$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa File: BA8B530463E311EC8B936683C4F9AE02.roa (raw, json) Hash identifier: m36miLDkb6wAZ0jP9G5GIMi9gzdyY2rWMC+VwF4Algk= Subject key identifier: 0F:53:E3:20:C9:82:9F:F3:D5:01:53:27:6D:88:39:C4:39:DE:0F:12 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4523 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:33 +0000 ROA not before: Thu 05 Sep 2024 03:31:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131123 IP address blocks: 117.122.3.0/24 maxlen: 24 2001:dc8:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17699 (0x4523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:32 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92614-4a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:37:99:74:4f:85:7e:a1:f2:c2:d2:98:92: 89:23:03:fd:2b:50:2a:37:cd:f9:58:e5:fa:bf:80: 7f:c6:23:1f:bf:56:0b:fd:a4:32:f6:43:76:d8:13: 48:87:b5:a3:d0:9a:e3:79:50:82:ed:34:8a:4b:90: 78:b3:0b:39:57:96:d8:de:8e:7e:4b:e5:bc:58:1c: 14:34:cc:0b:66:02:71:28:0f:cb:0c:81:6e:89:05: d1:57:37:e7:86:8f:d4:4d:86:6b:72:04:5e:74:c9: c4:21:a8:0f:74:58:09:15:d1:5d:17:b3:4a:3a:70: fe:93:1c:5a:1c:85:c5:d2:27:7a:ec:c8:b9:27:1e: 7e:f1:8b:52:3b:20:20:f8:f0:12:9c:40:72:9a:10: ed:a4:49:45:dc:3a:bd:98:70:07:31:97:e0:2a:36: 61:e8:d7:47:88:1e:dd:9a:49:88:7f:2b:54:b4:86: 4d:5c:66:5c:27:95:d3:bf:04:95:d5:20:54:84:d1: 9e:f6:b4:10:c6:5d:86:e6:bd:18:59:3d:91:c9:75: 7d:cb:50:9b:b5:f2:7f:20:d2:e3:c8:aa:58:18:b1: 0b:38:80:95:7c:92:39:8c:c4:78:0f:07:78:98:27: a6:4f:a3:8e:45:47:82:77:98:4d:01:59:4b:15:96: b4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:53:E3:20:C9:82:9F:F3:D5:01:53:27:6D:88:39:C4:39:DE:0F:12 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.122.3.0/24 IPv6: 2001:dc8:2003::/48 Signature Algorithm: sha256WithRSAEncryption 58:bf:47:a7:e6:12:fe:c2:4b:39:c6:0c:2c:f0:fd:b9:f5:c0: 87:ff:06:50:a2:60:40:98:8f:96:76:ab:0a:9b:13:bb:31:93: 74:21:d3:31:ae:4c:f0:44:85:99:e4:42:d1:48:26:f5:a3:aa: 08:e9:4f:ae:ba:99:31:2e:c0:97:6e:fe:23:86:7c:66:7b:f0: a6:1f:6c:c6:96:64:17:82:20:5c:c6:81:06:57:4c:05:c3:fc: 64:5f:2d:bb:c3:d0:e3:55:0c:c5:b8:66:5b:6e:df:54:cd:98: f6:d4:8c:45:22:ae:7a:7e:a4:6f:2e:36:56:3c:b7:53:e5:7e: 37:8f:51:19:0c:d4:aa:9a:b3:25:06:7c:eb:af:3e:6f:b1:63: 09:14:c0:61:0f:da:0f:e3:51:e5:b7:df:19:d9:a0:25:ab:38: 8d:70:a0:ec:0c:24:f2:d3:95:c4:cd:2f:02:9f:eb:79:00:13: d4:8e:15:db:58:e2:c0:3b:46:5c:7e:2e:ce:d8:3e:03:e8:96: a3:e8:07:f0:3d:8c:9c:3f:b6:c4:6d:5a:aa:d9:1c:6c:6f:3a: 67:f4:b0:a1:f2:3c:aa:1e:d0:5e:b0:8c:03:f3:f7:fd:05:c3: 85:6b:86:42:03:5f:79:22:4d:23:94:10:ca:ad:32:81:db:a3: c8:3b:c4:f7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTMyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYxNC00YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjo3mXRPhX6h8sLSmJKJIwP9K1AqN835WOX6v4B/xiMfv1YL/aQy9kN22BNI h7Wj0JrjeVCC7TSKS5B4sws5V5bY3o5+S+W8WBwUNMwLZgJxKA/LDIFuiQXRVzfn ho/UTYZrcgRedMnEIagPdFgJFdFdF7NKOnD+kxxaHIXF0id67Mi5Jx5+8YtSOyAg +PASnEBymhDtpElF3Dq9mHAHMZfgKjZh6NdHiB7dmkmIfytUtIZNXGZcJ5XTvwSV 1SBUhNGe9rQQxl2G5r0YWT2RyXV9y1CbtfJ/INLjyKpYGLELOICVfJI5jMR4Dwd4 mCemT6OORUeCd5hNAVlLFZa0sQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA9T4yDJ gp/z1QFTJ22IOcQ53g8SMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkE4QjUzMDQ2 M0UzMTFFQzhCOTM2NjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAB1egMwDwQCAAIwCQMHACABDcggAzANBgkqhkiG9w0BAQsF AAOCAQEAWL9Hp+YS/sJLOcYMLPD9ufXAh/8GUKJgQJiPlnarCpsTuzGTdCHTMa5M 8ESFmeRC0Ugm9aOqCOlPrrqZMS7Al27+I4Z8Znvwph9sxpZkF4IgXMaBBldMBcP8 ZF8tu8PQ41UMxbhmW27fVM2Y9tSMRSKuen6kby42Vjy3U+V+N49RGQzUqpqzJQZ8 668+b7FjCRTAYQ/aD+NR5bffGdmgJas4jXCg7Awk8tOVxM0vAp/reQAT1I4V21ji wDtGXH4uztg+A+iWo+gH8D2MnD+2xG1aqtkcbG86Z/SwofI8qh7QXrCMA/P3/QXD hWuGQgNfeSJNI5QQyq0ygdujyDvE9w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org