$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa File: 16DDC0F4CFE811ECA193B36BC4F9AE02.roa (raw, json) Hash identifier: d8hKEngO/LeUHQoe5AIEcocjfTWcuilabUG2KLlGFLg= Subject key identifier: 68:50:E1:35:09:B1:E9:22:08:C0:71:E4:0A:FA:6F:B7:E2:D1:FB:5E Certificate issuer: /CN=A91BC269/serialNumber=226F7289D4E37FECE2260C64D3BCBA7AC0315A75 Certificate serial: 02B7 Authority key identifier: 22:6F:72:89:D4:E3:7F:EC:E2:26:0C:64:D3:BC:BA:7A:C0:31:5A:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa Signing time: Wed 23 Oct 2024 01:35:27 +0000 ROA not before: Wed 23 Oct 2024 01:35:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55850 IP address blocks: 139.180.64.0/18 maxlen: 18 149.19.16.0/20 maxlen: 20 167.179.216.0/21 maxlen: 21 208.56.208.0/20 maxlen: 20 209.87.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.crl rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC269/serialNumber=226F7289D4E37FECE2260C64D3BCBA7AC0315A75 Validity Not Before: Oct 23 01:35:27 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671852de-d088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:12:f7:62:49:27:db:e0:b9:34:87:e3:56:20: 47:01:cf:26:e0:d9:5b:0c:44:64:6b:5a:63:24:b2: d2:25:b7:b7:14:75:3b:9c:dc:93:d2:ce:d0:cf:11: 8c:67:49:48:33:6f:65:2e:c3:57:c2:f4:d6:8b:ab: d6:38:17:bd:05:55:38:3d:57:26:18:d1:f3:b8:d0: 9f:d3:39:b4:3f:86:e9:41:c3:3e:3c:ec:90:f4:fc: 8a:66:10:48:3f:c2:52:8b:80:90:5e:8c:f7:3e:31: 24:c8:c5:e1:ec:b6:bd:4b:37:02:aa:cd:96:d5:99: d2:47:08:7b:c5:c6:42:5f:8c:06:65:6d:06:15:fc: 1d:de:24:ef:10:24:1a:69:29:bc:b7:35:e3:fd:c6: 79:56:96:cf:e7:b2:90:62:a7:b4:11:dc:d8:8e:91: 76:a5:cc:15:6e:aa:cf:39:88:91:44:21:11:45:0a: db:3d:20:4b:ba:5e:8c:37:a2:b3:ea:18:79:6a:e3: 15:4f:e9:3f:99:62:da:71:f4:1d:ca:b7:ac:28:17: f9:7b:77:e7:c3:89:6f:7f:f0:d6:e7:07:aa:fa:f5: 6b:19:89:3d:49:b2:72:d5:9a:cc:3e:8a:95:4f:77: ae:33:0e:ea:cd:cc:bf:4d:77:48:e0:1b:76:ce:af: 14:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:50:E1:35:09:B1:E9:22:08:C0:71:E4:0A:FA:6F:B7:E2:D1:FB:5E X509v3 Authority Key Identifier: keyid:22:6F:72:89:D4:E3:7F:EC:E2:26:0C:64:D3:BC:BA:7A:C0:31:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.180.64.0/18 149.19.16.0/20 167.179.216.0/21 208.56.208.0/20 209.87.188.0/22 Signature Algorithm: sha256WithRSAEncryption de:95:e7:57:18:c7:3b:4c:ac:5a:51:87:19:8d:dc:bb:06:7f: fe:81:10:de:1a:2a:47:30:0a:a8:cc:d7:6d:95:71:b3:7b:a9: