$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa File: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (raw, json) Hash identifier: XB0QLbbknxQIRTO38MXkPwNFVVbVpdhvXqbqZxANpFE= Subject key identifier: 6B:50:6D:FF:F4:BF:0D:BA:2F:AA:B7:76:D3:3E:6E:51:37:7E:54:7A Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0D86 Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa Signing time: Tue 02 Jul 2024 18:25:52 +0000 ROA not before: Tue 02 Jul 2024 18:25:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55944 IP address blocks: 216.183.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Jul 2 18:25:52 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66844630-32d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:42:66:d3:fc:37:af:4c:86:3b:1d:23:a0: b4:2a:1a:ae:11:79:35:41:b6:90:21:bb:89:e4:85: 99:06:83:e8:7d:75:4a:21:d0:db:fe:ae:b8:16:c5: 12:ef:72:57:02:db:bf:ee:0a:d9:34:81:b3:a3:2e: 70:54:86:0a:1e:88:be:b7:98:aa:22:c4:a2:67:a2: 3d:4e:d6:cc:27:f8:14:53:60:d2:35:aa:96:d5:9e: 66:fc:f0:fc:b4:f0:3f:0e:e3:51:e1:73:17:ce:56: 54:3b:a3:0a:fe:03:97:08:7c:a2:04:46:54:7e:26: fe:1f:68:17:29:76:a8:36:48:ad:78:4e:e3:44:cc: fb:76:74:3f:dc:46:8c:22:2d:77:7a:7a:a3:b8:6c: 49:91:f0:72:73:3e:ac:ac:c3:9b:19:c8:c2:6b:b6: 8c:cc:1e:59:3d:57:05:c8:67:00:19:c9:69:ea:3a: cd:60:b9:f2:2a:06:26:a2:a3:46:89:bf:78:82:aa: 69:a7:55:07:52:4c:6d:15:cc:cf:5d:c0:4e:26:ee: 72:33:c7:9b:60:ac:af:eb:66:f5:f1:88:5c:77:90: 7f:b8:ea:b0:fc:82:87:74:43:10:d2:6a:6d:a2:66: 30:17:76:1f:ec:23:74:cb:35:a1:c0:2c:91:f7:1b: 3b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:50:6D:FF:F4:BF:0D:BA:2F:AA:B7:76:D3:3E:6E:51:37:7E:54:7A X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.183.208.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:9c:fe:32:6f:09:c5:16:ec:68:bd:41:56:13:8e:39:93:6e: dd:58:2f:d0:a6:4f:f7:93:da:11:63:f4:21:4d:88:27:8e:0a: b5:fe:73:74:62:72:63:4d:db:96:38:dd:42:69:a5:0e:89:69: d4:3c:ee:39:f2:69:88:41:12:e4:01:8f:26:f5:29:4a:15:9f: e7:74:f7:a2:49:54:40:b8:31:18:42:9e:4b:09:0f:b6:cd:11: 83:de:d2:46:b6:fa:f0:d4:0c:c3:68:72:45:8c:9c:2f:16:d6: 8f:41:c7:d9:50:fe:93:0b:19:ae:93:fb:18:9c:b1:54:99:8e: c1:ba:80:44:1c:72:2a:30:c6:b1:11:76:c4:f3:76:13:46:60: 19:cd:f0:fd:da:0f:ae:5e:c5:39:59:fc:7e:0a:4c:af:c8:79: 37:c2:83:d0:1d:b6:07:c4:ce:ca:08:21:b7:16:a7:f0:08:e1: 11:a9:c4:9d:c0:9a:18:e1:55:66:24:8d:0e:40:d2:9e:81:43: 7b:3e:fe:46:ce:7d:16:76:4e:e4:80:21:81:ac:b3:fe:59:de: ff:92:bb:f5:ca:16:53:98:c3:35:48:fe:f2:e2:5b:26:d0:f4: 46:02:6a:81:c9:1d:0f:45:bd:83:6a:09:6d:5a:7d:c9:68:37: 32:e0:bc:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjQwNzAyMTgyNTUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0NDYzMC0zMmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGRCZtP8N69MhjsdI6C0KhquEXk1QbaQIbuJ5IWZBoPofXVKIdDb/q64FsUS 73JXAtu/7grZNIGzoy5wVIYKHoi+t5iqIsSiZ6I9TtbMJ/gUU2DSNaqW1Z5m/PD8 tPA/DuNR4XMXzlZUO6MK/gOXCHyiBEZUfib+H2gXKXaoNkiteE7jRMz7dnQ/3EaM Ii13enqjuGxJkfBycz6srMObGcjCa7aMzB5ZPVcFyGcAGclp6jrNYLnyKgYmoqNG ib94gqppp1UHUkxtFczPXcBOJu5yM8ebYKyv62b18Yhcd5B/uOqw/IKHdEMQ0mpt omYwF3Yf7CN0yzWhwCyR9xs7vwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGtQbf/0 vw26L6q3dtM+blE3flR6MB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQ5RjIvN0MwNkU3OUNBNkVFMTFFOTg1RjNCMDExQzRGOUFFMDIvQkEwQ0M3MDYw QTNEMTFFQjgyRUNFQTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATYt9AwDQYJKoZIhvcNAQELBQADggEBAC6c/jJvCcUW7Gi9 QVYTjjmTbt1YL9CmT/eT2hFj9CFNiCeOCrX+c3RicmNN25Y43UJppQ6JadQ87jny aYhBEuQBjyb1KUoVn+d096JJVEC4MRhCnksJD7bNEYPe0ka2+vDUDMNockWMnC8W 1o9Bx9lQ/pMLGa6T+xicsVSZjsG6gEQcciowxrERdsTzdhNGYBnN8P3aD65exTlZ /H4KTK/IeTfCg9AdtgfEzsoIIbcWp/AI4RGpxJ3AmhjhVWYkjQ5A0p6BQ3s+/kbO fRZ2TuSAIYGss/5Z3v+Su/XKFlOYwzVI/vLiWybQ9EYCaoHJHQ9FvYNqCW1afclo NzLgvIY= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:04 2024 by rpki-client on console-fra.rpki-client.org