$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/B2C9B10A881311EE8CFB5C43C4F9AE02.roa File: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (raw, json) Hash identifier: 6Te+3VLS/O5qxRt8jv/bM33nUlqEem+47I9pmRS4Z7o= Subject key identifier: 33:F0:85:A7:E5:B6:7D:FC:BE:B5:F4:FA:3D:60:39:B8:8B:45:E0:8E Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: C2 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/B2C9B10A881311EE8CFB5C43C4F9AE02.roa Signing time: Fri 30 Aug 2024 18:56:20 +0000 ROA not before: Fri 30 Aug 2024 18:56:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24433 IP address blocks: 138.77.0.0/16 maxlen: 17 138.77.96.0/21 maxlen: 21 138.77.104.0/21 maxlen: 21 138.77.168.0/21 maxlen: 21 138.77.208.0/21 maxlen: 21 138.77.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Aug 30 18:56:20 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d215d4-d85a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:12:17:b7:b6:65:33:51:db:f7:a9:b2:23:c1: 29:51:df:c4:9a:d3:11:b6:48:f5:64:c0:af:ac:f5: 45:07:41:4f:97:bd:00:f6:43:7e:a8:a8:7b:3c:dd: e5:7f:3e:f8:17:e1:d4:8d:36:48:92:61:a8:15:82: 1b:d0:11:17:a1:e5:18:39:76:25:44:62:ca:eb:83: 88:f7:93:73:db:0c:3f:b0:ac:af:53:b0:72:37:ab: ce:1e:c5:0c:f7:33:79:47:b3:66:32:70:e8:78:5d: 8c:3d:2a:2f:0d:98:dc:36:b1:53:25:73:38:16:56: ec:d8:b4:09:bb:33:c5:dd:de:3a:f8:42:9f:21:3c: 67:d2:ae:33:47:2e:f3:1d:3a:7f:11:3d:86:d1:a4: 95:17:4b:7b:77:6b:a0:27:ba:23:36:b2:b2:96:58: e0:ee:b7:c2:c1:b8:0b:9f:c4:b3:93:ba:db:7c:68: fe:48:1c:99:93:a1:aa:e6:67:ca:16:5f:15:46:a0: 62:1c:3c:33:91:75:e7:ab:55:43:de:ac:bd:7e:8c: 7e:7b:51:b5:25:20:0d:28:58:46:a2:21:dd:b6:d8: 4d:51:09:6a:4a:3f:db:9b:b7:92:ad:8d:76:f5:7e: e6:d4:d0:e3:10:87:d1:4c:91:b1:3f:29:a2:97:03: 88:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F0:85:A7:E5:B6:7D:FC:BE:B5:F4:FA:3D:60:39:B8:8B:45:E0:8E X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/B2C9B10A881311EE8CFB5C43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption c1:b2:eb:1e:93:b8:32:0a:40:e0:db:7e:dc:02:1d:88:7a:3d: 46:d0:6c:d5:63:72:74:f5:6e:f0:7b:8b:2c:51:c1:f6:15:0e: ed:b7:ff:08:7c:2e:7d:d3:b3:c0:3f:8e:a7:de:59:54:54:cb: f0:fc:1b:69:fd:02:e8:eb:38:ac:13:37:fe:e4:d2:05:4f:67: 8c:d1:76:ac:b8:5e:58:9f:c6:6e:d2:c4:46:a2:8f:3e:6c:34: 5b:b0:27:9f:1c:87:6d:9a:b0:b3:f0:32:d8:b7:f7:dc:e0:79: 85:bf:0d:76:fb:23:3c:05:73:c8:4d:5a:e8:b5:06:cd:58:73: 7c:7a:cc:67:5f:75:c8:2b:25:fe:4a:e4:93:50:f6:5a:ad:6c: 55:77:c9:1d:5a:63:3f:76:0f:78:2a:e0:f8:42:1d:1e:46:14: 3e:f0:ed:f2:45:fd:89:e8:43:fa:6b:fd:5b:b2:d0:4a:38:52: 83:34:ca:c1:08:4b:6e:66:7e:c0:4d:a9:65:97:15:3a:17:b4: b6:72:df:88:b8:a0:f1:23:89:a6:1f:5a:5b:80:bb:5c:00:7e: a6:f1:13:13:57:c2:0d:96:b6:94:66:0d:77:43:01:d3:34:ee: 21:25:b1:fe:20:02:d7:e1:07:3f:a7:b6:74:47:7e:d2:8b:82: 86:f5:6b:90 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjQwODMwMTg1NjIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyMTVkNC1kODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRIXt7ZlM1Hb96myI8EpUd/EmtMRtkj1ZMCvrPVFB0FPl70A9kN+qKh7PN3l fz74F+HUjTZIkmGoFYIb0BEXoeUYOXYlRGLK64OI95Nz2ww/sKyvU7ByN6vOHsUM 9zN5R7NmMnDoeF2MPSovDZjcNrFTJXM4Flbs2LQJuzPF3d46+EKfITxn0q4zRy7z HTp/ET2G0aSVF0t7d2ugJ7ojNrKylljg7rfCwbgLn8Szk7rbfGj+SByZk6Gq5mfK Fl8VRqBiHDwzkXXnq1VD3qy9fox+e1G1JSANKFhGoiHdtthNUQlqSj/bm7eSrY12 9X7m1NDjEIfRTJGxPymilwOIXwIDAQABo4IClDCCApAwHQYDVR0OBBYEFDPwhafl tn38vrX0+j1gObiLReCOMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4NTYvMkREQjQyNkU0ODYzMTFFRUJDMEJEMjEzQzRGOUFFMDIvQjJDOUIxMEE4 ODEzMTFFRThDRkI1QzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCKTTANBgkqhkiG9w0BAQsFAAOCAQEAwbLrHpO4MgpA4Nt+ 3AIdiHo9RtBs1WNydPVu8HuLLFHB9hUO7bf/CHwufdOzwD+Op95ZVFTL8Pwbaf0C 6Os4rBM3/uTSBU9njNF2rLheWJ/GbtLERqKPPmw0W7AnnxyHbZqws/Ay2Lf33OB5 hb8NdvsjPAVzyE1a6LUGzVhzfHrMZ191yCsl/krkk1D2Wq1sVXfJHVpjP3YPeCrg +EIdHkYUPvDt8kX9iehD+mv9W7LQSjhSgzTKwQhLbmZ+wE2pZZcVOhe0tnLfiLig 8SOJph9aW4C7XAB+pvETE1fCDZa2lGYNd0MB0zTuISWx/iAC1+EHP6e2dEd+0ouC hvVrkA== -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:58 2024 by rpki-client on console-ams.rpki-client.org