$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/0099AE56536911EE8594503BC4F9AE02.roa File: 0099AE56536911EE8594503BC4F9AE02.roa (raw, json) Hash identifier: gbcgONL2cFImh67XGJQNFrNjN1JIHDb7TH3mL3u/bg0= Subject key identifier: F1:D8:B8:D5:33:42:13:77:19:96:2C:68:5F:35:B6:40:E9:C5:2D:29 Certificate issuer: /CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Certificate serial: 38 Authority key identifier: E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/0099AE56536911EE8594503BC4F9AE02.roa Signing time: Wed 27 Dec 2023 06:37:24 +0000 ROA not before: Wed 27 Dec 2023 06:37:24 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4768 IP address blocks: 192.107.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37/serialNumber=E4200D44AD9D6ECB6872F653A95843FB27D847A4 Validity Not Before: Dec 27 06:37:24 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658bc624-de70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:46:12:06:0c:91:87:1d:5f:b1:92:4b:3b:03: 9c:7a:9e:76:6f:83:c5:1c:ac:1a:11:70:68:76:b7: ec:2c:20:27:8f:fc:94:c3:f9:4c:d9:91:6b:ca:00: 5d:37:80:3f:ae:14:6c:28:bf:07:f2:44:66:be:8e: df:ed:8b:48:ab:4b:bb:f3:e3:15:5c:24:95:b9:61: de:5a:23:4d:9e:99:69:61:59:0e:92:f7:3f:53:5e: 4c:7d:29:2d:dc:09:69:6f:e1:2b:96:55:d5:3d:70: 16:f5:ca:3e:37:7d:d4:1e:71:14:68:d0:06:04:8a: c8:50:61:80:ab:7f:53:02:0b:cf:e3:bf:1a:ae:e4: 63:eb:10:47:18:c4:96:d2:86:7e:3f:38:b4:8c:cc: 3c:9e:02:71:72:5c:6f:1f:3c:0d:b0:de:1b:2a:e5: 96:8e:73:6b:dc:fb:fd:5b:06:59:fb:a3:95:c2:75: d8:38:90:91:6d:9d:cf:ce:a0:16:9e:6c:bb:c5:65: 94:7f:46:e7:91:77:ba:35:40:b1:5b:0b:f6:14:23: 45:1d:40:69:05:6e:80:b6:21:4c:de:e8:09:94:f5: a7:40:5b:3c:cb:bf:f4:6f:71:87:7c:7a:90:a5:d4: fa:38:d0:9e:81:56:79:0c:c6:10:0b:d1:eb:4d:25: e7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D8:B8:D5:33:42:13:77:19:96:2C:68:5F:35:B6:40:E9:C5:2D:29 X509v3 Authority Key Identifier: keyid:E4:20:0D:44:AD:9D:6E:CB:68:72:F6:53:A9:58:43:FB:27:D8:47:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/5CANRK2dbstocvZTqVhD-yfYR6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CANRK2dbstocvZTqVhD-yfYR6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/05EECD86535B11EE9BF20A6BC4F9AE02/0099AE56536911EE8594503BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.107.113.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:eb:96:4d:d6:71:d8:94:af:e5:d3:0b:75:19:28:cd:ea:db: 06:bd:3c:e9:b4:e4:4a:f3:51:91:7d:86:e6:62:24:cb:35:31: 11:dd:39:f5:5a:ab:97:d8:4d:63:6e:51:8d:1d:5f:af:cf:99: 8e:9f:7a:32:69:46:09:ab:01:23:21:52:46:9b:14:aa:67:4b: 49:6b:a5:c9:cb:f8:c0:87:23:19:b3:9d:fd:85:5e:34:a0:19: 71:eb:24:b9:33:64:bf:5a:a4:f9:6a:15:97:70:7a:ac:18:25: bf:ec:0a:5e:de:f0:75:9f:cd:0a:33:d3:62:2b:65:e5:83:56: 05:7a:34:f2:72:b3:3f:f6:03:2c:67:e7:c3:b4:9e:da:30:1e: a8:41:3b:66:4a:bb:27:47:ad:43:51:46:5d:ec:a5:66:b5:1c: 47:eb:6a:0c:f6:01:ca:e0:8a:7c:27:3b:4c:e1:0d:ad:e8:d7: 2f:f7:bf:ad:43:ee:af:11:83:26:ef:3c:c7:96:bb:ef:17:0d: 82:0b:f6:ce:e5:db:dc:9b:18:d6:61:21:49:5b:58:e4:cc:34: 88:f0:9c:19:e8:af:02:02:60:7b:40:69:8b:dc:16:b0:05:b8: 73:82:3f:c9:67:44:50:c2:21:fb:1a:ff:35:4f:3b:e8:d4:9f: 97:13:5e:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MEQzNzExMC8GA1UEBRMoRTQyMDBENDRBRDlENkVDQjY4NzJGNjUzQTk1ODQzRkIy N0Q4NDdBNDAeFw0yMzEyMjcwNjM3MjRaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OGJjNjI0LWRlNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuRhIGDJGHHV+xkks7A5x6nnZvg8UcrBoRcGh2t+wsICeP/JTD+UzZkWvKAF03 gD+uFGwovwfyRGa+jt/ti0irS7vz4xVcJJW5Yd5aI02emWlhWQ6S9z9TXkx9KS3c CWlv4SuWVdU9cBb1yj43fdQecRRo0AYEishQYYCrf1MCC8/jvxqu5GPrEEcYxJbS hn4/OLSMzDyeAnFyXG8fPA2w3hsq5ZaOc2vc+/1bBln7o5XCddg4kJFtnc/OoBae bLvFZZR/RueRd7o1QLFbC/YUI0UdQGkFboC2IUze6AmU9adAWzzLv/RvcYd8epCl 1Po40J6BVnkMxhAL0etNJee3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8di41TNC E3cZlixoXzW2QOnFLSkwHwYDVR0jBBgwFoAU5CANRK2dbstocvZTqVhD+yfYR6Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwRDM3LzA1RUVDRDg2NTM1 QjExRUU5QkYyMEE2QkM0RjlBRTAyLzVDQU5SSzJkYnN0b2N2WlRxVmhELXlmWVI2 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNUNBTlJLMmRic3RvY3ZaVHFWaEQteWZZUjZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEQzNy8wNUVFQ0Q4NjUzNUIxMUVFOUJGMjBBNkJDNEY5QUUwMi8wMDk5QUU1NjUz NjkxMUVFODU5NDUwM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMBrcTANBgkqhkiG9w0BAQsFAAOCAQEAe+uWTdZx2JSv5dML dRkozerbBr086bTkSvNRkX2G5mIkyzUxEd059Vqrl9hNY25RjR1fr8+Zjp96MmlG CasBIyFSRpsUqmdLSWulycv4wIcjGbOd/YVeNKAZceskuTNkv1qk+WoVl3B6rBgl v+wKXt7wdZ/NCjPTYitl5YNWBXo08nKzP/YDLGfnw7Se2jAeqEE7Zkq7J0etQ1FG XeylZrUcR+tqDPYByuCKfCc7TOENrejXL/e/rUPurxGDJu88x5a77xcNggv2zuXb 3JsY1mEhSVtY5Mw0iPCcGeivAgJge0Bpi9wWsAW4c4I/yWdEUMIh+xr/NU876NSf lxNegQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:37 2024 by rpki-client on console-fra.rpki-client.org