$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/C74D18CE0E7811EF85000B7BC4F9AE02.roa File: C74D18CE0E7811EF85000B7BC4F9AE02.roa (raw, json) Hash identifier: QcEFCbKzSrsMklkI1eWiqnxmw/ZSSPLydpwjTEuoR+k= Subject key identifier: 5A:F3:BD:64:3F:41:EC:5C:3D:22:DA:7E:A5:F9:21:45:69:2C:D1:7F Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 052E Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/C74D18CE0E7811EF85000B7BC4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:49 +0000 ROA not before: Tue 03 Sep 2024 01:14:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132713 IP address blocks: 220.101.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Sep 3 01:14:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66309-abbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ae:ea:f4:30:8f:7e:6c:3f:b8:70:95:27:7d: 41:52:2b:30:76:7e:4e:eb:66:45:cc:38:ad:b7:e8: 7b:1c:f8:2c:a9:d0:55:54:7d:63:07:98:b0:b6:fb: b8:d9:a3:25:0d:e1:27:e0:e3:93:b2:d8:f5:08:43: ac:cd:95:49:e7:51:c8:a3:f2:3b:36:d7:fb:21:aa: 61:48:43:01:69:f5:47:eb:49:b3:2d:f4:b0:ec:6f: c8:90:6f:40:3e:df:be:59:0d:53:31:db:e7:3b:ff: 70:5d:fc:70:43:3f:f8:07:68:c3:96:dd:74:19:25: e9:ed:ca:e0:b1:c1:0f:fd:f1:c9:95:23:51:f5:0c: 06:c2:12:78:b4:f3:08:c8:92:6e:a4:76:1c:54:f0: 32:7a:4b:fe:07:93:f8:00:3b:91:84:d4:3b:dd:79: 7b:11:0a:25:ad:78:cb:50:35:e1:b9:9c:ee:4c:b7: 30:66:94:c0:d8:40:29:30:69:25:1f:1c:e9:9a:d7: 8f:8c:7b:84:73:e8:fa:48:82:b0:12:eb:7d:7d:64: 7b:3e:11:d8:f2:db:57:31:71:82:d0:af:4f:be:6e: 09:ab:7e:b5:6a:ac:7f:e1:45:7b:40:90:42:a1:86: c4:2a:2f:94:7c:31:21:e2:f0:2b:60:e9:1d:cf:61: c9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F3:BD:64:3F:41:EC:5C:3D:22:DA:7E:A5:F9:21:45:69:2C:D1:7F X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/C74D18CE0E7811EF85000B7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.101.96.0/24 Signature Algorithm: sha256WithRSAEncryption 49:4a:d7:37:35:15:51:77:c2:1a:28:e0:70:c3:43:5f:36:a0: 6a:dc:ad:80:34:23:ba:ff:2c:f4:de:a1:81:41:25:70:1a:27: c1:f2:6a:b5:8b:65:8e:bb:72:38:82:53:3c:96:84:df:2f:ae: 25:8b:a7:81:86:cf:e9:2e:bb:55:83:79:64:70:7a:05:56:81: 51:cc:e3:78:d1:36:cc:c0:4c:b1:5d:82:9a:52:b4:bb:2f:23: 36:88:a1:0f:29:f4:09:a6:64:31:05:54:7d:07:70:ce:ee:32: e5:23:4c:67:39:e2:89:da:73:f8:ce:30:7c:32:1a:ef:42:67: 94:70:6a:72:2b:81:c9:fa:f7:4c:79:a5:10:1a:90:8d:40:fe: 9b:66:41:02:b8:bf:20:b9:5e:83:9e:6d:aa:c0:60:56:7f:38: c4:26:20:51:9c:21:a8:21:d3:26:7d:98:3f:98:cb:69:6c:d1: c6:08:22:d4:b5:3c:fb:42:38:8b:90:70:74:24:9f:5f:ed:e5: 85:6c:e2:15:19:ce:1c:65:ee:ea:70:da:04:44:e2:b9:30:82: 6d:76:53:d4:ae:d8:e1:89:79:8b:6e:02:cb:e7:5c:e5:ca:ea: 02:4c:91:24:f4:05:53:37:ee:f4:bf:74:71:50:b6:0c:be:04: c9:cd:56:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwOS1hYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoq7q9DCPfmw/uHCVJ31BUiswdn5O62ZFzDitt+h7HPgsqdBVVH1jB5iwtvu4 2aMlDeEn4OOTstj1CEOszZVJ51HIo/I7Ntf7IaphSEMBafVH60mzLfSw7G/IkG9A Pt++WQ1TMdvnO/9wXfxwQz/4B2jDlt10GSXp7crgscEP/fHJlSNR9QwGwhJ4tPMI yJJupHYcVPAyekv+B5P4ADuRhNQ73Xl7EQolrXjLUDXhuZzuTLcwZpTA2EApMGkl HxzpmtePjHuEc+j6SIKwEut9fWR7PhHY8ttXMXGC0K9Pvm4Jq361aqx/4UV7QJBC oYbEKi+UfDEh4vArYOkdz2HJ8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFrzvWQ/ QexcPSLafqX5IUVpLNF/MB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvQzc0RDE4Q0Uw RTc4MTFFRjg1MDAwQjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcZWAwDQYJKoZIhvcNAQELBQADggEBAElK1zc1FVF3whoo 4HDDQ182oGrcrYA0I7r/LPTeoYFBJXAaJ8HyarWLZY67cjiCUzyWhN8vriWLp4GG z+kuu1WDeWRwegVWgVHM43jRNszATLFdgppStLsvIzaIoQ8p9AmmZDEFVH0HcM7u MuUjTGc54onac/jOMHwyGu9CZ5RwanIrgcn690x5pRAakI1A/ptmQQK4vyC5XoOe barAYFZ/OMQmIFGcIagh0yZ9mD+Yy2ls0cYIItS1PPtCOIuQcHQkn1/t5YVs4hUZ zhxl7upw2gRE4rkwgm12U9Su2OGJeYtuAsvnXOXK6gJMkST0BVM37vS/dHFQtgy+ BMnNVuc= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org