$ rpki-client -vvf rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/8351896675D611E88AFEBA28C4F9AE02.roa File: 8351896675D611E88AFEBA28C4F9AE02.roa (raw, json) Hash identifier: HfAU9IbfDV+14vwt7DclhUqYBYkkJdlq70pUTlBmazg= Subject key identifier: 27:50:42:4E:AD:BA:8E:96:6A:9A:89:84:FA:2D:02:2D:3B:53:7D:80 Certificate issuer: /CN=A91415FB/serialNumber=37D3374985F3BAA82D0BE04C6D87A3A035E20DEA Certificate serial: 1907 Authority key identifier: 37:D3:37:49:85:F3:BA:A8:2D:0B:E0:4C:6D:87:A3:A0:35:E2:0D:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/8351896675D611E88AFEBA28C4F9AE02.roa Signing time: Mon 04 Nov 2024 06:30:10 +0000 ROA not before: Mon 04 Nov 2024 06:30:10 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17408 IP address blocks: 43.241.160.0/22 maxlen: 24 202.5.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.crl rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6407 (0x1907) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91415FB/serialNumber=37D3374985F3BAA82D0BE04C6D87A3A035E20DEA Validity Not Before: Nov 4 06:30:10 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=672869f2-77c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:95:c1:e8:e2:c7:18:aa:96:70:93:1d:03:79: e1:bb:93:44:1a:35:3f:d6:09:bd:bb:37:bf:0c:eb: ca:9a:40:78:a6:c8:cf:cc:1c:93:dc:73:4e:a3:c9: fd:f0:78:e7:bf:3f:7f:0d:53:89:94:99:0e:b1:5e: d4:51:54:a8:a7:26:3b:41:fe:42:5d:05:83:84:6e: 81:45:8f:4b:8d:d3:91:70:08:88:d3:47:2c:e1:d4: 01:44:98:0c:d5:6b:da:bc:f0:d6:73:71:d9:91:7d: d8:4c:0b:56:ff:bf:1c:7f:1d:fd:e4:8b:8a:65:d1: 9b:bb:3e:a2:24:39:7a:87:0b:79:7c:70:5e:8a:ff: 2e:a0:57:05:43:61:43:33:e9:8c:4f:2b:c9:0b:6e: 4c:59:16:06:aa:ea:73:50:1c:2a:11:07:12:c2:2d: 9e:e6:0a:58:7a:4d:ce:d2:ea:e9:73:d2:05:1e:49: ed:12:79:16:22:ff:da:13:82:54:06:dd:65:43:d1: 8d:7e:b2:ac:8b:a2:5a:34:6e:e4:ed:fe:3c:8b:4a: 5f:f3:6b:4f:27:cb:40:87:5c:37:7b:ae:d8:30:2f: 48:51:eb:9e:5f:33:28:0b:71:19:0f:fe:6d:6e:37: 0b:b6:2d:46:16:8e:fb:cb:26:4e:a8:94:19:39:e6: 3e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:50:42:4E:AD:BA:8E:96:6A:9A:89:84:FA:2D:02:2D:3B:53:7D:80 X509v3 Authority Key Identifier: keyid:37:D3:37:49:85:F3:BA:A8:2D:0B:E0:4C:6D:87:A3:A0:35:E2:0D:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/8351896675D611E88AFEBA28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.160.0/22 202.5.224.0/19 Signature Algorithm: sha256WithRSAEncryption