$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/1CFF4196D25D11EE8265DF1BC4F9AE02.roa File: 1CFF4196D25D11EE8265DF1BC4F9AE02.roa (raw, json) Hash identifier: VgrMolXlnMmBdnFruJODhCZjJyPACP+Qk3+uCDVN0dE= Subject key identifier: D0:EB:05:0B:BD:90:8B:03:C2:4C:62:66:7B:84:83:15:DE:9D:61:BC Certificate issuer: /CN=A91C09C5/serialNumber=66761CCD1B4C88384E6A404028CD9A9F809DE276 Certificate serial: 2B Authority key identifier: 66:76:1C:CD:1B:4C:88:38:4E:6A:40:40:28:CD:9A:9F:80:9D:E2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/1CFF4196D25D11EE8265DF1BC4F9AE02.roa Signing time: Fri 23 Feb 2024 15:06:26 +0000 ROA not before: Fri 23 Feb 2024 15:06:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152147 IP address blocks: 113.192.42.0/23 maxlen: 23 113.192.42.0/24 maxlen: 24 113.192.43.0/24 maxlen: 24 2001:df3:4240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.crl rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09C5/serialNumber=66761CCD1B4C88384E6A404028CD9A9F809DE276 Validity Not Before: Feb 23 15:06:26 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65d8b471-579a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6d:eb:a2:9b:a9:34:24:42:b5:62:b2:03:eb: 53:71:4e:ea:1d:ee:d5:58:1c:28:df:22:14:ba:83: ab:bc:2b:c2:96:dc:83:9c:f1:04:14:cf:78:36:e7: e1:cf:62:1d:84:b7:a3:38:c0:0e:82:d5:73:4d:b4: 65:02:fd:4d:15:4f:b0:ad:69:1b:0f:96:db:80:49: 8a:2b:f3:6f:ba:9a:66:85:3e:1a:08:ab:46:d0:b0: 4e:ee:2a:64:91:17:34:34:b5:b5:9b:75:85:d1:a0: 53:9e:43:5f:4d:7e:14:1d:48:c4:fa:1d:61:f6:8b: b1:5f:ed:65:ab:51:a3:b1:21:3f:38:c0:9b:d2:06: 70:15:35:3d:3d:fd:11:a6:c2:73:5b:35:c7:b9:c0: 81:87:9c:c5:5f:89:9e:35:dd:99:47:e9:08:d0:d3: b9:82:19:d4:3c:43:26:dd:0c:0a:ae:31:19:92:26: 6c:6c:c4:cf:70:4c:c1:1f:c5:03:f6:f0:d2:9d:05: 67:6b:dd:f6:4c:eb:aa:ce:78:cd:6f:13:ff:ff:56: 0f:a1:05:fc:ac:80:71:ca:24:7e:d3:e3:a9:05:bb: 35:f1:ac:5b:79:80:b3:22:2c:33:f2:93:09:b6:9a: f1:8a:aa:22:7a:fe:cb:95:12:c2:bd:4e:26:0d:28: 73:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EB:05:0B:BD:90:8B:03:C2:4C:62:66:7B:84:83:15:DE:9D:61:BC X509v3 Authority Key Identifier: keyid:66:76:1C:CD:1B:4C:88:38:4E:6A:40:40:28:CD:9A:9F:80:9D:E2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/1CFF4196D25D11EE8265DF1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.192.42.0/23 IPv6: 2001:df3:4240::/48 Signature Algorithm: sha256WithRSAEncryption 