$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa File: 122F982CB92311EE8A5A4670C4F9AE02.roa (raw, json) Hash identifier: xvyRRoFcFMnZWmNiTmlFQqSkeEl9TDcOI+y9QRN2U/w= Subject key identifier: B1:8E:FB:EF:85:1A:9F:5E:DF:A1:A6:AC:DF:32:D4:6F:EA:03:31:C3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0395 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa Signing time: Fri 25 Oct 2024 07:25:24 +0000 ROA not before: Fri 25 Oct 2024 07:25:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140766 IP address blocks: 64.239.24.0/22 maxlen: 24 157.10.186.0/23 maxlen: 24 157.10.188.0/23 maxlen: 24 157.66.96.0/23 maxlen: 24 192.223.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 25 07:25:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=671b47e4-751b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c8:c8:7d:2b:b5:2e:6a:f6:25:8a:ce:76:83: 73:07:4d:cc:fb:48:77:1f:9a:0a:a9:1d:dd:86:4a: 08:1f:53:02:a4:25:dd:4c:17:54:e7:20:6d:f3:2a: 02:89:e0:c3:a2:8e:0f:f9:68:b7:f1:69:56:c7:9c: 26:d7:42:6b:f2:e8:0b:ac:f9:f9:bd:14:6e:01:2a: 1c:ef:d2:07:23:04:e4:a9:03:f5:3b:50:65:98:d1: ac:dc:c1:80:be:65:a3:80:27:9c:3d:a0:62:17:04: cf:d6:e8:fc:ec:54:ff:62:d9:39:a8:9e:ef:b3:d7: 2c:42:39:7a:02:1d:37:12:45:e8:dd:81:8c:65:08: 71:a8:14:dc:dd:56:c3:ff:e9:35:1d:d6:6d:8e:0e: 0e:a7:fd:3c:eb:56:fe:6a:4e:dc:8c:53:8c:11:fc: 40:ad:97:6c:ce:0a:b0:87:ba:ad:cb:6e:7b:14:a4: 06:56:2d:84:b5:12:81:74:1b:90:f9:84:92:80:31: c7:bb:5d:4b:75:19:1b:73:8b:82:3c:c5:75:99:3b: cf:a1:01:f7:d6:46:7c:c5:00:88:3d:fb:ea:79:29: a3:e3:da:13:38:f1:55:fa:9c:bc:cd:6e:c2:fc:76: 30:9f:91:9c:1e:3a:a1:99:bd:4b:6b:3e:bf:94:2d: 02:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8E:FB:EF:85:1A:9F:5E:DF:A1:A6:AC:DF:32:D4:6F:EA:03:31:C3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.239.24.0/22 157.10.186.0-157.10.189.255 157.66.96.0/23 192.223.12.0/22 Signature Algorithm: sha256WithRSAEncryption 07:d9:69:e5:99:39:19:54:ad:01:4e:30:c8:5b:64:05:f3:42: e5:f7:8c:39:44:97:5c:d0:33:be:b2:27:38:5d:cc:85:74:ad: 96:d2:9c:60:59:45:93:aa:8e:6c:d8:2e:7d:a1:b0:13:2c:8b: df:1a:47:e4:fb:0f:43:50:74:b0:b4:64:fb:9c:27:d0:99:05: 76:6e:17:e6:73:2b:89:98:41:66:fe:2e:c9:02:f1:89:16:44: 42:70:80:ec:9c:ad:06:51:52:a0:7e:5c:71:75:2e:bf:b9:1a: 0e:66:90:2e:16:cb:71:71:63:33:62:8d:db:39:a2:1f:02:e8: 4d:95:56:4e:47:08:f3:19:1f:37:e3:20:16:70:82:13:9b:90: 9a:0f:6c:a4:e3:76:2a:24:01:fd:57:11:e0:1b:e9:67:e4:05: 59:84:b0:30:18:2e:00:15:b5:fa:79:21:03:1f:a3:a6:8d:09: 88:20:7a:e7:86:cd:85:ff:4d:37:ac:55:2b:c0:39:b1:12:1c: 82:d9:ec:47:c0:f1:17:20:e9:b0:ae:4a:d9:b9:40:e4:d3:70: cb:20:ed:39:61:2d:e7:1b:6b:5d:56:5b:45:72:53:9e:47:b2: 9d:2a:66:09:03:64:92:bd:61:fe:00:72:23:f3:1a:46:23:80: d0:d6:ce:03 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjQxMDI1MDcyNTI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiNDdlNC03NTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48jIfSu1Lmr2JYrOdoNzB03M+0h3H5oKqR3dhkoIH1MCpCXdTBdU5yBt8yoC ieDDoo4P+Wi38WlWx5wm10Jr8ugLrPn5vRRuASoc79IHIwTkqQP1O1BlmNGs3MGA vmWjgCecPaBiFwTP1uj87FT/Ytk5qJ7vs9csQjl6Ah03EkXo3YGMZQhxqBTc3VbD /+k1HdZtjg4Op/0861b+ak7cjFOMEfxArZdszgqwh7qty257FKQGVi2EtRKBdBuQ +YSSgDHHu11LdRkbc4uCPMV1mTvPoQH31kZ8xQCIPfvqeSmj49oTOPFV+py8zW7C /HYwn5GcHjqhmb1Laz6/lC0CFwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFLGO+++F Gp9e36GmrN8y1G/qAzHDMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMTIyRjk4MkNC OTIzMTFFRThBNUE0NjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAJA7xgwDAMEAZ0KugMEAZ0KvAMEAZ1CYAMEAsDfDDANBgkq hkiG9w0BAQsFAAOCAQEAB9lp5Zk5GVStAU4wyFtkBfNC5feMOUSXXNAzvrInOF3M hXStltKcYFlFk6qObNgufaGwEyyL3xpH5PsPQ1B0sLRk+5wn0JkFdm4X5nMriZhB Zv4uyQLxiRZEQnCA7JytBlFSoH5ccXUuv7kaDmaQLhbLcXFjM2KN2zmiHwLoTZVW TkcI8xkfN+MgFnCCE5uQmg9spON2KiQB/VcR4BvpZ+QFWYSwMBguABW1+nkhAx+j po0JiCB654bNhf9NN6xVK8A5sRIcgtnsR8DxFyDpsK5K2blA5NNwyyDtOWEt5xtr XVZbRXJTnkeynSpmCQNkkr1h/gByI/MaRiOA0NbOAw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:36 2024 by rpki-client on console-ams.rpki-client.org