$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa File: 612992C6012A11EFB75C350FC4F9AE02.roa (raw, json) Hash identifier: TgL1cpOOq2ziR1mQHmnKsgvI8G2n0Z8WFPhDHlIoFSk= Subject key identifier: F3:FE:67:5C:4A:67:95:D3:30:AC:E7:70:87:8D:7D:3F:3F:CA:A6:03 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 08 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa Signing time: Tue 30 Apr 2024 03:24:00 +0000 ROA not before: Tue 30 Apr 2024 03:24:00 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 14618 IP address blocks: 117.74.104.0/24 maxlen: 24 117.74.105.0/24 maxlen: 24 117.74.106.0/24 maxlen: 24 117.74.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Apr 30 03:24:00 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=66306450-94b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2e:aa:e0:19:cf:b2:3d:43:a3:b6:55:4b:b6: d5:13:6d:7b:ef:15:09:15:56:03:93:d6:0d:11:0a: a3:24:91:82:9b:7c:2c:bd:83:27:41:cc:c4:ad:b1: 93:7d:3f:e4:87:52:39:0b:e7:aa:28:52:8a:24:37: 34:49:43:31:30:a6:58:66:c0:dd:03:57:e5:fa:ba: 9a:94:8d:f6:1f:08:1d:9e:e5:53:41:7b:29:50:ce: 94:a5:9d:b8:28:c5:98:1b:a3:55:d9:0f:bf:39:9f: 7d:06:77:c5:dc:77:ed:b7:d7:b7:b3:be:f8:10:b1: 98:44:4d:9d:a9:f5:d5:1a:ef:e7:84:54:5d:5b:f5: bf:e5:bf:4d:5a:c2:1d:c6:62:5f:21:77:33:f0:57: bd:e1:58:b8:dc:53:5d:f5:70:f8:1b:89:c9:7a:e8: b0:5e:0e:25:40:2a:a9:98:c3:d7:d3:6e:0a:bf:aa: aa:1f:4a:80:11:c9:2d:bb:99:4b:a4:3d:90:f6:10: e1:c5:fe:3f:11:50:93:cf:8a:ec:35:82:44:9f:9d: 55:2b:2a:9b:5d:54:20:f1:6e:b7:a4:ad:e7:fe:ac: e2:24:e5:f4:a2:e4:60:40:cb:5c:2e:28:a1:37:3a: f8:07:5e:d4:1c:55:37:c0:12:a6:16:3d:59:4e:e0: 52:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:FE:67:5C:4A:67:95:D3:30:AC:E7:70:87:8D:7D:3F:3F:CA:A6:03 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.74.104.0/22 Signature Algorithm: sha256WithRSAEncryption 61:b8:59:4f:08:98:ab:06:06:2a:d8:0a:74:ac:4c:0c:d0:55: f9:17:d8:04:c8:39:f9:2a:aa:e9:7c:c0:e4:da:3f:e3:17:43: ea:13:aa:e4:d9:ca:2c:37:c8:84:57:2a:a3:86:8d:4e:ce:df: c8:e8:c6:a0:88:d9:c7:fe:d6:f3:76:85:27:9d:99:fc:db:d9: 94:00:57:4e:7c:68:c2:48:5a:84:b9:75:7b:bb:e9:f6:de:b9: 00:40:85:43:c1:52:5d:2b:58:b3:3a:0b:6a:cd:4f:4e:e2:ef: 41:19:80:76:57:79:29:ea:73:f5:51:98:76:03:88:90:98:d6: f9:ec:25:92:bb:9c:d4:12:04:bb:81:98:56:41:ab:35:8a:9e: 4d:9c:d2:b4:99:5b:a8:55:6f:c3:c5:61:69:8f:d5:5f:43:8e: b8:27:3c:9b:da:bd:6a:90:43:2f:ff:ca:51:64:a2:ed:14:ca: 54:b5:21:2e:48:59:34:a7:6b:81:6c:10:de:e0:cd:0d:27:f0: dc:6c:ba:54:e6:61:da:4e:ca:41:31:1f:70:4c:4c:31:ad:76: 6e:e2:93:52:45:79:11:16:82:2a:64:46:ad:5a:d7:54:53:dd: 44:79:8c:66:ce:65:6f:03:4d:48:41:d2:d2:d6:49:47:e0:96: 17:8d:7e:b1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODk0RjExMC8GA1UEBRMoODVCMTRBODkwQjlCRDQ5ODBEOTdFNDFCQjM5MUZDQzk4 NTBGQ0I3ODAeFw0yNDA0MzAwMzI0MDBaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzA2NDUwLTk0YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+LqrgGc+yPUOjtlVLttUTbXvvFQkVVgOT1g0RCqMkkYKbfCy9gydBzMStsZN9 P+SHUjkL56ooUookNzRJQzEwplhmwN0DV+X6upqUjfYfCB2e5VNBeylQzpSlnbgo xZgbo1XZD785n30Gd8Xcd+2317ezvvgQsZhETZ2p9dUa7+eEVF1b9b/lv01awh3G Yl8hdzPwV73hWLjcU131cPgbicl66LBeDiVAKqmYw9fTbgq/qqofSoARyS27mUuk PZD2EOHF/j8RUJPPiuw1gkSfnVUrKptdVCDxbrekref+rOIk5fSi5GBAy1wuKKE3 OvgHXtQcVTfAEqYWPVlO4FIlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8/5nXEpn ldMwrOdwh419Pz/KpgMwHwYDVR0jBBgwFoAUhbFKiQub1JgNl+Qbs5H8yYUPy3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4OTRGLzBBRjQ1RTM2MDEy QTExRUZBNUZEOTE2RkM0RjlBRTAyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGJGS2lRdWIxSmdObC1RYnM1SDh5WVVQeTNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi82MTI5OTJDNjAx MkExMUVGQjc1QzM1MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnVKaDANBgkqhkiG9w0BAQsFAAOCAQEAYbhZTwiYqwYGKtgK dKxMDNBV+RfYBMg5+Sqq6XzA5No/4xdD6hOq5NnKLDfIhFcqo4aNTs7fyOjGoIjZ x/7W83aFJ52Z/NvZlABXTnxowkhahLl1e7vp9t65AECFQ8FSXStYszoLas1PTuLv QRmAdld5Kepz9VGYdgOIkJjW+ewlkruc1BIEu4GYVkGrNYqeTZzStJlbqFVvw8Vh aY/VX0OOuCc8m9q9apBDL//KUWSi7RTKVLUhLkhZNKdrgWwQ3uDNDSfw3Gy6VOZh 2k7KQTEfcExMMa12buKTUkV5ERaCKmRGrVrXVFPdRHmMZs5lbwNNSEHS0tZJR+CW F41+sQ== -----END CERTIFICATE-----Generated at Sun May 5 09:51:07 2024 by rpki-client on console-fra.rpki-client.org