$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/0F91DE9EAD4C11EB903C150DC4F9AE02.roa File: 0F91DE9EAD4C11EB903C150DC4F9AE02.roa (raw, json) Hash identifier: KYXdBuY8eVoROAmSDw7JnT54RB6WWf5lcCmMUouYwzY= Subject key identifier: 5E:34:AE:25:1B:12:62:CE:FE:B8:84:1C:C4:4C:F0:B8:2C:8B:D8:22 Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 0861 Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/0F91DE9EAD4C11EB903C150DC4F9AE02.roa Signing time: Wed 06 Nov 2024 20:39:43 +0000 ROA not before: Wed 06 Nov 2024 20:39:43 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45250 IP address blocks: 202.43.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Nov 6 20:39:43 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bd40f-6890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:10:48:1d:8e:16:2e:37:96:c4:02:03:eb: d5:25:de:a5:29:bd:ed:0c:dd:be:8a:c3:f2:2e:44: d3:ff:54:58:24:57:a9:64:87:30:2f:32:60:e7:38: e1:9c:60:83:d9:6a:e9:65:f9:ad:61:d4:9d:bc:97: e6:23:7b:1d:c3:e4:ee:e1:c4:22:f0:b0:ba:fb:00: 3c:db:e0:26:d2:bf:d7:df:4f:6c:a7:86:5e:a6:82: 93:1f:87:90:b4:a9:fc:90:88:90:6d:5b:64:51:00: db:05:15:06:c4:eb:72:e7:0f:81:d8:03:be:d5:a1: e7:fb:2e:32:09:83:21:59:cb:6a:c1:e5:94:79:0c: 28:be:45:e9:94:1c:aa:0a:94:96:2a:4f:a9:9b:07: 86:47:f2:39:52:03:73:48:96:2f:a3:8d:ac:3e:ac: 39:88:e1:05:ae:96:f5:d6:07:59:bf:13:4c:5f:ad: 84:3b:ff:3f:35:09:fc:d7:a5:a2:46:47:61:94:c3: 8d:32:c8:86:d1:0c:19:3e:33:1d:68:af:6c:4c:4e: 31:f0:48:8a:5a:dd:cc:43:3e:c6:f5:32:92:69:ed: a1:db:47:9e:15:a5:14:93:ce:21:c6:1a:d2:b3:31: a7:78:03:41:8a:68:4a:dd:57:15:e2:1e:2a:8d:4d: 2c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:34:AE:25:1B:12:62:CE:FE:B8:84:1C:C4:4C:F0:B8:2C:8B:D8:22 X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/0F91DE9EAD4C11EB903C150DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.239.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:ab:1b:6c:2b:18:96:4f:5b:a1:73:7d:e9:12:a3:89:01:67: 19:44:40:3e:de:ad:f6:bc:80:68:59:18:1d:8b:89:b3:69:08: 29:8a:38:f8:89:5c:17:a2:ac:d7:14:9a:1c:41:b1:90:d6:f8: 59:b8:d5:78:59:1a:9e:44:7f:d7:3b:b9:74:66:4e:30:90:56: 7e:e7:f7:a7:11:cb:cd:14:dd:24:d9:59:a9:b4:9b:bb:c0:97: 7b:a9:ff:06:0b:af:3e:d0:76:23:49:47:66:2e:1f:20:2b:d3: 85:bd:6b:e2:87:74:57:77:68:69:5b:a0:99:3a:17:2c:bc:30: 82:bf:eb:04:6b:90:10:e8:d5:1b:c8:b4:92:a8:9f:e1:40:b1: cc:26:c4:3d:47:1f:f6:61:1b:55:28:5c:15:d3:8b:ff:55:43: 3d:de:2e:01:8a:20:59:94:d6:10:35:ce:1d:dc:6d:da:d2:12: 0c:9d:71:58:29:75:14:6e:82:2a:12:45:80:51:85:08:a3:11: 7c:aa:ef:05:1a:ad:ca:16:84:52:64:24:68:d6:e3:28:98:77: 9d:03:e9:92:62:b3:48:79:b6:51:e8:0b:32:10:8f:c6:2f:f8: ff:ac:f0:7a:37:fe:64:11:db:c7:42:2b:a5:12:92:5f:c6:14: 91:58:35:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjQxMTA2MjAzOTQzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZDQwZi02ODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNYQSB2OFi43lsQCA+vVJd6lKb3tDN2+isPyLkTT/1RYJFepZIcwLzJg5zjh nGCD2WrpZfmtYdSdvJfmI3sdw+Tu4cQi8LC6+wA82+Am0r/X309sp4ZepoKTH4eQ tKn8kIiQbVtkUQDbBRUGxOty5w+B2AO+1aHn+y4yCYMhWctqweWUeQwovkXplByq CpSWKk+pmweGR/I5UgNzSJYvo42sPqw5iOEFrpb11gdZvxNMX62EO/8/NQn816Wi RkdhlMONMsiG0QwZPjMdaK9sTE4x8EiKWt3MQz7G9TKSae2h20eeFaUUk84hxhrS szGneANBimhK3VcV4h4qjU0s6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFF40riUb EmLO/riEHMRM8Lgsi9giMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyQUMvQTQ4RDU5NjZCQjNFMTFFQUEyOUVFMzIxQzRGOUFFMDIvMEY5MURFOUVB RDRDMTFFQjkwM0MxNTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKK+8wDQYJKoZIhvcNAQELBQADggEBAB+rG2wrGJZPW6Fz fekSo4kBZxlEQD7erfa8gGhZGB2LibNpCCmKOPiJXBeirNcUmhxBsZDW+Fm41XhZ Gp5Ef9c7uXRmTjCQVn7n96cRy80U3STZWam0m7vAl3up/wYLrz7QdiNJR2YuHyAr 04W9a+KHdFd3aGlboJk6Fyy8MIK/6wRrkBDo1RvItJKon+FAscwmxD1HH/ZhG1Uo XBXTi/9VQz3eLgGKIFmU1hA1zh3cbdrSEgydcVgpdRRugioSRYBRhQijEXyq7wUa rcoWhFJkJGjW4yiYd50D6ZJis0h5tlHoCzIQj8Yv+P+s8Ho3/mQR28dCK6USkl/G FJFYNUg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org