$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa File: CFE87CFEE74911EE9E36BA2AC4F9AE02.roa (raw, json) Hash identifier: UKwsFEyPykSAjx1cUaIvhwF+WNkQjRemB2kUzANIKwE= Subject key identifier: 60:02:4A:16:02:14:DB:4D:61:38:BA:2C:CE:E4:2A:8B:A1:5F:84:D5 Certificate issuer: /CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Certificate serial: 4E Authority key identifier: 93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa Signing time: Thu 25 Jul 2024 07:08:43 +0000 ROA not before: Thu 25 Jul 2024 07:08:43 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135315 IP address blocks: 159.73.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Validity Not Before: Jul 25 07:08:43 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a1f9fb-d37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:eb:50:7b:ef:5a:e1:99:46:bb:8a:3a:48:44: 7f:be:55:74:2f:33:d1:aa:00:d1:eb:51:70:1f:7c: e0:8b:be:c9:7a:21:f4:bf:0e:6f:9d:17:f6:4b:f4: 37:46:d8:93:da:20:5b:a5:af:8a:09:1c:e8:2a:74: 7d:c0:de:a8:87:d6:78:a7:05:9e:ef:a1:30:49:24: 62:6e:9b:d3:e9:89:f9:dd:a4:73:e8:2f:77:1b:eb: 07:0a:0b:f2:a7:d5:3d:c9:8d:0f:dc:1b:0d:88:77: ea:55:2d:0f:06:2a:06:f2:87:b0:e8:ab:cf:5f:2d: ed:37:93:13:98:64:1c:8f:78:19:61:d4:de:b4:ed: a8:cc:79:36:1a:8f:46:f2:59:8d:54:8c:6c:8d:4d: e4:fa:69:a4:01:95:c2:ae:7c:79:b1:3e:93:c8:2e: 6f:c7:4d:3e:5e:f6:b2:fb:4e:94:4d:6c:aa:d3:4f: 00:8e:a6:ac:71:48:aa:2c:92:a3:89:04:86:31:e7: f5:f2:40:27:4a:c5:6f:58:02:cc:f4:99:f6:7e:08: 9d:d5:1e:c8:b9:a3:c1:62:ba:32:8d:0d:c5:8a:64: e5:c5:19:3f:60:09:38:7d:68:84:33:35:24:7e:e8: c8:35:9b:3c:17:4f:fb:b9:31:42:3f:7b:83:35:26: ec:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:02:4A:16:02:14:DB:4D:61:38:BA:2C:CE:E4:2A:8B:A1:5F:84:D5 X509v3 Authority Key Identifier: keyid:93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption c1:b5:f5:41:da:2a:ba:64:03:25:d7:0c:04:87:19:02:41:a3: 52:13:37:6e:0a:e2:8d:92:9b:03:31:70:80:31:a2:49:0b:cd: 01:9f:77:dc:3d:25:30:81:33:59:04:36:26:64:04:fc:95:2e: d8:02:97:ce:62:e1:14:43:47:66:e9:f2:3a:61:b8:44:3c:b5: e1:3e:e4:20:57:8d:75:14:3e:ee:2f:fb:23:f2:2b:27:0b:98: 21:72:39:6d:72:61:41:f1:e4:5c:7c:b5:5d:7d:71:fd:4e:b5: 3b:c0:6c:13:c7:a4:08:58:40:5f:ad:59:f6:98:ef:bb:01:56: 0b:0f:a6:ac:91:0e:30:1f:09:ac:a1:13:5a:bb:95:94:59:95: 0c:6d:36:45:7b:8c:b1:07:a8:ec:c6:ce:2e:27:7a:61:ef:7d: ea:b0:0b:54:13:ba:3b:66:de:32:0d:a9:09:0e:a9:d7:d8:6d: 31:a6:ce:07:d3:27:9e:f5:b1:38:8c:f7:7e:1d:63:69:2c:0f: af:c3:ec:76:e5:ac:c4:25:7b:6a:a2:d7:b1:79:90:2d:f5:90: 21:3a:bc:b6:ac:8e:b9:66:31:8e:12:f1:1e:34:4a:c0:8f:e5: 40:a2:93:eb:58:2c:56:7c:38:bf:49:ec:c2:10:bb:f7:50:07: 0f:88:ee:59 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzNCQjExMC8GA1UEBRMoOTM3QTFCNUZFQjBBMjkzMzYwRUE0RTg4NDczNTJFN0ZE MzZDQzdBNTAeFw0yNDA3MjUwNzA4NDNaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTFmOWZiLWQzN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDq61B771rhmUa7ijpIRH++VXQvM9GqANHrUXAffOCLvsl6IfS/Dm+dF/ZL9DdG 2JPaIFulr4oJHOgqdH3A3qiH1ninBZ7voTBJJGJum9PpifndpHPoL3cb6wcKC/Kn 1T3JjQ/cGw2Id+pVLQ8GKgbyh7Doq89fLe03kxOYZByPeBlh1N607ajMeTYaj0by WY1UjGyNTeT6aaQBlcKufHmxPpPILm/HTT5e9rL7TpRNbKrTTwCOpqxxSKoskqOJ BIYx5/XyQCdKxW9YAsz0mfZ+CJ3VHsi5o8FiujKNDcWKZOXFGT9gCTh9aIQzNSR+ 6Mg1mzwXT/u5MUI/e4M1Juy7AgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUYAJKFgIU 201hOLoszuQqi6FfhNUwHwYDVR0jBBgwFoAUk3obX+sKKTNg6k6IRzUuf9Nsx6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3M0JCLzdFRDU3NTg2RTE4 RDExRUU5OTBGRUM0RkM0RjlBRTAyL2szb2JYLXNLS1ROZzZrNklSelV1ZjlOc3g2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvazNvYlgtc0tLVE5nNms2SVJ6VXVmOU5zeDZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzNCQi83RUQ1NzU4NkUxOEQxMUVFOTkwRkVDNEZDNEY5QUUwMi9DRkU4N0NGRUU3 NDkxMUVFOUUzNkJBMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAJ9JMA0GCSqGSIb3DQEBCwUAA4IBAQDBtfVB2iq6ZAMl1wwE hxkCQaNSEzduCuKNkpsDMXCAMaJJC80Bn3fcPSUwgTNZBDYmZAT8lS7YApfOYuEU Q0dm6fI6YbhEPLXhPuQgV411FD7uL/sj8isnC5ghcjltcmFB8eRcfLVdfXH9TrU7 wGwTx6QIWEBfrVn2mO+7AVYLD6askQ4wHwmsoRNau5WUWZUMbTZFe4yxB6jsxs4u J3ph733qsAtUE7o7Zt4yDakJDqnX2G0xps4H0yee9bE4jPd+HWNpLA+vw+x25azE JXtqotexeZAt9ZAhOry2rI65ZjGOEvEeNErAj+VAopPrWCxWfDi/SezCELv3UAcP iO5Z -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:16 2024 by rpki-client on console-ams.rpki-client.org