$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F17169E244A311E9AEF6F25AC4F9AE02.roa File: F17169E244A311E9AEF6F25AC4F9AE02.roa (raw, json) Hash identifier: lFXNtH/6SelyyHcFFn9+K9CF6YAl6za4tiRl9CCY85Y= Subject key identifier: 1C:DE:66:13:55:D4:33:26:7A:81:1B:4E:66:BE:B4:77:65:5E:53:37 Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Certificate serial: 264B Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F17169E244A311E9AEF6F25AC4F9AE02.roa Signing time: Wed 08 May 2024 16:33:06 +0000 ROA not before: Wed 08 May 2024 16:33:06 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45622 IP address blocks: 111.68.56.0/24 maxlen: 24 114.108.205.0/24 maxlen: 24 114.108.216.0/24 maxlen: 24 114.108.236.0/24 maxlen: 24 182.18.200.0/24 maxlen: 24 182.18.201.0/24 maxlen: 24 182.18.238.0/24 maxlen: 24 182.18.246.0/24 maxlen: 24 182.18.247.0/24 maxlen: 24 182.18.248.0/24 maxlen: 24 182.18.249.0/24 maxlen: 24 182.18.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9803 (0x264b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Validity Not Before: May 8 16:33:06 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663ba942-0a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1c:72:4a:c6:c9:31:f3:00:5c:bd:b8:ac:c9: b8:9f:3e:4f:53:32:d9:10:f3:b4:3c:99:15:9f:fa: 0b:81:8f:d7:67:b9:d3:d2:f3:31:cf:f1:29:85:ce: 3a:43:1b:d1:bf:5b:33:cf:d9:f3:1a:32:29:3b:16: c1:d7:b4:dc:6a:0a:0d:5e:90:71:ba:5a:74:ff:25: ea:5f:17:18:d8:a7:d2:5a:21:65:2e:d4:f3:82:97: cf:0f:08:ae:36:e9:dd:05:55:21:82:3c:55:8b:19: 43:12:77:29:41:90:49:d3:7b:b0:56:4c:12:cf:84: 94:0b:c9:43:34:fd:49:d5:52:89:4d:6b:f8:49:c8: 06:5f:4c:e0:64:b6:76:ba:5c:86:df:01:b3:d6:3c: 85:ad:b8:c2:11:31:df:fc:9d:2c:f8:b6:f6:93:66: a9:71:e5:6c:ad:3d:98:77:d0:9b:07:33:3f:3a:96: 7d:8f:e4:19:a9:dc:1a:9a:72:76:8e:49:46:5b:9e: 03:60:7e:eb:3b:41:67:b2:0d:37:28:9c:18:6e:c5: 7a:b0:2f:82:d5:fb:da:13:8d:fa:da:6c:8e:05:c0: 43:85:0b:71:e6:88:c2:da:55:94:7b:cf:81:ec:69: be:19:56:a8:86:0f:59:3f:d8:16:d1:a7:9b:ed:6d: 5b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DE:66:13:55:D4:33:26:7A:81:1B:4E:66:BE:B4:77:65:5E:53:37 X509v3 Authority Key Identifier: keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F17169E244A311E9AEF6F25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.68.56.0/24 114.108.205.0/24 114.108.216.0/24 114.108.236.0/24 182.18.200.0/23 182.18.238.0/24 182.18.246.0-182.18.250.255 Signature Algorithm: sha256WithRSAEncryption 0c:03:68:1a:65:f8:25:d4:41:56:df:be:b6:40:63:02:9c:19: bb:dd:33:db:54:d1:7f:8e:de:f1:80:33:ad:b4:ee:a9:82:0b: 0f:aa:c8:65:16:06:4b:02:e4:14:d6:3b:4c:8f:09:4a:0c:2f: df:1c:e3:30:be:6f:b1:d4:29:e3:36:06:51:2c:a7:18:d3:0c: 7b:6f:d4:65:8c:e2:af:79:79:82:e0:b5:ab:02:be:1b:c5:ee: 7a:45:6f:bf:7a:a6:86:53:7d:b2:c4:fe:76:a7:04:b4:88:55: 2b:ff:84:d0:9e:51:c5:8c:ac:b0:17:19:59:87:08:35:6b:86: c7:03:5a:49:39:95:c7:65:7d:63:26:52:70:82:92:c9:a3:a4: f6:4a:3c:e5:c3:9d:eb:f4:fa:05:11:39:05:af:5f:6f:90:12: f7:7f:ad:d2:85:59:2a:d0:e0:88:79:77:9e:62:fc:82:8b:c1: e0:03:3d:34:00:fd:33:31:76:82:14:87:b5:36:58:bc:f8:15: 61:6c:a4:cb:b3:1a:eb:53:c0:9e:a5:6f:06:2c:d8:71:63:27: 43:f5:c7:56:c5:ad:54:16:c8:7f:79:f7:12:04:84:c8:63:70: 57:61:b0:42:eb:3c:08:48:1c:a4:d1:8e:01:c9:48:24:5e:c0: e0:c3:7f:93 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICJkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4 NTFBQThBRjUwHhcNMjQwNTA4MTYzMzA2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiYTk0Mi0wYTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBxySsbJMfMAXL24rMm4nz5PUzLZEPO0PJkVn/oLgY/XZ7nT0vMxz/Ephc46 QxvRv1szz9nzGjIpOxbB17TcagoNXpBxulp0/yXqXxcY2KfSWiFlLtTzgpfPDwiu NundBVUhgjxVixlDEncpQZBJ03uwVkwSz4SUC8lDNP1J1VKJTWv4ScgGX0zgZLZ2 ulyG3wGz1jyFrbjCETHf/J0s+Lb2k2apceVsrT2Yd9CbBzM/OpZ9j+QZqdwamnJ2 jklGW54DYH7rO0Fnsg03KJwYbsV6sC+C1fvaE4362myOBcBDhQtx5ojC2lWUe8+B 7Gm+GVaohg9ZP9gW0aeb7W1bSQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFBzeZhNV 1DMmeoEbTma+tHdlXlM3MB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvRjE3MTY5RTI0 NEEzMTFFOUFFRjZGMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBABvRDgDBABybM0DBABybNgDBABybOwDBAG2EsgDBAC2Eu4w DAMEAbYS9gMEALYS+jANBgkqhkiG9w0BAQsFAAOCAQEADANoGmX4JdRBVt++tkBj ApwZu90z21TRf47e8YAzrbTuqYILD6rIZRYGSwLkFNY7TI8JSgwv3xzjML5vsdQp 4zYGUSynGNMMe2/UZYzir3l5guC1qwK+G8XuekVvv3qmhlN9ssT+dqcEtIhVK/+E 0J5RxYyssBcZWYcINWuGxwNaSTmVx2V9YyZScIKSyaOk9ko85cOd6/T6BRE5Ba9f b5AS93+t0oVZKtDgiHl3nmL8govB4AM9NAD9MzF2ghSHtTZYvPgVYWyky7Ma61PA nqVvBizYcWMnQ/XHVsWtVBbIf3n3EgSEyGNwV2GwQus8CEgcpNGOAclIJF7A4MN/ kw== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:39 2024 by rpki-client on console-fra.rpki-client.org