$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa File: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (raw, json) Hash identifier: GXX1SqQqnLs/QR8YWu9cJWfVt1DZZvg7YhJhKqg5IbE= Subject key identifier: 1F:80:54:18:CE:E6:D0:62:DF:DB:18:13:9C:3D:51:70:76:C0:C5:22 Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: 1B Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa Signing time: Wed 07 Aug 2024 07:48:33 +0000 ROA not before: Wed 07 Aug 2024 07:48:33 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55422 IP address blocks: 182.23.212.0/24 maxlen: 24 182.23.213.0/24 maxlen: 24 182.23.214.0/24 maxlen: 24 182.23.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: Aug 7 07:48:33 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b326d0-cd17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ae:d5:87:6c:48:80:91:ba:e3:dc:c9:f0:02: 06:0e:45:20:15:6a:99:1e:76:33:7d:ff:e9:12:fd: fb:3d:64:52:47:dd:b2:86:1f:fc:fc:5d:2b:ab:80: 99:85:fc:0e:32:a0:29:eb:f8:56:c9:42:8b:e3:31: e0:6c:50:cb:02:e4:88:1f:b4:75:9f:a7:ee:76:5a: 8a:6f:7d:8f:58:f7:fa:86:be:b0:0b:ca:0b:86:32: 6c:37:87:dd:1c:1b:a6:5f:27:9d:f3:ce:f2:a1:a0: 86:97:df:42:df:24:09:a7:f1:ae:05:b3:d1:20:6c: 08:ed:d0:34:78:6c:95:ba:c2:00:22:8e:82:47:6b: d8:8f:b2:c9:c1:19:08:55:9b:ae:47:0c:62:48:56: c2:11:8f:ed:ef:49:63:1c:c7:65:f2:14:ea:7b:90: c3:67:aa:03:8a:90:58:3d:d9:8e:a5:50:97:92:25: fa:3d:b0:4a:a7:28:ef:70:32:b2:e0:cb:92:e2:fb: 53:37:25:eb:54:d1:fa:eb:a1:ab:e8:ef:4c:f5:19: b9:5f:8b:f8:5d:73:60:05:74:cc:2f:18:6e:9a:58: 33:61:91:f3:46:88:58:59:d6:ef:58:77:f1:15:f3: a2:f6:58:59:5b:ac:76:37:17:d8:dc:f5:5d:05:4d: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:80:54:18:CE:E6:D0:62:DF:DB:18:13:9C:3D:51:70:76:C0:C5:22 X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.23.212.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:e4:f7:b4:63:12:43:19:de:a5:c8:07:b7:28:58:cc:32:6f: 76:c7:1f:21:95:b3:f5:16:2e:02:f6:51:cc:d3:89:fd:61:4e: 9d:a6:2c:ab:f3:2c:21:a6:2f:d5:a0:b6:5e:2c:79:72:95:8b: 35:8f:e8:43:ff:27:5e:32:f7:d1:57:0d:7a:3e:d9:29:dd:88: ff:3a:2b:27:f0:a5:e3:75:17:ae:2b:e6:b3:c2:92:0c:07:5b: 07:d1:65:1d:d0:63:1f:e2:2c:fe:d1:15:14:5f:e9:9c:ef:13: 3c:9c:61:08:c1:b3:4b:0e:03:cc:6c:03:bc:da:ca:76:0c:3e: b8:2a:38:c1:d0:6d:0b:5d:31:3d:80:13:96:5e:3c:5f:2c:ad: 61:f5:70:c5:40:b0:3d:68:76:9c:27:a2:a2:76:48:6a:e5:38: f6:66:b4:cc:53:41:eb:8d:e6:09:b8:a7:be:44:2c:21:cb:23: 6e:e7:5d:db:d3:89:7b:a2:4a:1e:8b:e6:7a:53:51:ef:5a:ee: c2:b4:94:02:37:b9:72:de:ae:79:17:79:d6:34:cb:5f:95:63: bf:5b:c8:02:4d:d5:8a:01:63:af:a0:3b:37:49:12:4f:38:06: a9:3f:53:93:bb:8b:71:a0:4a:2b:02:7e:ab:ba:74:26:b0:1c: 45:65:c7:ba -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTZFNjExMC8GA1UEBRMoMzI0Q0M4N0JDQzg0QzY4MTUxQ0MzNzMzQTUwOEM3OEE1 QzVCNDk4QTAeFw0yNDA4MDcwNzQ4MzNaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YjMyNmQwLWNkMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRrtWHbEiAkbrj3MnwAgYORSAVapkedjN9/+kS/fs9ZFJH3bKGH/z8XSurgJmF /A4yoCnr+FbJQovjMeBsUMsC5IgftHWfp+52WopvfY9Y9/qGvrALyguGMmw3h90c G6ZfJ53zzvKhoIaX30LfJAmn8a4Fs9EgbAjt0DR4bJW6wgAijoJHa9iPssnBGQhV m65HDGJIVsIRj+3vSWMcx2XyFOp7kMNnqgOKkFg92Y6lUJeSJfo9sEqnKO9wMrLg y5Li+1M3JetU0frroavo70z1Gblfi/hdc2AFdMwvGG6aWDNhkfNGiFhZ1u9Yd/EV 86L2WFlbrHY3F9jc9V0FTRaVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH4BUGM7m 0GLf2xgTnD1RcHbAxSIwHwYDVR0jBBgwFoAUMkzIe8yExoFRzDczpQjHilxbSYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExNkU2L0Q3RDM2MjM4MzFG NjExRUY5MkFEOEQxMEM0RjlBRTAyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWt6SWU4eUV4b0ZSekRjenBRakhpbHhiU1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZFNi9EN0QzNjIzODMxRjYxMUVGOTJBRDhEMTBDNEY5QUUwMi85Q0UwQUVGQTMx RjcxMUVGQTlBOUE1NEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEArYX1DANBgkqhkiG9w0BAQsFAAOCAQEAeuT3tGMSQxnepcgH tyhYzDJvdscfIZWz9RYuAvZRzNOJ/WFOnaYsq/MsIaYv1aC2Xix5cpWLNY/oQ/8n XjL30VcNej7ZKd2I/zorJ/Cl43UXrivms8KSDAdbB9FlHdBjH+Is/tEVFF/pnO8T PJxhCMGzSw4DzGwDvNrKdgw+uCo4wdBtC10xPYATll48XyytYfVwxUCwPWh2nCei onZIauU49ma0zFNB643mCbinvkQsIcsjbudd29OJe6JKHovmelNR71ruwrSUAje5 ct6ueRd51jTLX5Vjv1vIAk3VigFjr6A7N0kSTzgGqT9Tk7uLcaBKKwJ+q7p0JrAc RWXHug== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:50 2024 by rpki-client on console-ams.rpki-client.org