$ rpki-client -vvf rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa File: 9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa (raw, json) Hash identifier: w1O1ZsevC2HzFSEj/1IPY4lUEna5oDbCvbrv+EoKv3c= Subject key identifier: EF:C5:A9:F7:E0:01:6E:CE:57:6F:5A:EC:66:1E:AD:0A:E7:7A:22:9D Certificate issuer: /CN=A913BC05/serialNumber=278AAC9FC6223BB037157EB39F96DBBDA8E6D256 Certificate serial: 058D Authority key identifier: 27:8A:AC:9F:C6:22:3B:B0:37:15:7E:B3:9F:96:DB:BD:A8:E6:D2:56 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/J4qsn8YiO7A3FX6zn5bbvajm0lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa Signing time: Fri 08 Nov 2024 19:07:53 +0000 ROA not before: Fri 08 Nov 2024 19:07:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58427 IP address blocks: 91.109.216.0/24 maxlen: 24 91.109.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/J4qsn8YiO7A3FX6zn5bbvajm0lY.crl rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/J4qsn8YiO7A3FX6zn5bbvajm0lY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/J4qsn8YiO7A3FX6zn5bbvajm0lY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BC05/serialNumber=278AAC9FC6223BB037157EB39F96DBBDA8E6D256 Validity Not Before: Nov 8 19:07:53 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672e6189-4e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0a:f8:4a:4d:9a:27:e6:6b:9e:76:8a:d8:02: ca:15:f6:a1:f1:0f:18:d0:a2:3c:d9:e8:1f:d5:50: 74:88:07:0e:6e:0d:cc:a3:68:00:d1:60:12:f6:ab: 96:ae:20:49:4a:e6:62:42:6c:ae:46:6a:c0:05:73: 06:15:dd:f3:c4:cd:d2:62:fc:e0:26:12:26:60:fe: f1:5a:3e:e0:0a:78:32:be:8c:b7:e8:c3:b4:20:89: e1:0e:c2:3a:7e:f4:88:4f:10:1e:9a:3f:af:1b:da: 4a:8c:c0:80:11:21:ad:90:37:f0:64:25:d8:8d:00: 1e:c1:50:de:8c:d4:0c:7a:e9:bb:4f:42:e7:27:e7: 88:a7:4c:c2:a3:ac:12:b6:e3:13:5b:ab:b8:33:ac: 26:bc:c2:75:aa:41:19:2d:d6:c3:92:15:51:f4:1c: f3:42:99:7e:48:ec:81:01:90:24:ff:28:10:cf:f2: 90:2a:41:a9:30:7f:64:05:16:cf:56:99:d5:ad:c9: 2b:a8:97:36:ba:f9:40:1e:b2:cc:1d:2f:93:58:c1: 0c:0f:2a:8d:49:1b:62:c5:75:42:ba:ad:8c:3c:11: 55:93:3b:44:f9:8b:24:57:65:02:60:d2:2a:fd:b8: 02:be:1a:55:49:62:13:8d:79:1f:22:66:d2:6f:5d: ed:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C5:A9:F7:E0:01:6E:CE:57:6F:5A:EC:66:1E:AD:0A:E7:7A:22:9D X509v3 Authority Key Identifier: keyid:27:8A:AC:9F:C6:22:3B:B0:37:15:7E:B3:9F:96:DB:BD:A8:E6:D2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/J4qsn8YiO7A3FX6zn5bbvajm0lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/J4qsn8YiO7A3FX6zn5bbvajm0lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BC05/83559C7CB21911EB82031482C4F9AE02/9C89E3D2B21A11EBAC1DBF83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 