$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28111E50700B11EFAE32B25FC4F9AE02.roa File: 28111E50700B11EFAE32B25FC4F9AE02.roa (raw, json) Hash identifier: TmZqQuq9fzcMgWjhuxe5xzQ0Qcgq5a8mQReOqfbtI0E= Subject key identifier: 7B:A3:A3:A4:F1:03:BD:BA:99:7E:0F:11:C4:A7:FE:10:CD:27:7A:8C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 46B0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28111E50700B11EFAE32B25FC4F9AE02.roa Signing time: Wed 11 Sep 2024 06:57:49 +0000 ROA not before: Wed 11 Sep 2024 06:57:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 23899 IP address blocks: 117.122.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18096 (0x46b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 11 06:57:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e13f6d-1474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:11:d4:03:29:8f:0e:60:6a:b8:eb:49:9b:55: d2:24:8b:f8:ba:6a:8b:7f:63:54:27:c9:e2:cf:c5: b9:5b:18:d8:9f:f1:2c:4b:3a:8e:6d:56:18:6b:e6: 94:23:63:24:e7:68:b0:8b:3f:10:43:01:21:47:28: 6b:94:f9:13:6d:8f:b3:39:6d:c5:1b:ed:92:56:6d: cb:54:ed:0c:46:ee:5a:dc:6d:cf:bf:0a:0d:9f:c8: ae:64:96:76:23:96:ae:0c:74:52:a4:73:31:3e:92: f4:3c:0a:37:07:97:80:c4:1d:43:c6:f0:52:cc:ca: 46:4b:c2:96:0e:f4:6c:ec:f9:e6:d3:22:2d:4e:48: 97:7d:2e:4c:88:47:b8:fa:d1:f2:d6:64:de:4c:8f: 5c:03:00:55:2d:f8:38:83:45:75:f6:26:80:28:02: 22:0e:a7:fe:65:4e:57:82:23:33:3e:73:7a:32:1e: c7:63:8b:4d:c1:b9:49:7e:5a:d9:09:fa:41:b4:8e: f5:51:4b:14:bc:2a:48:80:64:97:b4:8b:3b:92:d5: 2b:5c:b0:2d:76:b1:5b:65:29:f8:32:dc:c0:e3:fa: be:20:75:79:b9:4f:fd:c9:55:c7:7e:2c:2e:60:47: a8:0f:e5:c9:d3:d0:6c:8f:7c:72:2e:19:30:08:e0: b5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:A3:A3:A4:F1:03:BD:BA:99:7E:0F:11:C4:A7:FE:10:CD:27:7A:8C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28111E50700B11EFAE32B25FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.122.120.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:3f:ef:67:6e:82:59:ca:6c:14:bb:29:c4:f2:1d:a1:6b:b8: 99:3d:07:bc:29:35:f5:b3:dc:d4:58:8b:c3:6b:5d:76:5b:89: 3b:c6:70:a3:c7:ae:80:4f:10:6c:87:c8:26:07:91:58:36:bb: f4:2f:c7:7a:96:bc:1a:0d:b5:d1:71:fb:bd:f6:c9:5a:fb:5c: 6f:de:3d:d0:15:37:89:a4:f3:d9:16:13:90:c5:ce:9f:d1:d4: a1:d3:3b:79:3c:6b:d4:ae:8e:62:f1:8b:04:f7:fc:81:b9:a8: 2b:e4:06:eb:8e:e4:e4:ac:ac:0b:86:68:fc:00:4a:c5:59:33: 2d:a7:d2:3b:d8:87:90:89:b1:e9:0d:1d:f3:59:da:ba:03:1a: 82:c8:ec:3d:35:e7:6c:dd:24:30:8e:15:88:43:57:8c:43:43: 79:02:a6:c6:91:50:03:48:86:7b:fe:25:be:7f:08:a7:16:99: 97:85:6f:f6:4e:fa:df:19:a6:22:7e:f2:83:f1:3c:65:77:d0: 13:8d:fb:5c:2c:c0:e0:28:1d:f3:b4:67:43:4e:1c:99:47:64: 9e:04:91:a4:d7:e8:eb:8c:68:bb:41:34:8e:9e:53:2f:28:31: 75:ea:09:d3:b1:b3:20:c3:49:c6:be:55:8b:27:de:20:53:c1: db:7d:3f:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTExMDY1NzQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxM2Y2ZC0xNDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBHUAymPDmBquOtJm1XSJIv4umqLf2NUJ8niz8W5WxjYn/EsSzqObVYYa+aU I2Mk52iwiz8QQwEhRyhrlPkTbY+zOW3FG+2SVm3LVO0MRu5a3G3PvwoNn8iuZJZ2 I5auDHRSpHMxPpL0PAo3B5eAxB1DxvBSzMpGS8KWDvRs7Pnm0yItTkiXfS5MiEe4 +tHy1mTeTI9cAwBVLfg4g0V19iaAKAIiDqf+ZU5XgiMzPnN6Mh7HY4tNwblJflrZ CfpBtI71UUsUvCpIgGSXtIs7ktUrXLAtdrFbZSn4MtzA4/q+IHV5uU/9yVXHfiwu YEeoD+XJ09Bsj3xyLhkwCOC10QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHujo6Tx A726mX4PEcSn/hDNJ3qMMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjgxMTFFNTA3 MDBCMTFFRkFFMzJCMjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ1engwDQYJKoZIhvcNAQELBQADggEBAB8/72duglnKbBS7 KcTyHaFruJk9B7wpNfWz3NRYi8NrXXZbiTvGcKPHroBPEGyHyCYHkVg2u/Qvx3qW vBoNtdFx+732yVr7XG/ePdAVN4mk89kWE5DFzp/R1KHTO3k8a9SujmLxiwT3/IG5 qCvkBuuO5OSsrAuGaPwASsVZMy2n0jvYh5CJsekNHfNZ2roDGoLI7D0152zdJDCO FYhDV4xDQ3kCpsaRUANIhnv+Jb5/CKcWmZeFb/ZO+t8ZpiJ+8oPxPGV30BON+1ws wOAoHfO0Z0NOHJlHZJ4EkaTX6OuMaLtBNI6eUy8oMXXqCdOxsyDDSca+VYsn3iBT wdt9P/U= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org