$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa File: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (raw, json) Hash identifier: 2NUudbVYezITXTQtX0YxAZtsoAo14kkfj/OCaZq7JSQ= Subject key identifier: 00:52:D1:A2:4B:72:F8:7D:9F:8D:2E:52:C9:48:DB:1F:30:F1:C9:6F Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 33E6 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa Signing time: Tue 16 Apr 2024 15:20:47 +0000 ROA not before: Tue 16 Apr 2024 15:20:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4646 IP address blocks: 117.18.67.0/24 maxlen: 24 117.18.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13286 (0x33e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Apr 16 15:20:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=661e974f-35ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:cc:38:13:54:2c:e8:3a:d7:54:35:5b:7a: 08:04:ca:9b:3c:b4:07:2c:95:32:20:05:59:14:89: 5c:77:ea:55:56:32:84:4e:a6:df:1d:7e:ba:5c:13: 29:dc:54:0a:33:aa:f4:fe:a1:32:0b:2f:0c:3f:51: 2c:7e:bc:f8:fe:59:3c:68:f1:0d:b2:4c:16:76:b0: 6f:30:f0:cf:71:44:bc:8c:d4:7a:95:23:8b:ee:b2: 3a:bf:bc:49:46:92:c1:bf:7b:c0:a7:c1:ff:7c:21: e8:a2:2a:97:fc:e9:a7:91:86:4e:6b:60:37:20:f7: 42:78:37:a7:af:2e:8d:23:1f:fa:8e:9c:94:38:c7: 98:f6:dd:77:a7:f2:11:55:bc:ea:fd:77:14:4f:25: 6b:66:37:bb:69:fb:b0:78:00:57:6d:91:d1:4e:ce: 97:02:d3:31:ba:38:7d:2e:1c:6a:17:36:4d:63:a4: dd:51:bb:eb:f7:25:33:a4:98:53:f5:4a:82:44:5f: 4d:ce:bf:8c:1b:c9:41:e5:39:eb:d8:72:98:bf:47: 9f:59:ec:d3:f2:89:fc:8e:92:80:ef:89:1c:34:ef: 7b:68:9d:1b:32:dd:a4:b2:2c:b8:37:aa:f8:6c:85: 97:b7:0f:14:f6:65:99:3a:f9:7b:9f:63:75:1f:fe: 88:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:52:D1:A2:4B:72:F8:7D:9F:8D:2E:52:C9:48:DB:1F:30:F1:C9:6F X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.67.0/24 117.18.78.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:02:a8:d4:a1:6b:6f:c2:b4:7e:7a:b7:1f:bf:0d:bc:c0:5e: eb:9b:30:ff:1b:02:e3:58:7e:2d:c5:5d:75:31:f6:fd:8a:1d: e0:1d:3b:83:0d:65:86:94:8f:4f:5a:ca:6c:90:3a:2e:2b:57: a1:14:6b:55:eb:60:5d:b3:44:62:74:74:12:a8:3b:e8:2c:b8: 2b:61:18:8d:ac:5b:7f:f4:a6:53:bc:0c:46:50:c9:c2:84:e7: ac:c3:98:02:69:6e:59:9a:ef:e9:72:2d:00:b7:5c:ba:8c:99: 9e:30:57:38:54:36:97:88:55:2c:99:a3:4f:73:52:8a:7d:16: 25:90:8a:49:89:0b:77:b3:fe:23:bc:c9:e2:7b:41:ed:ce:ee: 28:be:2c:36:56:99:60:a7:28:d0:55:7b:8f:f1:8a:44:88:3d: e7:ac:0e:73:db:17:3b:32:ea:6d:27:2b:18:dd:93:c5:30:01: b7:8a:30:58:4c:85:c1:d9:f3:95:74:d2:9d:11:34:4f:6b:a7: 8a:c4:ac:cb:95:cd:8e:c9:62:49:f2:e8:c0:99:d6:02:6e:f9: 87:90:e7:ee:33:7e:f6:93:f0:3e:e9:96:62:91:f9:ce:7b:0e: 33:98:75:f0:1a:16:56:c1:1a:f8:89:17:c8:0f:74:68:23:db: fc:6f:a1:cf -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICM+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjQwNDE2MTUyMDQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlOTc0Zi0zNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEXMOBNULOg611Q1W3oIBMqbPLQHLJUyIAVZFIlcd+pVVjKETqbfHX66XBMp 3FQKM6r0/qEyCy8MP1Esfrz4/lk8aPENskwWdrBvMPDPcUS8jNR6lSOL7rI6v7xJ RpLBv3vAp8H/fCHooiqX/OmnkYZOa2A3IPdCeDenry6NIx/6jpyUOMeY9t13p/IR Vbzq/XcUTyVrZje7afuweABXbZHRTs6XAtMxujh9LhxqFzZNY6TdUbvr9yUzpJhT 9UqCRF9Nzr+MG8lB5Tnr2HKYv0efWezT8on8jpKA74kcNO97aJ0bMt2ksiy4N6r4 bIWXtw8U9mWZOvl7n2N1H/6ItwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFABS0aJL cvh9n40uUslI2x8w8clvMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk0ODQvNkZGMERERTAxRDk0MTFFMjlERUNCNUY4MDhCMDJDRDIvRkZDODlERjhD RUNEMTFFRUE0QUE2RDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB1EkMDBAB1Ek4wDQYJKoZIhvcNAQELBQADggEBABoCqNSh a2/CtH56tx+/DbzAXuubMP8bAuNYfi3FXXUx9v2KHeAdO4MNZYaUj09aymyQOi4r V6EUa1XrYF2zRGJ0dBKoO+gsuCthGI2sW3/0plO8DEZQycKE56zDmAJpblma7+ly LQC3XLqMmZ4wVzhUNpeIVSyZo09zUop9FiWQikmJC3ez/iO8yeJ7Qe3O7ii+LDZW mWCnKNBVe4/xikSIPeesDnPbFzsy6m0nKxjdk8UwAbeKMFhMhcHZ85V00p0RNE9r p4rErMuVzY7JYkny6MCZ1gJu+YeQ5+4zfvaT8D7plmKR+c57DjOYdfAaFlbBGviJ F8gPdGgj2/xvoc8= -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org