b1:cb:17:fc:09:27:23:4d:54:3e:43:91:ad:0b:dc:6d:cc:5c: d4:32:e2:65:23:52:cd:35:f1:d6:87:13:62:4b:03:31:6d:0c: 74:a1:75:81:10:b4:cc:6a:cf:e0:f4:ec:4d:c8:27:06:79:4a: 67:b2:8b:d3:1e:d9:20:64:bc:de:26:b2:43:18:fc:e0:3a:ad: b7:87:59:0c:42:94:64:9a:44:84:18:6d:38:60:5c:73:bd:b3: 65:87:3e:a7:65:99:09:66:cc:90:3d:40:7a:fb:00:a3:be:60: e9:0b:0c:53:de:84:93:cc:03:e6:5e:eb:12:d1:ac:c7:51:fb: e3:eb:8d:d9:a0:d8:da:c9:87:77:f0:0a:06:76:87:aa:2b:df: 4c:7c:ba:70:29:5b:5c:65:8f:09:64:10:21:8a:f7:2c:6e:60: 00:82:4e:91:88:8a:aa:f6:b3:ce:f3:13:d8:64:7d:cc:aa:9b: 8b:21:a1:2a:49:a2:72:f3:bb:fd:0d:28:e3:ec:af:25:ec:54: c2:9d:cc:e0:40:9f:ba:9f:a6:9b:1b:89:38:ae:17:e9:d5:11: a5:16:09:fc:27:04:bf:e3:94:7b:cd:c3:da:4c:1f:d9:f8:1b: c4:f2:0b:78:c5:1b:e3:ec:14:cf:82:9f:3c:d0:03:e1:0e:17: e3:88:12:5d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1RkIxMTAvBgNVBAUTKDM3RDMzNzQ5ODVGM0JBQTgyRDBCRTA0QzZEODdBM0Ew MzVFMjBERUEwHhcNMjQxMTA0MDYzMDEwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI4NjlmMi03N2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupXB6OLHGKqWcJMdA3nhu5NEGjU/1gm9uze/DOvKmkB4psjPzByT3HNOo8n9 8Hjnvz9/DVOJlJkOsV7UUVSopyY7Qf5CXQWDhG6BRY9LjdORcAiI00cs4dQBRJgM 1WvavPDWc3HZkX3YTAtW/78cfx395IuKZdGbuz6iJDl6hwt5fHBeiv8uoFcFQ2FD M+mMTyvJC25MWRYGqupzUBwqEQcSwi2e5gpYek3O0urpc9IFHkntEnkWIv/aE4JU Bt1lQ9GNfrKsi6JaNG7k7f48i0pf82tPJ8tAh1w3e67YMC9IUeueXzMoC3EZD/5t bjcLti1GFo77yyZOqJQZOeY+QQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCdQQk6t uo6WapqJhPotAi07U32AMB8GA1UdIwQYMBaAFDfTN0mF87qoLQvgTG2Ho6A14g3q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTVGQi83RjQ4ODk2ODcz NUQxMUU3ODhEQTRGMTRDNEY5QUUwMi9OOU0zU1lYenVxZ3RDLUJNYlllam9EWGlE ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL045TTNTWVh6dXFndEMtQk1iWWVqb0RYaURlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE1RkIvN0Y0ODg5Njg3MzVEMTFFNzg4REE0RjE0QzRGOUFFMDIvODM1MTg5NjY3 NUQ2MTFFODhBRkVCQTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8aADBAXKBeAwDQYJKoZIhvcNAQELBQADggEBALHLF/wJ JyNNVD5Dka0L3G3MXNQy4mUjUs018daHE2JLAzFtDHShdYEQtMxqz+D07E3IJwZ5 Smeyi9Me2SBkvN4mskMY/OA6rbeHWQxClGSaRIQYbThgXHO9s2WHPqdlmQlmzJA9 QHr7AKO+YOkLDFPehJPMA+Ze6xLRrMdR++Prjdmg2NrJh3fwCgZ2h6or30x8unAp W1xljwlkECGK9yxuYACCTpGIiqr2s87zE9hkfcyqm4shoSpJonLzu/0NKOPsryXs VMKdzOBAn7qfppsbiTiuF+nVEaUWCfwnBL/jlHvNw9pMH9n4G8TyC3jFG+PsFM+C nzzQA+EOF+OIEl0= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:51 2024 by rpki-client on console-fra.rpki-client.org