$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/0AF12B12DDA411E88E25E96FC4F9AE02.roa File: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (raw, json) Hash identifier: vODphove5pSaX+w3cXhgejpPd8H4WjRVBUVDnKXm9sU= Subject key identifier: 8A:B9:6D:4F:6B:C5:E5:7D:3B:4E:8D:42:54:F7:D6:C2:C9:5B:95:E0 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 11A3 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/0AF12B12DDA411E88E25E96FC4F9AE02.roa Signing time: Fri 02 Aug 2024 18:05:38 +0000 ROA not before: Fri 02 Aug 2024 18:05:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 56037 IP address blocks: 210.56.83.0/24 maxlen: 24 210.56.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4515 (0x11a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Aug 2 18:05:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ad1ff2-49fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bb:97:39:7d:23:00:75:16:a3:03:82:b7:db: 2a:d6:e2:d0:6b:51:a5:d0:ee:ad:78:d1:96:b1:a9: 76:33:9b:f8:cf:13:72:a0:4a:36:b1:58:2c:0a:5a: c3:35:27:e4:68:5a:28:9f:fc:c5:8c:c0:a5:56:e4: 8d:66:2c:82:e1:f9:e2:86:3c:32:3d:5e:01:45:66: 27:dc:5d:78:80:4a:0e:04:f2:73:c7:90:c4:c7:07: 8f:09:06:fb:24:be:14:d9:0e:78:53:fe:95:c0:8a: f6:70:48:c5:66:0c:6e:73:a2:9a:6f:d1:37:7c:67: 23:59:3b:df:59:6f:69:c9:58:e3:bc:7b:f4:a2:63: e2:32:63:5d:3b:a2:6a:0c:16:73:fa:75:ba:26:19: 4c:72:89:2c:d4:00:8f:9c:28:3e:97:e4:28:52:2f: 15:72:13:f1:a8:a2:75:5b:50:7f:93:bf:9a:19:b6: 56:d5:ea:ff:40:d9:fc:02:ec:19:d1:f2:00:33:ed: b9:18:f8:de:97:98:d3:3d:94:ab:5f:ec:02:15:54: dc:50:b5:27:92:48:d0:1c:a4:a1:45:f2:dc:11:2a: 4c:14:58:4c:46:01:3d:94:e4:f7:ce:a2:b7:63:b6: 77:7c:ae:89:b6:f3:de:4e:c5:f2:b2:5e:d0:cf:d7: 07:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B9:6D:4F:6B:C5:E5:7D:3B:4E:8D:42:54:F7:D6:C2:C9:5B:95:E0 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/0AF12B12DDA411E88E25E96FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.56.83.0/24 210.56.94.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:99:dc:02:79:ea:05:f3:f4:bb:1d:e1:d3:1e:5b:38:ea:58: 5d:3e:c8:6a:b2:40:05:23:e3:b3:d2:88:b1:e6:e1:29:ad:fb: 6e:e8:4b:60:f3:b8:09:4e:cb:57:20:2f:23:87:bc:d5:c5:82: a6:ba:21:5c:cd:1e:f2:4b:af:c5:c8:0b:14:33:89:d2:bd:c5: 36:d2:45:88:b6:46:b8:78:08:78:ff:a9:d0:9d:9b:67:52:4e: 74:12:fc:12:a3:ba:45:82:9c:6e:14:ef:3b:db:bd:26:de:a8: 1f:dd:e1:8a:64:94:e0:5f:64:31:65:cf:a4:72:9f:c6:77:1e: 00:3a:e1:a8:d1:c9:c8:3b:37:8b:96:19:bd:ee:f4:8e:f4:6c: 14:df:44:18:9e:19:7e:9d:9f:50:24:12:3a:20:36:e2:30:83: b4:18:ce:5d:08:5d:1a:b8:73:ee:d8:43:1b:3f:de:dc:fa:fc: 70:7f:d3:49:45:17:19:99:42:bd:c4:84:08:92:21:47:9c:12: bf:c0:05:b4:e7:65:96:ea:8b:e5:ea:44:67:5b:bb:42:5e:da: 35:75:52:71:90:a2:34:29:8d:59:0a:71:a7:18:82:5d:3f:ca: b0:59:09:f2:48:c6:75:8d:5b:54:20:f0:68:7f:81:50:b9:54: 86:19:48:d6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjQwODAyMTgwNTM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkMWZmMi00OWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApruXOX0jAHUWowOCt9sq1uLQa1Gl0O6teNGWsal2M5v4zxNyoEo2sVgsClrD NSfkaFoon/zFjMClVuSNZiyC4fnihjwyPV4BRWYn3F14gEoOBPJzx5DExwePCQb7 JL4U2Q54U/6VwIr2cEjFZgxuc6Kab9E3fGcjWTvfWW9pyVjjvHv0omPiMmNdO6Jq DBZz+nW6JhlMcoks1ACPnCg+l+QoUi8VchPxqKJ1W1B/k7+aGbZW1er/QNn8AuwZ 0fIAM+25GPjel5jTPZSrX+wCFVTcULUnkkjQHKShRfLcESpMFFhMRgE9lOT3zqK3 Y7Z3fK6JtvPeTsXysl7Qz9cH1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIq5bU9r xeV9O06NQlT31sLJW5XgMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI2OEEvODRGQjRDOUNEREExMTFFOEEyRTc4QTY5QzRGOUFFMDIvMEFGMTJCMTJE REE0MTFFODhFMjVFOTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADSOFMDBADSOF4wDQYJKoZIhvcNAQELBQADggEBACyZ3AJ5 6gXz9Lsd4dMeWzjqWF0+yGqyQAUj47PSiLHm4Smt+27oS2DzuAlOy1cgLyOHvNXF gqa6IVzNHvJLr8XICxQzidK9xTbSRYi2Rrh4CHj/qdCdm2dSTnQS/BKjukWCnG4U 7zvbvSbeqB/d4YpklOBfZDFlz6Ryn8Z3HgA64ajRycg7N4uWGb3u9I70bBTfRBie GX6dn1AkEjogNuIwg7QYzl0IXRq4c+7YQxs/3tz6/HB/00lFFxmZQr3EhAiSIUec Er/ABbTnZZbqi+XqRGdbu0Je2jV1UnGQojQpjVkKcacYgl0/yrBZCfJIxnWNW1Qg 8Gh/gVC5VIYZSNY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org