91.109.216.0/24 91.109.218.0/24 Signature Algorithm: sha256WithRSAEncryption 69:d1:0a:cd:b7:7b:8f:c2:77:31:71:8f:d0:d6:d6:09:8d:fd: 15:aa:29:e1:a5:6f:9d:ff:ec:07:55:8b:d8:ae:34:f9:22:61: dc:7c:54:2d:f9:cc:d0:ca:08:0e:0a:49:b4:ed:12:29:13:24: 7e:fb:42:1c:71:5b:e5:ed:0f:d1:cf:30:a0:d7:2b:66:bb:cb: 9e:d6:b4:a0:1e:dc:76:c3:fa:b5:95:f7:57:03:7c:ea:84:6b: bb:3a:4c:ce:96:d9:61:7a:c3:67:ca:7e:7b:de:3b:be:b6:62: 77:ac:12:43:18:40:f8:4a:0a:7c:ad:bb:64:3c:5c:95:76:f0: 58:3a:7b:67:cd:fa:19:66:19:92:b5:68:eb:bf:19:69:07:7b: 89:89:2a:d3:3c:d0:20:ab:07:81:1f:bb:a7:a2:4f:5c:6a:ea: 38:19:df:ef:5d:da:15:be:03:55:a0:a6:f6:08:8b:6c:be:47: 5b:6b:c9:77:0e:db:26:10:bc:27:6b:0d:e1:65:97:ca:43:1a: 81:b0:59:d9:9d:b1:31:e1:69:b6:f8:4f:0c:73:d0:1f:43:13: 1e:65:22:9f:4a:19:09:e6:a0:91:42:c7:5e:c4:7c:0b:9b:10: bf:47:94:32:36:ce:48:81:89:92:d1:f8:08:2c:be:d0:2f:9c: cf:f5:be:5c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JDMDUxMTAvBgNVBAUTKDI3OEFBQzlGQzYyMjNCQjAzNzE1N0VCMzlGOTZEQkJE QThFNkQyNTYwHhcNMjQxMTA4MTkwNzUzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlNjE4OS00ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQr4Sk2aJ+ZrnnaK2ALKFfah8Q8Y0KI82egf1VB0iAcObg3Mo2gA0WAS9quW riBJSuZiQmyuRmrABXMGFd3zxM3SYvzgJhImYP7xWj7gCngyvoy36MO0IInhDsI6 fvSITxAemj+vG9pKjMCAESGtkDfwZCXYjQAewVDejNQMeum7T0LnJ+eIp0zCo6wS tuMTW6u4M6wmvMJ1qkEZLdbDkhVR9BzzQpl+SOyBAZAk/ygQz/KQKkGpMH9kBRbP VpnVrckrqJc2uvlAHrLMHS+TWMEMDyqNSRtixXVCuq2MPBFVkztE+YskV2UCYNIq /bgCvhpVSWITjXkfImbSb13tdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO/Fqffg AW7OV29a7GYerQrneiKdMB8GA1UdIwQYMBaAFCeKrJ/GIjuwNxV+s5+W272o5tJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkMwNS84MzU1OUM3Q0Iy MTkxMUVCODIwMzE0ODJDNEY5QUUwMi9KNHFzbjhZaU83QTNGWDZ6bjViYnZham0w bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0o0cXNuOFlpTzdBM0ZYNnpuNWJidmFqbTBsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0JDMDUvODM1NTlDN0NCMjE5MTFFQjgyMDMxNDgyQzRGOUFFMDIvOUM4OUUzRDJC MjFBMTFFQkFDMURCRjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABbbdgDBABbbdowDQYJKoZIhvcNAQELBQADggEBAGnRCs23 e4/CdzFxj9DW1gmN/RWqKeGlb53/7AdVi9iuNPkiYdx8VC35zNDKCA4KSbTtEikT JH77QhxxW+XtD9HPMKDXK2a7y57WtKAe3HbD+rWV91cDfOqEa7s6TM6W2WF6w2fK fnveO762YnesEkMYQPhKCnytu2Q8XJV28Fg6e2fN+hlmGZK1aOu/GWkHe4mJKtM8 0CCrB4Efu6eiT1xq6jgZ3+9d2hW+A1WgpvYIi2y+R1tryXcO2yYQvCdrDeFll8pD GoGwWdmdsTHhabb4Twxz0B9DEx5lIp9KGQnmoJFCx17EfAubEL9HlDI2zkiBiZLR +AgsvtAvnM/1vlw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org