$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/F9722F8255C411E9A0FEF781C4F9AE02.roa File: F9722F8255C411E9A0FEF781C4F9AE02.roa (raw, json) Hash identifier: 1MwVLRpbfDqQcwZxnbAiHImneNLRD8huPIYGfKChQyU= Subject key identifier: F4:F5:EF:F1:08:89:40:DD:51:CE:77:8C:59:70:F4:40:99:A2:C0:0D Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 294F Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/F9722F8255C411E9A0FEF781C4F9AE02.roa Signing time: Tue 02 Jul 2024 14:40:26 +0000 ROA not before: Tue 02 Jul 2024 14:40:26 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7575 IP address blocks: 138.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10575 (0x294f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Jul 2 14:40:26 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6684115a-eb43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:de:58:14:ed:ae:4a:21:d0:d4:30:04:c2:1e: 69:ca:e5:0d:8c:42:9e:22:1c:d4:fe:50:39:46:cf: 9c:f3:fb:5d:ef:35:7d:0c:a0:f0:35:9a:ef:0f:96: cf:90:8d:1f:9c:59:cd:15:83:08:58:75:6e:57:c1: 6f:67:24:c7:1b:9f:7d:d2:1d:73:3c:b7:4a:cb:c4: 27:b7:39:b1:38:28:5c:49:92:b2:e3:3a:66:f1:e7: 1a:9d:60:82:96:91:12:7e:0a:6a:3c:e0:5c:51:16: aa:ef:eb:db:10:16:a9:5f:ea:58:30:49:16:c0:ac: c4:3d:fd:58:d0:d2:0b:1d:34:40:0d:db:53:28:b3: 6f:8b:f4:0d:0a:f6:7b:54:f4:8a:38:67:62:64:0d: d2:f2:5e:35:be:77:04:b9:e7:bf:5a:89:6e:df:77: 71:ac:54:e8:c5:53:d2:ba:d6:f2:23:17:33:64:67: e6:16:77:24:21:22:5e:33:ac:3e:5e:8d:d1:e1:54: ae:b3:74:be:28:de:f4:62:67:79:91:4c:83:55:08: 5d:45:ba:03:4c:63:7e:58:09:1c:8d:12:21:22:01: 53:b2:7b:65:02:f0:69:3c:cb:7d:56:47:fa:3d:d5: 94:99:18:7d:a6:9e:30:8a:36:55:94:0a:93:d6:8a: 99:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F5:EF:F1:08:89:40:DD:51:CE:77:8C:59:70:F4:40:99:A2:C0:0D X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/F9722F8255C411E9A0FEF781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:ae:b6:e5:5a:4b:ef:26:ca:5b:31:92:a3:a5:bb:09:e1:bb: 1a:91:e1:b2:0a:78:13:0f:32:b1:47:1b:17:d3:6a:ef:02:94: ec:74:58:b3:71:cd:7f:5e:1b:9c:73:ae:d1:af:99:74:e1:70: e4:e1:fd:a8:f8:f2:c1:e2:c2:04:84:7f:00:f0:26:60:56:35: d8:5d:87:41:38:6a:06:44:70:12:3e:10:95:67:f5:01:2e:62: 86:96:cd:bc:a5:61:3d:c9:15:d8:29:6b:86:ea:8a:3f:91:f8: 0e:c4:1f:26:ed:ad:91:43:f8:8b:71:a0:78:67:9c:85:1c:8e: d8:65:dd:d5:7b:4e:aa:1f:b5:73:1a:98:31:66:7e:45:66:65: 31:f8:f3:3c:8a:52:a1:02:ff:8e:98:bd:b7:f5:e1:3b:a4:12: 53:ad:10:a7:20:12:cb:97:b5:ff:01:dd:0e:f7:cf:3b:2a:df: 55:f1:f8:24:52:c9:03:71:da:5c:e3:09:84:c2:d9:a5:5f:b8: 8a:dd:99:f9:08:a8:f6:bf:e2:3e:57:ab:ed:34:51:ac:8f:d6: 19:15:43:6f:af:f9:66:b1:25:c8:5e:23:7e:73:df:bd:43:d4: ff:94:3a:f6:4f:83:98:80:7c:b1:64:36:70:aa:c7:65:26:d8: 07:48:32:c8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICKU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjQwNzAyMTQ0MDI2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0MTE1YS1lYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+N5YFO2uSiHQ1DAEwh5pyuUNjEKeIhzU/lA5Rs+c8/td7zV9DKDwNZrvD5bP kI0fnFnNFYMIWHVuV8FvZyTHG5990h1zPLdKy8QntzmxOChcSZKy4zpm8ecanWCC lpESfgpqPOBcURaq7+vbEBapX+pYMEkWwKzEPf1Y0NILHTRADdtTKLNvi/QNCvZ7 VPSKOGdiZA3S8l41vncEuee/Wolu33dxrFToxVPSutbyIxczZGfmFnckISJeM6w+ Xo3R4VSus3S+KN70Ymd5kUyDVQhdRboDTGN+WAkcjRIhIgFTsntlAvBpPMt9Vkf6 PdWUmRh9pp4wijZVlAqT1oqZvQIDAQABo4IClDCCApAwHQYDVR0OBBYEFPT17/EI iUDdUc53jFlw9ECZosANMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYxOUUvQTkzRTk5M0UzNDBEMTFFNDlFQzk4MTYzQzRGOUFFMDIvRjk3MjJGODI1 NUM0MTFFOUEwRkVGNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCKLDANBgkqhkiG9w0BAQsFAAOCAQEAFq625VpL7ybKWzGS o6W7CeG7GpHhsgp4Ew8ysUcbF9Nq7wKU7HRYs3HNf14bnHOu0a+ZdOFw5OH9qPjy weLCBIR/APAmYFY12F2HQThqBkRwEj4QlWf1AS5ihpbNvKVhPckV2ClrhuqKP5H4 DsQfJu2tkUP4i3GgeGechRyO2GXd1XtOqh+1cxqYMWZ+RWZlMfjzPIpSoQL/jpi9 t/XhO6QSU60QpyASy5e1/wHdDvfPOyrfVfH4JFLJA3HaXOMJhMLZpV+4it2Z+Qio 9r/iPler7TRRrI/WGRVDb6/5ZrElyF4jfnPfvUPU/5Q69k+DmIB8sWQ2cKrHZSbY B0gyyA== -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org