$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa File: 8B91EDB420CD11EC97292B78C4F9AE02.roa (raw, json) Hash identifier: eIj7A9yHm5UyaDqD5wlEFgtzeqxaYRyGJ855/hLNbFs= Subject key identifier: C2:F1:FB:11:47:22:9A:0D:4B:F8:C7:D4:4A:1C:D1:BC:73:DC:D2:AB Certificate issuer: /CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Certificate serial: 0457 Authority key identifier: BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:43:55 +0000 ROA not before: Tue 03 Sep 2024 01:43:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24324 IP address blocks: 155.32.0.0/18 maxlen: 18 155.32.0.0/24 maxlen: 24 155.32.17.0/24 maxlen: 24 155.32.18.0/24 maxlen: 24 155.32.23.0/24 maxlen: 24 155.32.24.0/24 maxlen: 24 155.32.27.0/24 maxlen: 24 155.32.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Validity Not Before: Sep 3 01:43:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d669da-552e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:62:0b:09:23:20:96:db:d5:83:ef:d7:cc:2d: 0c:f2:8c:8e:b9:f5:86:f4:ac:ba:9e:5d:5b:9d:ca: 72:69:74:45:4f:73:6d:49:a3:0b:83:61:48:7c:d8: b2:90:f4:aa:78:23:5e:be:c1:c8:76:1d:17:8f:0d: 9f:f1:98:df:ef:4e:4a:a6:72:a6:db:ab:78:7b:54: 03:b5:84:bf:f4:6a:63:9d:6c:ec:44:ae:1b:6f:06: 2c:4e:58:22:a2:2e:aa:61:da:e5:77:d6:00:44:52: 0e:fb:4c:6a:0a:e2:f8:ee:63:58:59:38:c8:42:f9: b7:c7:cf:5d:2b:6f:e9:ae:61:3a:95:2a:d4:02:a9: 92:9a:96:c1:71:43:69:7a:a0:0c:92:87:1b:1e:c2: d1:de:11:45:42:4c:be:7e:e1:3d:31:7c:85:4b:86: 0d:92:a3:c4:29:ba:68:81:4a:d2:91:ee:b8:e2:01: 61:a3:ab:c6:73:55:2e:9e:1e:b8:ac:0e:85:3f:77: 2a:53:99:9b:56:a3:5e:54:e4:e7:b0:0b:6d:b4:9c: c0:8a:3e:77:1a:d5:34:1f:86:7d:69:7d:1d:72:5b: 0a:fb:4f:34:ed:c8:89:6d:8f:e5:24:dd:c4:fa:e5: ec:29:4e:f6:35:e9:80:be:e9:c9:49:ea:b4:2f:d5: df:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F1:FB:11:47:22:9A:0D:4B:F8:C7:D4:4A:1C:D1:BC:73:DC:D2:AB X509v3 Authority Key Identifier: keyid:BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.32.0.0/18 155.32.190.0/24 Signature Algorithm: sha256WithRSAEncryption 39:f0:33:ce:38:64:fe:e5:0e:9f:8b:33:20:bb:5f:97:05:8a: 6a:96:63:67:f5:fd:1d:16:51:61:39:35:d4:3b:0d:59:c7:3a: 45:32:91:0b:fe:8b:84:db:fe:b4:4e:f5:5d:20:b7:da:93:9c: e1:ca:e5:ed:e5:46:89:7b:be:34:5d:08:51:11:07:e7:59:46: 47:1e:8c:51:21:66:d3:c0:70:d7:ff:3b:9b:a0:f9:ef:af:be: cd:b7:ce:36:b0:32:79:2d:6d:02:1e:6e:f9:d9:dd:ed:22:55: 32:91:57:ae:9e:c9:a0:11:a6:6c:de:3b:72:c2:34:c4:c5:64: ae:8f:6c:2c:41:e5:13:40:28:54:e6:c6:98:91:95:5b:5f:3d: eb:f0:b0:93:87:be:89:0e:96:03:52:71:dd:41:eb:34:5d:b9: 2a:d5:7d:a1:00:7d:86:7a:16:8e:b4:6a:2b:47:ec:76:a7:6e: 34:c4:39:41:cc:c1:31:22:ce:b6:24:dc:d7:87:cd:51:9f:60: 5e:19:a4:89:50:28:9b:dd:01:aa:ca:1d:1e:e9:4c:e1:a1:1c: af:67:14:be:b4:97:ca:d3:5e:15:5c:15:f6:4a:98:30:cf:8c: 53:8d:34:21:f5:2f:d9:d7:e5:72:79:07:3a:87:7c:e4:83:21: ac:c6:25:a9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKEJDOTdGMjZGQjI3ODk2N0REM0NBMzlDNTlERDA4QzZB MkMyMzA2RjkwHhcNMjQwOTAzMDE0MzU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjlkYS01NTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32ILCSMgltvVg+/XzC0M8oyOufWG9Ky6nl1bncpyaXRFT3NtSaMLg2FIfNiy kPSqeCNevsHIdh0Xjw2f8Zjf705KpnKm26t4e1QDtYS/9GpjnWzsRK4bbwYsTlgi oi6qYdrld9YARFIO+0xqCuL47mNYWTjIQvm3x89dK2/prmE6lSrUAqmSmpbBcUNp eqAMkocbHsLR3hFFQky+fuE9MXyFS4YNkqPEKbpogUrSke644gFho6vGc1Uunh64 rA6FP3cqU5mbVqNeVOTnsAtttJzAij53GtU0H4Z9aX0dclsK+0807ciJbY/lJN3E +uXsKU72NemAvunJSeq0L9Xf1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMLx+xFH IpoNS/jH1Eoc0bxz3NKrMB8GA1UdIwQYMBaAFLyX8m+yeJZ908o5xZ3QjGosIwb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS83QjYyQzgwODIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxuM1R5am5GbmRDTWFpd2pC dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZKZnliN0o0bG4zVHlqbkZuZENNYWl3akJ2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4NDUvN0I2MkM4MDgyMENBMTFFQ0I2NkMxNDUyQzRGOUFFMDIvOEI5MUVEQjQy MENEMTFFQzk3MjkyQjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAabIAADBACbIL4wDQYJKoZIhvcNAQELBQADggEBADnwM844 ZP7lDp+LMyC7X5cFimqWY2f1/R0WUWE5NdQ7DVnHOkUykQv+i4Tb/rRO9V0gt9qT nOHK5e3lRol7vjRdCFERB+dZRkcejFEhZtPAcNf/O5ug+e+vvs23zjawMnktbQIe bvnZ3e0iVTKRV66eyaARpmzeO3LCNMTFZK6PbCxB5RNAKFTmxpiRlVtfPevwsJOH vokOlgNScd1B6zRduSrVfaEAfYZ6Fo60aitH7HanbjTEOUHMwTEizrYk3NeHzVGf YF4ZpIlQKJvdAarKHR7pTOGhHK9nFL60l8rTXhVcFfZKmDDPjFONNCH1L9nX5XJ5 BzqHfOSDIazGJak= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:21 2024 by rpki-client on console-fra.rpki-client.org