$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa File: 9781D91CB36B11EEA3394737C4F9AE02.roa (raw, json) Hash identifier: Ap6JsjwmxCIBrkhccqP7cgmi42P+pr0y3jufqU9IGfo= Subject key identifier: 22:0E:77:9F:B8:BA:8F:56:0E:5C:A5:45:C2:E9:A9:D1:95:C0:DD:AA Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: F7 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa Signing time: Sun 03 Nov 2024 02:35:53 +0000 ROA not before: Sun 03 Nov 2024 02:35:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 34985 IP address blocks: 185.254.240.0/24 maxlen: 24 185.254.241.0/24 maxlen: 24 213.139.233.0/24 maxlen: 24 213.139.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Nov 3 02:35:53 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726e189-eac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:93:93:df:12:0f:df:bf:0f:ba:d6:7d:ad:ca: 4c:07:82:a7:4c:25:0f:aa:ea:4c:c6:54:a6:50:5a: 64:53:5a:30:a1:2a:e4:f9:c4:4c:c8:b9:ec:ab:82: 1d:2b:1b:cb:b9:fa:f5:0e:df:89:b0:f3:33:a6:b5: 60:f1:9e:69:53:f8:89:06:3d:9c:bf:75:73:ef:40: 33:a1:bd:8c:7e:f2:fb:e7:5f:23:35:cb:bd:50:fd: b6:9a:73:cf:97:85:09:f2:43:a0:a5:63:e9:df:e0: cb:f1:05:ae:5b:34:ad:e8:90:0c:1b:bc:5e:2f:03: fe:28:5e:0a:1f:c6:b9:5b:c8:8e:3b:d5:a4:cd:c4: 9a:e1:41:64:ee:ad:33:26:23:74:7a:22:41:4e:06: a5:0f:10:53:01:f1:78:f3:3e:fb:a8:fe:19:60:69: de:ac:ac:cf:91:c8:df:92:df:cd:9b:50:aa:5f:1a: 83:b0:0a:d9:65:d4:ae:eb:69:f4:dd:4f:a8:c6:01: ac:e5:b5:1b:de:b0:7e:54:38:cf:d1:36:33:3b:f0: 9b:e4:a6:cc:6d:76:43:86:d8:b6:f5:72:6c:2b:21: b4:7f:84:0b:5c:7f:9c:11:83:d8:ad:7c:cd:51:89: 5f:4d:f0:8f:33:c7:26:b9:c1:55:fd:64:64:b3:61: 4b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0E:77:9F:B8:BA:8F:56:0E:5C:A5:45:C2:E9:A9:D1:95:C0:DD:AA X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/9781D91CB36B11EEA3394737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.254.240.0/23 213.139.233.0-213.139.234.255 Signature Algorithm: sha256WithRSAEncryption 18:0a:26:8f:7a:e6:fa:78:1d:c6:a3:d4:00:c9:fb:7c:d3:d3: 40:94:9b:9d:9b:3c:75:c6:5e:c7:ef:5c:08:5c:bd:19:4d:ae: 0c:7e:54:76:fd:cc:0e:73:5b:ba:88:83:df:cf:18:ec:1a:4f: 0f:10:fe:9a:3f:29:f9:a8:ab:58:45:f3:d3:ef:d6:9a:9a:0a: 6a:69:2d:fa:f7:aa:bc:43:44:d8:82:6b:5e:f0:da:56:dc:b2: 38:78:aa:60:dc:2b:06:27:95:f3:34:b7:fc:f9:1b:47:63:30: 45:50:98:38:58:7f:d4:a1:6b:11:4f:d4:6d:04:3f:0d:2a:9b: d3:ce:53:e7:ba:9f:a8:da:d2:27:74:48:86:e5:dd:5d:c7:9f: bc:37:e1:7b:ec:bc:8b:fa:c6:e0:b3:d6:3a:d9:9a:54:e1:c3: 21:36:1a:99:41:9d:87:05:24:34:0e:27:bd:ac:16:0e:12:29: 23:83:67:9a:a8:4f:6d:9f:ad:41:33:ea:f8:a6:a7:aa:72:75: 71:06:8f:e7:77:27:2e:9b:e1:b7:56:80:69:e3:41:8e:a2:73: a9:a7:28:b3:d0:bd:0a:c4:bd:fd:1e:a8:35:a5:a3:d9:f3:74: fd:dc:c7:b5:23:1e:00:9c:75:74:d0:60:84:8b:32:05:7b:49: 3c:2d:f4:9e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjQxMTAzMDIzNTUzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZTE4OS1lYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JOT3xIP378PutZ9rcpMB4KnTCUPqupMxlSmUFpkU1owoSrk+cRMyLnsq4Id KxvLufr1Dt+JsPMzprVg8Z5pU/iJBj2cv3Vz70Azob2MfvL7518jNcu9UP22mnPP l4UJ8kOgpWPp3+DL8QWuWzSt6JAMG7xeLwP+KF4KH8a5W8iOO9WkzcSa4UFk7q0z JiN0eiJBTgalDxBTAfF48z77qP4ZYGnerKzPkcjfkt/Nm1CqXxqDsArZZdSu62n0 3U+oxgGs5bUb3rB+VDjP0TYzO/Cb5KbMbXZDhti29XJsKyG0f4QLXH+cEYPYrXzN UYlfTfCPM8cmucFV/WRks2FL4QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCIOd5+4 uo9WDlylRcLpqdGVwN2qMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvOTc4MUQ5MUNC MzZCMTFFRUEzMzk0NzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAG5/vAwDAMEANWL6QMEANWL6jANBgkqhkiG9w0BAQsFAAOC AQEAGAomj3rm+ngdxqPUAMn7fNPTQJSbnZs8dcZex+9cCFy9GU2uDH5Udv3MDnNb uoiD388Y7BpPDxD+mj8p+airWEXz0+/WmpoKamkt+veqvENE2IJrXvDaVtyyOHiq YNwrBieV8zS3/PkbR2MwRVCYOFh/1KFrEU/UbQQ/DSqb085T57qfqNrSJ3RIhuXd XcefvDfhe+y8i/rG4LPWOtmaVOHDITYamUGdhwUkNA4nvawWDhIpI4NnmqhPbZ+t QTPq+KanqnJ1cQaP53cnLpvht1aAaeNBjqJzqacos9C9CsS9/R6oNaWj2fN0/dzH tSMeAJx1dNBghIsyBXtJPC30ng== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:01 2024 by rpki-client on console-fra.rpki-client.org