$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/13335846175711ECB0193A7BC4F9AE02.roa File: 13335846175711ECB0193A7BC4F9AE02.roa (raw, json) Hash identifier: J/ZSx7F/fQvE4Y75QAO9iWDR6yukNHolDDbFAc4SShQ= Subject key identifier: F8:80:4E:46:E9:19:79:9F:5B:04:90:27:F0:81:62:B3:07:4D:6E:87 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 04C5 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/13335846175711ECB0193A7BC4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:44 +0000 ROA not before: Tue 03 Sep 2024 01:14:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4804 IP address blocks: 161.43.224.0/21 maxlen: 21 161.43.232.0/21 maxlen: 21 198.142.0.0/16 maxlen: 16 198.142.33.0/24 maxlen: 24 198.142.62.0/24 maxlen: 24 198.142.70.0/24 maxlen: 24 198.142.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Sep 3 01:14:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66303-0cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fa:4c:5c:52:56:32:a9:dc:7b:f9:74:7d:b4: 5f:95:21:e2:a6:55:b6:1e:0f:8a:a8:14:ea:37:24: 20:07:51:4c:04:de:d2:17:c3:fc:67:68:68:f1:98: 3e:3f:35:4f:f5:7f:b5:e5:df:b0:ab:6e:36:39:7a: e6:2d:41:f3:fa:34:55:af:31:ea:23:51:de:ef:fd: 10:ca:df:da:31:2c:36:b7:4f:02:1b:77:64:5f:d0: d3:22:f8:41:c8:92:99:3e:7b:26:f9:3c:c4:ce:18: f9:35:d2:a7:cd:e7:9b:ad:29:20:30:7d:2d:ba:18: b4:e8:cb:de:db:bf:12:65:b9:35:63:fc:55:4b:aa: 5d:11:3c:cd:63:85:e2:d5:be:53:f1:57:e2:51:96: 8d:70:fc:dd:04:43:12:c6:d3:77:84:c5:b2:7b:ba: 88:88:b1:75:ef:ef:db:af:10:c5:38:0b:e3:ad:3f: e0:78:6f:ab:e7:02:92:7f:7a:83:28:da:7e:3f:cd: 8f:6f:8a:80:53:1a:af:40:31:88:b0:9d:87:f7:81: 13:80:dd:cc:05:31:2b:e6:f8:0e:2d:fa:4d:b7:8c: 38:e3:c8:62:53:ac:6a:f2:51:d1:9d:3b:2c:24:9a: 39:65:41:d8:ae:34:31:fd:14:04:e9:49:71:46:34: d0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:80:4E:46:E9:19:79:9F:5B:04:90:27:F0:81:62:B3:07:4D:6E:87 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/13335846175711ECB0193A7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.224.0/20 198.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:dd:d4:7f:51:dd:fe:90:a9:aa:51:37:12:23:5a:e0:23:a0: 5c:3e:a2:5d:d6:e3:d3:33:3d:ee:af:5a:d3:8f:d7:fb:f6:02: 8f:27:a0:72:0b:af:f1:e6:c0:c8:a4:3f:86:a3:86:0e:91:53: dc:1c:8a:ad:62:da:ad:52:12:52:12:18:37:88:26:1d:d2:51: 83:95:44:91:fa:a0:95:40:16:cb:9b:63:85:3c:31:b8:6b:0e: ee:fd:7d:8b:5d:21:a6:fd:4b:35:0f:d6:da:15:2b:24:4f:59: b5:ac:9a:06:e2:a2:2c:64:94:f3:7c:28:79:dd:e3:94:26:1a: 7b:2a:60:30:a3:d5:0b:91:50:21:f1:45:25:a6:e3:64:c3:19: fd:98:36:02:c7:72:23:ab:b5:cb:31:35:a3:b9:73:38:cd:73: f5:bf:17:14:9b:48:41:d0:5d:6d:d2:d1:3a:e6:12:59:a4:88: 55:00:c1:89:70:d9:40:56:5a:68:84:d3:cc:34:71:54:9d:59: d8:b5:96:ac:3b:fb:fb:2f:98:22:0b:33:8f:73:0e:9e:0f:49: 38:37:a9:9a:bc:35:7f:3c:4b:6a:0c:b5:14:a6:74:26:bc:b1: c0:93:19:79:70:09:8e:a2:bc:45:17:8c:5b:9a:02:ef:37:7a: e1:7d:ad:25 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjQwOTAzMDExNDQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwMy0wY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/pMXFJWMqnce/l0fbRflSHiplW2Hg+KqBTqNyQgB1FMBN7SF8P8Z2ho8Zg+ PzVP9X+15d+wq242OXrmLUHz+jRVrzHqI1He7/0Qyt/aMSw2t08CG3dkX9DTIvhB yJKZPnsm+TzEzhj5NdKnzeebrSkgMH0tuhi06Mve278SZbk1Y/xVS6pdETzNY4Xi 1b5T8VfiUZaNcPzdBEMSxtN3hMWye7qIiLF17+/brxDFOAvjrT/geG+r5wKSf3qD KNp+P82Pb4qAUxqvQDGIsJ2H94ETgN3MBTEr5vgOLfpNt4w448hiU6xq8lHRnTss JJo5ZUHYrjQx/RQE6UlxRjTQuwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFPiATkbp GXmfWwSQJ/CBYrMHTW6HMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMTMzMzU4NDYx NzU3MTFFQ0IwMTkzQTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAShK+ADAwDGjjANBgkqhkiG9w0BAQsFAAOCAQEAiN3Uf1Hd /pCpqlE3EiNa4COgXD6iXdbj0zM97q9a04/X+/YCjyegcguv8ebAyKQ/hqOGDpFT 3ByKrWLarVISUhIYN4gmHdJRg5VEkfqglUAWy5tjhTwxuGsO7v19i10hpv1LNQ/W 2hUrJE9ZtayaBuKiLGSU83woed3jlCYaeypgMKPVC5FQIfFFJabjZMMZ/Zg2Asdy I6u1yzE1o7lzOM1z9b8XFJtIQdBdbdLROuYSWaSIVQDBiXDZQFZaaITTzDRxVJ1Z 2LWWrDv7+y+YIgszj3MOng9JODepmrw1fzxLagy1FKZ0JryxwJMZeXAJjqK8RReM W5oC7zd64X2tJQ== -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org