$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/77E7AC0E492611EDAF439D83C4F9AE02.roa File: 77E7AC0E492611EDAF439D83C4F9AE02.roa (raw, json) Hash identifier: mx6+6j+rPH6Qv01GJND4WqM9bVhBikNZUGqkETCElPI= Subject key identifier: 88:F9:44:BC:7E:29:40:3F:3B:B6:CB:AE:21:F8:45:B1:A1:B4:F0:4E Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 01BC Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/77E7AC0E492611EDAF439D83C4F9AE02.roa Signing time: Tue 01 Oct 2024 03:16:29 +0000 ROA not before: Tue 01 Oct 2024 03:16:29 +0000 ROA not after: Thu 30 Jan 2025 00:00:00 +0000 asID: 136140 IP address blocks: 140.168.240.0/24 maxlen: 24 140.168.241.0/24 maxlen: 24 140.168.242.0/24 maxlen: 24 140.168.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Oct 1 03:16:29 2024 GMT Not After : Jan 30 00:00:00 2025 GMT Subject: CN=66fb698d-e56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8f:19:d2:80:bd:5b:7c:35:76:41:b8:47:27: 36:cc:b1:c5:6f:ea:3f:d9:ce:e3:c9:4e:a8:94:b9: a5:c4:50:bf:82:2c:85:3e:ce:6c:32:4f:63:a3:13: d2:54:a6:8e:f8:35:a8:fd:32:c9:57:00:48:50:fc: 2f:51:4a:1c:1b:de:79:8c:8f:57:a3:bf:b4:7d:1c: 09:fa:a7:01:17:bf:ab:64:82:cf:9b:dd:0a:68:70: e8:ba:c1:ca:ad:88:ea:f2:65:2d:3c:f9:0c:ea:ea: d8:0f:1a:93:d2:a6:33:5e:8e:a1:2b:7b:a4:84:98: a7:8b:d8:94:8d:b0:d3:8f:c0:e6:ba:25:a3:2b:60: 86:eb:a1:1c:d3:a9:39:1e:ec:1a:36:ee:51:d2:3e: cb:df:32:96:fd:a9:4f:11:77:31:af:a7:1f:c7:ff: fb:d7:d5:09:f3:02:b9:f4:d7:ac:c3:b0:5b:b1:fb: 4d:3c:79:11:21:db:b1:5d:23:8a:5a:5d:ae:44:5b: 52:8a:3f:a1:a4:59:47:a9:e8:29:54:24:39:4e:a3: 9d:ec:39:90:a3:f4:64:d9:c7:56:de:49:d6:c4:d7: ea:62:57:f9:e8:55:62:d6:3c:14:f5:a5:47:9b:36: 20:27:cf:41:23:a3:ad:e0:d6:fa:5e:33:d2:de:0e: 5d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F9:44:BC:7E:29:40:3F:3B:B6:CB:AE:21:F8:45:B1:A1:B4:F0:4E X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/77E7AC0E492611EDAF439D83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.240.0/22 Signature Algorithm: sha256WithRSAEncryption a2:07:aa:65:83:c5:06:24:36:73:c1:53:a8:fb:09:d8:0b:df: 13:f9:c3:23:50:4b:f1:aa:64:d5:08:4c:71:73:48:e1:ee:c5: 7b:1c:98:8e:ea:dd:e5:d2:30:2f:e2:6f:48:dc:36:c4:97:bf: 5e:76:bc:75:60:72:f0:f8:e5:b0:09:0a:ea:ea:ca:85:a8:56: f2:20:48:87:14:c7:40:ae:11:cc:a4:e3:92:a5:c4:02:a6:50: b8:5c:27:b2:ee:2e:18:65:c6:fe:b4:1e:e0:29:d5:16:d8:3a: 86:d5:ab:a3:16:58:0f:f5:63:93:a8:62:cb:6e:e1:50:ec:21: 42:2e:0e:a5:aa:50:e9:a5:10:26:67:69:41:2a:96:ca:1d:71: 43:d3:c4:1e:67:91:a6:71:28:dd:e4:a8:8c:d5:23:40:b7:a5: da:e5:f5:34:90:ef:d6:b8:fd:22:82:11:cb:95:c0:86:c4:e1: 73:f1:86:bd:10:e6:e0:b2:f9:fa:10:4f:c1:d0:2a:db:ce:87: 44:a2:11:9b:82:3e:d9:35:0a:7a:a5:78:5f:89:3d:4e:89:85: 79:3f:66:ca:1d:38:71:8e:3d:9f:aa:01:9e:93:8f:c3:93:33: 88:30:0a:1f:5e:e2:55:97:90:31:67:f0:97:d1:31:0b:52:b6: 91:cd:a8:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjQxMDAxMDMxNjI5WhcNMjUwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiNjk4ZC1lNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2I8Z0oC9W3w1dkG4Ryc2zLHFb+o/2c7jyU6olLmlxFC/giyFPs5sMk9joxPS VKaO+DWo/TLJVwBIUPwvUUocG955jI9Xo7+0fRwJ+qcBF7+rZILPm90KaHDousHK rYjq8mUtPPkM6urYDxqT0qYzXo6hK3ukhJini9iUjbDTj8DmuiWjK2CG66Ec06k5 HuwaNu5R0j7L3zKW/alPEXcxr6cfx//719UJ8wK59Nesw7BbsftNPHkRIduxXSOK Wl2uRFtSij+hpFlHqegpVCQ5TqOd7DmQo/Rk2cdW3knWxNfqYlf56FVi1jwU9aVH mzYgJ89BI6Ot4Nb6XjPS3g5dpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIj5RLx+ KUA/O7bLriH4RbGhtPBOMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvNzdFN0FDMEU0 OTI2MTFFREFGNDM5RDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKMqPAwDQYJKoZIhvcNAQELBQADggEBAKIHqmWDxQYkNnPB U6j7CdgL3xP5wyNQS/GqZNUITHFzSOHuxXscmI7q3eXSMC/ib0jcNsSXv152vHVg cvD45bAJCurqyoWoVvIgSIcUx0CuEcyk45KlxAKmULhcJ7LuLhhlxv60HuAp1RbY OobVq6MWWA/1Y5OoYstu4VDsIUIuDqWqUOmlECZnaUEqlsodcUPTxB5nkaZxKN3k qIzVI0C3pdrl9TSQ79a4/SKCEcuVwIbE4XPxhr0Q5uCy+foQT8HQKtvOh0SiEZuC Ptk1CnqleF+JPU6JhXk/ZsodOHGOPZ+qAZ6Tj8OTM4gwCh9e4lWXkDFn8JfRMQtS tpHNqOM= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org