$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/91E868D4902B11EF87435A54C4F9AE02.roa File: 91E868D4902B11EF87435A54C4F9AE02.roa (raw, json) Hash identifier: O5NrYidky1uWhh0BCjw4p5lqRUhg5y9NJ2WJphzcgW8= Subject key identifier: C6:CD:6F:7E:37:A1:33:0B:05:78:32:B2:E9:83:9B:51:02:78:3B:E4 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 05FC Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/91E868D4902B11EF87435A54C4F9AE02.roa Signing time: Tue 22 Oct 2024 04:10:28 +0000 ROA not before: Tue 22 Oct 2024 04:10:28 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136907 IP address blocks: 189.1.192.0/18 maxlen: 18 189.1.192.0/20 maxlen: 20 189.1.208.0/20 maxlen: 20 189.1.224.0/20 maxlen: 20 189.1.240.0/20 maxlen: 20 189.28.96.0/19 maxlen: 19 189.28.96.0/20 maxlen: 20 189.28.112.0/20 maxlen: 20 190.92.192.0/19 maxlen: 24 190.92.224.0/19 maxlen: 19 190.92.248.0/24 maxlen: 24 190.92.249.0/24 maxlen: 24 190.92.250.0/24 maxlen: 24 190.92.251.0/24 maxlen: 24 190.92.252.0/24 maxlen: 24 190.92.253.0/24 maxlen: 24 190.92.254.0/24 maxlen: 24 201.77.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Oct 22 04:10:28 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=671725b4-b925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:ff:b1:44:6f:ee:33:9b:e0:68:47:bb:e5: f7:88:e6:9e:aa:f0:9f:ef:6d:b0:88:b0:74:d1:01: 86:8c:22:c9:ee:e4:f0:43:35:c9:d7:fa:e5:9c:c7: f6:37:3f:d7:20:e4:af:12:9b:96:76:12:66:3c:2f: 4d:5a:df:9d:50:07:81:a1:19:b4:25:7c:7b:2d:19: 2c:33:27:e8:84:fa:5e:dd:9a:f8:84:5f:35:60:ed: 33:62:0b:ad:ae:53:2a:bb:d7:31:b2:52:f6:2d:48: 0a:15:1e:47:63:42:5d:ef:ff:ac:9d:ab:9d:0c:8e: b6:0c:9a:a1:11:00:35:98:95:9d:94:51:97:69:31: f7:89:96:39:bf:d4:c9:88:1b:71:d9:00:9e:a9:60: d6:44:2e:1a:15:60:fd:22:52:91:02:51:be:58:c2: a3:ee:c2:74:3a:55:a7:dd:6e:5f:9d:fc:29:cc:2b: 4c:9e:f6:2b:22:16:fb:11:fc:ec:03:c9:bb:84:24: d9:80:e5:71:a3:d5:67:64:1c:0f:61:74:c8:ee:33: 3f:05:e2:83:dd:d5:9c:1f:4e:35:ed:6b:d3:58:3f: 56:d8:2c:1a:a7:00:9a:1e:69:06:46:13:fe:e9:21: 6e:c5:2f:b0:5c:dc:1b:44:0a:8b:ff:d8:3e:88:45: a4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CD:6F:7E:37:A1:33:0B:05:78:32:B2:E9:83:9B:51:02:78:3B:E4 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/91E868D4902B11EF87435A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 189.1.192.0/18 189.28.96.0/19 190.92.192.0/18 201.77.32.0/20 Signature Algorithm: sha256WithRSAEncryption 33:b0:18:a0:1a:28:9c:6a:fd:a9:7a:22:c3:98:f1:51:a0:fb: d2:11:81:86:b4:18:60:6f:e7:c0:3f:fe:08:14:db:e0:11:29: b4:76:19:94:06:47:05:9d:9e:0e:39:b4:c1:11:27:0a:5e:b3: 01:50:87:15:b0:5b:92:d8:af:86:90:6c:7c:fb:8a:f8:f2:a4: d0:fd:d8:cd:04:e4:96:ec:bd:89:b7:c5:4c:af:89:89:c8:f6: ea:46:87:97:37:f7:a6:8f:4c:d1:d0:6a:b3:eb:ea:0d:3c:cf: 49:ba:90:f2:f4:02:1c:4c:8b:bd:f0:ff:f0:bc:57:9c:5f:55: 54:ae:76:5e:42:4f:2d:6c:e5:25:63:bc:e7:df:65:b3:84:e8: 54:ef:93:73:52:2e:53:be:23:48:26:67:a6:05:c5:f4:c6:95: ce:7a:f7:1b:87:e4:57:57:4d:e5:03:6b:a1:85:e7:0a:88:f5: 83:29:59:5b:21:2b:02:2d:e2:73:9f:6c:84:6e:a1:1f:3d:68: 1e:8a:2a:f6:3c:d8:8f:b7:6b:b1:9a:f6:7b:38:1a:a2:bc:01: 4a:b4:29:76:04:d2:9a:4d:3d:d3:fd:c5:d1:13:f7:d5:04:83: 29:84:af:ad:4f:ae:2f:d2:a3:86:e0:a5:b5:b4:e5:bd:15:61: 13:73:5b:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjQxMDIyMDQxMDI4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3MjViNC1iOTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ez/sURv7jOb4GhHu+X3iOaeqvCf722wiLB00QGGjCLJ7uTwQzXJ1/rlnMf2 Nz/XIOSvEpuWdhJmPC9NWt+dUAeBoRm0JXx7LRksMyfohPpe3Zr4hF81YO0zYgut rlMqu9cxslL2LUgKFR5HY0Jd7/+snaudDI62DJqhEQA1mJWdlFGXaTH3iZY5v9TJ iBtx2QCeqWDWRC4aFWD9IlKRAlG+WMKj7sJ0OlWn3W5fnfwpzCtMnvYrIhb7Efzs A8m7hCTZgOVxo9VnZBwPYXTI7jM/BeKD3dWcH0417WvTWD9W2CwapwCaHmkGRhP+ 6SFuxS+wXNwbRAqL/9g+iEWklwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFMbNb343 oTMLBXgysumDm1ECeDvkMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvQjg5N0M1ODJBMTlDMTFFQjkyQTJERjI5QzRGOUFFMDIvOTFFODY4RDQ5 MDJCMTFFRjg3NDM1QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAa9AcADBAW9HGADBAa+XMADBATJTSAwDQYJKoZIhvcNAQEL BQADggEBADOwGKAaKJxq/al6IsOY8VGg+9IRgYa0GGBv58A//ggU2+ARKbR2GZQG RwWdng45tMERJwpeswFQhxWwW5LYr4aQbHz7ivjypND92M0E5JbsvYm3xUyviYnI 9upGh5c396aPTNHQarPr6g08z0m6kPL0AhxMi73w//C8V5xfVVSudl5CTy1s5SVj vOffZbOE6FTvk3NSLlO+I0gmZ6YFxfTGlc569xuH5FdXTeUDa6GF5wqI9YMpWVsh KwIt4nOfbIRuoR89aB6KKvY82I+3a7Ga9ns4GqK8AUq0KXYE0ppNPdP9xdET99UE gymEr61Pri/So4bgpbW05b0VYRNzW1E= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:00 2024 by rpki-client on console-fra.rpki-client.org