$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa File: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (raw, json) Hash identifier: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s= Subject key identifier: 79:11:72:56:F8:7C:97:42:0F:3C:1E:79:D7:45:F7:80:E5:43:DA:EF Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0F43 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa Signing time: Wed 06 Nov 2024 02:53:54 +0000 ROA not before: Wed 06 Nov 2024 02:53:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 59033 IP address blocks: 45.114.236.0/22 maxlen: 24 103.71.24.0/24 maxlen: 24 2401:d640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3907 (0xf43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Nov 6 02:53:54 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=672ada42-24a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e9:49:66:dd:3a:98:4a:94:df:67:d8:9d:ca: 07:64:31:9b:ca:f6:4e:a0:b3:ff:f2:e6:93:a4:9b: 09:ca:56:7a:6d:c6:8f:82:56:f7:b6:06:b6:73:9e: 7a:47:49:f7:58:4a:ea:15:56:8c:5e:29:92:f7:cd: e0:b9:e2:6e:c3:1e:e5:27:4e:3c:0b:de:b0:64:0d: 93:06:34:79:d1:b6:78:1b:4f:32:9c:bd:85:4a:62: 8f:ac:70:45:d3:85:f5:1c:56:8b:7c:a5:40:41:19: 7c:2a:b5:ed:6d:60:58:bb:c7:5d:18:58:c8:36:22: bb:52:e0:0a:66:5f:c0:ae:ff:d5:f8:1e:8f:5b:d1: 9b:e7:07:72:24:67:f6:2e:4c:a3:de:de:4e:d9:c9: 13:60:39:75:20:88:b6:09:ce:cb:e9:e6:07:20:e7: 6e:ca:ac:7e:70:46:5a:1f:65:3c:cf:d8:75:a7:2c: 14:31:ec:36:7f:5f:68:4a:6a:67:9c:7d:17:66:e2: 11:cd:1d:0c:fb:94:01:33:b3:1c:bb:c5:5f:a1:de: ae:88:c7:15:17:04:52:b9:26:1b:69:6f:fa:9c:1e: a6:23:cc:91:0a:e2:b0:2a:02:7c:e2:7d:48:92:e1: 9a:ed:be:14:60:4b:c5:cf:de:04:73:c3:2a:6c:41: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:11:72:56:F8:7C:97:42:0F:3C:1E:79:D7:45:F7:80:E5:43:DA:EF X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.236.0/22 103.71.24.0/24 IPv6: 2401:d640::/32 Signature Algorithm: sha256WithRSAEncryption 7e:c4:8d:21:e2:df:ad:b8:de:8f:e2:29:68:69:d1:ae:fc:97: 93:f9:ef:d4:db:d7:0d:46:43:78:3c:e2:fb:d9:e0:96:7f:6d: f2:83:e0:92:06:32:33:66:9b:17:0d:79:1a:c3:14:23:28:94: 3e:7f:ae:6a:2c:e1:eb:88:e4:3b:83:33:6d:a6:0e:7d:83:15: ee:59:5e:62:6b:c1:8e:94:80:55:c8:84:58:df:bb:fa:01:12: ea:3f:58:f0:11:1e:37:50:d0:7c:cc:cb:e0:8e:ed:f9:dd:9a: e8:23:ce:0f:7a:46:0d:20:1c:c7:3b:31:2d:ea:bd:65:1f:09: b1:56:fe:89:b1:35:f7:77:6b:a6:04:3b:5c:ae:6e:77:b1:bc: 61:d6:f3:b6:d9:2b:48:61:cf:bc:e3:a6:1d:d9:13:04:09:af: c6:76:98:18:10:8b:40:ea:90:8a:28:a4:12:5a:00:b8:c6:b4: b3:27:2a:22:3b:38:e0:fc:25:92:5c:f2:4c:58:1a:7a:55:f4: 3c:bc:13:7b:78:4a:f1:0a:40:13:5a:9a:67:14:0a:6f:0c:77: d3:56:a4:51:e6:2c:d1:ba:c7:f6:d9:e0:14:70:3c:38:22:fa: 62:b8:5a:f8:80:15:a5:77:48:0c:28:61:ec:10:1e:1e:90:12: 89:bb:1e:bd -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjQxMTA2MDI1MzU0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJhZGE0Mi0yNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqelJZt06mEqU32fYncoHZDGbyvZOoLP/8uaTpJsJylZ6bcaPglb3tga2c556 R0n3WErqFVaMXimS983gueJuwx7lJ048C96wZA2TBjR50bZ4G08ynL2FSmKPrHBF 04X1HFaLfKVAQRl8KrXtbWBYu8ddGFjINiK7UuAKZl/Arv/V+B6PW9Gb5wdyJGf2 Lkyj3t5O2ckTYDl1IIi2Cc7L6eYHIOduyqx+cEZaH2U8z9h1pywUMew2f19oSmpn nH0XZuIRzR0M+5QBM7Mcu8Vfod6uiMcVFwRSuSYbaW/6nB6mI8yRCuKwKgJ84n1I kuGa7b4UYEvFz94Ec8MqbEFf4QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHkRclb4 fJdCDzweeddF94DlQ9rvMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY3RDEvNkNCQzlCNDA2MTFEMTFFOUIwMTJEQjM3QzRGOUFFMDIvNUMxREJDNDg5 QkVBMTFFRkJDQjM2MjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcuwDBABnRxgwDQQCAAIwBwMFACQB1kAwDQYJKoZIhvcN AQELBQADggEBAH7EjSHi36243o/iKWhp0a78l5P579Tb1w1GQ3g84vvZ4JZ/bfKD 4JIGMjNmmxcNeRrDFCMolD5/rmos4euI5DuDM22mDn2DFe5ZXmJrwY6UgFXIhFjf u/oBEuo/WPARHjdQ0HzMy+CO7fndmugjzg96Rg0gHMc7MS3qvWUfCbFW/omxNfd3 a6YEO1yubnexvGHW87bZK0hhz7zjph3ZEwQJr8Z2mBgQi0DqkIoopBJaALjGtLMn KiI7OOD8JZJc8kxYGnpV9Dy8E3t4SvEKQBNammcUCm8Md9NWpFHmLNG6x/bZ4BRw PDgi+mK4WviAFaV3SAwoYewQHh6QEom7Hr0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org