$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/66F91334ED4911ED9A90391BC4F9AE02.roa File: 66F91334ED4911ED9A90391BC4F9AE02.roa (raw, json) Hash identifier: WvS4HSGnpo6fnRnI8xEz6Pg+dqflFwbhWNvLJvMQfCs= Subject key identifier: C8:AB:9A:4E:CB:31:A1:84:CA:23:2C:86:27:5B:6E:87:36:92:0F:2F Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 09A0 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/66F91334ED4911ED9A90391BC4F9AE02.roa Signing time: Sat 02 Dec 2023 20:47:43 +0000 ROA not before: Sat 02 Dec 2023 20:47:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9650 IP address blocks: 131.242.0.0/16 maxlen: 16 131.242.21.0/24 maxlen: 24 131.242.22.0/24 maxlen: 24 131.242.23.0/24 maxlen: 24 131.242.26.0/24 maxlen: 24 131.242.30.0/24 maxlen: 24 131.242.132.0/24 maxlen: 24 131.242.144.0/22 maxlen: 22 131.242.176.0/20 maxlen: 20 131.242.230.0/24 maxlen: 24 131.242.231.0/24 maxlen: 24 147.132.0.0/16 maxlen: 16 161.143.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2464 (0x9a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Dec 2 20:47:43 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b97ef-01e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:75:cf:dc:2e:b3:17:52:d1:eb:9b:03:7d:a6: 88:23:40:63:44:66:8d:f8:08:55:61:25:76:7f:b6: 0d:2f:7f:f1:b4:f4:9a:02:7a:7b:b5:ed:58:57:fb: 14:47:d7:32:61:fd:86:eb:8c:8d:67:67:75:73:7a: ce:d2:4a:2b:94:d0:6f:60:38:6c:99:2e:31:7f:80: af:dd:ed:0b:4c:90:44:d6:3e:ff:83:62:99:25:ce: ea:2e:2f:d3:c6:a1:f2:da:10:ae:ca:03:f7:e6:89: 6a:f2:29:3f:8a:16:af:a0:ab:9f:6e:77:d2:1c:08: b0:b7:f0:24:7f:e1:43:ab:3c:b6:d6:55:c3:db:1a: 2c:54:c9:fd:f6:45:af:27:b8:3a:c6:12:d4:c5:7e: 20:c5:01:c6:af:48:72:a9:90:c1:ac:0b:be:e3:6a: 4b:92:f5:43:84:cf:66:cd:6d:12:d7:bc:10:7a:1a: c5:5f:c2:8d:c7:4a:05:b1:a9:ab:aa:11:37:40:a3: e3:3c:64:06:87:40:f1:1c:90:3e:95:4d:b4:da:ea: 41:f9:50:2c:9c:eb:cc:e0:96:ad:25:c3:3f:b7:61: 73:74:2a:34:d7:c6:e4:36:2c:c4:ac:4b:8b:3c:bd: f1:c5:f0:11:d0:12:de:ed:d6:a2:b1:be:38:99:4e: ce:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:AB:9A:4E:CB:31:A1:84:CA:23:2C:86:27:5B:6E:87:36:92:0F:2F X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/66F91334ED4911ED9A90391BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.242.0.0/16 147.132.0.0/16 161.143.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:52:cb:72:8a:04:3e:a1:47:5e:10:07:26:90:1a:35:31:25: f6:21:03:6a:46:44:4a:09:bb:d4:cf:cd:36:17:7b:f3:fe:04: 0b:28:de:b4:1e:00:f5:0b:c9:e2:89:cf:4a:b3:38:f7:24:42: 5e:6d:38:b3:3b:e1:77:60:e9:c5:d1:9c:c0:28:c2:2b:10:92: 62:4c:de:40:46:65:1e:0a:8d:ac:dc:c2:37:d9:00:0f:b2:6c: 2f:62:77:56:db:b1:c0:1f:c0:ed:a2:46:a2:2e:fb:38:ac:ea: 01:54:07:8a:17:74:46:5e:3c:93:db:5f:42:03:fa:2e:88:b8: 42:1e:d9:dd:11:5f:58:6d:21:8f:b2:8b:39:a9:78:04:a7:84: 76:eb:82:60:65:f2:28:2f:76:07:73:66:4e:56:8a:7d:ef:01: 62:12:78:d3:5b:37:82:5d:1b:1f:26:fe:04:38:0a:d4:4d:26: 5e:1b:b1:54:73:68:24:32:27:1a:05:ee:fb:e5:05:7e:de:1f: dc:ec:72:6c:2a:ab:da:72:8f:f3:74:99:26:7e:18:15:ab:5f: 9d:58:f8:73:25:a5:db:dd:e1:fc:4b:d9:91:d4:1f:d6:6d:f0: c1:88:fc:3a:f5:55:dd:79:ba:42:dc:c0:8d:a9:52:96:2c:75: a3:2c:1a:3e -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICCaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjMxMjAyMjA0NzQzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiOTdlZi0wMWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXXP3C6zF1LR65sDfaaII0BjRGaN+AhVYSV2f7YNL3/xtPSaAnp7te1YV/sU R9cyYf2G64yNZ2d1c3rO0korlNBvYDhsmS4xf4Cv3e0LTJBE1j7/g2KZJc7qLi/T xqHy2hCuygP35olq8ik/ihavoKufbnfSHAiwt/Akf+FDqzy21lXD2xosVMn99kWv J7g6xhLUxX4gxQHGr0hyqZDBrAu+42pLkvVDhM9mzW0S17wQehrFX8KNx0oFsamr qhE3QKPjPGQGh0DxHJA+lU202upB+VAsnOvM4JatJcM/t2FzdCo018bkNizErEuL PL3xxfAR0BLe7daisb44mU7OxQIDAQABo4ICnjCCApowHQYDVR0OBBYEFMirmk7L MaGEyiMshidbboc2kg8vMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U0QkEvQzk1MkFDOUU1MkRDMTFFQTgyNjAxQjBGQzRGOUFFMDIvNjZGOTEzMzRF RDQ5MTFFRDlBOTAzOTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKAYIKwYBBQUHAQcBAf8E GTAXMBUEAgABMA8DAwCD8gMDAJOEAwMAoY8wDQYJKoZIhvcNAQELBQADggEBADdS y3KKBD6hR14QByaQGjUxJfYhA2pGREoJu9TPzTYXe/P+BAso3rQeAPULyeKJz0qz OPckQl5tOLM74Xdg6cXRnMAowisQkmJM3kBGZR4KjazcwjfZAA+ybC9id1bbscAf wO2iRqIu+zis6gFUB4oXdEZePJPbX0ID+i6IuEIe2d0RX1htIY+yizmpeASnhHbr gmBl8igvdgdzZk5Win3vAWISeNNbN4JdGx8m/gQ4CtRNJl4bsVRzaCQyJxoF7vvl BX7eH9zscmwqq9pyj/N0mSZ+GBWrX51Y+HMlpdvd4fxL2ZHUH9Zt8MGI/Dr1Vd15 ukLcwI2pUpYsdaMsGj4= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org