$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa File: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (raw, json) Hash identifier: 4s1yJr2g52+DMFY429ohpA5bZaHqp1IUUCW4B4SaCTc= Subject key identifier: B1:D5:4D:58:5A:D8:FF:93:FD:AF:8F:7B:93:7F:BD:09:6F:66:AD:66 Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 0873 Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa Signing time: Sat 22 Jun 2024 21:15:01 +0000 ROA not before: Sat 22 Jun 2024 21:15:01 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 41095 IP address blocks: 45.116.8.0/24 maxlen: 24 45.116.9.0/24 maxlen: 24 45.116.10.0/24 maxlen: 24 45.116.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2163 (0x873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: Jun 22 21:15:01 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66773ed4-38db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:fb:01:6c:4a:99:8f:fe:2f:06:97:62:43: ea:a4:0e:39:d4:ae:fe:7d:7e:40:85:a0:df:3f:86: 1f:30:87:6a:40:85:bd:c0:b4:50:fe:9c:60:0b:75: 7a:28:ff:cd:1e:9e:97:16:6e:3f:48:ae:4a:9c:88: d7:6f:ed:73:f2:0a:60:d1:d8:f2:b1:b8:70:d3:b3: 69:02:c3:49:ef:91:03:bc:78:2b:fa:f6:40:93:66: 7d:7a:c4:41:4d:11:16:87:41:15:95:02:65:e0:1d: df:68:6d:fe:29:45:54:8c:5d:50:43:ed:c0:14:3d: 4a:f9:10:59:52:09:b1:ae:15:1a:25:63:fc:a1:63: 84:43:24:3a:b9:04:5e:c7:9b:d2:47:1c:cf:9a:98: 3c:24:76:36:67:ea:29:9c:6b:f5:b5:6e:b7:a5:d7: b1:ea:52:f8:df:9b:77:b8:9c:29:1e:5f:e0:eb:6f: 6a:ae:56:93:a9:f3:10:78:ea:3b:4c:6c:c5:05:f0: 13:b8:67:a0:98:58:28:b8:58:7e:02:44:8c:c0:57: 36:3f:d3:34:0f:e9:4c:73:38:72:b0:21:8a:2e:09: 62:61:f8:b9:0d:45:12:6d:b0:be:24:93:57:cd:53: ff:dc:78:a8:1e:79:89:ab:17:42:54:be:4e:14:43: 78:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D5:4D:58:5A:D8:FF:93:FD:AF:8F:7B:93:7F:BD:09:6F:66:AD:66 X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.8.0/22 Signature Algorithm: sha256WithRSAEncryption 11:96:6e:20:49:a5:91:28:dc:1a:ac:7d:2c:3c:00:50:d9:08: da:75:d3:96:34:ec:f9:eb:b0:69:8f:d7:b2:7f:38:16:5c:69: 46:b4:c1:bc:4d:3d:e8:65:d1:22:72:d5:2a:ac:57:37:bb:0a: b9:96:b4:c3:ee:a0:d4:fb:16:05:b2:f6:ae:72:e8:73:dc:08: d2:ce:43:a7:33:db:24:06:e7:3c:ef:bb:d3:24:a7:ef:b1:f2: 45:cd:73:b7:98:9e:ca:60:9c:b0:2f:41:42:7d:cf:2f:43:82: 4f:bf:d7:70:bc:56:15:35:b6:64:e8:eb:4e:e2:dc:aa:70:99: 01:eb:bb:a4:4f:ce:ca:30:a0:90:7b:58:03:27:67:eb:ab:51: e5:d2:f4:fb:25:69:bd:3f:c1:a5:9b:6c:85:25:d0:60:66:b8: 22:da:9d:46:88:c2:59:27:e5:0f:f3:1d:be:65:1c:bc:4a:77: 7e:73:a0:b7:cf:77:69:d3:aa:d3:be:5f:f1:77:76:83:4e:27: 2c:4a:f0:aa:33:33:db:dd:84:d4:6f:ab:9e:94:ab:4a:7a:10: 0e:61:41:ed:b2:9c:b9:0b:00:3b:79:d0:be:7a:78:19:37:b2: 74:72:c3:d2:ff:88:6c:f4:93:9f:b5:34:45:b2:87:be:28:83: 94:f9:73:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjQwNjIyMjExNTAxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3M2VkNC0zOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXn7AWxKmY/+LwaXYkPqpA451K7+fX5AhaDfP4YfMIdqQIW9wLRQ/pxgC3V6 KP/NHp6XFm4/SK5KnIjXb+1z8gpg0djysbhw07NpAsNJ75EDvHgr+vZAk2Z9esRB TREWh0EVlQJl4B3faG3+KUVUjF1QQ+3AFD1K+RBZUgmxrhUaJWP8oWOEQyQ6uQRe x5vSRxzPmpg8JHY2Z+opnGv1tW63pdex6lL435t3uJwpHl/g629qrlaTqfMQeOo7 TGzFBfATuGegmFgouFh+AkSMwFc2P9M0D+lMczhysCGKLgliYfi5DUUSbbC+JJNX zVP/3HioHnmJqxdCVL5OFEN4HwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLHVTVha 2P+T/a+Pe5N/vQlvZq1mMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFBNTgvQjM4OTMwNEVBN0VDMTFFQTgwNDg1ODY0QzRGOUFFMDIvNkU2RkZGNkE5 MkY5MTFFRDhBNjZFNzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAItdAgwDQYJKoZIhvcNAQELBQADggEBABGWbiBJpZEo3Bqs fSw8AFDZCNp105Y07PnrsGmP17J/OBZcaUa0wbxNPehl0SJy1SqsVze7CrmWtMPu oNT7FgWy9q5y6HPcCNLOQ6cz2yQG5zzvu9Mkp++x8kXNc7eYnspgnLAvQUJ9zy9D gk+/13C8VhU1tmTo607i3KpwmQHru6RPzsowoJB7WAMnZ+urUeXS9Pslab0/waWb bIUl0GBmuCLanUaIwlkn5Q/zHb5lHLxKd35zoLfPd2nTqtO+X/F3doNOJyxK8Koz M9vdhNRvq56Uq0p6EA5hQe2ynLkLADt50L56eBk3snRyw9L/iGz0k5+1NEWyh74o g5T5c9o= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:39 2024 by rpki-client on console-fra.rpki-client.org