$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/F8EF6A9EA78411EF81835E6CC4F9AE02.roa File: F8EF6A9EA78411EF81835E6CC4F9AE02.roa (raw, json) Hash identifier: F8rgIiTO9eYcpD47qPXfozDeTFN5h4F8OJb4My+Y4gk= Subject key identifier: 92:CF:DA:EE:F6:A2:AA:BA:09:7D:46:7F:C8:3D:01:CB:81:24:AB:39 Certificate issuer: /CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Certificate serial: 06CC Authority key identifier: C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/F8EF6A9EA78411EF81835E6CC4F9AE02.roa Signing time: Wed 20 Nov 2024 21:18:23 +0000 ROA not before: Wed 20 Nov 2024 21:18:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17763 IP address blocks: 203.12.28.0/24 maxlen: 24 203.18.216.0/24 maxlen: 24 203.18.217.0/24 maxlen: 24 203.18.218.0/24 maxlen: 24 203.18.219.0/24 maxlen: 24 203.18.220.0/24 maxlen: 24 203.18.221.0/24 maxlen: 24 203.18.222.0/24 maxlen: 24 203.18.223.0/24 maxlen: 24 203.28.70.0/24 maxlen: 24 203.28.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Validity Not Before: Nov 20 21:18:23 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673e521e-21aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cb:c4:1b:40:7b:55:1b:7e:53:59:31:68:98: 13:4d:da:a9:f6:bd:f7:59:8c:23:63:2e:ba:e4:e9: 1a:1c:5d:34:84:7e:76:c5:a8:ff:f5:92:02:0a:40: 39:87:f6:2a:2e:34:65:8d:90:58:1d:b6:a2:29:67: 2d:c6:48:61:90:2a:16:7b:d4:cf:9a:57:e1:d4:58: ec:fa:64:4e:c1:6a:bd:e4:58:f1:60:c8:b5:86:2a: d3:85:5e:ee:d2:7d:3d:b7:af:ad:37:0c:6a:33:32: c0:e4:93:63:92:ea:47:7d:b3:ba:38:51:e4:63:f7: 37:12:e7:3c:ab:0b:75:c7:ce:b5:6f:11:24:48:a8: 4b:ec:06:74:00:eb:c2:11:9b:15:1c:d9:5f:c1:11: 90:0a:a8:89:d9:50:82:36:f5:df:bc:43:b1:a5:d8: ca:42:89:df:2d:c4:47:0e:29:17:19:8c:b0:f0:f6: 62:93:55:c2:20:5a:ca:d4:c8:fb:c5:db:f2:f6:7f: 64:61:16:1a:98:ae:e3:9f:9a:ec:30:fb:f8:20:0a: c9:de:80:fe:76:33:3f:7e:b2:be:ae:94:86:71:24: 36:41:10:10:55:a7:b4:13:58:9d:d9:32:ec:65:4a: b5:4e:fb:0a:61:fa:fb:24:84:7c:93:21:cb:d7:2f: 7d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:CF:DA:EE:F6:A2:AA:BA:09:7D:46:7F:C8:3D:01:CB:81:24:AB:39 X509v3 Authority Key Identifier: keyid:C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/F8EF6A9EA78411EF81835E6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.28.0/24 203.18.216.0/21 203.28.70.0/23 Signature Algorithm: sha256WithRSAEncryption 80:7c:bb:c2:e8:a0:a4:36:8e:a1:60:aa:34:f5:9c:68:ee:f4: d3:e1:cd:70:61:28:67:05:81:7f:78:61:6c:b1:a1:d4:c9:5f: cf:c2:9b:be:b4:95:2c:4f:f4:a2:ce:45:e2:99:e3:27:6f:93: e3:53:4c:8f:cb:4f:35:f1:97:c2:6d:10:b4:f1:7c:7c:89:74: 0e:78:9e:5e:7d:13:0d:ea:74:4b:a5:3d:7f:48:93:dc:39:4b: 42:6a:31:fd:e5:e3:9f:77:10:07:ee:09:7e:ea:cf:db:35:0d: 69:57:ae:ab:45:e1:be:82:11:12:d4:72:f9:39:20:ae:bf:5b: 61:64:a3:99:0f:21:a0:6d:c6:95:fe:12:d2:cd:03:cf:a4:99: 54:2a:7b:41:84:00:20:13:6e:92:c0:7e:f9:4c:d9:39:bc:55: 11:f7:0c:77:84:70:29:ba:87:e3:db:67:19:75:3d:bd:d2:21: ee:d4:6b:04:b4:ac:7f:43:fd:b9:b1:a5:1c:5f:18:ae:85:2b: 16:31:a2:20:72:b5:e6:a7:00:55:40:30:fd:72:d1:49:5d:ba: 26:08:b3:96:44:d0:e5:28:29:c8:25:db:66:ec:c8:01:79:92: 19:c0:cd:f4:e3:86:5e:6b:99:ca:d3:bc:4c:e6:76:31:97:97: 09:ce:5d:81 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjkxMTAvBgNVBAUTKEM3OTExMkM3QzVBQzM2NTgzMjIxRDFGOTQ2NzUxOTZD MjEzNkVBQkUwHhcNMjQxMTIwMjExODIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlNTIxZS0yMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcvEG0B7VRt+U1kxaJgTTdqp9r33WYwjYy665OkaHF00hH52xaj/9ZICCkA5 h/YqLjRljZBYHbaiKWctxkhhkCoWe9TPmlfh1Fjs+mROwWq95FjxYMi1hirThV7u 0n09t6+tNwxqMzLA5JNjkupHfbO6OFHkY/c3Euc8qwt1x861bxEkSKhL7AZ0AOvC EZsVHNlfwRGQCqiJ2VCCNvXfvEOxpdjKQonfLcRHDikXGYyw8PZik1XCIFrK1Mj7 xdvy9n9kYRYamK7jn5rsMPv4IArJ3oD+djM/frK+rpSGcSQ2QRAQVae0E1id2TLs ZUq1TvsKYfr7JIR8kyHL1y99jwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJLP2u72 oqq6CX1Gf8g9AcuBJKs5MB8GA1UdIwQYMBaAFMeREsfFrDZYMiHR+UZ1GWwhNuq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCOS82QkRFQUE3RTM5 MEMxMUVCQjIxODFENjNDNEY5QUUwMi94NUVTeDhXc05sZ3lJZEg1Um5VWmJDRTI2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1RVN4OFdzTmxneUlkSDVSblVaYkNFMjZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjkvNkJERUFBN0UzOTBDMTFFQkIyMTgxRDYzQzRGOUFFMDIvRjhFRjZBOUVB Nzg0MTFFRjgxODM1RTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADLDBwDBAPLEtgDBAHLHEYwDQYJKoZIhvcNAQELBQADggEB AIB8u8LooKQ2jqFgqjT1nGju9NPhzXBhKGcFgX94YWyxodTJX8/Cm760lSxP9KLO ReKZ4ydvk+NTTI/LTzXxl8JtELTxfHyJdA54nl59Ew3qdEulPX9Ik9w5S0JqMf3l 4593EAfuCX7qz9s1DWlXrqtF4b6CERLUcvk5IK6/W2Fko5kPIaBtxpX+EtLNA8+k mVQqe0GEACATbpLAfvlM2Tm8VRH3DHeEcCm6h+PbZxl1Pb3SIe7UawS0rH9D/bmx pRxfGK6FKxYxoiByteanAFVAMP1y0UlduiYIs5ZE0OUoKcgl22bsyAF5khnAzfTj hl5rmcrTvEzmdjGXlwnOXYE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org