$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EF73EE0E130711ED94DB7F48C4F9AE02.roa File: EF73EE0E130711ED94DB7F48C4F9AE02.roa (raw, json) Hash identifier: zIY/nr+r0fr1/41yxcouuEg+PllKKnMmejiw8Gad/O4= Subject key identifier: E6:B7:08:92:64:A5:75:D6:27:C4:6F:29:A5:DC:BC:D8:2E:50:0B:04 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4665 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EF73EE0E130711ED94DB7F48C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:36:14 +0000 ROA not before: Thu 05 Sep 2024 03:36:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55308 IP address blocks: 182.236.112.0/22 maxlen: 22 2001:df5:3080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18021 (0x4665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:36:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9272e-0094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:91:fd:fd:dc:ad:55:91:c7:75:ed:35:77: 5e:ab:90:32:eb:bd:67:39:af:d5:7e:82:af:14:b1: 3b:d0:a8:ec:88:2e:42:9c:b5:aa:2c:b4:77:aa:96: ba:bf:07:ff:10:9e:99:13:a9:6b:b2:75:f7:ac:5f: 05:99:82:b3:43:a3:24:1d:fa:94:08:f9:dc:3e:70: d1:bf:70:96:62:84:91:25:a5:8e:ca:3c:19:83:4a: 19:fc:93:2e:eb:f5:68:c3:19:f5:ad:22:ec:ba:70: 72:18:7d:ec:a5:9c:55:87:31:eb:7e:b9:ad:69:73: ac:06:d0:a7:93:a7:d7:7e:c8:b0:86:59:bc:a2:54: fd:95:db:bf:33:b5:85:2d:ab:25:e8:02:90:d5:c8: df:35:aa:d1:1b:db:b0:5a:b3:6e:2b:aa:06:3c:d9: 08:44:95:93:71:58:46:e1:34:c0:f6:fa:dc:81:dd: 57:00:ef:d1:85:e0:cd:e0:be:8c:e9:11:89:0e:62: c1:6f:e2:39:45:bf:d4:eb:8e:41:1c:4d:58:54:67: 07:a2:5a:d0:f2:45:0f:47:4d:a5:de:ed:1d:b7:19: fb:84:74:57:05:d1:c2:89:67:88:e9:af:ef:d7:a8: 2a:bc:7a:fe:46:58:6d:dc:e4:5a:17:3c:bf:c5:a6: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B7:08:92:64:A5:75:D6:27:C4:6F:29:A5:DC:BC:D8:2E:50:0B:04 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/EF73EE0E130711ED94DB7F48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.236.112.0/22 IPv6: 2001:df5:3080::/48 Signature Algorithm: sha256WithRSAEncryption 9b:e3:82:b3:2a:3f:42:e7:2a:c1:6b:37:2a:51:42:7b:f3:36: 1f:73:ff:52:0e:1b:15:39:e9:2b:2a:2a:9d:e8:7c:ef:c9:e8: ec:9f:4a:fc:8c:7e:6c:5c:38:31:b1:12:f9:52:8b:02:f7:31: 95:a1:9a:02:3d:73:e5:bf:20:8a:4b:54:6e:0f:35:4b:33:02: a9:bd:d8:f6:b9:cb:35:cf:2e:0d:1d:fd:40:07:c8:8f:a0:e0: 96:42:ac:30:f3:9b:fb:3b:c8:9f:f2:2d:ea:a8:7c:d4:66:f7: ff:5e:c0:d2:80:50:33:be:49:5b:1d:a1:54:fd:7c:44:68:f5: f6:27:bf:77:c0:66:7a:b3:2b:b6:9c:62:33:f2:cd:bb:99:17: e2:b8:2e:5a:33:03:87:76:63:83:78:c4:d5:69:b7:27:56:e6: 99:af:b1:46:10:8f:9f:72:f9:2b:3d:e6:c5:b7:95:94:a7:b7: 18:93:7a:fa:8f:01:eb:35:31:f5:60:5e:ab:3d:72:5e:17:66: 3e:e5:91:de:c8:4b:ce:5c:0b:5c:fc:a4:5b:a8:cc:20:09:10: 2b:3d:e6:49:1f:da:bc:da:c5:4c:b5:ec:b9:ec:a9:58:ca:f4: f5:2f:07:a2:91:4c:03:3a:66:bc:d9:48:72:9a:9d:ab:2c:98: 0a:60:52:a5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzNjE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjcyZS0wMDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuz+R/f3crVWRx3XtNXdeq5Ay671nOa/VfoKvFLE70KjsiC5CnLWqLLR3qpa6 vwf/EJ6ZE6lrsnX3rF8FmYKzQ6MkHfqUCPncPnDRv3CWYoSRJaWOyjwZg0oZ/JMu 6/Vowxn1rSLsunByGH3spZxVhzHrfrmtaXOsBtCnk6fXfsiwhlm8olT9ldu/M7WF Lasl6AKQ1cjfNarRG9uwWrNuK6oGPNkIRJWTcVhG4TTA9vrcgd1XAO/RheDN4L6M 6RGJDmLBb+I5Rb/U645BHE1YVGcHolrQ8kUPR02l3u0dtxn7hHRXBdHCiWeI6a/v 16gqvHr+Rlht3ORaFzy/xaYjsQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOa3CJJk pXXWJ8RvKaXcvNguUAsEMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRUY3M0VFMEUx MzA3MTFFRDk0REI3RjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAK27HAwDwQCAAIwCQMHACABDfUwgDANBgkqhkiG9w0BAQsF AAOCAQEAm+OCsyo/QucqwWs3KlFCe/M2H3P/Ug4bFTnpKyoqneh878no7J9K/Ix+ bFw4MbES+VKLAvcxlaGaAj1z5b8giktUbg81SzMCqb3Y9rnLNc8uDR39QAfIj6Dg lkKsMPOb+zvIn/It6qh81Gb3/17A0oBQM75JWx2hVP18RGj19ie/d8BmerMrtpxi M/LNu5kX4rguWjMDh3Zjg3jE1Wm3J1bmma+xRhCPn3L5Kz3mxbeVlKe3GJN6+o8B 6zUx9WBeqz1yXhdmPuWR3shLzlwLXPykW6jMIAkQKz3mSR/avNrFTLXsueypWMr0 9S8HopFMAzpmvNlIcpqdqyyYCmBSpQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:16 2024 by rpki-client on console-fra.rpki-client.org