$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/B3789882F23211EC9A7DB924C4F9AE02.roa File: B3789882F23211EC9A7DB924C4F9AE02.roa (raw, json) Hash identifier: rIHf5i83E1p5Ri/ttyh1R45twa+CCKGykvEfpC6f2Dg= Subject key identifier: 49:97:14:B8:50:A9:FC:41:68:FB:0F:33:C0:10:CF:88:B9:1E:8B:F4 Certificate issuer: /CN=A91ADE0A/serialNumber=46B4FF8DC9167A777D98D85F2F521DD1367073B3 Certificate serial: 03A7 Authority key identifier: 46:B4:FF:8D:C9:16:7A:77:7D:98:D8:5F:2F:52:1D:D1:36:70:73:B3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RrT_jckWend9mNhfL1Id0TZwc7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/B3789882F23211EC9A7DB924C4F9AE02.roa Signing time: Tue 06 Feb 2024 16:13:18 +0000 ROA not before: Tue 06 Feb 2024 16:13:18 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133334 IP address blocks: 2.58.228.0/22 maxlen: 22 2.58.228.0/24 maxlen: 24 2.58.229.0/24 maxlen: 24 2.58.230.0/24 maxlen: 24 2.58.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/RrT_jckWend9mNhfL1Id0TZwc7M.crl rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/RrT_jckWend9mNhfL1Id0TZwc7M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RrT_jckWend9mNhfL1Id0TZwc7M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADE0A/serialNumber=46B4FF8DC9167A777D98D85F2F521DD1367073B3 Validity Not Before: Feb 6 16:13:18 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c25a9e-58da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:40:57:ce:02:55:d6:20:f4:80:3a:ac:64:88: ba:2b:56:1e:06:96:bd:eb:96:53:80:c2:38:4d:1f: 91:0f:3f:f8:97:3a:61:c0:a7:b2:c6:96:ee:5a:b7: 6c:fa:5f:49:ca:20:81:99:59:a4:9a:72:09:01:46: a8:3b:14:1c:8d:62:a1:48:e6:27:ff:27:fb:b1:27: 7a:a3:95:e9:4b:96:77:d2:c4:46:cb:b6:65:b7:ad: 38:e3:5d:c5:16:44:ca:b7:70:5a:89:62:d0:dc:73: 13:88:02:3f:a7:63:61:3f:5e:6a:fa:e7:a3:74:47: 2d:38:97:7c:7b:89:ca:27:c6:c1:18:ab:91:2a:30: fc:82:d7:39:4e:9b:4e:6a:c0:e1:27:8a:a7:ea:ad: 14:fb:ac:8c:85:c4:3b:15:da:fd:88:ab:57:7c:fa: 5e:25:eb:19:a4:30:b1:0c:9e:58:3a:9c:d6:ee:3d: 80:76:89:7d:cf:83:54:ef:63:c9:e5:11:88:e2:2e: 23:45:04:42:7d:45:dd:6d:36:a6:26:4b:5b:4e:35: 0f:07:2d:4e:81:4b:7c:aa:3d:c2:72:b6:d8:99:a8: 0b:a2:05:4d:63:f2:f6:8a:6c:f1:7a:b6:ae:a9:eb: c0:0a:f8:27:94:79:95:91:48:1c:af:23:34:32:66: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:97:14:B8:50:A9:FC:41:68:FB:0F:33:C0:10:CF:88:B9:1E:8B:F4 X509v3 Authority Key Identifier: keyid:46:B4:FF:8D:C9:16:7A:77:7D:98:D8:5F:2F:52:1D:D1:36:70:73:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/RrT_jckWend9mNhfL1Id0TZwc7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RrT_jckWend9mNhfL1Id0TZwc7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/B3789882F23211EC9A7DB924C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 