$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/81D5DEE47F5D11EDB4309B54C4F9AE02.roa File: 81D5DEE47F5D11EDB4309B54C4F9AE02.roa (raw, json) Hash identifier: zRdos/o+mb+OSdMpMggoSh17MEeYkJt0eDW/UfdGZq4= Subject key identifier: 0A:FB:57:39:29:CB:E6:24:D1:CE:84:69:0D:E7:86:20:19:B8:86:C3 Certificate issuer: /CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Certificate serial: 0154 Authority key identifier: E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/81D5DEE47F5D11EDB4309B54C4F9AE02.roa Signing time: Thu 03 Oct 2024 03:06:50 +0000 ROA not before: Thu 03 Oct 2024 03:06:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 7575 IP address blocks: 138.7.0.0/18 maxlen: 18 138.7.64.0/24 maxlen: 24 138.7.66.0/24 maxlen: 24 138.7.67.0/24 maxlen: 24 138.7.69.0/24 maxlen: 24 138.7.120.0/24 maxlen: 24 138.7.121.0/24 maxlen: 24 138.7.152.0/23 maxlen: 23 138.7.191.0/24 maxlen: 24 138.7.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Validity Not Before: Oct 3 03:06:50 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fe0a4a-0a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:22:c2:fd:fb:43:dc:00:0d:60:17:06:d9:a5: 0d:55:6f:f9:5c:b3:7f:9f:25:69:0a:67:4a:6d:63: 07:13:24:ae:fb:3a:f1:24:99:33:c1:78:12:ca:d8: 19:c6:fa:71:1b:93:ee:7f:bc:42:73:fa:d8:b4:72: 68:51:8c:9e:ac:e5:ee:99:1b:61:94:bc:ad:b5:fb: 9b:d3:bf:36:b9:23:43:0c:a9:bd:4c:24:a0:07:35: f2:4e:b5:05:b1:4f:b0:ca:29:c4:e8:29:ef:5d:f8: 67:34:cf:ab:81:71:31:15:5b:50:df:fc:ff:52:1d: 85:ce:81:e0:47:6d:c3:d3:07:02:8c:a0:76:7b:3a: 42:e1:82:26:8b:c2:44:59:b7:c1:11:a7:dc:a8:01: 8d:60:bd:57:9e:88:1c:23:59:15:8d:ef:cd:a1:2c: 9c:fc:05:cb:81:64:bf:81:90:6d:18:2a:7d:2b:22: 28:49:39:fb:d5:e2:7f:04:fc:49:ac:b2:2d:20:45: da:d0:99:7c:36:96:8c:55:27:7c:8f:7d:54:a9:13: 1f:d4:a6:bc:1d:b6:7e:f6:74:b2:2a:a3:5b:a8:2a: fc:92:fa:d1:50:27:0d:b7:d9:5c:76:d7:f4:c2:77: eb:54:05:12:af:b0:cf:84:d1:e5:1d:06:5b:5a:50: b1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FB:57:39:29:CB:E6:24:D1:CE:84:69:0D:E7:86:20:19:B8:86:C3 X509v3 Authority Key Identifier: keyid:E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/81D5DEE47F5D11EDB4309B54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.7.0.0-138.7.64.255 138.7.66.0/23 138.7.69.0/24 138.7.120.0/23 138.7.152.0/23 138.7.191.0/24 138.7.193.0/24 Signature Algorithm: sha256WithRSAEncryption b8:90:33:f6:b9:6f:12:c8:97:3f:c5:87:94:65:b5:6c:f7:dd: 83:0b:2e:42:3b:0f:6e:cc:71:6c:cc:41:b4:aa:a9:43:7f:14: 