$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/FE5E15E2216911EC82319078C4F9AE02.roa File: FE5E15E2216911EC82319078C4F9AE02.roa (raw, json) Hash identifier: F++NgZIbVXAu/P1iRFKH5as6NLrkIgPyr3KhQBuiQaA= Subject key identifier: 70:33:F0:70:33:9F:07:0A:FF:01:E7:61:43:AA:19:8F:D0:83:DF:27 Certificate issuer: /CN=A9171845/serialNumber=7C9B29F1F56E87EEAEB1BF7407694DB4EDDAD53B Certificate serial: 0451 Authority key identifier: 7C:9B:29:F1:F5:6E:87:EE:AE:B1:BF:74:07:69:4D:B4:ED:DA:D5:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJsp8fVuh-6usb90B2lNtO3a1Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/FE5E15E2216911EC82319078C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:43:56 +0000 ROA not before: Tue 03 Sep 2024 01:43:56 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24324 IP address blocks: 153.111.220.0/24 maxlen: 24 153.111.222.0/24 maxlen: 24 153.111.226.0/24 maxlen: 24 153.111.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/fJsp8fVuh-6usb90B2lNtO3a1Ts.crl rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/fJsp8fVuh-6usb90B2lNtO3a1Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJsp8fVuh-6usb90B2lNtO3a1Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845/serialNumber=7C9B29F1F56E87EEAEB1BF7407694DB4EDDAD53B Validity Not Before: Sep 3 01:43:56 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d669db-7f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:18:7e:a1:d3:a7:d8:a2:e0:29:b4:aa:6e:f4: 63:7f:48:83:68:15:68:8f:df:ba:d9:2c:d1:43:7d: 8c:cc:a6:a5:5e:8d:1e:85:8c:53:2e:cb:f1:06:8d: b7:d4:0a:9e:7f:ad:3f:71:47:76:22:c6:26:c9:91: f5:22:f9:25:b2:81:8a:a0:f1:87:fb:59:ba:db:4f: 84:6e:be:72:a2:ca:98:05:4d:73:42:65:33:6d:80: 0d:d6:e1:4b:74:c2:14:12:d9:34:ea:69:db:e0:e8: 22:19:1e:c9:07:1c:5c:7c:5f:d0:3f:9d:49:4e:b2: 08:ef:19:97:2f:b3:6e:20:04:84:d5:f2:8f:c1:88: 0d:1b:e7:4f:7b:b6:35:c9:27:64:6e:87:31:32:9c: 59:2a:f3:42:73:ea:25:80:4a:ca:c6:a9:88:5a:cf: 86:3b:b7:ab:66:d1:9e:27:f2:3d:23:ff:e4:7e:25: 15:6b:fb:e4:c6:a3:ba:25:ad:82:85:55:6a:45:25: 78:e4:66:f6:49:11:64:26:25:2d:b7:8c:7a:71:34: b4:3a:77:1e:6b:0a:84:c8:b8:e2:bc:0a:e8:be:a4: e4:86:38:c1:a0:45:c4:b4:09:aa:46:44:c2:56:53: 0e:1e:b0:c2:51:79:b2:43:5f:ce:b2:54:54:2f:d1: 1a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:33:F0:70:33:9F:07:0A:FF:01:E7:61:43:AA:19:8F:D0:83:DF:27 X509v3 Authority Key Identifier: keyid:7C:9B:29:F1:F5:6E:87:EE:AE:B1:BF:74:07:69:4D:B4:ED:DA:D5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/fJsp8fVuh-6usb90B2lNtO3a1Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJsp8fVuh-6usb90B2lNtO3a1Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/FE5E15E2216911EC82319078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.111.220.0/24 