$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/91C771A2D02111EA843F372FC4F9AE02.roa File: 91C771A2D02111EA843F372FC4F9AE02.roa (raw, json) Hash identifier: aRceLWJKUcKLo5PR7+NR0vevgsQeIIozPpK4yxpso68= Subject key identifier: 13:45:EE:11:DB:B2:24:A7:78:27:A2:22:38:BD:89:26:0D:93:58:6E Certificate issuer: /CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Certificate serial: 0AA4 Authority key identifier: 58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/91C771A2D02111EA843F372FC4F9AE02.roa Signing time: Fri 02 Aug 2024 20:29:21 +0000 ROA not before: Fri 02 Aug 2024 20:29:20 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 198148 IP address blocks: 116.66.212.0/22 maxlen: 22 116.66.216.0/22 maxlen: 22 116.66.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2724 (0xaa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Validity Not Before: Aug 2 20:29:20 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66ad41a0-b453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5e:43:84:90:60:a3:b3:8c:e9:09:c7:f6:2c: 96:0a:fc:25:4d:bf:de:96:e4:6d:39:84:bf:bf:9b: 5d:df:33:21:d7:b0:c6:1f:a0:bd:f4:1a:e3:42:2c: ac:36:2e:93:19:63:9e:59:da:22:02:70:04:3a:db: d8:36:53:44:b6:c9:d9:df:47:6b:d5:42:19:b8:5b: d3:06:9a:32:b0:b9:94:f2:5a:3b:87:77:ec:09:a2: 46:59:a6:5e:b5:0c:6b:11:b9:47:b5:13:dd:52:7a: c3:b2:3c:58:13:08:b9:59:4f:23:39:75:5a:d2:a7: ed:29:c8:39:3e:ba:2a:a1:1c:95:9a:b8:15:f2:5c: a5:e1:31:53:4e:1b:a6:77:0a:9a:ab:12:a1:81:95: bd:6f:94:d9:07:87:0c:44:3b:38:14:f8:ae:31:e5: b6:1c:bc:6b:c6:86:32:13:d6:0e:2c:da:40:b7:a8: 01:9c:d8:18:79:ef:cc:6b:c9:fd:aa:35:94:88:d2: be:79:f4:4c:5e:55:a9:25:72:42:04:e5:71:12:d7: b8:19:22:06:ea:fb:c9:b2:22:db:ad:93:b8:6f:50: 39:75:c8:66:9f:98:eb:30:bb:0c:c7:fb:16:1a:85: 52:52:1d:7c:a4:8e:6c:2a:72:f0:75:36:ee:81:32: 39:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:45:EE:11:DB:B2:24:A7:78:27:A2:22:38:BD:89:26:0D:93:58:6E X509v3 Authority Key Identifier: keyid:58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/91C771A2D02111EA843F372FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.66.212.0-116.66.223.255 Signature Algorithm: sha256WithRSAEncryption b9:db:47:67:2f:5a:f6:37:17:a5:05:01:d6:37:95:be:c5:1c: 9e:58:20:15:a2:0f:91:a1:80:4b:e5:c6:48:6c:4b:55:a5:c5: ef:8e:cb:cf:8f:8d:b8:40:76:d8:0f:ef:a3:aa:ab:82:a8:bf: ee:10:52:dc:83:90:d8:43:3d:20:f9:54:be:1d:c5:59:14:3b: 66:35:0c:d6:54:5c:2c:4d:78:2d:cd:21:9b:0c:09:aa:79:95: 0c:35:ad:1b:70:69:48:e7:23:9c:6b:18:ef:0a:bf:71:28:e3: a2:b3:27:3f:b4:25:4e:cb:79:aa:72:55:24:75:57:a2:fd:4b: 74:93:a0:72:61:34:65:87:9b:88:13:d8:d2:7d:6e:3c:39:d7: 81:5a:d1:0d:de:c8:b2:9f:4f:b5:eb:12:30:e0:a4:b0:81:67: 4c:2c:17:c4:dc:88:c8:74:b4:61:1e:67:79:c6:5a:21:97:e6: d2:81:44:ff:6b:42:26:b2:d3:b9:e7:0b:7b:aa:f4:19:77:43: fd:dc:4c:9f:d8:64:d1:a3:9a:ba:55:e0:64:07:40:c6:29:4d: 18:1f:79:8f:ff:cf:32:3c:8b:6b:f6:c7:58:7a:26:85:7b:a6: ee:c7:b8:2e:41:20:c0:af:b1:b1:b3:80:6a:2e:fa:ea:1b:b0: 88:02:c5:1c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA0QTkxMTAvBgNVBAUTKDU4MDU1M0I4ODNERUMzRERCMjRGNjg4RTZDMkQxQkZB OTNDMjYzQUEwHhcNMjQwODAyMjAyOTIwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkNDFhMC1iNDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApF5DhJBgo7OM6QnH9iyWCvwlTb/eluRtOYS/v5td3zMh17DGH6C99BrjQiys Ni6TGWOeWdoiAnAEOtvYNlNEtsnZ30dr1UIZuFvTBpoysLmU8lo7h3fsCaJGWaZe tQxrEblHtRPdUnrDsjxYEwi5WU8jOXVa0qftKcg5ProqoRyVmrgV8lyl4TFTThum dwqaqxKhgZW9b5TZB4cMRDs4FPiuMeW2HLxrxoYyE9YOLNpAt6gBnNgYee/Ma8n9 qjWUiNK+efRMXlWpJXJCBOVxEte4GSIG6vvJsiLbrZO4b1A5dchmn5jrMLsMx/sW GoVSUh18pI5sKnLwdTbugTI5qwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBNF7hHb siSneCeiIji9iSYNk1huMB8GA1UdIwQYMBaAFFgFU7iD3sPdsk9ojmwtG/qTwmOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDRBOS9BMzc0QTFCNjQ2 NzExMUVBODFBQkIyNUZDNEY5QUUwMi9XQVZUdUlQZXc5MnlUMmlPYkMwYi1wUENZ Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBVlR1SVBldzkyeVQyaU9iQzBiLXBQQ1k2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA0QTkvQTM3NEExQjY0NjcxMTFFQTgxQUJCMjVGQzRGOUFFMDIvOTFDNzcxQTJE MDIxMTFFQTg0M0YzNzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAnRC1AMEBXRCwDANBgkqhkiG9w0BAQsFAAOCAQEAudtH Zy9a9jcXpQUB1jeVvsUcnlggFaIPkaGAS+XGSGxLVaXF747Lz4+NuEB22A/vo6qr gqi/7hBS3IOQ2EM9IPlUvh3FWRQ7ZjUM1lRcLE14Lc0hmwwJqnmVDDWtG3BpSOcj nGsY7wq/cSjjorMnP7QlTst5qnJVJHVXov1LdJOgcmE0ZYebiBPY0n1uPDnXgVrR Dd7Isp9PtesSMOCksIFnTCwXxNyIyHS0YR5necZaIZfm0oFE/2tCJrLTuecLe6r0 GXdD/dxMn9hk0aOaulXgZAdAxilNGB95j//PMjyLa/bHWHomhXum7se4LkEgwK+x sbOAai766huwiALFHA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org