$ rpki-client -vvf rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/FF64D6AAD4BB11ECBE4E9E71C4F9AE02.roa File: FF64D6AAD4BB11ECBE4E9E71C4F9AE02.roa (raw, json) Hash identifier: Nz1OHf+DZoyuSpWSpaUQ+rmJDma6hdQSmRhKOeMQaZE= Subject key identifier: 6A:4A:35:00:2F:68:83:AB:45:C2:0D:9F:97:29:2F:69:1C:7E:D4:31 Certificate issuer: /CN=A9191A09/serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Certificate serial: 3409 Authority key identifier: AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/FF64D6AAD4BB11ECBE4E9E71C4F9AE02.roa Signing time: Thu 14 Dec 2023 15:00:42 +0000 ROA not before: Thu 14 Dec 2023 15:00:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55559 IP address blocks: 27.111.8.0/22 maxlen: 24 218.100.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13321 (0x3409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191A09/serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Validity Not Before: Dec 14 15:00:42 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b189a-143d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:ad:dd:54:07:38:d9:37:bb:26:0f:e0:fb: e0:79:04:cf:1f:b0:08:0b:75:46:01:8b:d8:a7:e5: 24:cf:b7:4c:c2:07:f5:01:a8:af:7f:d9:bd:79:24: d0:71:28:79:5c:94:16:30:84:6b:2d:7c:33:65:22: ac:7e:fa:4a:e6:d3:a7:cb:c5:65:21:32:89:ca:34: 81:2b:81:5d:02:3f:c2:e9:dd:65:ce:07:e3:6d:27: 07:79:51:06:5a:8e:68:a9:32:b4:20:4c:57:8b:c2: 8f:ab:b1:3a:3f:af:d1:b7:9f:c1:9e:f3:9d:4e:97: ac:b7:1f:d1:82:4b:06:08:e6:d3:78:97:ae:77:88: 5e:c4:41:4b:94:8d:7e:db:eb:50:2a:c4:1d:40:7a: 2d:f6:99:e6:2f:43:4e:b0:c5:ae:fc:f6:6a:32:b4: d8:32:47:61:76:55:0a:98:6a:32:49:21:a1:86:0d: e4:30:bd:69:1f:40:64:eb:d3:cd:ed:21:45:e5:3f: 45:66:df:de:0f:37:58:d6:84:68:bc:e1:c0:50:d0: a5:39:a2:f8:4d:18:ac:07:5c:8b:a4:a9:60:e7:68: 18:83:b8:be:c1:7e:8f:73:cb:77:c2:65:f1:41:e3: 0d:01:2d:96:28:79:44:93:dd:51:01:5b:55:5d:37: 38:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:4A:35:00:2F:68:83:AB:45:C2:0D:9F:97:29:2F:69:1C:7E:D4:31 X509v3 Authority Key Identifier: keyid:AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/FF64D6AAD4BB11ECBE4E9E71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.8.0/22 218.100.71.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:86:ef:68:77:ab:5a:90:21:4e:36:18:c6:bc:de:9d:86:f0: a4:af:77:ef:e6:c1:6f:84:1f:2b:c3:d2:0a:8d:71:05:ea:4c: e5:59:0d:90:a6:e2:3f:dc:3b:24:58:b5:05:cb:0f:31:50:c4: ff:d7:26:3e:b1:57:5f:6a:af:db:4f:2a:98:9e:77:6d:c5:88: 72:4d:64:8f:d9:75:27:1d:7a:cf:41:2a:f4:7f:8c:9d:0b:9b: d0:6a:90:a8:3e:1a:1a:e0:f8:59:c8:8f:69:56:f2:f9:17:31: d6:23:77:57:c3:14:14:04:7d:a5:04:f7:2e:b2:8e:03:69:b2: 6c:30:e2:7b:ef:df:27:2c:d0:ef:ee:d3:f2:36:f9:22:d5:14: 39:79:74:ca:a9:ed:85:17:24:64:90:f1:46:c3:ce:b7:13:47: ae:a4:85:c6:db:15:d0:e8:fe:1c:ba:c8:ac:e3:25:e3:82:a9: 32:4b:1f:ae:80:24:36:35:28:4b:e8:95:b9:6f:dc:b5:2a:48: 6e:63:83:b6:58:d2:ed:a7:ee:cf:18:cf:62:05:64:da:23:b6: 07:a9:ac:7a:ab:f4:13:98:61:7e:bb:08:2e:4b:b5:8c:1f:de: ef:da:a0:95:72:20:29:19:07:a0:db:a2:00:d9:9a:19:92:31: 16:6e:7a:c4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFBMDkxMTAvBgNVBAUTKEFDRjJDOEQwRENGQkE3NDUxNkIzM0NFQkUyNkFFMTRG OEIwNjdDODAwHhcNMjMxMjE0MTUwMDQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiMTg5YS0xNDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+Wt3VQHONk3uyYP4PvgeQTPH7AIC3VGAYvYp+Ukz7dMwgf1Aaivf9m9eSTQ cSh5XJQWMIRrLXwzZSKsfvpK5tOny8VlITKJyjSBK4FdAj/C6d1lzgfjbScHeVEG Wo5oqTK0IExXi8KPq7E6P6/Rt5/BnvOdTpestx/RgksGCObTeJeud4hexEFLlI1+ 2+tQKsQdQHot9pnmL0NOsMWu/PZqMrTYMkdhdlUKmGoySSGhhg3kML1pH0Bk69PN 7SFF5T9FZt/eDzdY1oRovOHAUNClOaL4TRisB1yLpKlg52gYg7i+wX6Pc8t3wmXx QeMNAS2WKHlEk91RAVtVXTc43QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGpKNQAv aIOrRcINn5cpL2kcftQxMB8GA1UdIwQYMBaAFKzyyNDc+6dFFrM86+Jq4U+LBnyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUEwOS80QUNGRjM2MDFE OTAxMUUyQjg3Q0YyRUYwOEIwMkNEMi9yUExJME56N3AwVVdzenpyNG1yaFQ0c0dm SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JQTEkwTno3cDBVV3N6enI0bXJoVDRzR2ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFBMDkvNEFDRkYzNjAxRDkwMTFFMkI4N0NGMkVGMDhCMDJDRDIvRkY2NEQ2QUFE NEJCMTFFQ0JFNEU5RTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIbbwgDBADaZEcwDQYJKoZIhvcNAQELBQADggEBAI2G72h3 q1qQIU42GMa83p2G8KSvd+/mwW+EHyvD0gqNcQXqTOVZDZCm4j/cOyRYtQXLDzFQ xP/XJj6xV19qr9tPKpied23FiHJNZI/ZdScdes9BKvR/jJ0Lm9BqkKg+Ghrg+FnI j2lW8vkXMdYjd1fDFBQEfaUE9y6yjgNpsmww4nvv3ycs0O/u0/I2+SLVFDl5dMqp 7YUXJGSQ8UbDzrcTR66khcbbFdDo/hy6yKzjJeOCqTJLH66AJDY1KEvolblv3LUq SG5jg7ZY0u2n7s8Yz2IFZNojtgeprHqr9BOYYX67CC5LtYwf3u/aoJVyICkZB6Db ogDZmhmSMRZuesQ= -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org