ed:c6:65:a6:49:d3:8e:e5:95:f2:b1:8b:33:a2:a8:ea:d3:a7: 66:41:c8:2e:35:d9:ed:93:c2:e1:45:54:da:fb:e1:83:eb:0e: fe:a1:1a:06:f6:8e:71:64:c7:9d:49:3a:ef:9d:d7:f5:b4:92: ff:8f:ea:b8:39:92:28:2e:35:2a:4b:99:9f:2f:6f:3c:3f:a3: 91:83:de:8a:ec:ec:0a:3d:7a:93:d4:4b:6a:2e:ae:73:1a:35: 70:88:a6:40:e9:01:93:da:32:8c:7e:e4:3b:b7:8f:c7:1c:4b: ac:41:4c:a4:d4:25:b1:cc:b3:45:8a:69:85:db:39:74:41:d2: f8:b9:61:e0:41:00:7a:34:ea:ec:60:b9:89:dc:09:35:19:43: 11:41:28:e3:35:35:2c:37:bc:14:c6:04:2a:8e:14:42:b1:1f: 4b:12:cc:58:84:5b:73:16:dd:03:19:bb:28:5c:92:c1:ea:ef: bf:6e:48:0a:c9:03:36:18:8e:dc:24:8a:9b:2e:18:56:a0:1f: 30:07:84:9d:18:e3:dc:bd:17:ac:d7:7a:d3:fb:79:5f:a4:c9: 47:1c:a3:c5 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyNjkxMTAvBgNVBAUTKDIyNkY3Mjg5RDRFMzdGRUNFMjI2MEM2NEQzQkNCQTdB QzAzMTVBNzUwHhcNMjQxMDIzMDEzNTI3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NTJkZS1kMDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BL3Ykkn2+C5NIfjViBHAc8m4NlbDERka1pjJLLSJbe3FHU7nNyT0s7QzxGM Z0lIM29lLsNXwvTWi6vWOBe9BVU4PVcmGNHzuNCf0zm0P4bpQcM+POyQ9PyKZhBI P8JSi4CQXoz3PjEkyMXh7La9SzcCqs2W1ZnSRwh7xcZCX4wGZW0GFfwd3iTvECQa aSm8tzXj/cZ5VpbP57KQYqe0EdzYjpF2pcwVbqrPOYiRRCERRQrbPSBLul6MN6Kz 6hh5auMVT+k/mWLacfQdyresKBf5e3fnw4lvf/DW5weq+vVrGYk9SbJy1ZrMPoqV T3euMw7qzcy/TXdI4Bt2zq8UmQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFGhQ4TUJ sekiCMBx5Ar6b7fi0fteMB8GA1UdIwQYMBaAFCJvconU43/s4iYMZNO8unrAMVp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzI2OS9CMTYxMzExOENG RTUxMUVDOTRCQkM3NUFDNEY5QUUwMi9JbTl5aWRUamYtemlKZ3hrMDd5NmVzQXhX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ltOXlpZFRqZi16aUpneGswN3k2ZXNBeFduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMyNjkvQjE2MTMxMThDRkU1MTFFQzk0QkJDNzVBQzRGOUFFMDIvMTZEREMwRjRD RkU4MTFFQ0ExOTNCMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAaLtEADBASVExADBAOns9gDBATQONADBALRV7wwDQYJKoZI hvcNAQELBQADggEBAN6V51cYxztMrFpRhxmN3LsGf/6BEN4aKkcwCqjM122VcbN7 qe3GZaZJ047llfKxizOiqOrTp2ZByC412e2TwuFFVNr74YPrDv6hGgb2jnFkx51J Ou+d1/W0kv+P6rg5kiguNSpLmZ8vbzw/o5GD3ors7Ao9epPUS2ournMaNXCIpkDp AZPaMox+5Du3j8ccS6xBTKTUJbHMs0WKaYXbOXRB0vi5YeBBAHo06uxguYncCTUZ QxFBKOM1NSw3vBTGBCqOFEKxH0sSzFiEW3MW3QMZuyhcksHq779uSArJAzYYjtwk ipsuGFagHzAHhJ0Y49y9F6zXetP7eV+kyUcco8U= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:04 2024 by rpki-client on console-fra.rpki-client.org