$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/3066E80A5B7C11EDAAFAB831C4F9AE02.roa File: 3066E80A5B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: iyrJi4PQB+8IwRqaOSyDOTSwrytZkk/phQrLWRjDbIk= Subject key identifier: AB:B6:89:D6:11:2F:66:21:AD:92:E3:6C:C8:92:2E:D9:A7:D6:B3:33 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 01C1 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/3066E80A5B7C11EDAAFAB831C4F9AE02.roa Signing time: Tue 01 Oct 2024 03:16:34 +0000 ROA not before: Tue 01 Oct 2024 03:16:34 +0000 ROA not after: Thu 30 Jan 2025 00:00:00 +0000 asID: 65512 IP address blocks: 140.168.128.0/19 maxlen: 19 140.168.135.0/24 maxlen: 24 140.168.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Oct 1 03:16:34 2024 GMT Not After : Jan 30 00:00:00 2025 GMT Subject: CN=66fb6991-ac49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:00:9d:82:e7:91:ee:7b:76:6e:56:6b:c8:9f: c1:48:a8:4a:57:54:38:12:93:9d:20:8b:82:24:40: 7d:e7:e8:1d:4a:1b:92:2b:d0:b6:da:58:15:85:fb: 68:a0:2d:a4:07:9f:10:54:3e:e1:f1:22:5c:24:fd: b1:ba:85:fd:74:2a:e0:90:d4:99:ae:e4:8c:fe:0b: cf:eb:0e:7d:48:1f:fe:20:fc:66:7f:51:7b:c3:77: 0e:45:eb:41:3c:a5:a4:19:ce:6b:f0:bc:fb:74:7e: 4f:55:3c:1b:4a:aa:a7:04:e3:ca:94:5d:f3:ac:cb: 88:04:d5:3a:a8:36:5e:7b:2f:5b:c9:e6:2d:b2:0b: be:17:04:6b:42:5e:fa:3b:b0:55:ec:c2:2d:4d:22: ac:0f:db:c3:95:99:a3:6c:bc:21:d4:dd:50:00:85: 98:75:9f:bd:f0:03:67:b6:4f:d0:9d:6a:37:dc:fe: 1e:02:01:77:91:30:12:75:68:54:98:91:30:96:89: 97:fc:6b:68:97:89:bf:e5:35:9d:33:ef:ae:79:3e: 84:3d:43:a5:27:c9:c8:18:5e:d7:aa:e4:45:a8:dd: d3:2a:19:c7:2f:99:96:ad:c9:8b:ff:77:05:bb:56: 84:aa:ce:0c:2b:3c:77:ac:8a:2d:75:02:a2:a5:6d: a1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B6:89:D6:11:2F:66:21:AD:92:E3:6C:C8:92:2E:D9:A7:D6:B3:33 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/3066E80A5B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.128.0/18 Signature Algorithm: sha256WithRSAEncryption 7d:0b:05:f9:19:cb:4f:d1:b2:fb:31:24:44:39:74:bc:38:ef: 5f:77:a0:57:8a:7c:a8:bb:eb:6a:9b:5f:57:a8:90:e3:98:72: 95:54:d4:a3:96:76:fb:e5:da:3f:24:3e:f7:cc:3f:70:25:26: 52:dc:d3:39:7c:1a:ad:06:39:80:c2:b2:ca:f6:cd:12:9c:7c: 47:97:19:d1:cf:48:92:3d:86:79:38:1e:93:26:c3:8b:47:41: e8:05:52:9b:d7:5e:bc:40:4c:0d:99:89:1d:28:22:f8:3f:68: 6d:a6:7e:42:e3:d5:89:b0:bc:ba:12:cf:8a:a0:ed:66:11:14: 65:b9:47:17:5b:1d:9b:66:f6:77:03:0a:72:cc:9e:02:9f:3a: 46:97:72:e0:27:e8:38:66:fe:2d:c9:fa:61:f6:76:bb:83:c0: a7:6b:8a:63:1b:5e:40:9d:8f:91:c4:48:3e:78:9b:64:a8:94: 28:e3:2e:c0:99:fb:b1:9b:6b:8b:62:b3:84:fb:70:64:68:42: 28:aa:c8:43:28:79:1d:69:13:2a:09:9d:5e:ea:ad:76:43:8c: 50:e8:7f:10:02:d1:72:a4:7e:7c:9c:38:98:66:0d:0a:7d:26: e6:10:8d:90:6c:5e:34:7f:6d:06:8d:05:4e:14:a7:53:7a:85: 58:4b:d0:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjQxMDAxMDMxNjM0WhcNMjUwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiNjk5MS1hYzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgCdgueR7nt2blZryJ/BSKhKV1Q4EpOdIIuCJEB95+gdShuSK9C22lgVhfto oC2kB58QVD7h8SJcJP2xuoX9dCrgkNSZruSM/gvP6w59SB/+IPxmf1F7w3cORetB PKWkGc5r8Lz7dH5PVTwbSqqnBOPKlF3zrMuIBNU6qDZeey9byeYtsgu+FwRrQl76 O7BV7MItTSKsD9vDlZmjbLwh1N1QAIWYdZ+98ANntk/QnWo33P4eAgF3kTASdWhU mJEwlomX/Gtol4m/5TWdM++ueT6EPUOlJ8nIGF7XquRFqN3TKhnHL5mWrcmL/3cF u1aEqs4MKzx3rIotdQKipW2h2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKu2idYR L2YhrZLjbMiSLtmn1rMzMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMzA2NkU4MEE1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaMqIAwDQYJKoZIhvcNAQELBQADggEBAH0LBfkZy0/Rsvsx JEQ5dLw47193oFeKfKi762qbX1eokOOYcpVU1KOWdvvl2j8kPvfMP3AlJlLc0zl8 Gq0GOYDCssr2zRKcfEeXGdHPSJI9hnk4HpMmw4tHQegFUpvXXrxATA2ZiR0oIvg/ aG2mfkLj1YmwvLoSz4qg7WYRFGW5RxdbHZtm9ncDCnLMngKfOkaXcuAn6Dhm/i3J +mH2druDwKdrimMbXkCdj5HESD54m2SolCjjLsCZ+7Gba4tis4T7cGRoQiiqyEMo eR1pEyoJnV7qrXZDjFDofxAC0XKkfnycOJhmDQp9JuYQjZBsXjR/bQaNBU4Up1N6 hVhL0Ms= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org