:54 Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 93 Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/DF4EFA76CA7811EE838E0A73C4F9AE02.roa Signing time: Wed 06 Nov 2024 20:39:10 +0000 ROA not before: Wed 06 Nov 2024 20:39:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139750 IP address blocks: 138.99.216.0/24 maxlen: 24 138.99.217.0/24 maxlen: 24 138.99.218.0/24 maxlen: 24 138.99.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Nov 6 20:39:10 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bd3ee-85c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:43:4d:1e:12:1f:eb:74:d8:a2:dd:46:f6:46: 3f:f0:1a:8f:48:f9:e7:e5:d9:00:39:e6:95:c2:71: 29:fc:d7:cf:91:50:25:0e:a4:1f:bc:64:93:24:4a: 87:0c:71:e1:2d:35:f2:e4:00:c7:17:3b:01:7b:15: 93:69:2a:8d:64:8d:7f:28:17:d4:58:4b:11:6f:e9: 77:31:25:61:f6:28:08:f8:3f:36:f1:d9:4e:eb:4b: 6e:4c:13:b6:23:cd:52:9d:ac:6d:ba:8d:f8:cd:3c: e0:78:10:f9:53:52:9e:b3:75:5a:e0:96:3b:71:a4: 92:f4:d6:5c:87:1e:8f:cc:d1:3f:fe:17:ef:a7:de: 41:00:fa:26:0e:f2:b1:6e:a7:71:bf:19:04:e5:98: 83:c8:dd:26:d0:60:ec:b0:ff:06:35:03:a6:f7:47: 1e:1f:81:45:23:b6:04:88:f5:0c:1f:88:8d:d9:2e: c6:ef:22:b4:7c:87:b0:ae:27:08:72:2a:a6:18:26: 29:32:c3:d6:bd:9a:b5:29:fb:02:55:87:fe:d7:55: d1:26:1f:03:52:cc:37:81:eb:c3:5e:74:6d:f2:96: 00:2b:fc:d1:24:29:af:21:61:7a:2c:24:af:7c:99: 76:7d:5b:7e:1c:72:b4:e9:1c:5a:ae:d4:f9:0e:b9: bd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D8:4A:0C:7B:29:99:20:AA:93:66:3F:57:93:0C:AD:13:74:E0:54 X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/DF4EFA76CA7811EE838E0A73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.99.216.0/22 Signature Algorithm: sha256WithRSAEncryption a9:3f:c1:43:66:36:e0:a9:d7:f1:28:85:39:85:2b:52:f1:0e: d4:80:2b:85:c6:01:76:34:a8:fb:4c:4b:f2:84:51:e0:d0:97: d1:fa:3e:21:19:50:c7:c0:c5:d5:5b:43:1f:d5:e0:bc:d8:8f: 06:09:a7:25:0d:f3:1d:31:d2:db:86:f0:68:d6:90:a8:3e:ee: 5b:3c:36:12:52:42:0f:25:3e:9d:10:65:1e:b0:29:c9:42:41: ee:0c:82:17:bb:10:10:a6:5e:d3:d8:f7:b5:92:00:f9:57:e3: f5:d5:3c:06:2c:20:c2:59:b6:76:1e:a9:99:2d:68:cf:2e:11: cc:27:ec:1c:85:98:65:28:43:b4:4d:fa:09:fa:3c:11:64:ad: be:29:6b:6c:9c:b9:75:cb:7d:ff:c7:19:a9:60:81:a2:df:3f: f7:3b:5f:78:fb:ff:e7:6d:1f:5f:83:30:34:1a:b4:b2:e5:25: 72:db:06:c2:9f:c9:0e:12:53:9a:31:d2:ee:3b:d2:d4:00:58: 16:11:dd:9a:d0:1c:ab:7f:ef:96:ec:bd:cc:1b:a1:fa:1f:c3: de:75:37:cc:83:fa:33:f5:fa:9b:6c:7f:eb:33:e0:ad:80:89: fe:7b:f4:9b:fa:e4:19:77:e2:14:13:87:19:83:65:fa:bd:e9: 7c:42:56:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjQxMTA2MjAzOTEwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZDNlZS04NWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykNNHhIf63TYot1G9kY/8BqPSPnn5dkAOeaVwnEp/NfPkVAlDqQfvGSTJEqH DHHhLTXy5ADHFzsBexWTaSqNZI1/KBfUWEsRb+l3MSVh9igI+D828dlO60tuTBO2 I81Snaxtuo34zTzgeBD5U1Kes3Va4JY7caSS9NZchx6PzNE//hfvp95BAPomDvKx bqdxvxkE5ZiDyN0m0GDssP8GNQOm90ceH4FFI7YEiPUMH4iN2S7G7yK0fIewricI ciqmGCYpMsPWvZq1KfsCVYf+11XRJh8DUsw3gevDXnRt8pYAK/zRJCmvIWF6LCSv fJl2fVt+HHK06RxartT5Drm9GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGjYSgx7 KZkgqpNmP1eTDK0TdOBUMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQwRDYvMDVGODYwMTRDNTM3MTFFRUI2N0FFQjc5QzRGOUFFMDIvREY0RUZBNzZD QTc4MTFFRTgzOEUwQTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKKY9gwDQYJKoZIhvcNAQELBQADggEBAKk/wUNmNuCp1/Eo hTmFK1LxDtSAK4XGAXY0qPtMS/KEUeDQl9H6PiEZUMfAxdVbQx/V4LzYjwYJpyUN 8x0x0tuG8GjWkKg+7ls8NhJSQg8lPp0QZR6wKclCQe4Mghe7EBCmXtPY97WSAPlX 4/XVPAYsIMJZtnYeqZktaM8uEcwn7ByFmGUoQ7RN+gn6PBFkrb4pa2ycuXXLff/H GalggaLfP/c7X3j7/+dtH1+DMDQatLLlJXLbBsKfyQ4SU5ox0u470tQAWBYR3ZrQ HKt/75bsvcwbofofw951N8yD+jP1+ptsf+sz4K2Aif579Jv65Bl34hQThxmDZfq9 6XxCVvU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:58 2024 by rpki-client on console-ams.rpki-client.org