3c:c1:b6:ef:96:03:c8:e0:11:f4:d2:6b:36:66:80:0f:ce:59: 48:55:1f:36:b7:cf:ff:b5:29:69:dc:28:13:c7:6e:40:b8:14: 0e:33:3e:8a:7a:4d:2d:f9:0b:3b:35:ec:d3:09:f3:f2:7f:69: 0c:5d:dd:91:86:89:d0:73:4f:12:63:0a:b7:28:fb:17:ad:48: 16:5d:c1:22:d4:ac:64:ab:c2:78:c7:e3:68:dc:df:2f:2c:f0: 28:b6:97:42:a3:39:25:59:1c:69:78:d0:9b:fe:2a:63:11:9f: 64:eb:c6:6c:ee:e3:8b:29:6d:03:04:e5:c7:8f:fc:7b:38:ab: fa:7a:1d:e6:41:a0:ad:23:48:a6:07:82:a4:e6:b9:42:5e:d9: 4e:f1:ef:5a:d7:11:e3:19:e7:98:c4:c0:b0:04:d5:0c:2e:85: 27:e3:fa:93:bb:07:d3:81:bd:cc:6f:3a:ce:bd:3d:11:0c:75: f6:f1:3b:6f:06:a7:54:5b:b3:1f:6b:e6:93:ed:45:a0:54:97: ae:24:9f:5b:97:0b:a6:e0:5e:21:a2:a2:98:0d:5e:52:6d:34: f7:8c:b8:3b:9b:de:67:75:b9:8b:82:09:88:c0:25:cb:37:af: e9:42:b5:da:3a:8f:7a:3b:35:f2:0d:77:9c:1f:5e:85:32:7c: 8c:d0:82:f0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDlDNTExMC8GA1UEBRMoNjY3NjFDQ0QxQjRDODgzODRFNkE0MDQwMjhDRDlBOUY4 MDlERTI3NjAeFw0yNDAyMjMxNTA2MjZaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDhiNDcxLTU3OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcbeuim6k0JEK1YrID61NxTuod7tVYHCjfIhS6g6u8K8KW3IOc8QQUz3g25+HP Yh2Et6M4wA6C1XNNtGUC/U0VT7CtaRsPltuASYor82+6mmaFPhoIq0bQsE7uKmSR FzQ0tbWbdYXRoFOeQ19NfhQdSMT6HWH2i7Ff7WWrUaOxIT84wJvSBnAVNT09/RGm wnNbNce5wIGHnMVfiZ413ZlH6QjQ07mCGdQ8QybdDAquMRmSJmxsxM9wTMEfxQP2 8NKdBWdr3fZM66rOeM1vE///Vg+hBfysgHHKJH7T46kFuzXxrFt5gLMiLDPykwm2 mvGKqiJ6/suVEsK9TiYNKHM/AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU0OsFC72Q iwPCTGJme4SDFd6dYbwwHwYDVR0jBBgwFoAUZnYczRtMiDhOakBAKM2an4Cd4nYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwOUM1Lzc0QjE2Qzc2OTU5 OTExRUVCQTNDQjI3NUM0RjlBRTAyL1puWWN6UnRNaURoT2FrQkFLTTJhbjRDZDRu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWm5ZY3pSdE1pRGhPYWtCQUtNMmFuNENkNG5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDlDNS83NEIxNkM3Njk1OTkxMUVFQkEzQ0IyNzVDNEY5QUUwMi8xQ0ZGNDE5NkQy NUQxMUVFODI2NURGMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAXHAKjAPBAIAAjAJAwcAIAEN80JAMA0GCSqGSIb3DQEBCwUA A4IBAQA8wbbvlgPI4BH00ms2ZoAPzllIVR82t8//tSlp3CgTx25AuBQOMz6Kek0t +Qs7NezTCfPyf2kMXd2RhonQc08SYwq3KPsXrUgWXcEi1Kxkq8J4x+No3N8vLPAo tpdCozklWRxpeNCb/ipjEZ9k68Zs7uOLKW0DBOXHj/x7OKv6eh3mQaCtI0imB4Kk 5rlCXtlO8e9a1xHjGeeYxMCwBNUMLoUn4/qTuwfTgb3MbzrOvT0RDHX28TtvBqdU W7Mfa+aT7UWgVJeuJJ9blwum4F4hoqKYDV5SbTT3jLg7m95ndbmLggmIwCXLN6/p QrXaOo96OzXyDXecH16FMnyM0ILw -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org