$ rpki-client -vvf rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/40BC278038EB11EF9AD66E7FC4F9AE02.roa File: 40BC278038EB11EF9AD66E7FC4F9AE02.roa (raw, json) Hash identifier: RaPUG+Dh7qLyN+q+gPgCKOJ1sH5dp6IUHARU5/CAIwk= Subject key identifier: 86:6B:E9:1F:E2:D4:F6:88:D9:8F:77:24:0B:F9:DC:06:DC:CB:39:44 Certificate issuer: /CN=A91610DD/serialNumber=D8BD676518366034B888848B3B5718FA9070E192 Certificate serial: 02 Authority key identifier: D8:BD:67:65:18:36:60:34:B8:88:84:8B:3B:57:18:FA:90:70:E1:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L1nZRg2YDS4iISLO1cY-pBw4ZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/40BC278038EB11EF9AD66E7FC4F9AE02.roa Signing time: Wed 03 Jul 2024 03:20:53 +0000 ROA not before: Wed 03 Jul 2024 03:20:53 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 58644 IP address blocks: 175.158.104.0/24 maxlen: 24 175.158.105.0/24 maxlen: 24 175.158.106.0/24 maxlen: 24 175.158.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/2L1nZRg2YDS4iISLO1cY-pBw4ZI.crl rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/2L1nZRg2YDS4iISLO1cY-pBw4ZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L1nZRg2YDS4iISLO1cY-pBw4ZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91610DD/serialNumber=D8BD676518366034B888848B3B5718FA9070E192 Validity Not Before: Jul 3 03:20:53 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6684c394-d9ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:08:33:9f:26:39:62:48:fd:a9:b2:c7:39:69: 34:0d:c0:9f:52:e0:65:fe:70:ea:18:41:ab:e4:ff: 8d:2e:6b:fd:7d:4b:f0:f1:ad:16:0b:9d:9e:67:0e: b0:9c:88:a6:a3:43:c3:38:2b:11:8d:98:01:f0:a3: 25:ed:36:5a:32:3b:b3:c0:93:20:89:d2:2f:d6:f3: 59:62:27:fb:ee:e5:c7:7d:4d:ea:a6:cc:e8:2e:ab: fa:43:d8:e8:ae:ca:05:d4:50:57:d6:33:f5:42:98: 1d:53:06:24:dc:cd:81:ed:e9:71:a9:fd:c6:b2:e1: 6b:28:de:03:43:85:a4:fe:78:59:ae:99:30:8c:f7: 4f:66:d3:b6:bd:03:3f:68:4a:ed:ce:f9:c6:d2:f8: 63:91:1a:54:dc:68:a0:36:bd:d2:d3:df:7d:dd:a3: 9c:69:10:01:9a:fd:eb:52:0e:49:24:ba:2b:c9:5e: 58:17:48:1d:0d:c1:4a:84:ac:70:95:5f:ab:9e:3e: 29:4f:4a:07:0b:c0:5e:eb:5a:c5:5b:cf:55:9a:70: 38:87:e5:03:5e:42:c1:ae:b8:93:04:5d:a8:af:ff: 84:58:8b:3a:f6:5a:18:64:75:b9:2b:da:aa:91:c2: 4d:5b:ae:8a:43:e8:64:cc:c0:6d:36:d3:89:d8:45: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6B:E9:1F:E2:D4:F6:88:D9:8F:77:24:0B:F9:DC:06:DC:CB:39:44 X509v3 Authority Key Identifier: keyid:D8:BD:67:65:18:36:60:34:B8:88:84:8B:3B:57:18:FA:90:70:E1:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/2L1nZRg2YDS4iISLO1cY-pBw4ZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L1nZRg2YDS4iISLO1cY-pBw4ZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/40BC278038EB11EF9AD66E7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.158.104.0/22 