$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/11935C9EC80411ECBA7BB174C4F9AE02.roa File: 11935C9EC80411ECBA7BB174C4F9AE02.roa (raw, json) Hash identifier: BF6cZd20wS6vXmi4J2+LH+GU/32EXCZGZq32FPBE5bM= Subject key identifier: 67:FC:0A:A7:38:DA:4E:3B:68:F2:5B:09:AB:B9:46:F3:F6:55:CD:97 Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 027B Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/11935C9EC80411ECBA7BB174C4F9AE02.roa Signing time: Mon 13 May 2024 04:08:21 +0000 ROA not before: Mon 13 May 2024 04:08:21 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 63956 IP address blocks: 45.114.116.0/24 maxlen: 24 2402:2f80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: May 13 04:08:21 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66419235-255f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:37:e8:99:54:60:db:44:f4:2b:7a:b8:ea:34: 30:56:88:a6:c5:50:0a:35:be:48:c6:95:55:92:de: 6d:07:9e:49:fd:4a:28:d0:60:ba:c7:17:49:74:22: 43:b4:d8:5b:67:b1:50:ae:47:a4:15:7d:ce:69:9f: 01:46:8e:9d:8e:c6:09:4c:a4:c3:11:9b:56:8f:af: 62:db:28:ef:5b:80:b7:3b:7b:83:a7:91:54:52:c4: bf:53:32:57:72:e6:8b:5f:87:99:b2:0d:01:bb:8e: d3:96:1a:bf:58:3d:3e:c6:84:c5:bf:00:9b:c5:92: d0:a9:84:6d:19:92:06:a5:7b:fb:3d:cd:84:4f:54: b7:22:03:fd:14:ec:2d:c7:46:0c:44:b7:a3:91:09: 6a:88:ec:3e:ff:aa:31:14:73:29:4c:d8:d7:e0:02: 65:c7:c8:fc:f9:cd:be:9f:5e:23:98:b7:9d:57:1d: 40:77:56:33:41:80:82:d4:7e:7b:4e:75:79:26:65: d8:9b:be:11:8a:44:db:d3:95:58:9f:f7:6c:58:bd: 35:f6:ee:50:83:3c:e1:13:e2:0d:ba:04:7b:d2:ce: d4:1e:48:bf:cf:a6:69:43:57:34:aa:c2:91:4f:e1: 41:b4:9e:f5:32:6a:11:c8:09:46:35:7e:50:33:12: a6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FC:0A:A7:38:DA:4E:3B:68:F2:5B:09:AB:B9:46:F3:F6:55:CD:97 X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/11935C9EC80411ECBA7BB174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.116.0/24 IPv6: 2402:2f80:4::/48 Signature Algorithm: sha256WithRSAEncryption 0d:2c:01:5a:f9:c5:16:01:59:7a:09:31:c7:69:7f:f8:99:44: 9f:8f:3e:68:d0:cf:63:39:b9:e4:c1:52:49:7e:46:45:88:98: 20:eb:fc:eb:9a:0c:f6:17:96:70:b0:b6:50:9f:d2:75:e9:ae: 24:79:4f:54:96:2c:60:70:82:7c:94:98:38:37:0c:7e:4c:41: 30:68:ec:52:e3:b2:f3:91:98:b8:61:3e:d7:34:c2:fd:70:30: c4:19:d1:c6:39:b0:f9:33:46:ca:cb:35:b8:14:d7:de:56:d7: 6c:be:e5:d6:30:39:4f:0b:a4:00:3b:00:70:43:5a:9a:81:a5: 99:e9:be:14:ec:41:22:35:d3:ef:0a:3b:a1:41:b3:02:e1:3e: eb:59:47:27:21:99:4c:ff:f2:fe:c1:b8:34:a7:15:96:98:ad: 86:56:07:86:8f:64:39:97:a1:c1:9b:ed:19:06:d2:3b:84:0f: 46:77:b3:82:a0:a9:91:f1:31:4e:4d:55:b3:4e:cf:48:ea:52: 68:fe:2c:17:97:0d:45:d5:38:84:e5:13:f3:6c:57:80:ab:53: 8c:56:8e:ba:98:10:d2:86:11:3e:e8:aa:69:06:1e:b8:a7:f4: 13:17:b8:60:2a:ee:f4:3f:44:e5:e3:1e:78:e8:00:ed:b5:f8: 2b:48:35:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjQwNTEzMDQwODIxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTIzNS0yNTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TfomVRg20T0K3q46jQwVoimxVAKNb5IxpVVkt5tB55J/Uoo0GC6xxdJdCJD tNhbZ7FQrkekFX3OaZ8BRo6djsYJTKTDEZtWj69i2yjvW4C3O3uDp5FUUsS/UzJX cuaLX4eZsg0Bu47Tlhq/WD0+xoTFvwCbxZLQqYRtGZIGpXv7Pc2ET1S3IgP9FOwt x0YMRLejkQlqiOw+/6oxFHMpTNjX4AJlx8j8+c2+n14jmLedVx1Ad1YzQYCC1H57 TnV5JmXYm74RikTb05VYn/dsWL019u5QgzzhE+INugR70s7UHki/z6ZpQ1c0qsKR T+FBtJ71MmoRyAlGNX5QMxKmsQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGf8Cqc4 2k47aPJbCau5RvP2Vc2XMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMTE5MzVDOUVD ODA0MTFFQ0JBN0JCMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAtcnQwDwQCAAIwCQMHACQCL4AABDANBgkqhkiG9w0BAQsF AAOCAQEADSwBWvnFFgFZegkxx2l/+JlEn48+aNDPYzm55MFSSX5GRYiYIOv865oM 9heWcLC2UJ/SdemuJHlPVJYsYHCCfJSYODcMfkxBMGjsUuOy85GYuGE+1zTC/XAw xBnRxjmw+TNGyss1uBTX3lbXbL7l1jA5TwukADsAcENamoGlmem+FOxBIjXT7wo7 oUGzAuE+61lHJyGZTP/y/sG4NKcVlpithlYHho9kOZehwZvtGQbSO4QPRnezgqCp kfExTk1Vs07PSOpSaP4sF5cNRdU4hOUT82xXgKtTjFaOupgQ0oYRPuiqaQYeuKf0 Exe4YCru9D9E5eMeeOgA7bX4K0g1eQ== -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org