$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa File: B57021F4BA6B11EC82BC5B32C4F9AE02.roa (raw, json) Hash identifier: +3ak2gf3PlvgjbPkB6vqdC98JZLNrvLiyA4fPMkUy8E= Subject key identifier: 21:44:9B:9F:E7:79:0F:F9:02:3D:80:F1:D9:A7:A2:99:D7:42:8C:D4 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4657 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:35:59 +0000 ROA not before: Thu 05 Sep 2024 03:35:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45543 IP address blocks: 27.2.0.0/15 maxlen: 15 27.2.0.0/16 maxlen: 24 27.3.0.0/16 maxlen: 24 112.197.0.0/16 maxlen: 24 2403:e200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18007 (0x4657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:35:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9271f-f334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:61:45:58:0f:57:3a:c3:bc:3b:71:33:0d:f5: a2:70:01:b2:e2:23:0c:a0:f9:60:40:b3:a9:2b:ee: 32:0a:42:55:2b:bb:b5:b2:b8:33:86:de:1b:f0:23: 85:cd:2c:31:00:24:09:10:c2:84:c1:23:f5:6d:ba: 84:83:ed:7a:0b:a9:5e:d4:6b:c6:22:b8:36:56:84: 12:96:af:4d:49:c8:ec:a9:8f:a8:9a:b9:18:0e:bc: dd:85:ee:a2:20:15:ea:d5:2a:3e:76:38:be:b1:5d: 69:60:2a:6f:b5:4b:24:0a:93:f1:42:50:b7:a5:e3: 11:bc:92:9f:69:6b:7e:bc:af:44:9b:1c:a7:d9:17: e0:a9:40:d3:d4:9f:c4:c5:1a:2c:9e:21:32:06:96: d3:55:18:4c:e9:76:10:09:20:0e:6c:f9:2b:5f:56: e8:b3:8d:f4:0f:97:f9:88:5e:a9:16:8c:fe:e4:49: b1:27:dd:76:60:28:df:fb:ae:d0:65:00:ef:ef:e5: 07:3c:22:06:d2:02:b4:d1:57:b7:df:64:12:cc:c5: e0:e3:86:78:01:73:5a:5b:07:ff:95:ec:ac:91:b5: ca:26:e4:27:89:af:c3:c6:63:5d:f4:e7:c2:c4:11: c8:be:68:e1:15:2d:bf:3f:d7:38:1b:4c:d3:71:5c: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:44:9B:9F:E7:79:0F:F9:02:3D:80:F1:D9:A7:A2:99:D7:42:8C:D4 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.2.0.0/15 112.197.0.0/16 IPv6: 2403:e200::/32 Signature Algorithm: sha256WithRSAEncryption 17:02:81:ab:e2:3b:96:35:58:fd:6c:05:4b:24:8c:49:19:70: 78:0c:23:25:04:bb:e6:79:1e:09:e0:7a:96:53:76:98:74:9d: 20:0d:a4:5c:a5:20:78:05:23:95:52:58:01:cf:db:13:e5:e2: fd:e2:4a:8f:27:66:5d:4c:a1:df:45:63:11:d9:2e:45:71:7c: 2f:64:ba:46:59:94:e7:df:f3:63:a8:30:d8:1b:15:81:42:65: 8b:f8:8b:24:98:c3:69:ca:d3:1d:27:2a:1d:eb:5c:58:e8:7a: cc:c1:a9:d2:53:7d:ff:f3:40:df:78:50:74:ff:0e:d8:0b:b0: 7a:14:bc:1a:12:6a:0e:9c:80:e5:ec:3b:e0:59:0b:0f:85:48: f6:cb:ba:4e:69:12:cc:0b:9b:71:f0:13:81:95:10:10:da:57: 34:b6:79:7c:1c:4b:fd:f9:a3:c6:3f:4d:bb:d2:52:5c:e9:24: e6:82:20:6f:9a:52:83:f6:74:79:84:a3:29:2f:60:d6:f9:f2: 82:78:91:6c:f3:2d:e3:b4:5f:8c:12:a7:0a:e7:f0:af:f6:d1: 9d:72:f7:90:16:30:5e:96:16:c1:00:d7:c8:9f:b0:e2:5e:da: 4b:0f:d4:47:ee:e3:87:7f:2b:32:17:d6:be:ed:5f:a4:95:04: c9:55:4a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICRlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNTU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcxZi1mMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12FFWA9XOsO8O3EzDfWicAGy4iMMoPlgQLOpK+4yCkJVK7u1srgzht4b8COF zSwxACQJEMKEwSP1bbqEg+16C6le1GvGIrg2VoQSlq9NScjsqY+omrkYDrzdhe6i IBXq1So+dji+sV1pYCpvtUskCpPxQlC3peMRvJKfaWt+vK9Emxyn2RfgqUDT1J/E xRosniEyBpbTVRhM6XYQCSAObPkrX1bos430D5f5iF6pFoz+5EmxJ912YCjf+67Q ZQDv7+UHPCIG0gK00Ve332QSzMXg44Z4AXNaWwf/leyskbXKJuQnia/DxmNd9OfC xBHIvmjhFS2/P9c4G0zTcVzqewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFEm5/n eQ/5Aj2A8dmnopnXQozUMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQjU3MDIxRjRC QTZCMTFFQzgyQkM1QjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMBAEAgABMAoDAwEbAgMDAHDFMA0EAgACMAcDBQAkA+IAMA0GCSqGSIb3DQEB CwUAA4IBAQAXAoGr4juWNVj9bAVLJIxJGXB4DCMlBLvmeR4J4HqWU3aYdJ0gDaRc pSB4BSOVUlgBz9sT5eL94kqPJ2ZdTKHfRWMR2S5FcXwvZLpGWZTn3/NjqDDYGxWB QmWL+IskmMNpytMdJyod61xY6HrMwanSU33/80DfeFB0/w7YC7B6FLwaEmoOnIDl 7DvgWQsPhUj2y7pOaRLMC5tx8BOBlRAQ2lc0tnl8HEv9+aPGP0270lJc6STmgiBv mlKD9nR5hKMpL2DW+fKCeJFs8y3jtF+MEqcK5/Cv9tGdcveQFjBelhbBANfIn7Di XtpLD9RH7uOHfysyF9a+7V+klQTJVUob -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org