$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AE8BB766178911EC876F5F50C4F9AE02.roa File: AE8BB766178911EC876F5F50C4F9AE02.roa (raw, json) Hash identifier: OD4QLqvF0E7NjniUYIqO9yXt+jiElu9IZS+rh6A1NUw= Subject key identifier: AA:37:F7:B2:7B:FB:8C:3A:91:24:E6:BC:E4:53:37:7E:3C:AD:29:CD Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 04C6 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AE8BB766178911EC876F5F50C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:44 +0000 ROA not before: Tue 03 Sep 2024 01:14:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58780 IP address blocks: 161.43.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Sep 3 01:14:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66304-a88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:61:67:40:8f:7d:2d:3a:9a:89:4c:dd:b2: a1:ce:0f:93:6c:48:af:02:cf:dc:81:2e:6d:e7:1d: d4:6b:bc:7d:30:40:5c:7e:bd:74:5b:a9:19:84:68: 76:66:d3:26:b1:c8:4f:2b:4b:34:3b:1c:b8:6c:3e: 1a:2d:c7:d1:12:61:6c:e1:15:16:3c:42:26:bb:90: cb:7d:2e:1e:af:44:bc:3c:9c:bd:24:c0:81:53:d4: 55:eb:24:fb:ea:7c:2a:5d:d0:1f:a1:c9:4c:3c:b0: 73:bc:0f:79:fb:7f:ac:71:39:de:1c:a0:78:1f:1e: df:b1:87:19:8f:8e:8d:cb:37:c9:fc:62:14:22:aa: 59:a5:06:49:ce:f3:36:73:e4:fe:d3:16:b6:a6:74: bd:5c:02:bd:f1:c8:d7:37:a2:3c:eb:18:2a:68:88: d4:67:c4:8a:14:24:64:c4:f3:9c:d4:2b:d2:b8:7d: 9d:41:cb:ae:6c:63:45:76:0b:73:00:fe:10:9b:c4: 36:f9:36:f5:a1:4c:7a:f9:91:43:06:6d:98:31:91: 85:d6:76:43:12:3e:64:c3:30:47:91:d3:e7:20:bf: 6e:38:8e:11:0e:9d:1a:dc:7d:62:12:88:1e:22:3f: 9a:fe:a9:ad:2b:40:a7:47:83:3f:e6:ab:60:4b:30: 8a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:37:F7:B2:7B:FB:8C:3A:91:24:E6:BC:E4:53:37:7E:3C:AD:29:CD X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/AE8BB766178911EC876F5F50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.223.0/24 Signature Algorithm: sha256WithRSAEncryption 06:5b:bd:d2:23:14:2a:40:f8:9e:95:08:91:84:82:3d:eb:89: fc:49:74:03:e7:bf:20:bb:d2:92:43:84:5c:3b:ab:18:7c:95: 8b:b4:3f:8e:b6:1f:49:d8:67:e5:a3:36:ec:8e:6a:39:13:97: ab:b1:c4:12:3f:33:3b:d5:e7:4d:f6:25:2c:2a:9d:f3:a4:09: 69:db:51:28:30:9a:1c:fd:43:2b:b1:c5:8f:cd:50:6f:85:40: ed:38:13:0c:2e:4a:de:13:fa:b1:ef:c5:fd:70:f2:d3:40:29: 04:9d:54:82:8e:00:4a:33:c2:db:8c:e9:c3:51:e9:31:55:14: 7a:28:9f:71:96:cd:91:f8:72:71:25:bb:c9:7b:6a:a5:1c:29: 87:81:dc:38:54:84:dc:0a:c1:36:f0:12:49:42:f4:0b:1a:6d: e7:f9:c9:ca:48:92:b9:23:fb:0e:9c:44:cf:f9:18:b3:42:44: c6:b1:bf:f3:4b:b4:7b:a0:d5:45:d3:03:c1:72:8b:01:70:f9: cd:c8:e5:17:4b:cc:0e:16:ed:63:60:4b:85:f5:04:f9:28:08: b2:0a:65:ba:b7:33:2c:c5:5d:e9:08:15:75:f8:3f:96:da:a3: 34:18:17:5d:5d:cd:51:89:d4:2e:a6:bd:e5:64:bb:21:1d:a1: 36:49:be:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjQwOTAzMDExNDQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwNC1hODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SdhZ0CPfS06molM3bKhzg+TbEivAs/cgS5t5x3Ua7x9MEBcfr10W6kZhGh2 ZtMmschPK0s0Oxy4bD4aLcfREmFs4RUWPEImu5DLfS4er0S8PJy9JMCBU9RV6yT7 6nwqXdAfoclMPLBzvA95+3+scTneHKB4Hx7fsYcZj46NyzfJ/GIUIqpZpQZJzvM2 c+T+0xa2pnS9XAK98cjXN6I86xgqaIjUZ8SKFCRkxPOc1CvSuH2dQcuubGNFdgtz AP4Qm8Q2+Tb1oUx6+ZFDBm2YMZGF1nZDEj5kwzBHkdPnIL9uOI4RDp0a3H1iEoge Ij+a/qmtK0CnR4M/5qtgSzCKTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKo397J7 +4w6kSTmvORTN348rSnNMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvQUU4QkI3NjYx Nzg5MTFFQzg3NkY1RjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChK98wDQYJKoZIhvcNAQELBQADggEBAAZbvdIjFCpA+J6V CJGEgj3rifxJdAPnvyC70pJDhFw7qxh8lYu0P462H0nYZ+WjNuyOajkTl6uxxBI/ MzvV5032JSwqnfOkCWnbUSgwmhz9QyuxxY/NUG+FQO04EwwuSt4T+rHvxf1w8tNA KQSdVIKOAEozwtuM6cNR6TFVFHoon3GWzZH4cnElu8l7aqUcKYeB3DhUhNwKwTbw EklC9Asabef5ycpIkrkj+w6cRM/5GLNCRMaxv/NLtHug1UXTA8FyiwFw+c3I5RdL zA4W7WNgS4X1BPkoCLIKZbq3MyzFXekIFXX4P5baozQYF11dzVGJ1C6mveVkuyEd oTZJvoQ= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org