$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/5F46732A02FA11EBA3A0A231C4F9AE02/47D255C8572811ECBE150619C4F9AE02.roa File: 47D255C8572811ECBE150619C4F9AE02.roa (raw, json) Hash identifier: ciOpG8qRab9sKkVmGRn2hy7gpdalC9pHnHF+YnHZNHQ= Subject key identifier: B1:12:30:0E:94:54:7A:95:32:C1:AC:8B:06:92:74:E3:91:B0:61:C6 Certificate issuer: /CN=A91EF24F/serialNumber=C24D8EA76BCA64983F532A4CDBB2CCF19B06250D Certificate serial: 0718 Authority key identifier: C2:4D:8E:A7:6B:CA:64:98:3F:53:2A:4C:DB:B2:CC:F1:9B:06:25:0D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/wk2Op2vKZJg_UypM27LM8ZsGJQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/5F46732A02FA11EBA3A0A231C4F9AE02/47D255C8572811ECBE150619C4F9AE02.roa Signing time: Mon 12 Aug 2024 21:59:51 +0000 ROA not before: Mon 12 Aug 2024 21:59:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55705 IP address blocks: 188.209.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/5F46732A02FA11EBA3A0A231C4F9AE02/wk2Op2vKZJg_UypM27LM8ZsGJQ0.crl rsync://rpki.apnic.net/member_repository/A91EF24F/5F46732A02FA11EBA3A0A231C4F9AE02/wk2Op2vKZJg_UypM27LM8ZsGJQ0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/wk2Op2vKZJg_UypM27LM8ZsGJQ0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F/serialNumber=C24D8EA76BCA64983F532A4CDBB2CCF19B06250D Validity Not Before: Aug 12 21:59:51 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ba85d6-ae7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0f:a2:65:c2:59:27:64:a5:fa:bb:04:2d:85: 6e:10:9e:b0:e4:66:85:37:0f:44:9e:e0:e4:c0:3f: f2:1a:e2:cd:ab:0a:2c:d6:96:92:00:39:da:e3:78: 44:3a:1d:fb:73:72:82:3a:20:43:29:09:a6:4f:1b: 21:6f:e7:70:8e:2b:05:2a:f8:5f:59:82:55:fd:c5: 6c:1d:69:c9:db:2b:c3:ac:8c:f6:ea:5f:0a:c4:37: 78:07:f3:e6:ff:06:46:9a:71:1d:e3:8f:af:54:be: ab:d0:b6:33:30:79:89:4a:85:20:22:4a:57:0c:55: df:a5:ef:2b:44:4c:17:be:2a:5e:ef:96:14:61:d2: 23:9c:3e:e6:dd:59:f1:f2:5d:ed:5d:61:68:c9:3b: 59:b6:c8:79:87:59:68:6a:c6:ae:23:15:16:17:bd: 1d:7e:07:f8:8d:f7:dc:77:ab:2b:a8:25:2e:73:94: 55:90:eb:83:04:c2:29:0c:cc:00:0d:99:32:6c:68: 25:a1:2f:98:32:f0:da:b6:2a:2b:66:64:f9:51:3d: 49:b7:72:bf:d5:49:19:87:c0:45:b6:11:9d:84:89: 1c:9d:a5:31:ac:20:92:4e:ba:07:de:c6:dc:26:1b: 6f:29:15:88:4e:0f:66:cb:ed:39:d8:35:73:0e:40: e8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:12:30:0E:94:54:7A:95:32:C1:AC:8B:06:92:74:E3:91:B0:61:C6 X509v3 Authority Key Identifier: keyid:C2:4D:8E:A7:6B:CA:64:98:3F:53:2A:4C:DB:B2:CC:F1:9B:06:25:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/5F46732A02FA11EBA3A0A231C4F9AE02/wk2Op2vKZJg_UypM27LM8ZsGJQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/wk2Op2vKZJg_UypM27LM8ZsGJQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/5F46732A02FA11EBA3A0A231C4F9AE02/47D255C8572811ECBE150619C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.209.154.0/24 