$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BF4F8FC0D0CA11EA9E2F6F79C4F9AE02.roa File: BF4F8FC0D0CA11EA9E2F6F79C4F9AE02.roa (raw, json) Hash identifier: rw/yqXaZSUDqG+dAQ3tG0A631xzkQNpACgogmYUD3O0= Subject key identifier: 39:F3:58:14:1B:77:96:19:B8:F5:95:24:6B:27:3A:3D:E8:3B:82:F5 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 148F Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BF4F8FC0D0CA11EA9E2F6F79C4F9AE02.roa Signing time: Mon 29 Jul 2024 07:22:32 +0000 ROA not before: Mon 29 Jul 2024 07:22:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55453 IP address blocks: 115.167.49.0/24 maxlen: 24 202.92.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 06:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5263 (0x148f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Jul 29 07:22:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66a74338-6b14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d3:20:b3:f6:2b:3c:93:ce:52:15:4d:73:1e: 4a:0d:dc:ae:76:de:3f:42:e3:06:46:8f:a2:9e:b0: f5:fc:6f:b6:24:c4:76:cd:fe:04:79:5a:5e:eb:b4: a0:fc:81:d7:7d:f7:59:10:c0:06:0e:4b:29:20:85: 65:85:f3:e7:16:f2:80:d1:34:61:74:24:6e:be:60: a5:da:b8:3a:a9:49:05:02:ed:17:1b:6a:7d:51:fa: 0e:0c:61:42:25:00:d1:82:44:8e:95:1e:63:d6:8e: e7:f3:d6:e3:e6:53:96:5c:b6:a3:f4:42:80:0b:6b: 69:af:e9:51:9f:0e:3f:3b:d6:6a:08:30:ae:f3:d9: da:19:45:ea:4c:54:c2:c1:41:a6:58:38:1b:b7:e6: 43:a9:54:29:1f:13:22:d8:75:e9:59:49:09:cd:ed: ee:1d:58:33:ac:54:79:00:ed:94:6a:3f:28:92:e7: 8c:7a:7f:21:a3:d4:4e:8e:49:dc:1f:aa:5d:0b:34: ca:83:bb:e3:e7:78:87:dd:52:03:fe:b2:96:81:74: 75:ca:62:c0:69:f7:79:20:c1:68:19:7c:58:00:2b: bd:ab:16:e5:53:f5:f8:83:74:6d:62:9c:c0:51:7b: 62:93:fe:e6:45:b0:f3:d1:70:ce:af:7c:f4:88:d3: 9d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F3:58:14:1B:77:96:19:B8:F5:95:24:6B:27:3A:3D:E8:3B:82:F5 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BF4F8FC0D0CA11EA9E2F6F79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.49.0/24 202.92.22.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:7a:f0:10:8d:2e:96:f8:82:0b:f4:36:59:38:1f:a4:dc:01: 88:fd:81:03:c8:07:30:df:b1:7e:9d:fa:fb:1f:90:73:72:56: 0b:3e:fd:be:9a:e1:b3:a5:9d:d0:4c:c9:bb:9e:1d:0f:9c:0c: 72:86:ff:a0:e8:6a:c4:0c:5d:a5:8c:4b:11:e4:ef:22:e3:64: c4:30:17:e0:ce:de:0b:cf:ed:17:f2:92:a2:7d:a0:22:d8:bf: 85:59:04:59:ef:14:96:3e:ed:1e:14:39:39:08:26:7f:14:77: 9e:b1:a6:a8:bf:db:a3:2e:e4:8a:22:3f:8c:df:37:a4:2d:b3: fc:73:63:a5:bf:63:b7:22:e2:d3:e3:17:6f:80:65:ab:c5:89: c6:09:13:41:98:1b:00:b6:1a:b7:a0:cd:69:fe:81:da:32:48: 27:e6:ec:53:2f:67:85:5d:ad:af:6e:bb:6d:83:21:0b:90:6a: 01:a2:ae:e4:bd:7d:e3:ac:13:15:cb:d1:7b:8b:14:f1:78:7b: ef:22:e7:b2:43:fa:ac:92:85:77:eb:fb:a7:ca:18:6a:55:1c: 1e:21:0d:28:1e:f5:6c:a1:1a:5e:e3:4b:70:eb:f8:9c:81:15: 7f:20:61:30:56:33:06:95:23:c0:ca:74:b0:d1:a0:f9:89:5e: 2f:9c:15:36 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjQwNzI5MDcyMjMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE3NDMzOC02YjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9Mgs/YrPJPOUhVNcx5KDdyudt4/QuMGRo+inrD1/G+2JMR2zf4EeVpe67Sg /IHXffdZEMAGDkspIIVlhfPnFvKA0TRhdCRuvmCl2rg6qUkFAu0XG2p9UfoODGFC JQDRgkSOlR5j1o7n89bj5lOWXLaj9EKAC2tpr+lRnw4/O9ZqCDCu89naGUXqTFTC wUGmWDgbt+ZDqVQpHxMi2HXpWUkJze3uHVgzrFR5AO2Uaj8okueMen8ho9ROjknc H6pdCzTKg7vj53iH3VID/rKWgXR1ymLAafd5IMFoGXxYACu9qxblU/X4g3RtYpzA UXtik/7mRbDz0XDOr3z0iNOdUQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDnzWBQb d5YZuPWVJGsnOj3oO4L1MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQkY0RjhGQzBE MENBMTFFQTlFMkY2Rjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABzpzEDBADKXBYwDQYJKoZIhvcNAQELBQADggEBABt68BCN Lpb4ggv0Nlk4H6TcAYj9gQPIBzDfsX6d+vsfkHNyVgs+/b6a4bOlndBMybueHQ+c DHKG/6DoasQMXaWMSxHk7yLjZMQwF+DO3gvP7RfykqJ9oCLYv4VZBFnvFJY+7R4U OTkIJn8Ud56xpqi/26Mu5IoiP4zfN6Qts/xzY6W/Y7ci4tPjF2+AZavFicYJE0GY GwC2GregzWn+gdoySCfm7FMvZ4Vdra9uu22DIQuQagGiruS9feOsExXL0XuLFPF4 e+8i57JD+qyShXfr+6fKGGpVHB4hDSge9WyhGl7jS3Dr+JyBFX8gYTBWMwaVI8DK dLDRoPmJXi+cFTY= -----END CERTIFICATE-----Generated at Mon Nov 25 09:06:06 2024 by rpki-client on console-ams.rpki-client.org