2.58.228.0/22 Signature Algorithm: sha256WithRSAEncryption 19:bf:8f:a6:3c:20:ca:d5:be:39:e1:2a:f9:f0:a8:f4:54:1d: 24:5a:f6:ae:8d:8d:0a:7c:a5:2f:c3:06:35:25:8f:74:c8:86: 16:58:2c:43:b5:10:0f:7d:a7:e3:bd:e1:23:3f:73:c0:6a:50: 8c:4e:74:24:d8:20:62:92:b4:46:e1:a7:c5:2b:b9:31:aa:8a: bb:83:bd:5c:17:1e:83:4f:fc:c0:0c:de:d9:1b:b1:69:10:42: 2e:95:f7:16:0c:de:37:77:14:32:f3:a4:81:46:5e:f6:7f:d1: 29:1d:a5:48:a8:bf:1d:bf:1f:46:6d:cb:5f:7d:4e:fe:47:b3: 5d:d5:c3:ba:a7:ab:9e:da:64:5b:c2:95:73:5a:0a:92:8e:4b: 2f:42:ea:29:0b:25:74:de:84:00:5d:b3:cf:c6:02:ce:cf:00: 7a:1f:33:3a:1f:e1:56:f3:4a:b6:8b:20:f4:e8:cb:d9:d0:7c: 45:0e:2b:63:2a:5d:2c:cb:f0:d3:74:48:c8:29:64:c1:42:7e: 19:79:f0:6e:db:e4:6d:7b:1c:67:09:f7:9c:6e:1e:0d:00:d9: 83:5e:8d:7f:b9:ef:47:a4:00:2b:ca:a4:7d:43:ef:a8:1f:87: ae:37:4e:4e:30:cd:ce:47:10:02:5b:1f:e0:c5:4c:f4:ab:48: f5:f0:95:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURFMEExMTAvBgNVBAUTKDQ2QjRGRjhEQzkxNjdBNzc3RDk4RDg1RjJGNTIxREQx MzY3MDczQjMwHhcNMjQwMjA2MTYxMzE4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyNWE5ZS01OGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUBXzgJV1iD0gDqsZIi6K1YeBpa965ZTgMI4TR+RDz/4lzphwKeyxpbuWrds +l9JyiCBmVmkmnIJAUaoOxQcjWKhSOYn/yf7sSd6o5XpS5Z30sRGy7Zlt604413F FkTKt3BaiWLQ3HMTiAI/p2NhP15q+uejdEctOJd8e4nKJ8bBGKuRKjD8gtc5TptO asDhJ4qn6q0U+6yMhcQ7Fdr9iKtXfPpeJesZpDCxDJ5YOpzW7j2Adol9z4NU72PJ 5RGI4i4jRQRCfUXdbTamJktbTjUPBy1OgUt8qj3CcrbYmagLogVNY/L2imzxerau qevACvgnlHmVkUgcryM0MmYjWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEmXFLhQ qfxBaPsPM8AQz4i5Hov0MB8GA1UdIwQYMBaAFEa0/43JFnp3fZjYXy9SHdE2cHOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREUwQS80MzU2N0VFNDNE MjgxMUVDQkVGNzdDNzZDNEY5QUUwMi9SclRfamNrV2VuZDltTmhmTDFJZDBUWndj N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JyVF9qY2tXZW5kOW1OaGZMMUlkMFRad2M3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURFMEEvNDM1NjdFRTQzRDI4MTFFQ0JFRjc3Qzc2QzRGOUFFMDIvQjM3ODk4ODJG MjMyMTFFQzlBN0RCOTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAICOuQwDQYJKoZIhvcNAQELBQADggEBABm/j6Y8IMrVvjnh KvnwqPRUHSRa9q6NjQp8pS/DBjUlj3TIhhZYLEO1EA99p+O94SM/c8BqUIxOdCTY IGKStEbhp8UruTGqiruDvVwXHoNP/MAM3tkbsWkQQi6V9xYM3jd3FDLzpIFGXvZ/ 0SkdpUiovx2/H0Zty199Tv5Hs13Vw7qnq57aZFvClXNaCpKOSy9C6ikLJXTehABd s8/GAs7PAHofMzof4VbzSraLIPToy9nQfEUOK2MqXSzL8NN0SMgpZMFCfhl58G7b 5G17HGcJ95xuHg0A2YNejX+570ekACvKpH1D76gfh643Tk4wzc5HEAJbH+DFTPSr SPXwldw= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org