$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa File: 65A422A8C3F411EEB1191654C4F9AE02.roa (raw, json) Hash identifier: /rJqGMqLZ7nBs/V2rvnW5bXjWT03Hch1ZVPihuVLC9I= Subject key identifier: 03:26:75:DC:9B:AB:33:89:AB:C0:CE:86:9F:54:23:2F:33:98:0A:E7 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: AF Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa Signing time: Mon 05 Feb 2024 07:01:34 +0000 ROA not before: Mon 05 Feb 2024 07:01:34 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4767 IP address blocks: 192.41.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Feb 5 07:01:34 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65c087ce-9d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:53:ed:b7:e4:08:2e:b4:3b:85:5e:9c:56:46: 7b:92:0f:61:5f:ce:ba:ae:08:3d:3f:05:d0:ad:47: 41:f5:f4:fc:55:d1:10:30:1b:f5:b1:23:5d:04:cd: 98:cd:1c:51:f7:6b:0d:76:b0:73:30:b3:2f:22:6f: 21:8e:ad:17:c2:90:4d:75:34:35:89:2a:53:7e:22: 20:ff:ea:66:26:04:2e:46:b7:90:69:b3:08:3b:20: be:63:8d:fb:a0:cc:bb:db:25:8d:98:a7:65:c8:1a: a8:eb:89:94:e7:28:05:33:c2:c6:e6:85:22:bb:dd: 4d:69:65:25:99:ef:b1:a0:d1:83:9a:dd:42:67:33: ee:c6:f7:b2:58:b5:bc:93:f7:b6:d9:1e:14:f3:cb: 43:da:87:b4:47:ea:c5:04:88:50:5f:d7:85:88:85: 5f:43:2d:42:fb:72:92:d5:e6:aa:0b:b2:f0:25:18: 6b:f7:7e:fa:92:0c:b9:f8:2e:3c:4b:24:e0:0d:69: 87:02:5c:74:60:b2:2c:7e:c2:f3:d2:6e:6d:7b:87: 19:79:a2:fa:8b:53:63:b1:42:87:fb:d0:b1:cd:18: 54:cb:82:a3:d8:2e:7c:98:1d:b1:03:97:57:1a:4f: 2a:13:62:27:09:1c:98:2c:2c:75:78:ba:02:f3:b8: 8c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:26:75:DC:9B:AB:33:89:AB:C0:CE:86:9F:54:23:2F:33:98:0A:E7 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/65A422A8C3F411EEB1191654C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.41.170.0/24 Signature Algorithm: sha256WithRSAEncryption 02:9a:1f:86:0e:d2:7a:f7:0c:bb:aa:75:c5:e6:60:46:27:dc: fe:08:a6:bd:91:b3:9d:09:72:ab:e5:ef:d3:1d:d8:5c:b8:dc: ca:1f:fd:ab:46:85:05:33:10:be:bf:ae:d4:ea:c6:4d:0d:e4: a6:13:64:7c:7e:b8:69:b8:1c:b5:e9:f5:e4:22:f5:f9:62:23: 01:43:b4:c8:fa:d1:0d:7b:ec:32:71:ca:18:c9:f1:ea:ee:29: 1d:06:b2:24:b8:3e:82:de:93:34:54:ca:39:cc:43:ed:47:42: c8:fa:82:8c:b5:6d:e6:f2:62:75:92:13:90:53:c3:a0:b4:17: 79:f5:6a:c1:c6:b6:f0:54:d1:70:20:9d:38:c0:81:de:e9:09: 52:b3:61:a4:71:eb:07:2d:54:73:36:b8:a6:48:ae:7b:20:25: 4f:e7:ac:0a:12:17:8e:d8:d4:74:93:25:04:a3:a1:15:ce:b4: a0:36:0e:d4:63:f7:bc:0e:4c:92:e1:2b:21:77:47:d2:fa:24: 7d:8e:64:5c:0f:c5:c8:58:44:c5:37:95:5f:3c:92:91:1e:3a: ca:d4:32:59:48:03:ea:85:bd:0f:ca:e1:53:e9:c9:14:c5:e6: f4:84:16:1c:40:fd:49:50:d1:19:33:75:66:6b:c0:63:4a:2a: 65:b2:77:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjQwMjA1MDcwMTM0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwODdjZS05ZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVPtt+QILrQ7hV6cVkZ7kg9hX866rgg9PwXQrUdB9fT8VdEQMBv1sSNdBM2Y zRxR92sNdrBzMLMvIm8hjq0XwpBNdTQ1iSpTfiIg/+pmJgQuRreQabMIOyC+Y437 oMy72yWNmKdlyBqo64mU5ygFM8LG5oUiu91NaWUlme+xoNGDmt1CZzPuxveyWLW8 k/e22R4U88tD2oe0R+rFBIhQX9eFiIVfQy1C+3KS1eaqC7LwJRhr9376kgy5+C48 SyTgDWmHAlx0YLIsfsLz0m5te4cZeaL6i1NjsUKH+9CxzRhUy4Kj2C58mB2xA5dX Gk8qE2InCRyYLCx1eLoC87iMJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAMmddyb qzOJq8DOhp9UIy8zmArnMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFGMDIvMjYxRjM0RDhDMUY3MTFFREI0MjY3NDdCQzRGOUFFMDIvNjVBNDIyQThD M0Y0MTFFRUIxMTkxNjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAKaowDQYJKoZIhvcNAQELBQADggEBAAKaH4YO0nr3DLuq dcXmYEYn3P4Ipr2Rs50Jcqvl79Md2Fy43Mof/atGhQUzEL6/rtTqxk0N5KYTZHx+ uGm4HLXp9eQi9fliIwFDtMj60Q177DJxyhjJ8eruKR0GsiS4PoLekzRUyjnMQ+1H Qsj6goy1bebyYnWSE5BTw6C0F3n1asHGtvBU0XAgnTjAgd7pCVKzYaRx6wctVHM2 uKZIrnsgJU/nrAoSF47Y1HSTJQSjoRXOtKA2DtRj97wOTJLhKyF3R9L6JH2OZFwP xchYRMU3lV88kpEeOsrUMllIA+qFvQ/K4VPpyRTF5vSEFhxA/UlQ0RkzdWZrwGNK KmWyd+A= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:03 2024 by rpki-client on console-fra.rpki-client.org