$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa File: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (raw, json) Hash identifier: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc= Subject key identifier: 66:3F:6D:4B:D6:A0:ED:27:AF:BD:01:AA:07:CC:DF:A4:96:87:9C:16 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 021A Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa Signing time: Fri 27 Sep 2024 02:25:48 +0000 ROA not before: Fri 27 Sep 2024 02:25:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4826 IP address blocks: 146.144.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Sep 27 02:25:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f617ac-fc9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:68:05:a4:92:16:2e:23:7d:e7:e9:e7:0e: d0:29:4a:64:0a:06:4d:04:69:e9:92:3a:36:ad:74: 9b:df:51:00:3a:7c:1d:20:0e:a6:25:1c:6b:b6:b4: 85:8d:1d:d0:fd:aa:87:ee:63:c6:fd:09:d3:81:40: d6:74:a9:ae:41:03:b9:b3:64:4f:da:a1:85:73:a4: f7:ec:46:92:1e:2a:ef:bd:32:75:37:42:e7:40:34: 43:65:e9:e3:b6:01:be:08:61:59:43:33:af:21:20: 71:ee:4f:83:5c:76:86:a8:6f:57:46:f3:bd:05:8c: 8e:bd:9b:d0:ef:04:7a:09:ac:c1:7d:5c:fa:1d:42: 83:b4:db:b4:7e:bf:22:c1:8d:97:9f:c0:87:c6:af: 03:3d:86:bd:00:11:9f:26:1a:c8:19:14:81:0d:36: 97:4c:d1:2c:91:1d:4e:3c:08:b6:f7:ed:26:24:6d: 8c:0b:95:fd:c6:c3:72:8b:63:56:bc:e5:f0:d0:28: 13:98:ff:55:f4:99:2b:e4:cb:61:67:33:e9:98:c6: ef:0b:44:01:36:ad:47:3d:91:27:f1:96:3e:ed:00: 87:f4:d5:cd:6f:bd:2b:76:39:03:e7:f1:09:2b:db: 29:3f:73:12:13:bc:05:55:24:56:89:de:f2:06:a7: f9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:3F:6D:4B:D6:A0:ED:27:AF:BD:01:AA:07:CC:DF:A4:96:87:9C:16 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.144.8.0/24 Signature Algorithm: sha256WithRSAEncryption 65:a3:6c:9b:46:56:0d:89:3a:7d:98:70:41:21:66:81:00:de: 0f:7b:e5:d8:d9:87:63:8b:36:8f:42:f8:4b:25:d7:cb:24:f1: 6a:ed:22:b2:c1:f6:20:15:58:e3:d4:63:69:cd:28:0b:ef:41: 66:fa:b0:8c:ab:46:37:14:0d:a0:e1:7f:7f:84:1d:02:d2:88: 63:70:5a:31:e2:47:cb:33:7a:a8:3b:6b:c5:b2:b8:7a:a6:99: b9:56:fd:ff:c1:eb:54:1e:c4:1f:b4:60:7c:a2:55:09:ac:70: 00:b5:4c:7f:98:d3:6b:ed:31:bf:3d:e3:12:03:19:a6:b8:e9: d0:a2:44:d5:57:f6:c7:b3:6f:8c:36:ef:85:a5:1c:bd:f4:70: f4:02:63:1c:d9:9c:b0:e8:88:96:17:45:ee:c6:7e:64:fa:3c: 62:43:35:71:39:18:43:98:6f:63:3d:21:0c:cf:29:59:10:29: 33:bf:9c:9b:00:6f:e6:b8:91:27:fe:ff:15:40:b9:70:9d:33: a5:ba:c0:1e:34:f5:ad:2c:79:5b:86:bd:e7:ca:4f:dc:64:1b: 65:f2:bb:50:93:12:ec:4b:7f:6f:1e:55:22:65:4e:70:98:bf: 84:c6:e4:c8:20:67:5b:8b:1d:35:cf:4a:87:ac:18:10:17:79: 5c:64:a2:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjQwOTI3MDIyNTQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MTdhYy1mYzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdBoBaSSFi4jfefp5w7QKUpkCgZNBGnpkjo2rXSb31EAOnwdIA6mJRxrtrSF jR3Q/aqH7mPG/QnTgUDWdKmuQQO5s2RP2qGFc6T37EaSHirvvTJ1N0LnQDRDZenj tgG+CGFZQzOvISBx7k+DXHaGqG9XRvO9BYyOvZvQ7wR6CazBfVz6HUKDtNu0fr8i wY2Xn8CHxq8DPYa9ABGfJhrIGRSBDTaXTNEskR1OPAi29+0mJG2MC5X9xsNyi2NW vOXw0CgTmP9V9Jkr5MthZzPpmMbvC0QBNq1HPZEn8ZY+7QCH9NXNb70rdjkD5/EJ K9spP3MSE7wFVSRWid7yBqf5xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGY/bUvW oO0nr70BqgfM36SWh5wWMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM0QjgvOUYwM0JCNjAwOTQ0MTFFRDhERDEwOTcxQzRGOUFFMDIvQjBGQTMzRkU2 Rjk2MTFFRDhBNjcyRjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACSkAgwDQYJKoZIhvcNAQELBQADggEBAGWjbJtGVg2JOn2Y cEEhZoEA3g975djZh2OLNo9C+Esl18sk8WrtIrLB9iAVWOPUY2nNKAvvQWb6sIyr RjcUDaDhf3+EHQLSiGNwWjHiR8szeqg7a8WyuHqmmblW/f/B61QexB+0YHyiVQms cAC1TH+Y02vtMb894xIDGaa46dCiRNVX9sezb4w274WlHL30cPQCYxzZnLDoiJYX Re7GfmT6PGJDNXE5GEOYb2M9IQzPKVkQKTO/nJsAb+a4kSf+/xVAuXCdM6W6wB40 9a0seVuGvefKT9xkG2Xyu1CTEuxLf28eVSJlTnCYv4TG5MggZ1uLHTXPSoesGBAX eVxkonA= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:55 2024 by rpki-client on console-fra.rpki-client.org