$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/989C920254F311E7AC64ED3AC4F9AE02.roa File: 989C920254F311E7AC64ED3AC4F9AE02.roa (raw, json) Hash identifier: c1eWaKTgL9+AH+cc5xMKE7jFxnzkuE21gtTwanMOgV8= Subject key identifier: BB:AC:62:82:77:D7:DC:99:8A:B5:19:E6:72:20:59:07:45:16:FA:9C Certificate issuer: /CN=A91F4B25/serialNumber=B62BDF74C133942BBEF77754C7A0E53866383208 Certificate serial: 26E6 Authority key identifier: B6:2B:DF:74:C1:33:94:2B:BE:F7:77:54:C7:A0:E5:38:66:38:32:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tivfdMEzlCu-93dUx6DlOGY4Mgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/989C920254F311E7AC64ED3AC4F9AE02.roa Signing time: Thu 04 Jan 2024 16:12:21 +0000 ROA not before: Thu 04 Jan 2024 16:12:21 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 58439 IP address blocks: 103.194.176.0/22 maxlen: 22 183.177.96.0/20 maxlen: 24 2402:8880::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/tivfdMEzlCu-93dUx6DlOGY4Mgg.crl rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/tivfdMEzlCu-93dUx6DlOGY4Mgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tivfdMEzlCu-93dUx6DlOGY4Mgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9958 (0x26e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B25/serialNumber=B62BDF74C133942BBEF77754C7A0E53866383208 Validity Not Before: Jan 4 16:12:21 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6596d8e5-8bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:45:64:7e:ad:96:a5:5e:d2:f8:1a:bb:ea: a8:9a:43:92:2c:26:d3:4b:c3:45:9c:3a:13:ae:45: 0f:61:48:df:97:f9:91:44:00:f3:72:30:ba:f0:f8: af:8f:d7:38:a1:c8:74:84:34:16:d4:59:ed:34:2b: c2:b6:27:91:8c:ae:75:d0:d0:34:2f:b3:f1:ca:bf: 6a:f1:87:92:40:a2:71:54:e1:4e:1a:71:41:b0:f1: 2d:11:8a:2f:99:a6:b1:4e:28:80:b8:c9:35:15:3c: e7:4c:1b:29:91:86:a3:ea:3e:aa:ed:47:46:94:b1: 98:44:bd:45:ee:cf:41:b3:43:ff:c1:54:22:ac:55: 69:df:af:0c:1b:9c:85:15:9f:33:48:03:f1:87:3c: 85:69:fd:be:12:2a:7f:07:89:f4:d5:df:65:36:0e: f8:76:df:52:01:62:ef:23:ca:dc:05:03:e3:36:e0: 9f:bc:6e:6d:a0:62:2f:a6:81:26:83:82:80:27:71: 5a:7d:2b:a1:23:bc:b0:4f:52:66:ba:b4:f8:f5:7b: aa:8e:bd:78:cf:98:36:fa:66:5f:1b:da:47:34:17: e5:3d:79:99:b5:85:8d:dd:dd:92:9e:6d:f3:90:60: 82:77:d6:89:95:79:cd:bc:a6:63:c7:76:20:49:f9: bc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AC:62:82:77:D7:DC:99:8A:B5:19:E6:72:20:59:07:45:16:FA:9C X509v3 Authority Key Identifier: keyid:B6:2B:DF:74:C1:33:94:2B:BE:F7:77:54:C7:A0:E5:38:66:38:32:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/tivfdMEzlCu-93dUx6DlOGY4Mgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tivfdMEzlCu-93dUx6DlOGY4Mgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/989C920254F311E7AC64ED3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.194.176.0/22 