32:a7:6d:39:b3:8e:86:83:b4:4b:01:d0:5b:34:95:72:e1:39: b6:6a:ec:7c:ca:66:d6:e0:65:22:1d:d5:99:3b:42:f4:f7:2d: 1a:57:8c:01:9d:2f:38:5a:b1:49:7a:df:f6:a0:ec:82:43:04: cf:c0:53:48:1a:20:d4:6b:67:a6:88:d4:36:7a:c5:d5:aa:da: 74:52:14:91:59:12:53:04:7e:08:3a:e9:a7:1a:b0:1e:d3:02: 7c:f6:5c:9d:76:b5:5e:15:0b:5c:57:23:4e:6b:b7:a0:a4:9a: 5f:f3:ff:42:ed:9c:7f:d0:68:0d:a2:51:47:07:f2:bc:80:39: de:52:a8:1c:be:da:f2:f6:3d:8a:6c:04:a9:4d:99:f8:67:56: a5:71:5a:9b:0b:23:41:84:e5:11:68:61:74:d4:88:54:a6:b2: e7:5c:9b:cb:a0:e4:5a:9c:fe:39:c6:56:57:50:fc:dd:df:72: 1e:c6:70:70:d0:96:9e:f9:d7:cc:9e:d7:d5:2a:d0:04:94:5e: fc:0d:11:82:a8:1c:65:d0:81:46:5e:3b:15:ef:8b:21:b3:08: 48:04:26:01 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdGNkExMTAvBgNVBAUTKEUzM0RCNzkzQkJFRkU0NkNCQ0Y3NURCMzRFNzA5NDI3 QTcyRUYwRjMwHhcNMjQxMDAzMDMwNjUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMGE0YS0wYTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSLC/ftD3AANYBcG2aUNVW/5XLN/nyVpCmdKbWMHEySu+zrxJJkzwXgSytgZ xvpxG5Puf7xCc/rYtHJoUYyerOXumRthlLyttfub0782uSNDDKm9TCSgBzXyTrUF sU+wyinE6CnvXfhnNM+rgXExFVtQ3/z/Uh2FzoHgR23D0wcCjKB2ezpC4YImi8JE WbfBEafcqAGNYL1XnogcI1kVje/NoSyc/AXLgWS/gZBtGCp9KyIoSTn71eJ/BPxJ rLItIEXa0Jl8NpaMVSd8j31UqRMf1Ka8HbZ+9nSyKqNbqCr8kvrRUCcNt9lcdtf0 wnfrVAUSr7DPhNHlHQZbWlCxcwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFAr7Vzkp y+Yk0c6EaQ3nhiAZuIbDMB8GA1UdIwQYMBaAFOM9t5O77+RsvPdds05wlCenLvDz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0Y2QS8wNjc5MjUwMDdG NDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVHeTg5MTJ6VG5DVUo2Y3U4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzR6MjNrN3Z2NUd5ODkxMnpUbkNVSjZjdThQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdGNkEvMDY3OTI1MDA3RjQyMTFFREI0RTc4Qzg2QzRGOUFFMDIvODFENURFRTQ3 RjVEMTFFREI0MzA5QjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MDcEAgABMDEwCwMDAIoHAwQAigdAAwQBigdCAwQAigdFAwQBigd4AwQBigeY AwQAige/AwQAigfBMA0GCSqGSIb3DQEBCwUAA4IBAQC4kDP2uW8SyJc/xYeUZbVs 992DCy5COw9uzHFszEG0qqlDfxQyp205s46Gg7RLAdBbNJVy4Tm2aux8ymbW4GUi HdWZO0L09y0aV4wBnS84WrFJet/2oOyCQwTPwFNIGiDUa2emiNQ2esXVqtp0UhSR WRJTBH4IOumnGrAe0wJ89lyddrVeFQtcVyNOa7egpJpf8/9C7Zx/0GgNolFHB/K8 gDneUqgcvtry9j2KbASpTZn4Z1alcVqbCyNBhOURaGF01IhUprLnXJvLoORanP45 xlZXUPzd33IexnBw0Jae+dfMntfVKtAElF78DRGCqBxl0IFGXjsV74shswhIBCYB -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:51 2024 by rpki-client on console-ams.rpki-client.org