$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa File: 70A77C348D6C11EBAFD23A2EC4F9AE02.roa (raw, json) Hash identifier: 8e35oHpEk66wVCSfXTfi1bC+TzaBQMIYc44CKHvS+04= Subject key identifier: D7:39:02:83:82:D7:2F:54:3D:21:14:45:EE:F6:3A:50:94:62:2F:02 Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 0548 Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa Signing time: Thu 14 Dec 2023 23:51:59 +0000 ROA not before: Thu 14 Dec 2023 23:51:59 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 1221 IP address blocks: 168.134.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Validity Not Before: Dec 14 23:51:59 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b951e-71d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:88:31:e7:6f:1b:6f:d4:61:84:16:c9:48:a5: ec:ac:e5:64:f8:0d:0f:bd:56:40:b6:bd:8c:33:b8: 71:f8:c1:69:6d:1f:b2:60:fd:ec:ae:8a:84:5f:9e: eb:c9:6c:9d:5d:09:7b:78:29:79:0e:41:94:1f:a7: 3d:b9:69:de:5e:0e:05:25:75:45:c8:2b:11:35:e1: 0d:60:b0:7b:ef:39:ee:cf:56:1f:4f:b7:a8:0e:6c: fe:bc:0d:e5:81:cc:d6:01:85:91:40:d0:4e:cd:eb: 8a:94:3e:f6:ff:dd:30:f4:68:35:48:01:79:d1:90: da:da:68:e3:4e:c4:52:b7:b8:8e:12:91:14:61:bb: bf:65:09:45:7e:ce:9a:72:06:73:48:28:9f:3e:16: a3:9f:60:f2:b5:42:d3:ba:a4:b6:b7:be:32:f4:0b: c6:33:80:ac:46:82:a4:8c:a2:af:26:4b:3f:43:21: 6a:c1:74:ed:47:93:7f:78:1a:f5:f1:d6:f5:c5:a4: e3:e6:2f:29:d2:a8:27:fc:ef:91:e3:30:5c:b7:5b: 38:50:0c:1f:4b:2b:ad:e3:15:20:a1:8e:51:aa:eb: 9d:3a:19:d2:c3:0f:0c:67:16:e5:62:8d:f1:b2:53: dc:7d:c3:3a:2f:a8:c7:7b:9c:6a:7b:e8:22:73:d6: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:39:02:83:82:D7:2F:54:3D:21:14:45:EE:F6:3A:50:94:62:2F:02 X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.134.0.0/24 Signature Algorithm: sha256WithRSAEncryption 29:6d:ea:60:d6:aa:b9:75:6d:f1:71:99:7c:68:12:4d:c7:9c: b1:22:53:6c:d7:7c:cd:23:2b:ac:a1:33:82:65:b2:b6:b2:69: 2b:fa:56:aa:e2:d8:2b:eb:22:1b:79:a2:d2:f7:cd:6f:66:e6: 53:4e:87:87:67:2f:6c:e3:87:0e:27:e3:43:6d:8c:c6:bb:66: a3:d3:76:ba:82:bd:06:e1:c1:13:e3:0f:33:21:7a:4c:9f:43: 5d:ab:e4:54:ea:8b:6e:7d:ff:cf:2d:2d:c1:ce:bd:03:ea:25: b9:bd:4f:74:fa:ca:6b:83:ce:42:62:99:b6:e4:18:0f:e6:c0: 01:54:03:e4:4c:ec:56:3a:b7:fd:2b:9e:a2:3e:93:20:cf:86: 90:e2:1e:8a:6f:54:09:15:dc:95:c1:ef:0f:8f:9e:2b:56:e9: fa:ec:f2:aa:8c:5c:df:bb:c1:c0:3b:01:5a:95:34:87:4c:62: e1:8c:29:33:02:80:80:83:c1:48:af:7c:41:09:6b:98:36:5d: 59:cd:c9:23:bf:83:c1:a4:d8:26:fd:03:d9:b7:d2:64:4f:84: 78:8e:e1:89:00:f8:38:36:7d:6a:88:13:00:30:b0:ce:41:f2: 9e:9d:de:05:3f:33:e3:7d:46:54:20:35:a6:82:2e:04:b6:a2: b3:e9:4c:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjMxMjE0MjM1MTU5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiOTUxZS03MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIgx528bb9RhhBbJSKXsrOVk+A0PvVZAtr2MM7hx+MFpbR+yYP3sroqEX57r yWydXQl7eCl5DkGUH6c9uWneXg4FJXVFyCsRNeENYLB77znuz1YfT7eoDmz+vA3l gczWAYWRQNBOzeuKlD72/90w9Gg1SAF50ZDa2mjjTsRSt7iOEpEUYbu/ZQlFfs6a cgZzSCifPhajn2DytULTuqS2t74y9AvGM4CsRoKkjKKvJks/QyFqwXTtR5N/eBr1 8db1xaTj5i8p0qgn/O+R4zBct1s4UAwfSyut4xUgoY5RquudOhnSww8MZxblYo3x slPcfcM6L6jHe5xqe+gic9YD5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNc5AoOC 1y9UPSEURe72OlCUYi8CMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvNzBBNzdDMzQ4 RDZDMTFFQkFGRDIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACohgAwDQYJKoZIhvcNAQELBQADggEBAClt6mDWqrl1bfFx mXxoEk3HnLEiU2zXfM0jK6yhM4JlsrayaSv6Vqri2CvrIht5otL3zW9m5lNOh4dn L2zjhw4n40NtjMa7ZqPTdrqCvQbhwRPjDzMhekyfQ12r5FTqi259/88tLcHOvQPq Jbm9T3T6ymuDzkJimbbkGA/mwAFUA+RM7FY6t/0rnqI+kyDPhpDiHopvVAkV3JXB 7w+PnitW6frs8qqMXN+7wcA7AVqVNIdMYuGMKTMCgICDwUivfEEJa5g2XVnNySO/ g8Gk2Cb9A9m30mRPhHiO4YkA+Dg2fWqIEwAwsM5B8p6d3gU/M+N9RlQgNaaCLgS2 orPpTE8= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:02 2024 by rpki-client on console-ams.rpki-client.org