$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa File: 87BF5BF6BD3411EB99D25F26C4F9AE02.roa (raw, json) Hash identifier: sbTShmIKKL0T6wr1tqxxOL+QE1luTX7NDd7NnR8wp7g= Subject key identifier: 9E:D1:CD:BA:8D:B2:B9:5A:A6:70:B8:99:B5:EA:F8:5A:5C:C6:3F:12 Certificate issuer: /CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Certificate serial: 0567 Authority key identifier: 43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa Signing time: Mon 16 Sep 2024 23:22:13 +0000 ROA not before: Mon 16 Sep 2024 23:22:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38304 IP address blocks: 119.31.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Validity Not Before: Sep 16 23:22:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e8bda5-8911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:ef:66:e1:41:ae:20:2d:7c:2f:4a:8f:de: b6:43:49:69:32:8e:63:1f:31:ba:86:04:8e:b3:8b: 96:8b:d4:83:04:2b:22:08:7d:95:d8:71:5d:77:6a: 65:4d:99:e0:78:26:ca:5f:e0:33:bc:f6:6a:41:3b: 30:49:c7:df:ab:a4:a9:bb:a0:0b:e9:2f:28:0d:77: bb:d4:7b:d7:0c:d1:3a:0d:92:ec:44:9a:c8:e9:43: 0e:5e:07:ef:8b:b2:c8:f3:4a:53:18:ca:40:fa:78: f8:74:0e:06:59:1d:a8:94:d6:c4:4d:1f:a5:8e:73: 2a:49:2c:bf:40:85:3b:3a:37:f5:a7:45:14:5e:fa: fc:fe:b0:d7:2b:71:5b:85:42:5b:e2:31:f0:0b:47: 43:e6:89:12:de:a1:4f:ee:08:18:22:20:0d:34:23: 4f:23:bb:31:b8:d5:d7:e4:a7:f1:b1:dd:34:fd:9d: fd:1a:2b:ce:7b:c8:c0:27:90:4a:26:dc:d9:9c:c2: d2:4b:c3:23:76:65:3e:81:8d:4b:6a:44:04:f8:ac: 06:60:f7:de:01:c6:57:38:db:d2:af:55:57:73:d6: 98:41:88:3c:a1:85:47:f9:5a:62:d5:e5:6c:2d:10: 7b:0a:34:2a:32:21:e5:0d:f2:06:00:90:bb:32:ef: 25:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D1:CD:BA:8D:B2:B9:5A:A6:70:B8:99:B5:EA:F8:5A:5C:C6:3F:12 X509v3 Authority Key Identifier: keyid:43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.31.173.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:23:8c:21:31:2e:dd:48:b4:a0:f8:64:39:54:d5:86:8f:bf: ff:4d:a9:9b:dc:86:b7:1e:25:3e:4f:f8:56:20:83:02:ec:e7: 5b:ce:30:d1:8b:78:76:16:1f:39:a6:8e:f6:fb:75:32:24:53: fd:a2:f0:34:f0:3c:30:33:bf:04:f1:29:aa:33:a2:7b:f2:1f: a1:22:84:14:6f:22:67:5b:2e:62:0e:b2:7b:ab:41:b0:4c:75: 88:45:21:36:c6:8f:14:58:0c:27:a9:dc:7a:9e:e8:0a:a6:b6: 04:97:50:5d:81:42:2b:af:ae:a2:98:0a:33:06:fd:b6:12:e6: a4:0d:61:6d:cf:56:5d:ef:a0:7c:12:bf:27:57:96:b3:b7:0c: e4:fc:aa:cc:a6:e8:3e:31:14:06:f3:39:1e:89:d4:db:31:aa: c7:68:99:82:1b:af:86:0d:36:d0:29:4d:14:90:44:80:48:b3: 90:2f:3c:d5:0a:b4:23:fa:c2:7a:ff:c0:cb:5d:5e:35:9d:a1: 2e:0e:82:fc:8c:70:4c:43:bd:ca:73:5c:42:56:04:4b:e2:51: 7e:ac:14:7b:50:e9:bb:53:a6:90:4f:3d:52:81:99:66:c0:6d: e6:06:b2:5b:28:ed:53:b3:34:79:72:f0:74:df:c0:bc:c6:ac: 6f:b5:b3:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxNDYxMTAvBgNVBAUTKDQzRUEzQTJEQzA4QzVFMUYyQ0Q2ODQxMTY0NEEwNUMw NzZFODhDMDgwHhcNMjQwOTE2MjMyMjEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4YmRhNS04OTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxonvZuFBriAtfC9Kj962Q0lpMo5jHzG6hgSOs4uWi9SDBCsiCH2V2HFdd2pl TZngeCbKX+AzvPZqQTswScffq6Spu6AL6S8oDXe71HvXDNE6DZLsRJrI6UMOXgfv i7LI80pTGMpA+nj4dA4GWR2olNbETR+ljnMqSSy/QIU7Ojf1p0UUXvr8/rDXK3Fb hUJb4jHwC0dD5okS3qFP7ggYIiANNCNPI7sxuNXX5Kfxsd00/Z39GivOe8jAJ5BK JtzZnMLSS8MjdmU+gY1LakQE+KwGYPfeAcZXONvSr1VXc9aYQYg8oYVH+Vpi1eVs LRB7CjQqMiHlDfIGAJC7Mu8lvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ7RzbqN srlapnC4mbXq+Fpcxj8SMB8GA1UdIwQYMBaAFEPqOi3AjF4fLNaEEWRKBcB26IwI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTE0Ni9FNDFBQjQyQUJE MzExMUVCQkZDM0Y5MjFDNEY5QUUwMi9RLW82TGNDTVhoOHMxb1FSWkVvRndIYm9q QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtbzZMY0NNWGg4czFvUVJaRW9Gd0hib2pBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxNDYvRTQxQUI0MkFCRDMxMTFFQkJGQzNGOTIxQzRGOUFFMDIvODdCRjVCRjZC RDM0MTFFQjk5RDI1RjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3H60wDQYJKoZIhvcNAQELBQADggEBACwjjCExLt1ItKD4 ZDlU1YaPv/9NqZvchrceJT5P+FYggwLs51vOMNGLeHYWHzmmjvb7dTIkU/2i8DTw PDAzvwTxKaozonvyH6EihBRvImdbLmIOsnurQbBMdYhFITbGjxRYDCep3Hqe6Aqm tgSXUF2BQiuvrqKYCjMG/bYS5qQNYW3PVl3voHwSvydXlrO3DOT8qsym6D4xFAbz OR6J1NsxqsdomYIbr4YNNtApTRSQRIBIs5AvPNUKtCP6wnr/wMtdXjWdoS4OgvyM cExDvcpzXEJWBEviUX6sFHtQ6btTppBPPVKBmWbAbeYGslso7VOzNHly8HTfwLzG rG+1sy8= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:52 2024 by rpki-client on console-ams.rpki-client.org