Signature Algorithm: sha256WithRSAEncryption 72:43:3f:e2:25:a9:8e:3c:fe:44:06:22:fa:8f:ca:bb:ae:2d: 00:49:07:e2:be:34:62:29:30:ae:f4:08:3e:a7:0e:16:53:1b: b3:21:92:f0:ec:95:4a:56:4a:d9:ad:7b:b5:43:c7:d9:9a:a4: b2:7a:64:ca:c7:d7:fc:59:1c:b8:2c:46:d0:15:19:0c:7c:bd: 8e:af:c7:ae:21:85:6c:40:fa:8d:cb:ec:cb:a0:a6:f4:26:a7: 52:a0:9d:e9:73:d7:b7:52:81:b8:06:ea:c3:66:32:cd:e4:a3: 3c:17:c3:6e:98:d6:76:b4:f6:2a:df:63:96:89:b9:48:e8:50: 64:2e:40:c8:f1:f4:7d:cd:68:f8:fe:20:7e:d8:a4:00:98:0b: 63:f5:98:c8:66:3e:31:80:0a:71:c2:aa:a5:5d:92:46:ce:e5: 55:c1:2c:83:64:a8:79:1f:ae:b7:1a:49:6c:e9:91:e7:e3:fc: f7:a9:84:b8:02:90:06:a4:b0:67:dd:51:c2:3c:12:fd:5f:78: f3:08:c3:4a:3a:45:5c:a3:0d:b5:86:e3:55:98:46:2e:f0:f9: 70:cf:d8:4f:9a:eb:6a:e1:3f:05:5e:22:06:fd:f9:85:b0:5f: aa:47:34:4f:a0:19:1c:fb:39:ba:b7:98:fd:aa:cc:77:9a:85: 48:4b:1c:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTBERDExMC8GA1UEBRMoRDhCRDY3NjUxODM2NjAzNEI4ODg4NDhCM0I1NzE4RkE5 MDcwRTE5MjAeFw0yNDA3MDMwMzIwNTNaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODRjMzk0LWQ5ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqCDOfJjliSP2pssc5aTQNwJ9S4GX+cOoYQavk/40ua/19S/DxrRYLnZ5nDrCc iKajQ8M4KxGNmAHwoyXtNloyO7PAkyCJ0i/W81liJ/vu5cd9TeqmzOguq/pD2Oiu ygXUUFfWM/VCmB1TBiTczYHt6XGp/cay4Wso3gNDhaT+eFmumTCM909m07a9Az9o Su3O+cbS+GORGlTcaKA2vdLT333do5xpEAGa/etSDkkkuivJXlgXSB0NwUqErHCV X6uePilPSgcLwF7rWsVbz1WacDiH5QNeQsGuuJMEXaiv/4RYizr2Whhkdbkr2qqR wk1bropD6GTMwG0204nYRSj9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhmvpH+LU 9ojZj3ckC/ncBtzLOUQwHwYDVR0jBBgwFoAU2L1nZRg2YDS4iISLO1cY+pBw4ZIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMERELzY1NjMyNEY0MzhF QTExRUZCMEZCMjE3REM0RjlBRTAyLzJMMW5aUmcyWURTNGlJU0xPMWNZLXBCdzRa SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkwxblpSZzJZRFM0aUlTTE8xY1ktcEJ3NFpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTBERC82NTYzMjRGNDM4RUExMUVGQjBGQjIxN0RDNEY5QUUwMi80MEJDMjc4MDM4 RUIxMUVGOUFENjZFN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAq+eaDANBgkqhkiG9w0BAQsFAAOCAQEAckM/4iWpjjz+RAYi +o/Ku64tAEkH4r40YikwrvQIPqcOFlMbsyGS8OyVSlZK2a17tUPH2ZqksnpkysfX /FkcuCxG0BUZDHy9jq/HriGFbED6jcvsy6Cm9CanUqCd6XPXt1KBuAbqw2YyzeSj PBfDbpjWdrT2Kt9jlom5SOhQZC5AyPH0fc1o+P4gftikAJgLY/WYyGY+MYAKccKq pV2SRs7lVcEsg2SoeR+utxpJbOmR5+P896mEuAKQBqSwZ91RwjwS/V948wjDSjpF XKMNtYbjVZhGLvD5cM/YT5rrauE/BV4iBv35hbBfqkc0T6AZHPs5ureY/arMd5qF SEsc6Q== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org