$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/EC692F04A4CA11ECAC4E5744C4F9AE02/7185135A61AE11EEA6D61C37C4F9AE02.roa File: 7185135A61AE11EEA6D61C37C4F9AE02.roa (raw, json) Hash identifier: UHVSesVCfWDMX6Rqc2a1Y5ozgn2h4LiLzFeoFn9E+ys= Subject key identifier: 94:C2:D6:B7:06:24:AA:32:04:1F:EC:FD:AA:2C:97:7A:EF:8F:88:29 Certificate issuer: /CN=A91A0432/serialNumber=EADE86859211704432A819B81899B60C5D3DDE8B Certificate serial: 02C0 Authority key identifier: EA:DE:86:85:92:11:70:44:32:A8:19:B8:18:99:B6:0C:5D:3D:DE:8B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6t6GhZIRcEQyqBm4GJm2DF093os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/EC692F04A4CA11ECAC4E5744C4F9AE02/7185135A61AE11EEA6D61C37C4F9AE02.roa Signing time: Tue 07 May 2024 03:36:26 +0000 ROA not before: Tue 07 May 2024 03:36:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140599 IP address blocks: 87.121.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/EC692F04A4CA11ECAC4E5744C4F9AE02/6t6GhZIRcEQyqBm4GJm2DF093os.crl rsync://rpki.apnic.net/member_repository/A91A0432/EC692F04A4CA11ECAC4E5744C4F9AE02/6t6GhZIRcEQyqBm4GJm2DF093os.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6t6GhZIRcEQyqBm4GJm2DF093os.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432/serialNumber=EADE86859211704432A819B81899B60C5D3DDE8B Validity Not Before: May 7 03:36:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6639a1ba-267c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fa:b8:fd:d9:c7:fa:81:96:02:41:93:99:b6: 11:74:53:12:20:d1:ab:75:77:06:6c:e5:4a:a8:ea: e4:d9:f1:9a:98:25:f9:08:47:65:13:f1:da:4e:ee: 65:b6:2f:6b:2f:a9:9c:a9:b5:30:c6:1f:65:fb:a3: 32:a5:9b:7a:70:4c:af:76:56:32:e5:f5:02:0b:8a: a1:e1:d1:9b:d9:00:72:f7:cc:d3:3e:76:90:4e:83: 49:f2:5a:ca:51:84:29:a4:d0:95:9c:73:27:bd:b1: 07:a4:60:3e:67:5b:01:c7:18:f2:5a:cd:63:06:e9: e9:c6:9f:23:e6:30:5e:82:1c:42:87:9c:63:49:f7: 90:02:89:f1:03:21:e1:9a:bf:29:95:06:e8:bd:cf: 96:94:98:3c:6e:e3:6f:ae:62:46:1c:3e:d8:3f:6b: 68:84:db:cd:de:33:c8:13:75:ff:a6:3d:94:d6:21: 66:e4:5a:3a:cc:2a:88:9d:81:05:f9:76:6e:00:50: 87:7c:bf:fc:ca:00:d8:e5:b9:4e:1b:17:c5:c0:f5: 05:d8:db:20:68:5a:bc:2a:65:54:4e:e4:52:ab:e3: 5e:e9:85:d9:50:f2:70:c4:26:12:59:37:87:cf:82: f2:15:43:18:c1:28:63:f9:94:6f:03:6b:9a:b5:dc: d7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C2:D6:B7:06:24:AA:32:04:1F:EC:FD:AA:2C:97:7A:EF:8F:88:29 X509v3 Authority Key Identifier: keyid:EA:DE:86:85:92:11:70:44:32:A8:19:B8:18:99:B6:0C:5D:3D:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/EC692F04A4CA11ECAC4E5744C4F9AE02/6t6GhZIRcEQyqBm4GJm2DF093os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/6t6GhZIRcEQyqBm4GJm2DF093os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/EC692F04A4CA11ECAC4E5744C4F9AE02/7185135A61AE11EEA6D61C37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 