$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9F2B1EB0892C11EBB29AFF50C4F9AE02.roa File: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (raw, json) Hash identifier: 7uSEP+EaGOL6jhiRrZZDidMEE4Q6ZMSCeR2XEgAzR3g= Subject key identifier: 1E:42:B0:07:74:02:7D:04:0A:9C:20:43:4B:F0:8A:34:7D:A1:5F:56 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35ED Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9F2B1EB0892C11EBB29AFF50C4F9AE02.roa Signing time: Thu 04 Apr 2024 15:21:15 +0000 ROA not before: Thu 04 Apr 2024 15:21:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4661 IP address blocks: 58.181.96.0/20 maxlen: 24 58.181.112.0/20 maxlen: 24 103.28.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13805 (0x35ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 4 15:21:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec56b-2ad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:6a:09:1f:c7:71:e0:4b:1a:61:eb:9a:0c: c1:90:98:b3:2a:99:8a:93:8b:4c:2a:99:63:17:92: fe:43:5f:bc:79:d6:d9:4c:40:7f:d9:91:34:3e:c6: 82:84:42:66:b4:65:48:ef:0e:e8:05:28:b9:46:9a: e5:ac:3c:97:1c:66:4b:a0:6c:96:fb:b0:cd:67:9b: 24:3f:b4:b3:62:ef:2e:f8:a0:76:57:55:ca:9b:38: aa:82:c7:97:4c:9e:8f:21:d8:e7:73:95:2e:9d:97: 22:c6:ad:27:9b:23:ce:25:40:77:07:1b:63:13:7d: d6:e6:b8:c0:52:c4:62:7b:53:80:bd:1d:ac:61:65: 93:b9:1b:96:ad:c3:03:67:62:3c:37:b7:df:26:ed: a5:88:22:2e:fe:cf:bd:7e:f0:1d:6e:aa:86:fc:fd: c5:f1:b2:c6:a3:7d:9c:54:b5:9b:f8:f5:56:d8:1f: 58:6b:6a:d2:35:ed:83:be:d9:7a:26:5e:96:a9:29: d5:98:72:a1:eb:1e:57:5b:94:9d:d5:c1:be:ff:ff: b4:7c:99:d7:da:d0:99:53:97:e9:31:d0:18:bd:bd: 0b:05:f1:82:fe:62:1f:80:7a:9c:e7:8e:eb:53:7d: da:a5:30:6c:20:60:bd:62:b7:86:88:43:da:af:69: 3d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:42:B0:07:74:02:7D:04:0A:9C:20:43:4B:F0:8A:34:7D:A1:5F:56 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9F2B1EB0892C11EBB29AFF50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.96.0/19 103.28.153.0/24 Signature Algorithm: sha256WithRSAEncryption 57:62:4a:45:e8:27:4b:e3:92:36:fe:d7:53:af:af:ba:5e:fd: 88:48:e4:8a:dd:5f:5a:63:fa:a9:66:42:97:32:15:b2:ed:d5: cd:8e:0f:ae:d1:15:f6:c5:97:07:c9:0a:31:ff:4e:34:a1:db: 44:19:9a:33:5c:50:bd:a0:9f:38:3e:26:52:e7:71:3b:80:50: 03:2e:09:77:53:9f:19:bc:4b:e7:e3:e0:7c:18:7d:b5:30:2a: cd:4b:44:b3:4e:8c:45:c8:a8:41:27:30:79:e6:db:8a:d5:6c: db:cd:35:98:78:60:7d:a6:ad:39:c9:71:b9:b1:b8:26:37:59: 90:1b:ab:0f:5c:a0:ca:fb:f0:8d:af:4f:fc:4c:5e:74:11:61: 5f:2f:52:8b:b7:d9:3d:d0:07:60:dd:a1:93:2a:c2:47:20:af: db:ad:1d:a4:cc:31:9b:92:25:0b:1c:d3:c8:6b:fe:f2:c4:fc: 93:3e:71:e3:84:ca:37:ed:2f:8e:34:22:87:89:d0:00:d2:50: 2d:1e:48:8e:3e:f2:12:7e:e7:5a:ad:fb:ff:5d:99:ea:66:71: 3b:a6:0c:b3:17:e0:ca:18:ab:90:74:b7:76:59:d6:68:cd:1a: da:b9:07:a7:c1:98:0d:f5:38:27:e8:13:ea:c6:7a:7c:dc:b7: 1c:55:41:f2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMTE1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU2Yi0yYWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUNqCR/HceBLGmHrmgzBkJizKpmKk4tMKpljF5L+Q1+8edbZTEB/2ZE0PsaC hEJmtGVI7w7oBSi5RprlrDyXHGZLoGyW+7DNZ5skP7SzYu8u+KB2V1XKmziqgseX TJ6PIdjnc5UunZcixq0nmyPOJUB3BxtjE33W5rjAUsRie1OAvR2sYWWTuRuWrcMD Z2I8N7ffJu2liCIu/s+9fvAdbqqG/P3F8bLGo32cVLWb+PVW2B9Ya2rSNe2Dvtl6 Jl6WqSnVmHKh6x5XW5Sd1cG+//+0fJnX2tCZU5fpMdAYvb0LBfGC/mIfgHqc547r U33apTBsIGC9YreGiEPar2k9oQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB5CsAd0 An0ECpwgQ0vwijR9oV9WMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvOUYyQjFFQjA4 OTJDMTFFQkIyOUFGRjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAU6tWADBABnHJkwDQYJKoZIhvcNAQELBQADggEBAFdiSkXo J0vjkjb+11Ovr7pe/YhI5IrdX1pj+qlmQpcyFbLt1c2OD67RFfbFlwfJCjH/TjSh 20QZmjNcUL2gnzg+JlLncTuAUAMuCXdTnxm8S+fj4HwYfbUwKs1LRLNOjEXIqEEn MHnm24rVbNvNNZh4YH2mrTnJcbmxuCY3WZAbqw9coMr78I2vT/xMXnQRYV8vUou3 2T3QB2DdoZMqwkcgr9utHaTMMZuSJQsc08hr/vLE/JM+ceOEyjftL440IoeJ0ADS UC0eSI4+8hJ+51qt+/9dmepmcTumDLMX4MoYq5B0t3ZZ1mjNGtq5B6fBmA31OCfo E+rGenzctxxVQfI= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:12 2024 by rpki-client on console-ams.rpki-client.org