$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/7F0CE9E8DF1011ECA2548C86C4F9AE02.roa File: 7F0CE9E8DF1011ECA2548C86C4F9AE02.roa (raw, json) Hash identifier: bpC3RfU9wjAeFZlwNTwMWCfOqtMaeWUqNAhtOdEXvSE= Subject key identifier: D4:75:40:6A:05:53:8A:A6:68:88:F3:F6:CE:26:30:D2:2E:F8:5F:12 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0523 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/7F0CE9E8DF1011ECA2548C86C4F9AE02.roa Signing time: Wed 31 Jul 2024 02:33:58 +0000 ROA not before: Wed 31 Jul 2024 02:33:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55868 IP address blocks: 58.137.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1315 (0x523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:33:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a296-6bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9b:4f:d6:74:e6:94:bf:86:11:73:fc:e7:f3: 7a:f8:fd:41:03:d6:46:da:63:53:05:81:10:02:13: 84:3c:6b:13:86:aa:3f:bf:79:60:cc:9f:bf:7c:77: a9:9a:4d:33:35:39:f7:a7:3c:2a:95:e7:88:f8:c8: 8e:e8:ab:28:79:23:c6:5c:f8:6c:da:67:02:c7:68: 69:ef:b9:61:05:d1:b4:81:17:20:14:56:31:9f:2d: f5:a4:83:ea:0e:90:76:62:84:22:47:28:b7:d5:2c: 27:78:92:8d:a3:59:32:2c:2b:31:1f:03:7b:f2:c8: 16:94:5c:96:06:2f:0b:25:c4:7f:ae:02:84:fb:c0: 0d:5f:4b:76:75:0d:49:42:6e:e7:85:38:a4:af:75: 46:f3:48:a8:87:de:8c:2a:b1:52:5a:1f:9a:dd:c3: 0d:a8:ad:4a:9d:4c:47:3c:69:ae:1e:2d:8e:81:14: 9d:f3:a6:eb:ec:c5:b5:cd:8c:31:8b:90:e6:96:8a: e8:82:d4:91:d8:dd:e1:08:b4:ec:cf:ca:4c:a2:b0: 33:a1:77:e2:fa:b0:da:68:4d:2f:61:df:24:f9:0f: 3d:b3:df:01:67:c7:6c:9c:0d:47:71:37:89:f7:fb: 0f:b8:a6:25:0f:c4:3e:d9:50:12:b7:a7:b2:27:d5: c6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:75:40:6A:05:53:8A:A6:68:88:F3:F6:CE:26:30:D2:2E:F8:5F:12 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/7F0CE9E8DF1011ECA2548C86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.137.110.0/24 Signature Algorithm: sha256WithRSAEncryption 95:10:9b:2c:c5:c9:33:03:31:7a:4e:11:98:f4:6c:94:98:e7: 69:e8:e0:38:39:98:c6:0a:a5:ce:b3:c7:9a:8d:30:61:ce:91: e3:e8:2e:cc:4f:d1:a5:c7:3e:27:08:b7:d7:45:bb:2f:f4:70: 8b:24:ae:62:a6:9b:5b:4a:1e:59:e9:f6:be:df:0f:47:c9:d7: 7e:90:4b:08:3a:97:a0:06:2a:54:13:3e:0f:10:17:64:84:9a: 11:84:8d:15:12:d1:aa:01:3e:83:2f:2f:1f:03:7e:fd:d2:fe: 5d:28:48:fa:2a:dc:8e:0d:e4:4e:bc:dd:50:9b:e0:7b:f2:e9: cd:4a:01:8d:df:f6:5b:2c:b8:7f:dd:13:53:20:fa:f1:a6:09: 8f:89:56:be:40:8b:b8:ae:53:a6:79:a5:85:69:fc:07:c2:ca: 4a:1a:9a:e1:ef:1d:04:8e:38:24:ae:10:53:33:9b:f3:e5:97: 15:01:66:1c:b7:ff:9b:f2:21:d4:7a:b7:ee:05:23:53:a8:0b: 3d:01:0a:b6:d6:af:c3:eb:25:46:73:17:19:fc:d8:80:2f:ea: c7:b7:f2:78:91:17:e5:6d:67:09:9f:51:ac:6c:d6:08:35:fc: fa:ef:07:08:25:ce:ff:6c:67:f0:10:37:a2:ae:9f:6a:a0:2a: a7:80:bd:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzMzU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI5Ni02YmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5tP1nTmlL+GEXP85/N6+P1BA9ZG2mNTBYEQAhOEPGsThqo/v3lgzJ+/fHep mk0zNTn3pzwqleeI+MiO6KsoeSPGXPhs2mcCx2hp77lhBdG0gRcgFFYxny31pIPq DpB2YoQiRyi31SwneJKNo1kyLCsxHwN78sgWlFyWBi8LJcR/rgKE+8ANX0t2dQ1J Qm7nhTikr3VG80ioh96MKrFSWh+a3cMNqK1KnUxHPGmuHi2OgRSd86br7MW1zYwx i5DmlorogtSR2N3hCLTsz8pMorAzoXfi+rDaaE0vYd8k+Q89s98BZ8dsnA1HcTeJ 9/sPuKYlD8Q+2VASt6eyJ9XGmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNR1QGoF U4qmaIjz9s4mMNIu+F8SMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvN0YwQ0U5RThE RjEwMTFFQ0EyNTQ4Qzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6iW4wDQYJKoZIhvcNAQELBQADggEBAJUQmyzFyTMDMXpO EZj0bJSY52no4Dg5mMYKpc6zx5qNMGHOkePoLsxP0aXHPicIt9dFuy/0cIskrmKm m1tKHlnp9r7fD0fJ136QSwg6l6AGKlQTPg8QF2SEmhGEjRUS0aoBPoMvLx8Dfv3S /l0oSPoq3I4N5E683VCb4Hvy6c1KAY3f9lssuH/dE1Mg+vGmCY+JVr5Ai7iuU6Z5 pYVp/AfCykoamuHvHQSOOCSuEFMzm/PllxUBZhy3/5vyIdR6t+4FI1OoCz0BCrbW r8PrJUZzFxn82IAv6se38niRF+VtZwmfUaxs1gg1/PrvBwglzv9sZ/AQN6Kun2qg KqeAvU0= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org