$ rpki-client -vvf rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa File: DFB66DA85E9211ED83D40E65C4F9AE02.roa (raw, json) Hash identifier: 1Kz/gacCnhM+fr3wXAjqYRKG+spIHUpJaLSQPwac8Js= Subject key identifier: 70:AF:05:F6:78:C6:AB:36:72:70:AE:B2:3E:E6:4D:48:16:BD:4A:96 Certificate issuer: /CN=A91684D0/serialNumber=A5E6F5C74BBCEB4009C55EEA68970349971FF63A Certificate serial: 0174 Authority key identifier: A5:E6:F5:C7:4B:BC:EB:40:09:C5:5E:EA:68:97:03:49:97:1F:F6:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa Signing time: Sun 27 Oct 2024 02:40:52 +0000 ROA not before: Sun 27 Oct 2024 02:40:52 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138162 IP address blocks: 149.234.186.0/24 maxlen: 24 149.234.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.crl rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91684D0/serialNumber=A5E6F5C74BBCEB4009C55EEA68970349971FF63A Validity Not Before: Oct 27 02:40:52 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671da834-013f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:61:fe:4b:5c:b3:ee:ea:f7:39:16:3e:11:42: 8b:e1:13:f9:f4:6e:72:32:a3:fb:2c:c3:06:36:3a: ac:17:86:ce:d4:26:2a:e9:21:cd:bb:a3:c6:b9:9c: 9a:4f:bc:e3:bc:d7:d2:58:d2:50:6c:04:26:1f:c6: b0:d9:c0:16:c4:b4:41:a0:ad:52:ed:73:15:4b:3f: f0:a3:bf:69:5d:a5:f7:8a:bc:19:e7:e7:a0:2f:9c: 12:85:11:e1:39:25:df:c9:f0:07:70:31:4f:b4:7a: fc:12:c0:ac:19:79:71:d9:56:69:bb:89:2c:de:d9: 56:10:cb:5b:c6:39:df:7d:4e:84:98:73:1c:ab:c2: e0:31:42:4a:b4:f8:83:2d:e6:6c:24:41:5c:3c:5a: 8c:4f:af:a4:b9:8c:65:e9:ab:7e:30:42:74:c6:e1: d0:bf:3c:83:e0:7d:4f:6a:56:16:03:a3:10:c3:e8: 69:18:1d:5d:6d:8f:e9:af:17:a5:02:f2:0e:4b:e7: a6:db:22:88:9d:03:11:a4:ac:14:4c:d3:f1:91:60: 7d:2f:fc:4d:77:3f:31:ef:96:e5:37:6c:6c:37:35: 8b:03:c6:e4:c8:3f:45:5a:bb:78:3e:0e:6f:c7:ef: 3d:fe:f7:98:df:89:6c:70:5f:e3:09:d0:5d:7f:64: 91:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AF:05:F6:78:C6:AB:36:72:70:AE:B2:3E:E6:4D:48:16:BD:4A:96 X509v3 Authority Key Identifier: keyid:A5:E6:F5:C7:4B:BC:EB:40:09:C5:5E:EA:68:97:03:49:97:1F:F6:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.186.0/24 149.234.191.0/24 Signature Algorithm: sha256WithRSAEncryption 49:64:b2:70:61:94:dd:73:d0:7f:aa:8c:22:95:db:ad:21:79: 61:71:1d:68:44:3f:7e:5f:f8:f1:0d:43:5f:95:30:73:3c:ff: 10:9e:aa:f4:71:74:e3:73:c4:73:2c:4e:46:f8:e2:f8:11:9e: 4c:53:45:32:b7:29:99:fb:2d:03:36:10:81:44:05:da:95:23: 07:75:fd:dd:23:f9:c3:f5:a7:53:ee:86:20:b8:c5:6a:75:6f: a4:b3:bb:f8:a5:bc:b9:3a:e6:4f:32:a4:2e:47:d4:c9:47:ab: 93:0c:36:0d:0b:c7:0a:52:df:7a:a1:d5:82:8a:62:f3:5e:de: 21:09:68:30:20:0b:37:3a:0a:6b:c1:0d:c2:01:c5:ba:38:2f: 70:83:2c:68:d7:7d:76:97:4d:d3:f1:7e:3b:4a:36:a8:6a:6b: 6c:be:3b:1c:b6:be:7c:e1:61:83:d9:bb:7f:d7:d4:1a:ea:88: 75:10:a8:7b:c8:a9:be:28:27:bd:b3:d0:da:54:8f:6c:f4:6b: f5:60:fe:b6:6d:8c:1a:e2:7d:de:b0:87:20:6f:2a:7e:b6:c0: 9e:ec:ad:39:22:db:d8:b5:7f:58:aa:f5:a2:b7:e1:e4:91:1f: 85:82:61:0d:7b:67:0c:a2:16:a0:2d:09:ff:8d:96:ca:39:92: 58:38:91:17 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0RDAxMTAvBgNVBAUTKEE1RTZGNUM3NEJCQ0VCNDAwOUM1NUVFQTY4OTcwMzQ5 OTcxRkY2M0EwHhcNMjQxMDI3MDI0MDUyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkYTgzNC0wMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmH+S1yz7ur3ORY+EUKL4RP59G5yMqP7LMMGNjqsF4bO1CYq6SHNu6PGuZya T7zjvNfSWNJQbAQmH8aw2cAWxLRBoK1S7XMVSz/wo79pXaX3irwZ5+egL5wShRHh OSXfyfAHcDFPtHr8EsCsGXlx2VZpu4ks3tlWEMtbxjnffU6EmHMcq8LgMUJKtPiD LeZsJEFcPFqMT6+kuYxl6at+MEJ0xuHQvzyD4H1PalYWA6MQw+hpGB1dbY/prxel AvIOS+em2yKInQMRpKwUTNPxkWB9L/xNdz8x75blN2xsNzWLA8bkyD9FWrt4Pg5v x+89/veY34lscF/jCdBdf2SR3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHCvBfZ4 xqs2cnCusj7mTUgWvUqWMB8GA1UdIwQYMBaAFKXm9cdLvOtACcVe6miXA0mXH/Y6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODREMC9EMzE0MkRCODVF OEYxMUVEOEM5OTY5NjNDNEY5QUUwMi9wZWIxeDB1ODYwQUp4VjdxYUpjRFNaY2Y5 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BlYjF4MHU4NjBBSnhWN3FhSmNEU1pjZjlqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0RDAvRDMxNDJEQjg1RThGMTFFRDhDOTk2OTYzQzRGOUFFMDIvREZCNjZEQTg1 RTkyMTFFRDgzRDQwRTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACV6roDBACV6r8wDQYJKoZIhvcNAQELBQADggEBAElksnBh lN1z0H+qjCKV260heWFxHWhEP35f+PENQ1+VMHM8/xCeqvRxdONzxHMsTkb44vgR nkxTRTK3KZn7LQM2EIFEBdqVIwd1/d0j+cP1p1PuhiC4xWp1b6Szu/ilvLk65k8y pC5H1MlHq5MMNg0LxwpS33qh1YKKYvNe3iEJaDAgCzc6CmvBDcIBxbo4L3CDLGjX fXaXTdPxfjtKNqhqa2y+Oxy2vnzhYYPZu3/X1BrqiHUQqHvIqb4oJ72z0NpUj2z0 a/Vg/rZtjBrifd6whyBvKn62wJ7srTki29i1f1iq9aK34eSRH4WCYQ17ZwyiFqAt Cf+Nlso5klg4kRc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:57 2024 by rpki-client on console-fra.rpki-client.org