$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F20038CA44A311E9AEF6F25AC4F9AE02.roa File: F20038CA44A311E9AEF6F25AC4F9AE02.roa (raw, json) Hash identifier: agY3g/9CMMz0WpLcTLUlA+lAMpIWkhNngvdK77DGk34= Subject key identifier: 7D:EB:6A:BD:E7:76:FE:E9:8D:1E:47:0B:3E:B9:A9:C1:9F:F9:80:CE Certificate issuer: /CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Certificate serial: 264D Authority key identifier: 4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F20038CA44A311E9AEF6F25AC4F9AE02.roa Signing time: Wed 08 May 2024 16:33:08 +0000 ROA not before: Wed 08 May 2024 16:33:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 6163 IP address blocks: 61.9.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9805 (0x264d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD/serialNumber=4E10F13F295FBF2B359C84DDD1651BC851AA8AF5 Validity Not Before: May 8 16:33:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663ba944-56b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7d:d5:cf:90:01:8d:e8:ca:af:20:87:9e:56: a6:4b:00:ab:92:6f:88:43:76:26:c3:48:35:83:a9: 95:81:0c:55:7d:16:d8:b6:49:cf:b1:5a:ca:59:fa: 37:b1:93:35:5c:83:48:ed:2a:bd:04:b1:37:80:2a: c3:6d:17:d9:93:0c:cd:1e:f9:de:66:76:a7:6d:aa: 4f:d5:3d:9f:c6:2a:8b:01:17:c7:47:61:e8:7f:ae: ff:5b:63:12:56:d0:18:4f:10:a4:f5:5d:60:9f:ad: 26:5a:ed:26:6a:8a:b8:37:c1:cd:63:59:39:64:7f: 25:ab:3d:a9:85:54:56:f0:d8:f6:b7:4c:20:b1:18: 16:a9:2d:67:c7:8b:cb:bc:07:5d:4a:b4:07:83:d4: bf:2d:c2:78:48:83:1e:f9:4d:6b:52:2a:8d:09:61: 31:2b:17:7a:cc:20:2f:22:65:cb:1c:b6:d3:7d:46: 27:5a:91:02:93:71:df:73:08:19:b2:1f:17:97:07: e2:a1:35:83:32:53:eb:96:b1:39:66:76:24:39:ea: 01:dd:1f:56:fd:3d:54:06:a6:08:af:56:f4:d5:72: b9:ee:11:79:f0:f1:5a:2e:b1:23:0b:0a:08:8d:7e: 56:5c:9c:7f:5c:33:70:f5:7f:a0:9a:c7:79:3e:ab: 57:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:EB:6A:BD:E7:76:FE:E9:8D:1E:47:0B:3E:B9:A9:C1:9F:F9:80:CE X509v3 Authority Key Identifier: keyid:4E:10:F1:3F:29:5F:BF:2B:35:9C:84:DD:D1:65:1B:C8:51:AA:8A:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/ThDxPylfvys1nITd0WUbyFGqivU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ThDxPylfvys1nITd0WUbyFGqivU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/E1EFD9B6DECE11E4A14F0068C4F9AE02/F20038CA44A311E9AEF6F25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.9.80.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:16:af:9a:1f:0d:c5:bf:cb:46:61:24:7d:04:26:5f:67:b4: 3c:8d:cf:72:56:9c:58:66:82:cd:e6:b7:2f:25:01:f7:b3:2d: a5:78:97:ea:7c:c1:4a:56:ce:03:61:27:65:91:ae:e7:39:35: 91:9e:8a:da:25:4c:34:60:e6:06:b1:8b:49:24:2e:4c:ce:c7: ba:fb:1c:14:5f:1b:5d:17:00:4c:84:af:7b:65:f1:de:5a:42: dd:8a:a7:28:92:67:df:e0:61:55:0e:1d:83:3b:ff:26:a2:12: 43:f2:93:0d:2a:0c:81:1c:8b:12:9e:8d:96:89:af:b9:f0:2e: b8:f5:ce:a3:1d:ed:7e:88:9e:c2:fb:a6:6d:ae:02:da:76:8a: 5b:2a:23:cc:aa:5e:c8:b5:f3:00:b2:b8:3f:88:9a:72:35:cf: 7d:51:71:df:e7:30:45:a6:cf:ac:7e:b5:e2:3c:46:ad:5e:18: 4c:c5:81:01:46:be:15:cd:33:14:c2:f5:23:ea:9f:07:4c:37: e5:c1:fd:44:0a:68:9f:6c:ba:55:b9:19:ad:23:e9:14:ea:5d: 58:b6:52:2e:8c:45:5e:33:28:56:c7:73:a2:c4:b5:e6:47:15: d8:db:71:59:04:79:b4:d8:e8:28:f8:7f:9e:e8:86:46:67:c1: 58:b8:76:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDRFMTBGMTNGMjk1RkJGMkIzNTlDODREREQxNjUxQkM4 NTFBQThBRjUwHhcNMjQwNTA4MTYzMzA4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiYTk0NC01NmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX3Vz5ABjejKryCHnlamSwCrkm+IQ3Ymw0g1g6mVgQxVfRbYtknPsVrKWfo3 sZM1XINI7Sq9BLE3gCrDbRfZkwzNHvneZnanbapP1T2fxiqLARfHR2Hof67/W2MS VtAYTxCk9V1gn60mWu0maoq4N8HNY1k5ZH8lqz2phVRW8Nj2t0wgsRgWqS1nx4vL vAddSrQHg9S/LcJ4SIMe+U1rUiqNCWExKxd6zCAvImXLHLbTfUYnWpECk3HfcwgZ sh8XlwfioTWDMlPrlrE5ZnYkOeoB3R9W/T1UBqYIr1b01XK57hF58PFaLrEjCwoI jX5WXJx/XDNw9X+gmsd5PqtXEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH3rar3n dv7pjR5HCz65qcGf+YDOMB8GA1UdIwQYMBaAFE4Q8T8pX78rNZyE3dFlG8hRqor1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9FMUVGRDlCNkRF Q0UxMUU0QTE0RjAwNjhDNEY5QUUwMi9UaER4UHlsZnZ5czFuSVRkMFdVYnlGR3Fp dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoRHhQeWxmdnlzMW5JVGQwV1VieUZHcWl2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkQvRTFFRkQ5QjZERUNFMTFFNEExNEYwMDY4QzRGOUFFMDIvRjIwMDM4Q0E0 NEEzMTFFOUFFRjZGMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAM9CVAwDQYJKoZIhvcNAQELBQADggEBAJoWr5ofDcW/y0Zh JH0EJl9ntDyNz3JWnFhmgs3mty8lAfezLaV4l+p8wUpWzgNhJ2WRruc5NZGeitol TDRg5gaxi0kkLkzOx7r7HBRfG10XAEyEr3tl8d5aQt2KpyiSZ9/gYVUOHYM7/yai EkPykw0qDIEcixKejZaJr7nwLrj1zqMd7X6InsL7pm2uAtp2ilsqI8yqXsi18wCy uD+ImnI1z31Rcd/nMEWmz6x+teI8Rq1eGEzFgQFGvhXNMxTC9SPqnwdMN+XB/UQK aJ9sulW5Ga0j6RTqXVi2Ui6MRV4zKFbHc6LEteZHFdjbcVkEebTY6Cj4f57ohkZn wVi4dnI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org