$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/8FFA61D4B13D11EF9EFDE433C4F9AE02.roa File: 8FFA61D4B13D11EF9EFDE433C4F9AE02.roa (raw, json) Hash identifier: RznVbyw+ZK8Ei2SaZPNm4hdUAC4q3TXGr0lssS3/znQ= Subject key identifier: C3:EC:14:B7:85:62:BC:86:3A:31:A1:37:5D:64:2A:3B:EE:0B:A5:2D Certificate issuer: /CN=A91B8AC8/serialNumber=E4C589B893D27289CF846DF05ADFB596036428FD Certificate serial: 0A Authority key identifier: E4:C5:89:B8:93:D2:72:89:CF:84:6D:F0:5A:DF:B5:96:03:64:28:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/8FFA61D4B13D11EF9EFDE433C4F9AE02.roa Signing time: Fri 13 Dec 2024 06:39:46 +0000 ROA not before: Fri 13 Dec 2024 06:39:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9433 IP address blocks: 130.123.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.crl rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8AC8/serialNumber=E4C589B893D27289CF846DF05ADFB596036428FD Validity Not Before: Dec 13 06:39:46 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675bd6b2-799f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c3:fb:56:d8:5c:ad:a9:1d:c7:28:6f:22:3f: fd:72:27:a8:d2:57:2d:44:a0:26:ad:a0:a3:38:d5: c4:f7:0d:09:03:c8:44:93:07:2c:6d:a6:db:4f:d6: ae:27:cc:af:fe:05:9b:dd:8b:5d:d0:a0:16:ba:eb: 76:ce:00:25:4b:88:77:5c:85:b8:0d:39:d5:ce:29: 98:1f:0c:93:98:d6:70:25:46:df:2f:c7:65:10:d5: bf:a7:63:c0:1d:cd:fb:d7:d7:5a:8d:1a:8d:ef:e7: e1:3b:ac:61:86:06:3f:5c:79:b0:6f:be:f3:93:1b: 85:45:11:26:dc:1f:21:57:f2:a6:9c:09:ac:9a:b4: 1a:76:d4:79:7f:e4:07:7c:7d:ad:f5:51:26:14:67: 14:e7:b4:56:cf:fe:51:9d:db:53:cd:d6:ad:0b:93: 11:5e:b5:49:b6:8f:99:f7:65:e5:15:03:21:c9:61: 97:45:b1:08:91:f4:75:69:71:3c:d4:66:e1:75:27: f6:94:32:75:4f:b5:bd:f6:9e:db:23:de:20:34:ed: 6d:d3:99:45:13:f1:8c:d7:77:e5:d5:6a:32:81:c3: d0:ea:e0:33:b9:f9:da:90:13:d6:ae:a8:bf:29:84: 86:45:cc:0f:76:16:5b:bf:2e:e3:82:52:84:ca:17: 56:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:EC:14:B7:85:62:BC:86:3A:31:A1:37:5D:64:2A:3B:EE:0B:A5:2D X509v3 Authority Key Identifier: keyid:E4:C5:89:B8:93:D2:72:89:CF:84:6D:F0:5A:DF:B5:96:03:64:28:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/8FFA61D4B13D11EF9EFDE433C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.123.128.0/23 Signature Algorithm: sha256WithRSAEncryption 96:bf:40:ab:b1:37:9d:6f:0b:82:66:b0:43:c8:97:7b:28:f4: 08:84:53:d2:f3:ed:d3:46:54:01:50:c7:1d:d4:08:13:16:63: ce:30:fe:61:c0:67:60:fa:3f:48:7d:55:fe:63:d5:1e:7b:cf: 20:9a:de:2d:46:7e:62:00:61:64:91:f5:7f:b5:07:d6:a0:73: 81:f3:29:58:0f:c9:ad:55:ca:03:78:b7:51:71:85:c6:28:53: 40:65:61:75:e9:22:e9:29:89:b7:f3:a5:e8:27:b3:5e:fe:17: 9e:c5:83:43:83:1d:2e:1b:0d:f0:32:7b:cc:25:cc:31:d8:8a: d7:88:45:e7:05:d6:2b:f7:53:50:68:97:22:1d:0a:f6:d7:e2: ff:54:2f:5d:0a:24:64:4e:83:24:ac:02:ce:58:f5:bc:4d:8b: 49:ed:a1:a8:0f:1b:b2:ac:ed:25:74:10:61:f8:c8:e3:3c:b8: 28:e9:a3:27:69:8b:5a:18:14:33:1f:c6:69:29:46:23:51:d7: 5e:6a:38:17:59:99:02:20:95:eb:c3:13:73:34:31:be:4d:93: 4b:6d:c4:b2:85:a8:ff:cc:d3:d3:9c:69:c9:b1:45:36:a0:c8: a6:38:94:63:52:3a:32:05:50:9b:d2:a0:02:3f:1b:d4:9c:2b: 31:44:95:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEFDODExMC8GA1UEBRMoRTRDNTg5Qjg5M0QyNzI4OUNGODQ2REYwNUFERkI1OTYw MzY0MjhGRDAeFw0yNDEyMTMwNjM5NDZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NWJkNmIyLTc5OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0w/tW2FytqR3HKG8iP/1yJ6jSVy1EoCatoKM41cT3DQkDyESTByxtpttP1q4n zK/+BZvdi13QoBa663bOACVLiHdchbgNOdXOKZgfDJOY1nAlRt8vx2UQ1b+nY8Ad zfvX11qNGo3v5+E7rGGGBj9cebBvvvOTG4VFESbcHyFX8qacCayatBp21Hl/5Ad8 fa31USYUZxTntFbP/lGd21PN1q0LkxFetUm2j5n3ZeUVAyHJYZdFsQiR9HVpcTzU ZuF1J/aUMnVPtb32ntsj3iA07W3TmUUT8YzXd+XVajKBw9Dq4DO5+dqQE9auqL8p hIZFzA92Flu/LuOCUoTKF1b1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUw+wUt4Vi vIY6MaE3XWQqO+4LpS0wHwYDVR0jBBgwFoAU5MWJuJPSconPhG3wWt+1lgNkKP0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QUM4L0UxMkQxMDUyQjEz QzExRUZBQUY5RDczMUM0RjlBRTAyLzVNV0p1SlBTY29uUGhHM3dXdC0xbGdOa0tQ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNU1XSnVKUFNjb25QaEczd1d0LTFsZ05rS1AwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEFDOC9FMTJEMTA1MkIxM0MxMUVGQUFGOUQ3MzFDNEY5QUUwMi84RkZBNjFENEIx M0QxMUVGOUVGREU0MzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYJ7gDANBgkqhkiG9w0BAQsFAAOCAQEAlr9Aq7E3nW8Lgmaw Q8iXeyj0CIRT0vPt00ZUAVDHHdQIExZjzjD+YcBnYPo/SH1V/mPVHnvPIJreLUZ+ YgBhZJH1f7UH1qBzgfMpWA/JrVXKA3i3UXGFxihTQGVhdeki6SmJt/Ol6CezXv4X nsWDQ4MdLhsN8DJ7zCXMMdiK14hF5wXWK/dTUGiXIh0K9tfi/1QvXQokZE6DJKwC zlj1vE2LSe2hqA8bsqztJXQQYfjI4zy4KOmjJ2mLWhgUMx/GaSlGI1HXXmo4F1mZ AiCV68MTczQxvk2TS23EsoWo/8zT05xpybFFNqDIpjiUY1I6MgVQm9KgAj8b1Jwr MUSVmQ== -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:50 2024 by rpki-client on console-fra.rpki-client.org