$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/10D5A618C80411ECBA7BB174C4F9AE02.roa File: 10D5A618C80411ECBA7BB174C4F9AE02.roa (raw, json) Hash identifier: kudNvuOAJ7g4JEKXMXcZZMNyXS95FJFcLSknrEVaX8A= Subject key identifier: F1:9B:27:BC:E4:A2:93:C7:0C:C3:87:A4:43:3E:CE:13:EE:84:5E:DD Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 027A Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/10D5A618C80411ECBA7BB174C4F9AE02.roa Signing time: Mon 13 May 2024 04:08:20 +0000 ROA not before: Mon 13 May 2024 04:08:20 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 40676 IP address blocks: 45.114.119.0/24 maxlen: 24 2402:2f80:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: May 13 04:08:20 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66419234-bf0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7b:b0:4a:f5:a3:31:e3:78:a5:59:72:d9:2f: 88:af:48:77:b1:1a:0f:6e:25:0f:42:89:83:13:16: 6e:91:bf:c6:f8:b3:e6:4a:bd:c9:9f:34:43:54:8a: 28:6f:78:16:6e:97:b4:91:ae:e3:c8:a1:e8:40:f4: b3:09:19:ce:79:5e:c6:1f:48:6a:e6:d3:20:a7:e4: 1c:da:f8:a8:30:6d:6b:43:61:48:34:8d:df:77:cc: 19:e0:7c:05:cd:72:e5:42:29:17:de:35:dd:91:a8: 8b:05:f4:06:52:34:cc:9c:d8:70:59:11:8e:eb:49: 40:ae:ce:53:02:c0:4f:6e:e9:de:70:a5:99:5a:14: 2a:e6:b9:5f:a5:2d:31:81:3f:74:cb:da:a0:7f:b8: 55:67:e9:67:7c:7a:a2:34:53:89:2d:a1:22:ec:b8: 0d:3f:67:8b:c8:1e:b5:38:3a:b7:54:92:e0:fa:20: df:af:cc:c1:78:14:73:6f:97:0d:15:0b:29:89:a9: eb:d9:3c:c9:a5:0c:7b:da:8f:82:15:0b:5e:96:35: 86:dd:11:db:62:18:5c:dc:82:dd:ec:7a:82:d6:bc: a0:f6:bd:be:e0:c8:c9:41:c3:40:12:75:ee:5f:e8: 54:82:7b:8d:6f:29:55:21:07:6e:92:6d:72:e1:d7: 1c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9B:27:BC:E4:A2:93:C7:0C:C3:87:A4:43:3E:CE:13:EE:84:5E:DD X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/10D5A618C80411ECBA7BB174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.119.0/24 IPv6: 2402:2f80:a::/48 Signature Algorithm: sha256WithRSAEncryption 4f:98:c8:15:78:57:27:9c:38:8e:48:fc:eb:ec:d0:a5:bb:fc: 61:c5:88:f1:0a:57:3c:89:59:e8:22:c2:1e:f5:7f:f1:a0:2c: db:16:1d:ef:ad:f2:48:cc:ec:ea:34:f4:a8:2a:f0:3b:fa:cd: 80:e2:f4:7b:85:90:b5:16:86:42:71:ca:3d:41:ed:2c:ab:cb: 8e:60:7a:be:e8:2c:ce:6c:48:a2:f8:ad:cb:23:e3:0b:21:22: 4a:e5:51:d5:8d:35:c3:64:26:84:fb:32:e4:2e:42:73:03:fd: 69:ab:44:59:50:dc:e0:12:fd:c6:5d:53:56:be:c5:b0:1c:20: e8:dd:d1:ab:f6:35:1e:f4:c7:d0:93:48:82:5a:b8:5a:0a:72: 00:ca:0f:68:6f:c2:e3:9e:48:ec:a9:ae:1d:b4:85:61:2b:d2: c5:7c:5e:ee:ca:fc:2d:ae:b4:c5:27:28:6e:90:46:e5:bd:67: 9e:34:53:12:48:8b:6b:7d:74:8c:45:92:bd:7e:e8:5d:92:7b: ca:e3:0b:af:8f:1e:59:d4:7c:b4:d5:49:99:38:b4:a8:ad:8d: 89:b9:82:c0:5a:79:98:8e:f4:b2:e1:6d:00:d7:df:87:79:cc: 22:d7:cc:93:8f:b9:2a:be:db:24:1f:35:b5:b4:47:e0:77:0e: c5:33:cc:5d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjQwNTEzMDQwODIwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTIzNC1iZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nuwSvWjMeN4pVly2S+Ir0h3sRoPbiUPQomDExZukb/G+LPmSr3JnzRDVIoo b3gWbpe0ka7jyKHoQPSzCRnOeV7GH0hq5tMgp+Qc2vioMG1rQ2FINI3fd8wZ4HwF zXLlQikX3jXdkaiLBfQGUjTMnNhwWRGO60lArs5TAsBPbunecKWZWhQq5rlfpS0x gT90y9qgf7hVZ+lnfHqiNFOJLaEi7LgNP2eLyB61ODq3VJLg+iDfr8zBeBRzb5cN FQspianr2TzJpQx72o+CFQteljWG3RHbYhhc3ILd7HqC1ryg9r2+4MjJQcNAEnXu X+hUgnuNbylVIQdukm1y4dccDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPGbJ7zk opPHDMOHpEM+zhPuhF7dMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMTBENUE2MThD ODA0MTFFQ0JBN0JCMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAtcncwDwQCAAIwCQMHACQCL4AACjANBgkqhkiG9w0BAQsF AAOCAQEAT5jIFXhXJ5w4jkj86+zQpbv8YcWI8QpXPIlZ6CLCHvV/8aAs2xYd763y SMzs6jT0qCrwO/rNgOL0e4WQtRaGQnHKPUHtLKvLjmB6vugszmxIovityyPjCyEi SuVR1Y01w2QmhPsy5C5CcwP9aatEWVDc4BL9xl1TVr7FsBwg6N3Rq/Y1HvTH0JNI glq4WgpyAMoPaG/C455I7KmuHbSFYSvSxXxe7sr8La60xScobpBG5b1nnjRTEkiL a310jEWSvX7oXZJ7yuMLr48eWdR8tNVJmTi0qK2NibmCwFp5mI70suFtANffh3nM ItfMk4+5Kr7bJB81tbRH4HcOxTPMXQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:04 2024 by rpki-client on console-fra.rpki-client.org