$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/ABA9F4B8AF8411EABF9F844DC4F9AE02.roa File: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (raw, json) Hash identifier: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc= Subject key identifier: 0A:31:7C:DE:72:57:27:16:2A:98:37:1E:7D:6B:3D:26:E3:63:3B:4E Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2435 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/ABA9F4B8AF8411EABF9F844DC4F9AE02.roa Signing time: Tue 22 Oct 2024 15:53:04 +0000 ROA not before: Tue 22 Oct 2024 15:53:04 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9930 IP address blocks: 119.110.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9269 (0x2435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Oct 22 15:53:04 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6717ca60-87ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:73:49:f8:67:a7:a8:20:72:aa:4b:39:8d:28: 37:8f:cb:3c:5f:50:8c:da:b5:bf:b5:4e:2f:b8:1a: 0d:35:c8:6c:ec:15:85:1f:07:92:5a:99:1b:52:a8: 3f:11:08:db:47:73:04:c5:c4:00:e1:00:89:65:11: da:12:39:3d:66:61:75:e1:ea:05:10:bd:aa:21:23: bb:42:19:c2:37:bf:cf:c5:69:17:fd:01:ff:75:3b: 85:f2:da:53:9d:ef:cc:94:88:1b:17:96:7b:e1:49: 72:65:36:7d:e1:4e:fa:7d:7f:c3:ca:c9:1e:f6:4d: 29:ed:84:29:7e:b3:dd:44:ac:4d:87:f0:fa:33:ff: ae:35:bd:d5:7d:22:d4:b0:01:2c:a1:0a:d1:84:1b: 8c:8a:d9:6d:2c:0c:0a:dd:e9:b1:e0:0b:f2:ac:42: af:c5:59:0e:15:fc:ff:27:f6:8a:41:16:fd:17:11: db:cf:6c:56:0f:3f:2f:ea:84:b5:aa:06:33:97:62: 46:68:3f:06:53:d6:b7:a7:8c:7c:1d:9c:94:c4:25: a2:84:f3:5f:ed:71:76:7b:18:14:0e:b2:de:a3:e2: d2:c7:21:70:17:e8:fd:42:95:22:bb:3d:47:99:bf: ac:f5:a0:83:65:b9:21:d2:b4:38:31:b5:03:a8:22: 85:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:31:7C:DE:72:57:27:16:2A:98:37:1E:7D:6B:3D:26:E3:63:3B:4E X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/ABA9F4B8AF8411EABF9F844DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.110.128.0/18 Signature Algorithm: sha256WithRSAEncryption 44:98:c4:7d:24:eb:f2:87:d4:d9:60:9f:03:1e:4b:78:68:ae: 06:bf:8e:2a:ce:ac:18:9d:c6:0b:b3:95:c6:b1:b7:1d:be:69: 41:70:44:35:0b:ed:fb:b9:87:36:e9:ff:de:cd:97:d4:51:3e: bd:12:21:75:f1:90:15:4c:44:a3:8d:c8:24:7f:e5:9b:45:9f: ca:37:c6:38:fe:4a:04:d3:9a:29:00:eb:8e:40:80:e3:99:cd: 3d:22:b2:d5:7a:67:18:4a:0f:60:cf:54:da:1a:7e:55:e0:8b: f8:8d:f1:94:23:b0:8c:f1:fc:b5:f2:16:91:c7:d0:a3:b8:5a: 19:74:57:b3:83:c0:76:59:90:5d:9a:b1:39:fe:f5:8d:80:a0: a9:1e:14:02:cf:70:a4:06:1b:07:b6:6d:f7:17:42:5c:62:ad: cd:57:a6:d3:0d:4b:b9:c0:4b:17:44:aa:f9:11:01:3e:ac:63: a6:27:5d:dc:46:1f:f3:83:72:8a:fa:c3:be:37:c8:47:3d:11: b6:23:7a:a6:73:11:40:89:f9:08:9b:61:39:48:bd:e3:64:13: 1c:d9:72:3b:21:d4:1a:29:c5:09:d2:4f:c4:e2:f6:34:87:33: 65:20:dd:c4:6f:29:83:55:ea:85:11:fc:fd:b4:00:ff:60:3f: 56:b6:ad:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjQxMDIyMTU1MzA0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3Y2E2MC04N2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHNJ+GenqCByqks5jSg3j8s8X1CM2rW/tU4vuBoNNchs7BWFHweSWpkbUqg/ EQjbR3MExcQA4QCJZRHaEjk9ZmF14eoFEL2qISO7QhnCN7/PxWkX/QH/dTuF8tpT ne/MlIgbF5Z74UlyZTZ94U76fX/Dyske9k0p7YQpfrPdRKxNh/D6M/+uNb3VfSLU sAEsoQrRhBuMitltLAwK3emx4AvyrEKvxVkOFfz/J/aKQRb9FxHbz2xWDz8v6oS1 qgYzl2JGaD8GU9a3p4x8HZyUxCWihPNf7XF2exgUDrLeo+LSxyFwF+j9QpUiuz1H mb+s9aCDZbkh0rQ4MbUDqCKFuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAoxfN5y VycWKpg3Hn1rPSbjYztOMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwQTUvMTdERkIzNUE0NkU2MTFFNUIwOERBMTdCQzRGOUFFMDIvQUJBOUY0QjhB Rjg0MTFFQUJGOUY4NDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAZ3boAwDQYJKoZIhvcNAQELBQADggEBAESYxH0k6/KH1Nlg nwMeS3horga/jirOrBidxguzlcaxtx2+aUFwRDUL7fu5hzbp/97Nl9RRPr0SIXXx kBVMRKONyCR/5ZtFn8o3xjj+SgTTmikA645AgOOZzT0istV6ZxhKD2DPVNoaflXg i/iN8ZQjsIzx/LXyFpHH0KO4Whl0V7ODwHZZkF2asTn+9Y2AoKkeFALPcKQGGwe2 bfcXQlxirc1XptMNS7nASxdEqvkRAT6sY6YnXdxGH/ODcor6w743yEc9EbYjeqZz EUCJ+QibYTlIveNkExzZcjsh1BopxQnST8Ti9jSHM2Ug3cRvKYNV6oUR/P20AP9g P1a2rck= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org