$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa File: 9A1D8B2E867D11ED856A8E54C4F9AE02.roa (raw, json) Hash identifier: cieJSU2MctUg0O+GWn4XGuRsQ3vHkHefCudId57mspk= Subject key identifier: 36:62:24:42:9A:34:8B:AE:89:AF:DE:2E:AB:5F:15:6B:BE:12:3A:08 Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 04F3 Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa Signing time: Sun 27 Oct 2024 00:36:23 +0000 ROA not before: Sun 27 Oct 2024 00:36:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 65001 IP address blocks: 42.104.91.0/24 maxlen: 24 123.63.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Oct 27 00:36:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671d8b06-8ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:af:62:e6:56:03:41:7b:08:cf:ae:21:31:5b: 9f:96:51:62:c4:b2:27:e5:91:dd:af:07:b9:f4:8b: 0e:cf:5e:56:76:2b:79:2b:48:d2:6f:73:00:01:2d: 76:7d:68:a2:58:2c:a5:9b:9d:9d:70:dc:80:97:35: 34:1c:e6:93:dd:a4:76:e9:c5:6b:79:63:e0:34:dd: 74:b8:69:65:a7:2c:fe:b6:52:d0:f3:ec:bf:61:cd: e2:ba:30:5e:44:dd:f3:2d:a9:d4:f5:89:96:f9:fc: bc:74:c0:ea:a5:01:5d:a8:10:1c:2e:d6:55:e2:3c: fe:b2:ba:c5:5d:f4:02:9e:21:10:58:5a:7c:0c:fe: bf:db:91:13:5a:5f:a4:03:26:20:53:76:a6:79:f9: 16:2c:b9:87:fc:a6:b5:19:44:54:eb:a0:71:a2:de: 31:0f:57:5f:89:76:00:5a:aa:5d:db:37:90:00:f7: fa:74:ce:f5:68:ad:45:2f:e1:04:af:2f:cb:93:06: 05:21:e0:e4:53:55:c6:a2:ee:27:1c:d7:c6:2b:19: 3d:59:41:ca:82:f9:f3:ff:fb:c3:f4:56:52:5b:36: 4e:a6:99:db:1b:44:2b:5b:ff:6e:e2:29:ca:45:0e: 07:47:21:e9:cc:61:cf:57:c9:91:d5:9a:4d:e5:fc: 63:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:62:24:42:9A:34:8B:AE:89:AF:DE:2E:AB:5F:15:6B:BE:12:3A:08 X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.104.91.0/24 123.63.162.0/24 Signature Algorithm: sha256WithRSAEncryption 34:0f:65:24:07:cb:07:0f:49:ba:cc:11:25:45:86:39:1a:68: ac:e2:c4:0f:ce:70:0f:d6:e8:f3:f6:8a:9c:d9:46:0c:34:e9: 11:45:60:2c:ee:4e:df:6a:49:f6:a4:5a:39:c9:33:c3:a1:75: 42:b9:07:54:c6:e9:f6:92:2b:0c:88:7a:9b:8e:7e:aa:f4:81: fc:53:b3:ca:50:aa:1f:6f:fa:24:41:9d:bd:af:62:62:aa:e7: d7:aa:06:b0:33:c5:94:27:59:d8:a1:bb:e5:8e:3f:61:a0:47: 20:8f:82:5d:6d:f7:f2:ea:80:bc:d4:ea:46:d6:84:87:34:ee: 9e:92:df:59:8c:18:cb:5d:8f:a1:db:43:01:3d:cd:95:c4:f3: c7:fd:43:4e:40:8e:bf:19:92:ba:84:9c:a6:9b:04:a6:62:ac: 72:9d:11:96:9e:c2:d6:0d:51:ec:b0:21:a1:da:35:6d:67:18: 96:fc:1a:d5:af:6c:f5:b1:ca:85:df:eb:d2:35:06:59:e5:6e: ce:a6:63:39:c2:52:5d:8c:fa:df:e9:20:6c:90:ff:ad:da:11: c3:54:ab:34:06:f3:db:1a:5d:d1:10:50:d2:d7:36:e8:85:e7: db:96:b9:e1:09:c8:19:56:34:d3:ac:11:19:f2:d2:c7:8f:ed: ba:84:8a:a3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjQxMDI3MDAzNjIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkOGIwNi04YWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAra9i5lYDQXsIz64hMVufllFixLIn5ZHdrwe59IsOz15Wdit5K0jSb3MAAS12 fWiiWCylm52dcNyAlzU0HOaT3aR26cVreWPgNN10uGllpyz+tlLQ8+y/Yc3iujBe RN3zLanU9YmW+fy8dMDqpQFdqBAcLtZV4jz+srrFXfQCniEQWFp8DP6/25ETWl+k AyYgU3amefkWLLmH/Ka1GURU66Bxot4xD1dfiXYAWqpd2zeQAPf6dM71aK1FL+EE ry/LkwYFIeDkU1XGou4nHNfGKxk9WUHKgvnz//vD9FZSWzZOppnbG0QrW/9u4inK RQ4HRyHpzGHPV8mR1ZpN5fxj3QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDZiJEKa NIuuia/eLqtfFWu+EjoIMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvOUExRDhCMkU4 NjdEMTFFRDg1NkE4RTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAqaFsDBAB7P6IwDQYJKoZIhvcNAQELBQADggEBADQPZSQH ywcPSbrMESVFhjkaaKzixA/OcA/W6PP2ipzZRgw06RFFYCzuTt9qSfakWjnJM8Oh dUK5B1TG6faSKwyIepuOfqr0gfxTs8pQqh9v+iRBnb2vYmKq59eqBrAzxZQnWdih u+WOP2GgRyCPgl1t9/LqgLzU6kbWhIc07p6S31mMGMtdj6HbQwE9zZXE88f9Q05A jr8ZkrqEnKabBKZirHKdEZaewtYNUeywIaHaNW1nGJb8GtWvbPWxyoXf69I1Blnl bs6mYznCUl2M+t/pIGyQ/63aEcNUqzQG89saXdEQUNLXNuiF59uWueEJyBlWNNOs ERny0seP7bqEiqM= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:58 2024 by rpki-client on console-fra.rpki-client.org