Signature Algorithm: sha256WithRSAEncryption 65:8d:04:0b:9c:68:e8:f0:76:0e:1d:14:a9:1f:3e:75:7b:0b: e6:78:28:e8:f8:95:06:1f:c4:3e:11:91:15:12:b6:b3:a2:09: 8c:67:22:ae:d5:ef:2c:20:2c:23:68:75:6c:5a:3a:25:12:cf: 02:bc:99:c9:64:2b:e1:af:35:2b:ef:79:84:5a:59:3a:9e:ec: 6b:ba:48:75:d6:a7:a5:48:14:38:02:39:fc:0c:a8:c6:e5:28: 06:6f:37:f9:45:7f:2f:16:48:df:66:e8:a4:d7:d6:8d:52:6a: 61:4d:2f:a0:7f:a2:b7:65:7a:e0:ce:58:09:56:c9:b8:e0:f2: db:9e:47:74:e8:97:db:f6:1b:2b:2c:d6:9d:40:9b:0c:9f:10: 64:c7:94:84:f9:77:4c:68:50:6f:f0:05:a3:20:5c:16:c1:cb: 27:e7:d5:d2:87:3d:55:5a:38:04:d0:1b:ac:a2:6e:88:70:8a: e9:c3:7d:c2:d6:51:5a:c9:0d:22:bd:b1:e7:53:d3:74:f3:67: 1b:0c:d1:43:29:76:22:20:1b:1f:77:8e:23:cd:e2:16:59:7f: 0c:93:1e:6d:ec:9a:41:cb:2b:05:1b:e3:6f:17:73:47:8d:af: ad:32:9b:63:e0:45:4b:fc:4c:02:3f:31:b1:e4:49:0b:f3:6d: 4e:da:2f:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKEMyNEQ4RUE3NkJDQTY0OTgzRjUzMkE0Q0RCQjJDQ0Yx OUIwNjI1MEQwHhcNMjQwODEyMjE1OTUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhODVkNi1hZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2A+iZcJZJ2Sl+rsELYVuEJ6w5GaFNw9EnuDkwD/yGuLNqwos1paSADna43hE Oh37c3KCOiBDKQmmTxshb+dwjisFKvhfWYJV/cVsHWnJ2yvDrIz26l8KxDd4B/Pm /wZGmnEd44+vVL6r0LYzMHmJSoUgIkpXDFXfpe8rREwXvipe75YUYdIjnD7m3Vnx 8l3tXWFoyTtZtsh5h1loasauIxUWF70dfgf4jffcd6srqCUuc5RVkOuDBMIpDMwA DZkybGgloS+YMvDatiorZmT5UT1Jt3K/1UkZh8BFthGdhIkcnaUxrCCSTroH3sbc JhtvKRWITg9my+052DVzDkDoIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLESMA6U VHqVMsGsiwaSdOORsGHGMB8GA1UdIwQYMBaAFMJNjqdrymSYP1MqTNuyzPGbBiUN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri81RjQ2NzMyQTAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi93azJPcDJ2S1pKZ19VeXBNMjdMTThac0dK UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3drMk9wMnZLWkpnX1V5cE0yN0xNOFpzR0pRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyNEYvNUY0NjczMkEwMkZBMTFFQkEzQTBBMjMxQzRGOUFFMDIvNDdEMjU1Qzg1 NzI4MTFFQ0JFMTUwNjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC80ZowDQYJKoZIhvcNAQELBQADggEBAGWNBAucaOjwdg4d FKkfPnV7C+Z4KOj4lQYfxD4RkRUStrOiCYxnIq7V7ywgLCNodWxaOiUSzwK8mclk K+GvNSvveYRaWTqe7Gu6SHXWp6VIFDgCOfwMqMblKAZvN/lFfy8WSN9m6KTX1o1S amFNL6B/ordleuDOWAlWybjg8tueR3Tol9v2Gyss1p1AmwyfEGTHlIT5d0xoUG/w BaMgXBbByyfn1dKHPVVaOATQG6yibohwiunDfcLWUVrJDSK9sedT03TzZxsM0UMp diIgGx93jiPN4hZZfwyTHm3smkHLKwUb428Xc0eNr60ym2PgRUv8TAI/MbHkSQvz bU7aL2I= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org