153.111.222.0/24 153.111.226.0/24 153.111.229.0/24 Signature Algorithm: sha256WithRSAEncryption 27:97:2a:04:fe:c0:5e:b4:5b:ee:48:5f:1d:dd:53:b3:7a:61: 6a:08:78:31:06:d6:bc:34:da:87:88:ba:0b:35:08:18:f2:ad: 79:c9:2c:88:65:9d:65:f8:b4:58:eb:e6:d2:ac:59:2b:6a:8e: 12:26:78:65:d6:18:5e:f4:a5:46:bb:f2:a3:4a:a9:87:91:23: 00:f4:2c:d1:60:d5:04:3f:25:63:b9:76:85:db:a3:88:02:be: 38:3b:48:71:e5:bc:77:5d:ff:1e:ef:44:19:9e:4a:0e:ea:22: 88:d7:29:b3:8e:75:35:e4:9d:7c:19:55:2d:23:be:70:da:34: 69:d0:56:5d:09:a7:2e:eb:28:72:01:07:8b:ef:6a:3c:cd:c6: e6:a6:0c:55:f5:fd:82:52:8f:d5:c8:b0:0c:f3:14:91:48:4d: b9:9b:0c:c9:42:0e:18:85:aa:70:57:f0:7f:88:3f:f8:ee:e7: 61:20:26:36:19:26:52:b6:21:f1:1f:cb:56:4d:96:34:5f:3a: f8:cf:ae:f8:ca:cb:42:c8:e3:70:d4:3f:17:f4:42:84:37:b4: 97:48:06:83:bb:cf:16:1e:e1:8a:42:c9:76:b8:7f:28:35:78: e7:01:97:fc:4e:2b:15:67:ff:1b:b1:fb:d0:da:ff:62:a9:e8: 8c:ed:ff:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKDdDOUIyOUYxRjU2RTg3RUVBRUIxQkY3NDA3Njk0REI0 RUREQUQ1M0IwHhcNMjQwOTAzMDE0MzU2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjlkYi03ZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRh+odOn2KLgKbSqbvRjf0iDaBVoj9+62SzRQ32MzKalXo0ehYxTLsvxBo23 1Aqef60/cUd2IsYmyZH1IvklsoGKoPGH+1m620+Ebr5yosqYBU1zQmUzbYAN1uFL dMIUEtk06mnb4OgiGR7JBxxcfF/QP51JTrII7xmXL7NuIASE1fKPwYgNG+dPe7Y1 ySdkbocxMpxZKvNCc+olgErKxqmIWs+GO7erZtGeJ/I9I//kfiUVa/vkxqO6Ja2C hVVqRSV45Gb2SRFkJiUtt4x6cTS0OnceawqEyLjivArovqTkhjjBoEXEtAmqRkTC VlMOHrDCUXmyQ1/OslRUL9EaOQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFHAz8HAz nwcK/wHnYUOqGY/Qg98nMB8GA1UdIwQYMBaAFHybKfH1bofurrG/dAdpTbTt2tU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS84Njc1QkU4MDIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi9mSnNwOGZWdWgtNnVzYjkwQjJsTnRPM2Ex VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKc3A4ZlZ1aC02dXNiOTBCMmxOdE8zYTFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4NDUvODY3NUJFODAyMENBMTFFQ0I2NkMxNDUyQzRGOUFFMDIvRkU1RTE1RTIy MTY5MTFFQzgyMzE5MDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBACZb9wDBACZb94DBACZb+IDBACZb+UwDQYJKoZIhvcNAQEL BQADggEBACeXKgT+wF60W+5IXx3dU7N6YWoIeDEG1rw02oeIugs1CBjyrXnJLIhl nWX4tFjr5tKsWStqjhImeGXWGF70pUa78qNKqYeRIwD0LNFg1QQ/JWO5doXbo4gC vjg7SHHlvHdd/x7vRBmeSg7qIojXKbOOdTXknXwZVS0jvnDaNGnQVl0Jpy7rKHIB B4vvajzNxuamDFX1/YJSj9XIsAzzFJFITbmbDMlCDhiFqnBX8H+IP/ju52EgJjYZ JlK2IfEfy1ZNljRfOvjPrvjKy0LI43DUPxf0QoQ3tJdIBoO7zxYe4YpCyXa4fyg1 eOcBl/xOKxVn/xux+9Da/2Kp6Izt/xY= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:21 2024 by rpki-client on console-fra.rpki-client.org