$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/10BAC44C646511EFBC52E778C4F9AE02.roa File: 10BAC44C646511EFBC52E778C4F9AE02.roa (raw, json) Hash identifier: Z67/J9vff1oW6NI34pKliaQWv/9nuKIHlmULd9ZQaKg= Subject key identifier: AB:A9:EB:20:3E:67:4E:AA:15:9A:62:44:31:57:60:DB:35:29:42:2B Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0B8F Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/10BAC44C646511EFBC52E778C4F9AE02.roa Signing time: Mon 28 Oct 2024 19:17:47 +0000 ROA not before: Mon 28 Oct 2024 19:17:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58715 IP address blocks: 139.5.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Oct 28 19:17:47 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671fe35b-d00a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:65:d2:fa:e0:fd:e4:42:b8:c1:f2:04:39:4a: 85:26:00:d4:54:8e:a3:7b:8b:81:eb:5c:60:d8:c7: 1c:ec:c8:b6:c5:67:d7:51:f6:ff:21:d9:67:62:34: 20:e9:2a:ac:81:3b:af:cd:50:99:35:17:cd:b3:ed: 06:e0:23:13:2e:28:9d:db:c6:cd:d5:2d:ba:e5:9e: 3f:39:c6:af:03:44:67:8e:00:e2:b6:59:4c:75:68: 65:e0:96:35:d1:e9:39:28:78:df:af:81:b4:54:7b: ed:00:eb:9b:9b:d1:b4:a2:0a:ae:06:92:b7:16:d8: 97:75:13:5d:fc:de:95:9f:56:80:e0:a2:15:4f:ce: b1:db:9f:ed:ba:b1:ff:82:89:41:f7:4b:b2:2f:85: 59:9b:57:bc:52:ba:cb:bf:cc:24:28:31:28:d0:87: a3:97:3d:6f:ab:0d:9e:66:d2:a4:6f:f0:b8:fc:fb: 34:ce:5b:35:0f:07:8c:bc:63:f3:dd:6b:8a:29:b3: e9:2f:b8:aa:70:bb:c3:43:b2:b9:ea:f7:fd:19:71: a1:55:7b:b5:36:9f:48:83:85:5b:a4:eb:3d:f5:10: e1:b8:4c:1f:e8:7d:df:f5:4b:6e:79:c8:d4:e4:6b: 2f:2f:16:ed:b0:ed:42:36:5c:0b:70:97:55:d3:57: 7d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A9:EB:20:3E:67:4E:AA:15:9A:62:44:31:57:60:DB:35:29:42:2B X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/10BAC44C646511EFBC52E778C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.5.135.0/24 Signature Algorithm: sha256WithRSAEncryption 00:c8:17:80:8b:26:b5:ad:14:bf:84:c2:87:ff:9a:1b:c7:db: 59:03:e6:dc:3c:97:46:67:cf:bd:56:c8:71:d5:55:ce:f0:ce: 03:4a:11:33:54:23:43:ec:b5:72:a6:fd:24:cd:c1:f5:67:f5: 0e:ca:da:77:fe:f1:63:3f:7a:c9:23:09:09:10:3f:b9:2c:3d: 7f:4c:f8:4b:34:83:39:e2:0e:ea:61:5a:16:96:c4:63:2b:b8: 85:38:c3:0b:ba:2e:eb:0e:62:89:f3:f6:63:5e:d7:2d:aa:4e: e3:49:e5:55:25:07:4c:4c:60:db:1f:55:5e:7c:c7:2c:36:e6: 24:c0:fd:af:5c:f0:4e:24:cd:e8:9d:95:a3:84:33:dd:92:62: ba:99:59:f6:e0:d4:e3:24:f4:1f:58:b0:7c:b0:af:da:91:ea: 77:65:34:7e:38:3c:c8:e4:1f:9f:d2:3a:9f:03:ee:59:2c:ee: fa:6f:54:a1:03:67:8c:a3:c1:e3:ad:7c:f8:e9:dc:db:e9:78: 5d:d9:2d:67:60:79:9e:c9:03:8a:ef:20:6b:34:7a:5d:fe:18: d8:b0:60:fd:d7:45:08:95:0d:b5:58:aa:78:a6:f3:e1:37:fe: ba:67:3f:43:fb:4a:0d:ac:cd:61:a7:80:6b:bc:52:4c:4f:67: 62:0a:c6:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjQxMDI4MTkxNzQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZTM1Yi1kMDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGXS+uD95EK4wfIEOUqFJgDUVI6je4uB61xg2Mcc7Mi2xWfXUfb/IdlnYjQg 6SqsgTuvzVCZNRfNs+0G4CMTLiid28bN1S265Z4/OcavA0RnjgDitllMdWhl4JY1 0ek5KHjfr4G0VHvtAOubm9G0ogquBpK3FtiXdRNd/N6Vn1aA4KIVT86x25/turH/ golB90uyL4VZm1e8UrrLv8wkKDEo0Iejlz1vqw2eZtKkb/C4/Ps0zls1DweMvGPz 3WuKKbPpL7iqcLvDQ7K56vf9GXGhVXu1Np9Ig4VbpOs99RDhuEwf6H3f9UtuecjU 5GsvLxbtsO1CNlwLcJdV01d9bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKup6yA+ Z06qFZpiRDFXYNs1KUIrMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JEQzgvNjY5NzYzRjAxOEUwMTFFQUEwQzM4RTdCQzRGOUFFMDIvMTBCQUM0NEM2 NDY1MTFFRkJDNTJFNzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACLBYcwDQYJKoZIhvcNAQELBQADggEBAADIF4CLJrWtFL+E wof/mhvH21kD5tw8l0Znz71WyHHVVc7wzgNKETNUI0PstXKm/STNwfVn9Q7K2nf+ 8WM/eskjCQkQP7ksPX9M+Es0gzniDuphWhaWxGMruIU4wwu6LusOYonz9mNe1y2q TuNJ5VUlB0xMYNsfVV58xyw25iTA/a9c8E4kzeidlaOEM92SYrqZWfbg1OMk9B9Y sHywr9qR6ndlNH44PMjkH5/SOp8D7lks7vpvVKEDZ4yjweOtfPjp3NvpeF3ZLWdg eZ7JA4rvIGs0el3+GNiwYP3XRQiVDbVYqnim8+E3/rpnP0P7Sg2szWGngGu8UkxP Z2IKxuY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org