$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/56C4B5083DF511ED98215F18C4F9AE02.roa File: 56C4B5083DF511ED98215F18C4F9AE02.roa (raw, json) Hash identifier: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w= Subject key identifier: CD:57:0F:7F:CE:32:16:BE:0D:D0:03:CB:F6:4F:5A:C5:F0:C7:A4:3B Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 021B Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/56C4B5083DF511ED98215F18C4F9AE02.roa Signing time: Fri 27 Sep 2024 02:25:49 +0000 ROA not before: Fri 27 Sep 2024 02:25:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9443 IP address blocks: 146.144.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Sep 27 02:25:49 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f617ad-f42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:68:09:6f:af:3f:d0:7a:f5:9a:2d:98:78:a0: 20:19:5d:57:2b:6d:4f:89:49:7e:19:cb:a2:4b:a1: fa:a3:62:49:6b:3b:b8:1a:b0:f7:a2:8f:c1:33:c9: 47:f7:b9:83:7e:8e:ce:6a:4b:84:db:c3:85:b3:02: 36:7d:33:b9:a7:89:61:c8:79:85:8a:2a:8b:fd:e1: 8e:bd:59:5a:93:01:c1:21:3a:1d:55:0c:dc:b1:4e: 07:db:16:92:5e:04:1e:5f:48:e3:33:98:b0:c5:87: d9:7b:15:60:60:cb:90:c2:19:36:00:02:2a:1a:d7: 9a:a9:ef:da:20:54:7f:3e:47:2e:4c:3e:3c:6b:e4: 30:fe:de:75:72:ae:a8:a8:ad:4e:f6:2d:a2:ea:c0: 5c:6f:a7:ca:f1:1d:92:88:9d:f4:a0:d3:a9:ed:8a: 59:58:5d:1d:73:bb:4b:1d:69:0d:6f:e6:b6:11:b0: f0:17:1a:12:50:be:32:ab:a8:78:c7:b4:ce:82:86: d9:80:0e:24:2b:78:d3:34:0c:2f:c0:6c:ef:7e:9c: fc:5d:90:9d:ec:a2:76:fd:08:78:35:04:68:c6:94: 4f:90:6c:6d:7a:3b:60:46:13:d3:7a:81:77:c8:6c: e1:8a:05:af:fa:cf:cb:04:70:39:42:70:5f:6f:c0: 53:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:57:0F:7F:CE:32:16:BE:0D:D0:03:CB:F6:4F:5A:C5:F0:C7:A4:3B X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/56C4B5083DF511ED98215F18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.144.8.0/24 Signature Algorithm: sha256WithRSAEncryption 39:66:f8:53:61:48:b8:6e:79:a8:ca:05:f2:98:53:fb:8e:c9: df:a9:8e:51:8c:84:2b:dc:66:47:72:aa:7e:00:b3:4c:66:c8: 9e:9d:a7:c9:f8:e7:c1:25:a2:86:8b:e3:29:45:f4:26:2f:56: 2e:61:0c:93:de:e6:c1:c3:fd:6f:0d:04:6c:31:9a:ed:00:e0: 05:df:b1:66:3b:c4:3f:75:f7:31:5b:94:af:e2:c4:78:37:12: 50:34:34:8a:d7:ed:d2:31:10:aa:9f:3c:0a:58:b3:70:8a:49: 9b:e4:f4:dd:71:5a:20:bb:46:ed:f4:eb:72:bd:d8:9f:a8:c0: c1:28:38:d0:db:14:7e:5e:b2:2e:44:f1:0a:00:78:b4:5a:d7: 50:2c:92:68:d8:ad:a1:1c:af:76:73:fb:88:0e:fc:15:d4:ec: 27:10:f0:94:c1:bc:40:c5:e3:96:cb:0f:2b:43:54:1c:85:df: b1:69:13:03:bb:32:4d:c5:72:e2:d1:c9:0b:ec:10:e3:2f:9e: c9:65:25:99:2c:b6:39:d6:06:aa:70:d3:d4:d6:8d:2d:fb:7d: 09:07:a2:d5:bd:34:2b:89:b3:82:56:4e:69:74:8b:88:86:5d: 03:5f:00:20:a5:7c:b2:64:5d:5d:f1:ec:0c:eb:81:66:61:12: f1:8d:db:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjQwOTI3MDIyNTQ5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MTdhZC1mNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2gJb68/0Hr1mi2YeKAgGV1XK21PiUl+GcuiS6H6o2JJazu4GrD3oo/BM8lH 97mDfo7OakuE28OFswI2fTO5p4lhyHmFiiqL/eGOvVlakwHBITodVQzcsU4H2xaS XgQeX0jjM5iwxYfZexVgYMuQwhk2AAIqGteaqe/aIFR/PkcuTD48a+Qw/t51cq6o qK1O9i2i6sBcb6fK8R2SiJ30oNOp7YpZWF0dc7tLHWkNb+a2EbDwFxoSUL4yq6h4 x7TOgobZgA4kK3jTNAwvwGzvfpz8XZCd7KJ2/Qh4NQRoxpRPkGxtejtgRhPTeoF3 yGzhigWv+s/LBHA5QnBfb8BTwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM1XD3/O Mha+DdADy/ZPWsXwx6Q7MB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM0QjgvOUYwM0JCNjAwOTQ0MTFFRDhERDEwOTcxQzRGOUFFMDIvNTZDNEI1MDgz REY1MTFFRDk4MjE1RjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACSkAgwDQYJKoZIhvcNAQELBQADggEBADlm+FNhSLhueajK BfKYU/uOyd+pjlGMhCvcZkdyqn4As0xmyJ6dp8n458ElooaL4ylF9CYvVi5hDJPe 5sHD/W8NBGwxmu0A4AXfsWY7xD919zFblK/ixHg3ElA0NIrX7dIxEKqfPApYs3CK SZvk9N1xWiC7Ru3063K92J+owMEoONDbFH5esi5E8QoAeLRa11AskmjYraEcr3Zz +4gO/BXU7CcQ8JTBvEDF45bLDytDVByF37FpEwO7Mk3FcuLRyQvsEOMvnsllJZks tjnWBqpw09TWjS37fQkHotW9NCuJs4JWTml0i4iGXQNfACClfLJkXV3x7AzrgWZh EvGN2+M= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org