$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/D56D9FD87E8711EC9A928B6AC4F9AE02.roa File: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (raw, json) Hash identifier: YfDacBEiPF3CeN27NKXelSKWfUi5i0nrYOCRqMwl/Uw= Subject key identifier: CD:36:55:9C:C6:10:93:C6:B8:D7:C0:CC:63:BF:DC:AB:7C:BA:A6:28 Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 33BA Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/D56D9FD87E8711EC9A928B6AC4F9AE02.roa Signing time: Wed 10 Jan 2024 15:10:47 +0000 ROA not before: Wed 10 Jan 2024 15:10:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133160 IP address blocks: 112.137.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13242 (0x33ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 10 15:10:47 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659eb377-b9ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:5e:50:32:24:b8:1d:9a:1c:20:2b:1c:0a: 1a:fc:fd:94:9d:04:81:ea:ff:e9:5b:c2:7a:f6:21: d1:32:20:19:27:1e:ac:5a:6d:be:a2:fa:07:e1:8a: f6:0d:01:77:02:77:7a:03:27:d3:3d:5a:ca:38:28: ba:2d:33:f7:68:e4:3c:08:cc:ef:bf:f8:8a:9a:05: 21:55:26:bf:48:69:69:bf:68:ce:6e:bc:78:28:32: f9:57:8c:d1:09:57:c3:7b:d7:43:5e:11:79:58:2f: 3e:77:90:75:18:1d:ea:d4:e9:e0:69:36:81:94:96: 13:4f:8d:2c:f7:40:45:61:1d:27:fb:da:fa:95:04: 6d:ef:c7:92:1b:73:fb:89:ad:61:b8:15:66:f0:7b: 1a:e2:c8:65:8e:8c:9b:c0:b2:dd:b2:34:39:d3:f9: 0b:50:b6:77:55:fb:69:df:23:68:4e:17:93:4e:5d: 88:33:f8:e6:26:65:64:55:e5:2b:61:a4:91:35:4c: 00:8c:22:1b:49:a7:d0:79:bd:54:76:af:8e:20:b3: 35:a3:2b:c9:8f:c7:63:e5:f3:fd:4b:eb:11:a4:5d: 28:dd:ca:8f:03:ad:e0:24:84:58:5f:29:77:7d:ae: 35:6b:53:3f:2a:3d:c2:1c:84:b8:5d:b3:ad:0f:48: 74:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:36:55:9C:C6:10:93:C6:B8:D7:C0:CC:63:BF:DC:AB:7C:BA:A6:28 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/D56D9FD87E8711EC9A928B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.137.24.0/24 Signature Algorithm: sha256WithRSAEncryption 87:cc:37:e0:d6:ce:7e:ce:c9:65:3c:1f:77:eb:93:c7:12:6b: 3f:dc:67:29:97:ba:a6:6b:c4:a7:0a:9a:40:2c:f0:47:c4:69: fe:07:d2:ba:e1:1d:07:e6:4a:aa:14:fe:e5:ee:22:2f:dd:d4: 5c:b5:e8:83:b0:28:fa:1f:43:9a:2f:3e:02:f3:52:15:b3:0d: 3b:86:56:93:26:a9:8d:94:47:b1:d6:c7:8b:f5:b5:f0:a4:e0: ac:4e:14:b7:8d:9b:2d:59:6c:64:07:29:3a:06:1c:fc:0a:ad: b5:24:a7:b5:af:74:22:1c:fb:74:d4:7e:21:da:1d:c4:66:0a: 31:48:46:72:a3:43:c0:80:7e:d4:79:77:4b:1c:b6:06:f7:f2: 53:b7:07:06:15:6b:2f:61:4d:bd:53:8e:2c:94:18:e2:7b:c3: ec:c0:2f:64:e7:34:d2:c5:b5:32:dc:95:c6:54:2e:a4:8a:85: c8:b4:6e:e6:98:4e:34:3d:eb:7a:59:6e:2d:4c:96:f0:ae:6e: cf:e6:52:a8:b6:22:aa:5d:c7:a5:b3:2d:5e:66:5c:3f:b3:74: d6:a6:6e:bc:67:55:03:d4:8f:01:0a:af:8e:c0:1e:0c:20:c2: fd:d2:8d:1a:48:5e:fe:c3:b0:ce:8f:cc:6b:1e:f7:23:60:58: 24:d0:5f:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjQwMTEwMTUxMDQ3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllYjM3Ny1iOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMVeUDIkuB2aHCArHAoa/P2UnQSB6v/pW8J69iHRMiAZJx6sWm2+ovoH4Yr2 DQF3And6AyfTPVrKOCi6LTP3aOQ8CMzvv/iKmgUhVSa/SGlpv2jObrx4KDL5V4zR CVfDe9dDXhF5WC8+d5B1GB3q1OngaTaBlJYTT40s90BFYR0n+9r6lQRt78eSG3P7 ia1huBVm8Hsa4shljoybwLLdsjQ50/kLULZ3Vftp3yNoTheTTl2IM/jmJmVkVeUr YaSRNUwAjCIbSafQeb1Udq+OILM1oyvJj8dj5fP9S+sRpF0o3cqPA63gJIRYXyl3 fa41a1M/Kj3CHIS4XbOtD0h0OwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM02VZzG EJPGuNfAzGO/3Kt8uqYoMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NUMvQkIzNDE3QzAxRDk2MTFFMkI4QkI4MjdGMDhCMDJDRDIvRDU2RDlGRDg3 RTg3MTFFQzlBOTI4QjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABwiRgwDQYJKoZIhvcNAQELBQADggEBAIfMN+DWzn7OyWU8 H3frk8cSaz/cZymXuqZrxKcKmkAs8EfEaf4H0rrhHQfmSqoU/uXuIi/d1Fy16IOw KPofQ5ovPgLzUhWzDTuGVpMmqY2UR7HWx4v1tfCk4KxOFLeNmy1ZbGQHKToGHPwK rbUkp7WvdCIc+3TUfiHaHcRmCjFIRnKjQ8CAftR5d0sctgb38lO3BwYVay9hTb1T jiyUGOJ7w+zAL2TnNNLFtTLclcZULqSKhci0buaYTjQ963pZbi1MlvCubs/mUqi2 Iqpdx6WzLV5mXD+zdNambrxnVQPUjwEKr47AHgwgwv3SjRpIXv7DsM6PzGse9yNg WCTQXw4= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org