$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4BC4F6A614DF11EEAB46A86DC4F9AE02.roa File: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (raw, json) Hash identifier: L45BGsw9kntvdvochjJ1xkL7ueXbpNVN3LKrFmog0C0= Subject key identifier: D6:98:C9:87:2D:55:E9:D2:BE:67:95:1A:50:56:E8:2F:E6:9A:27:07 Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: CE Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4BC4F6A614DF11EEAB46A86DC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:33:39 +0000 ROA not before: Thu 28 Dec 2023 16:33:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 173 IP address blocks: 192.47.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Dec 28 16:33:39 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658da363-7884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f1:ed:d5:60:d4:92:77:9a:1b:14:db:f1:07: 0d:a9:d6:53:34:bd:b6:09:40:fb:ca:3c:d4:5d:4a: 3d:a3:f4:4e:c5:7b:6b:23:59:7f:8f:6b:0a:84:86: 6b:23:13:fe:24:f2:a3:2f:40:1d:35:91:1b:22:ea: f6:23:c1:f6:88:73:95:72:e6:c6:f5:dd:aa:00:d6: 2c:85:30:33:6d:19:72:a4:5d:6b:1c:7c:e8:7b:f1: 5e:94:22:55:af:fa:bb:95:51:25:ee:7b:66:a6:b4: dc:ad:76:55:e2:40:b1:c5:26:44:b7:c1:73:83:2d: ff:2d:bd:bc:b4:dd:84:ad:e6:20:16:44:1a:d0:c1: 05:c7:d5:5b:e6:68:e2:4a:c5:7b:e0:1c:61:11:a9: 6c:e0:42:21:44:14:7f:45:d4:33:02:07:26:82:ef: e4:c0:26:f4:04:ee:64:0c:9e:01:a8:1b:f9:93:ba: c7:fb:a1:3e:6a:32:71:80:98:90:f3:ff:cb:70:85: 52:01:50:ed:8c:34:18:da:38:5e:1b:c6:a9:71:62: 23:ca:e8:0a:3e:2f:36:b5:1e:da:4b:ca:1a:59:b1: c1:c4:70:ba:e4:88:0c:88:f0:ae:8c:da:74:31:52: a0:f7:a8:34:ae:ef:30:ac:1e:4c:a1:0d:6a:43:1c: 7c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:98:C9:87:2D:55:E9:D2:BE:67:95:1A:50:56:E8:2F:E6:9A:27:07 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4BC4F6A614DF11EEAB46A86DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.47.168.0/23 Signature Algorithm: sha256WithRSAEncryption c3:28:18:52:05:d3:a3:b7:06:d0:9c:5f:fa:9c:f0:57:74:0d: 3e:65:0e:fd:55:7c:48:82:01:0b:82:9b:bc:05:2a:db:28:bc: 4d:32:05:86:57:df:0b:69:fa:03:40:b4:58:4f:e6:46:83:14: 9d:cc:fa:12:a2:0a:bb:3b:ac:03:4a:ed:f0:d7:05:57:04:f3: dd:11:f1:35:b6:e7:44:c8:d7:10:a5:9a:c8:7f:e4:3f:7f:48: 82:0a:d2:26:70:1b:73:cb:76:47:2c:7c:98:6e:f0:fd:c2:dc: 8f:0a:3f:a0:56:a4:2e:43:a1:42:62:2f:07:2d:87:33:63:4a: 81:c4:1d:27:b2:b0:8a:a5:c6:c6:cb:2d:3b:2b:dd:45:a2:29: 1c:1e:81:88:21:3e:15:35:9d:50:02:b6:53:26:8e:4e:a8:80: f0:0e:6e:87:a8:dc:95:cc:ea:ad:3f:b9:b5:20:62:43:13:86: 5c:06:f6:48:9b:81:f6:e9:1b:c5:ae:54:6e:e5:a1:46:da:e9: 95:bc:0d:03:7d:ee:25:d2:ca:a7:b5:7f:00:7c:ab:d5:1e:ca: 0c:14:f0:42:fd:38:10:2f:43:19:1f:c9:20:f3:ca:e9:d4:6c: 8c:83:ca:0d:89:f3:5a:13:06:56:69:ff:21:dc:a3:84:3d:48: f7:7f:5f:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjMxMjI4MTYzMzM5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYTM2My03ODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PHt1WDUkneaGxTb8QcNqdZTNL22CUD7yjzUXUo9o/ROxXtrI1l/j2sKhIZr IxP+JPKjL0AdNZEbIur2I8H2iHOVcubG9d2qANYshTAzbRlypF1rHHzoe/FelCJV r/q7lVEl7ntmprTcrXZV4kCxxSZEt8Fzgy3/Lb28tN2EreYgFkQa0MEFx9Vb5mji SsV74BxhEals4EIhRBR/RdQzAgcmgu/kwCb0BO5kDJ4BqBv5k7rH+6E+ajJxgJiQ 8//LcIVSAVDtjDQY2jheG8apcWIjyugKPi82tR7aS8oaWbHBxHC65IgMiPCujNp0 MVKg96g0ru8wrB5MoQ1qQxx86wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNaYyYct VenSvmeVGlBW6C/mmicHMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMUEvQjQ1RjNGQzQ4MTlBMTFFRDhENjFCQTJCQzRGOUFFMDIvNEJDNEY2QTYx NERGMTFFRUFCNDZBODZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHAL6gwDQYJKoZIhvcNAQELBQADggEBAMMoGFIF06O3BtCc X/qc8Fd0DT5lDv1VfEiCAQuCm7wFKtsovE0yBYZX3wtp+gNAtFhP5kaDFJ3M+hKi Crs7rANK7fDXBVcE890R8TW250TI1xClmsh/5D9/SIIK0iZwG3PLdkcsfJhu8P3C 3I8KP6BWpC5DoUJiLwcthzNjSoHEHSeysIqlxsbLLTsr3UWiKRwegYghPhU1nVAC tlMmjk6ogPAOboeo3JXM6q0/ubUgYkMThlwG9kibgfbpG8WuVG7loUba6ZW8DQN9 7iXSyqe1fwB8q9UeygwU8EL9OBAvQxkfySDzyunUbIyDyg2J81oTBlZp/yHco4Q9 SPd/Xww= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org