87.121.117.0/24 Signature Algorithm: sha256WithRSAEncryption 48:61:48:46:86:ac:70:eb:04:78:cb:c4:fa:62:35:5d:7c:dc: b4:c1:3b:be:98:51:22:95:c2:58:10:41:19:9e:d9:5c:42:22: ca:c7:e6:a0:8d:5b:6f:5b:ee:7b:fa:d1:fd:f0:b5:97:54:35: 38:cd:89:13:88:4f:9b:a8:58:01:f7:3d:3b:2d:52:46:1d:3c: 7b:32:7c:8d:14:5a:04:9a:c5:84:7f:88:e3:c9:4f:b1:65:fe: a6:bf:f2:7c:49:a3:15:e7:6d:53:85:f7:b7:79:78:eb:04:f8: cf:77:ac:e1:85:7d:dd:7b:de:1e:d7:f9:a7:f4:be:1b:9b:05: df:0c:d5:fa:a5:86:9f:e2:6e:d1:2f:16:0b:4a:85:d2:64:fb: 98:05:51:41:40:d1:3a:1f:0d:73:fc:76:ed:6e:0d:53:b4:bb: 75:7b:28:7f:ba:65:ae:73:1f:bc:0d:8c:56:55:86:85:97:5e: 68:fa:8b:c4:27:fe:b4:4b:aa:bd:c8:d8:73:1b:9a:5a:75:74: a4:ae:d2:54:9d:b2:8c:37:d0:b8:5f:8f:de:c3:78:bc:36:5b: fa:99:d0:44:f1:bd:9d:98:d0:cd:a1:01:99:e0:dd:64:57:6f: e8:be:28:91:a8:e8:fe:4a:5f:c9:b4:3c:35:af:1d:68:e3:96: 0c:ca:aa:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKEVBREU4Njg1OTIxMTcwNDQzMkE4MTlCODE4OTlCNjBD NUQzRERFOEIwHhcNMjQwNTA3MDMzNjI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM5YTFiYS0yNjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/q4/dnH+oGWAkGTmbYRdFMSINGrdXcGbOVKqOrk2fGamCX5CEdlE/HaTu5l ti9rL6mcqbUwxh9l+6MypZt6cEyvdlYy5fUCC4qh4dGb2QBy98zTPnaQToNJ8lrK UYQppNCVnHMnvbEHpGA+Z1sBxxjyWs1jBunpxp8j5jBeghxCh5xjSfeQAonxAyHh mr8plQbovc+WlJg8buNvrmJGHD7YP2tohNvN3jPIE3X/pj2U1iFm5Fo6zCqInYEF +XZuAFCHfL/8ygDY5blOGxfFwPUF2NsgaFq8KmVUTuRSq+Ne6YXZUPJwxCYSWTeH z4LyFUMYwShj+ZRvA2uatdzX0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJTC1rcG JKoyBB/s/aosl3rvj4gpMB8GA1UdIwQYMBaAFOrehoWSEXBEMqgZuBiZtgxdPd6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9FQzY5MkYwNEE0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi82dDZHaFpJUmNFUXlxQm00R0ptMkRGMDkz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzZ0NkdoWklSY0VReXFCbTRHSm0yREYwOTNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA0MzIvRUM2OTJGMDRBNENBMTFFQ0FDNEU1NzQ0QzRGOUFFMDIvNzE4NTEzNUE2 MUFFMTFFRUE2RDYxQzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABXeXUwDQYJKoZIhvcNAQELBQADggEBAEhhSEaGrHDrBHjL xPpiNV183LTBO76YUSKVwlgQQRme2VxCIsrH5qCNW29b7nv60f3wtZdUNTjNiROI T5uoWAH3PTstUkYdPHsyfI0UWgSaxYR/iOPJT7Fl/qa/8nxJoxXnbVOF97d5eOsE +M93rOGFfd173h7X+af0vhubBd8M1fqlhp/ibtEvFgtKhdJk+5gFUUFA0TofDXP8 du1uDVO0u3V7KH+6Za5zH7wNjFZVhoWXXmj6i8Qn/rRLqr3I2HMbmlp1dKSu0lSd sow30Lhfj97DeLw2W/qZ0ETxvZ2Y0M2hAZng3WRXb+i+KJGo6P5KX8m0PDWvHWjj lgzKqjY= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:42 2024 by rpki-client on console-fra.rpki-client.org