$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/643961CCB39811EBBD3F524CC4F9AE02.roa File: 643961CCB39811EBBD3F524CC4F9AE02.roa (raw, json) Hash identifier: taFGAacxq2sm6Y1QRRo3KlRLFJEopO93ww8dAQZR/68= Subject key identifier: 05:D7:46:95:04:60:F9:20:02:63:DA:5D:38:30:F8:49:01:C5:D1:CB Certificate issuer: /CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Certificate serial: 05D7 Authority key identifier: F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/643961CCB39811EBBD3F524CC4F9AE02.roa Signing time: Wed 03 Apr 2024 00:32:49 +0000 ROA not before: Wed 03 Apr 2024 00:32:49 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4785 IP address blocks: 45.251.240.0/24 maxlen: 24 45.251.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Validity Not Before: Apr 3 00:32:49 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660ca3b1-352f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c7:33:09:04:87:d7:62:bc:bb:68:e4:93:10: 9c:a7:3b:58:f8:7c:eb:df:94:d8:c8:61:8a:05:cd: db:66:51:de:da:fe:b4:2c:6b:45:ff:21:7d:e6:37: 34:99:48:8c:2f:7d:1f:6e:85:7e:72:70:86:df:f8: ab:69:8c:fa:0c:73:a7:1b:9b:44:df:01:68:1e:e1: 07:46:6c:51:a8:ac:30:88:46:34:2e:8d:af:81:ed: 60:d3:85:02:c7:65:9e:31:99:8d:c4:41:0c:aa:67: f2:79:dd:c8:31:9a:29:50:48:3f:8d:8e:21:ce:56: 46:c1:df:25:07:c9:1a:73:e3:cd:78:be:65:5d:e1: 11:6b:66:21:0b:72:3b:58:7f:6d:50:b3:77:4b:c2: 04:89:72:a8:40:fe:40:32:ba:e6:af:6c:ec:79:4d: b7:22:bb:57:e1:1e:66:bf:6a:04:f2:c1:74:f1:bf: 13:da:93:0d:9f:46:d0:d4:cf:23:ca:d0:57:8d:3e: c6:9c:74:5a:2d:c2:95:bf:2f:61:9f:39:9a:f3:60: 54:18:2f:22:eb:a0:90:93:e2:21:a4:06:28:e6:e5: 0b:d8:49:4d:60:5e:cf:9e:ca:fb:68:2b:fe:d8:12: 9b:7a:5b:a6:e0:b8:85:5a:e5:bb:f8:93:aa:14:71: 5b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D7:46:95:04:60:F9:20:02:63:DA:5D:38:30:F8:49:01:C5:D1:CB X509v3 Authority Key Identifier: keyid:F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/643961CCB39811EBBD3F524CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.240.0/23 Signature Algorithm: sha256WithRSAEncryption 66:66:69:c8:f1:b8:c5:b8:63:bc:55:f5:9e:bc:54:3c:e9:9e: fe:1d:50:8a:b1:19:96:6d:60:60:e2:89:e8:99:d0:1f:7c:03: 96:43:9d:07:4b:ad:eb:49:6a:ab:92:ed:fb:fc:92:9a:4a:39: 74:be:4e:fe:ed:f7:8d:9f:8e:cc:6c:fe:34:de:01:18:d7:01: 1d:32:e5:72:5f:11:a1:43:36:6e:b4:3d:b9:df:9a:68:05:ee: bf:26:3c:5d:59:bc:20:d3:d3:ca:18:f4:ee:a8:e7:43:ef:74: ff:28:58:d7:02:bd:23:42:d7:93:18:83:f5:a2:57:0e:b2:60: 1f:f7:58:bb:09:59:65:40:2d:31:24:f7:48:88:27:da:00:ac: 13:eb:bb:a6:61:f7:4e:8d:09:b8:ff:e4:46:86:27:d2:ae:b7: bd:d1:5f:da:a7:f7:5d:14:ab:35:17:83:e3:fd:91:67:5d:1c: c9:06:b8:b6:ea:d0:1d:0a:7b:b7:89:c1:b5:33:a6:d8:14:79: 79:94:5d:dd:ab:58:50:2f:23:48:3a:05:ee:fb:02:da:99:d1: 35:c2:57:37:0b:e7:1e:a6:a1:86:83:5a:84:d3:b0:79:5f:6d: 40:02:fb:07:d3:c0:51:99:14:8f:b3:71:72:78:a5:b4:ba:1d: 23:39:7e:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRDcxMTAvBgNVBAUTKEYyQjcwQjQ5NzMyMkJFRTY2ODIwRUQzRkNFMjhBQTc5 NkRCMDkxNTMwHhcNMjQwNDAzMDAzMjQ5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYTNiMS0zNTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sczCQSH12K8u2jkkxCcpztY+Hzr35TYyGGKBc3bZlHe2v60LGtF/yF95jc0 mUiML30fboV+cnCG3/iraYz6DHOnG5tE3wFoHuEHRmxRqKwwiEY0Lo2vge1g04UC x2WeMZmNxEEMqmfyed3IMZopUEg/jY4hzlZGwd8lB8kac+PNeL5lXeERa2YhC3I7 WH9tULN3S8IEiXKoQP5AMrrmr2zseU23IrtX4R5mv2oE8sF08b8T2pMNn0bQ1M8j ytBXjT7GnHRaLcKVvy9hnzma82BUGC8i66CQk+IhpAYo5uUL2ElNYF7Pnsr7aCv+ 2BKbelum4LiFWuW7+JOqFHFbswIDAQABo4IClTCCApEwHQYDVR0OBBYEFAXXRpUE YPkgAmPaXTgw+EkBxdHLMB8GA1UdIwQYMBaAFPK3C0lzIr7maCDtP84oqnltsJFT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNENy9FOUY1RDkzRTY1 MjQxMUVCOTgzRjFCMTFDNEY5QUUwMi84cmNMU1hNaXZ1Wm9JTzBfemlpcWVXMndr Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhyY0xTWE1pdnVab0lPMF96aWlxZVcyd2tWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzRDcvRTlGNUQ5M0U2NTI0MTFFQjk4M0YxQjExQzRGOUFFMDIvNjQzOTYxQ0NC Mzk4MTFFQkJEM0Y1MjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEt+/AwDQYJKoZIhvcNAQELBQADggEBAGZmacjxuMW4Y7xV 9Z68VDzpnv4dUIqxGZZtYGDiieiZ0B98A5ZDnQdLretJaquS7fv8kppKOXS+Tv7t 942fjsxs/jTeARjXAR0y5XJfEaFDNm60PbnfmmgF7r8mPF1ZvCDT08oY9O6o50Pv dP8oWNcCvSNC15MYg/WiVw6yYB/3WLsJWWVALTEk90iIJ9oArBPru6Zh906NCbj/ 5EaGJ9Kut73RX9qn910UqzUXg+P9kWddHMkGuLbq0B0Ke7eJwbUzptgUeXmUXd2r WFAvI0g6Be77AtqZ0TXCVzcL5x6moYaDWoTTsHlfbUAC+wfTwFGZFI+zcXJ4pbS6 HSM5fl4= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:50 2024 by rpki-client on console-ams.rpki-client.org