$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/4C72E61CB0EC11E5A6934B42C4F9AE02.roa File: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (raw, json) Hash identifier: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y= Subject key identifier: 7D:FD:1A:F8:9C:E2:31:AC:BF:3F:B7:17:E8:A4:35:33:D0:85:E2:9E Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 2FD0 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/4C72E61CB0EC11E5A6934B42C4F9AE02.roa Signing time: Thu 12 Sep 2024 15:52:13 +0000 ROA not before: Thu 12 Sep 2024 15:52:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 715 IP address blocks: 45.112.180.0/22 maxlen: 22 103.52.24.0/22 maxlen: 22 2401:680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12240 (0x2fd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Sep 12 15:52:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e30e2c-c2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:33:04:b4:eb:7a:a6:77:b2:c1:ee:96:0d: 1a:5f:5a:57:0f:69:79:53:b0:76:ca:7b:23:86:71: 3b:73:3b:11:72:b8:1e:65:ff:5d:ad:36:fd:8b:64: 6c:c5:fc:ba:77:1d:21:22:0a:49:bb:e9:44:08:2f: 3f:f7:63:dd:e7:2b:b4:f0:af:23:95:b4:ab:e1:3f: a0:9a:dc:bb:f3:d3:c0:06:a9:af:50:e0:73:84:bc: 98:49:1a:e2:2c:a2:c6:dc:7f:bb:57:bc:4f:58:87: a3:2d:54:a0:07:ec:63:d7:c5:4a:6a:3f:ae:83:9e: 52:53:49:80:ce:52:52:a7:a6:ff:e3:48:e7:cf:7f: e9:72:90:c9:b7:72:88:f7:8d:50:68:67:6f:1b:f2: 3c:d3:40:97:68:02:db:ff:e7:9d:d7:67:2f:16:22: ba:e2:67:88:e8:8c:3c:d0:6f:40:4e:80:39:fc:36: 0e:31:3b:01:9b:34:7a:cb:9a:81:d1:08:5a:8d:38: 30:37:0d:84:d1:90:c1:05:5a:d6:1d:36:42:27:94: fc:75:64:2b:de:aa:22:e5:4f:bb:9f:58:38:67:5e: 69:90:c6:c7:fe:a0:95:43:a4:cc:a6:2a:32:4d:23: ba:60:0d:29:3f:c5:58:54:e6:07:db:9c:7d:68:6b: b7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FD:1A:F8:9C:E2:31:AC:BF:3F:B7:17:E8:A4:35:33:D0:85:E2:9E X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/4C72E61CB0EC11E5A6934B42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.180.0/22 103.52.24.0/22 IPv6: 2401:680::/32 Signature Algorithm: sha256WithRSAEncryption 98:d4:08:bb:9b:8a:eb:47:ce:09:bf:40:6e:46:cf:6f:4a:e4: 1c:1a:83:5c:c8:66:12:dd:44:cb:93:5d:b9:d8:1e:02:68:59: 14:9a:55:b3:4f:76:91:db:8b:a4:1b:58:5d:6e:88:9e:99:4c: 8a:52:6e:9f:36:f4:37:f1:b0:fd:3c:f5:bd:63:ad:b5:87:f2: a5:c3:42:59:f0:9c:23:02:dc:ed:85:6e:ed:78:3e:4a:1a:c1: 42:b7:cf:9f:5e:8d:2c:b4:de:13:c7:44:2b:a5:b9:46:57:77: d7:bc:2f:b0:6b:e6:82:ae:55:db:17:c0:bc:f2:23:28:b8:fc: 1a:be:51:04:7f:8e:c9:38:ea:75:39:de:88:5e:3e:89:79:fc: 20:06:a4:f1:a2:22:ab:e3:6f:b1:7f:b3:f8:96:a4:5a:d6:3b: 5d:d8:78:ff:69:c5:1b:67:f1:7e:39:1b:16:3a:3a:84:32:7f: 5f:1f:f1:38:df:82:ad:70:6e:f0:b8:d9:98:a1:4b:74:73:9c: f6:20:26:4c:86:e4:aa:15:77:fa:14:b2:a8:f4:8d:9a:9c:c1: 6f:e9:c8:11:c9:3a:ac:ab:48:60:bb:87:90:83:71:01:68:15: 3f:2e:26:c2:4c:42:dc:8c:25:fa:5a:8b:03:25:29:17:58:de: ed:5c:9d:db -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICL9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjQwOTEyMTU1MjEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzMGUyYy1jMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3czBLTreqZ3ssHulg0aX1pXD2l5U7B2ynsjhnE7czsRcrgeZf9drTb9i2Rs xfy6dx0hIgpJu+lECC8/92Pd5yu08K8jlbSr4T+gmty789PABqmvUOBzhLyYSRri LKLG3H+7V7xPWIejLVSgB+xj18VKaj+ug55SU0mAzlJSp6b/40jnz3/pcpDJt3KI 941QaGdvG/I800CXaALb/+ed12cvFiK64meI6Iw80G9AToA5/DYOMTsBmzR6y5qB 0QhajTgwNw2E0ZDBBVrWHTZCJ5T8dWQr3qoi5U+7n1g4Z15pkMbH/qCVQ6TMpioy TSO6YA0pP8VYVOYH25x9aGu3fwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFH39Gvic 4jGsvz+3F+ikNTPQheKeMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwQkQvQjVBNjM2RDhGRTVDMTFFMkFFQzA0MjUwNTkxMUVBMzIvNEM3MkU2MUNC MEVDMTFFNUE2OTM0QjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcLQDBAJnNBgwDQQCAAIwBwMFACQBBoAwDQYJKoZIhvcN AQELBQADggEBAJjUCLubiutHzgm/QG5Gz29K5Bwag1zIZhLdRMuTXbnYHgJoWRSa VbNPdpHbi6QbWF1uiJ6ZTIpSbp829DfxsP089b1jrbWH8qXDQlnwnCMC3O2Fbu14 PkoawUK3z59ejSy03hPHRCuluUZXd9e8L7Br5oKuVdsXwLzyIyi4/Bq+UQR/jsk4 6nU53ohePol5/CAGpPGiIqvjb7F/s/iWpFrWO13YeP9pxRtn8X45GxY6OoQyf18f 8Tjfgq1wbvC42ZihS3RznPYgJkyG5KoVd/oUsqj0jZqcwW/pyBHJOqyrSGC7h5CD cQFoFT8uJsJMQtyMJfpaiwMlKRdY3u1cnds= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:03 2024 by rpki-client on console-fra.rpki-client.org