183.177.96.0/20 IPv6: 2402:8880::/32 Signature Algorithm: sha256WithRSAEncryption 93:0c:b8:29:19:22:9f:e7:7e:b3:64:b1:a4:7f:6f:9b:aa:e9: a2:ac:07:dd:07:31:9e:47:20:d6:95:03:61:b4:ef:a9:ee:a6: 80:20:91:9c:e9:10:26:33:b8:c6:60:6c:92:c0:44:3e:43:df: a8:b4:2c:81:9d:95:f1:86:f2:65:e9:fb:e2:9d:fc:58:46:d2: 7a:4c:e0:9a:9e:20:c5:16:9a:23:b8:0c:b6:93:16:17:0a:3c: b2:c6:fe:ed:3b:7b:b3:ab:c6:8d:32:26:95:c2:cc:5f:ef:22: 1e:93:97:7a:fe:32:e9:a1:1e:92:1b:c7:68:9a:92:d5:02:0a: 76:ee:a5:f1:39:41:42:e3:11:ef:ed:8c:9b:cc:dd:86:b5:d4: fd:8c:fd:7d:6f:11:71:a3:fc:cd:05:c1:97:24:84:6e:aa:a4: 88:7c:81:87:48:49:c4:09:1d:e2:c1:cd:ec:60:0e:cf:5d:6c: 5f:40:aa:cb:0e:4a:c8:76:c1:fd:76:4c:28:c9:d0:1e:cd:38: 04:c9:56:40:49:b6:1c:27:f0:f5:bf:55:6f:f0:7c:c0:a3:3b: 05:07:f4:77:38:b5:e1:be:c9:7f:1f:fb:4e:de:c1:39:ab:12: a5:c2:f5:4a:90:f9:ae:69:aa:5a:d4:f4:ef:f9:22:38:9c:05: b7:13:ed:aa -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCMjUxMTAvBgNVBAUTKEI2MkJERjc0QzEzMzk0MkJCRUY3Nzc1NEM3QTBFNTM4 NjYzODMyMDgwHhcNMjQwMTA0MTYxMjIxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk2ZDhlNS04YmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSdFZH6tlqVe0vgau+qomkOSLCbTS8NFnDoTrkUPYUjfl/mRRADzcjC68Piv j9c4och0hDQW1FntNCvCtieRjK510NA0L7Pxyr9q8YeSQKJxVOFOGnFBsPEtEYov maaxTiiAuMk1FTznTBspkYaj6j6q7UdGlLGYRL1F7s9Bs0P/wVQirFVp368MG5yF FZ8zSAPxhzyFaf2+Eip/B4n01d9lNg74dt9SAWLvI8rcBQPjNuCfvG5toGIvpoEm g4KAJ3FafSuhI7ywT1JmurT49Xuqjr14z5g2+mZfG9pHNBflPXmZtYWN3d2Snm3z kGCCd9aJlXnNvKZjx3YgSfm8CQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLusYoJ3 19yZirUZ5nIgWQdFFvqcMB8GA1UdIwQYMBaAFLYr33TBM5Qrvvd3VMeg5ThmODII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIyNS9CMjFBNTcyODlG OTIxMUU0OURFRkUyMTZDNEY5QUUwMi90aXZmZE1FemxDdS05M2RVeDZEbE9HWTRN Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpdmZkTUV6bEN1LTkzZFV4NkRsT0dZNE1nZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCMjUvQjIxQTU3Mjg5RjkyMTFFNDlERUZFMjE2QzRGOUFFMDIvOTg5QzkyMDI1 NEYzMTFFN0FDNjRFRDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnwrADBAS3sWAwDQQCAAIwBwMFACQCiIAwDQYJKoZIhvcN AQELBQADggEBAJMMuCkZIp/nfrNksaR/b5uq6aKsB90HMZ5HINaVA2G076nupoAg kZzpECYzuMZgbJLARD5D36i0LIGdlfGG8mXp++Kd/FhG0npM4JqeIMUWmiO4DLaT FhcKPLLG/u07e7Orxo0yJpXCzF/vIh6Tl3r+MumhHpIbx2iaktUCCnbupfE5QULj Ee/tjJvM3Ya11P2M/X1vEXGj/M0FwZckhG6qpIh8gYdIScQJHeLBzexgDs9dbF9A qssOSsh2wf12TCjJ0B7NOATJVkBJthwn8PW/VW/wfMCjOwUH9Hc4teG+yX8f+07e wTmrEqXC9UqQ+a5pqlrU9O/5IjicBbcT7ao= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org