$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/7155C8563E5E11EAB043A522C4F9AE02.roa File: 7155C8563E5E11EAB043A522C4F9AE02.roa (raw, json) Hash identifier: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4= Subject key identifier: C8:EC:C3:C1:94:5F:FF:A4:F6:18:C0:11:DD:34:41:AF:7B:EB:59:53 Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0BE1 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/7155C8563E5E11EAB043A522C4F9AE02.roa Signing time: Wed 06 Nov 2024 18:26:50 +0000 ROA not before: Wed 06 Nov 2024 18:26:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45638 IP address blocks: 198.244.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Nov 6 18:26:50 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bb4e9-67b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:2f:47:ce:11:28:57:64:14:3f:dc:5e:24: 70:49:16:9a:c9:f5:2d:8b:0e:f0:b7:8b:fe:01:92: 19:45:8d:59:fc:27:d8:6c:48:7f:91:5b:3e:01:26: 42:9f:9d:d5:1d:b2:e6:f3:6e:33:0c:7d:ea:88:0e: 94:75:c4:d0:29:00:13:67:30:c0:82:30:3d:12:0b: 8d:1d:ad:70:d8:e5:35:8d:e4:86:fc:12:81:b1:70: 41:7b:27:45:94:65:28:46:9b:72:0d:a6:7b:82:52: 26:22:d1:d1:ce:b2:12:1f:77:75:9e:61:da:a2:e3: 2d:e8:a7:88:a6:fd:b6:10:6d:07:2b:d8:36:8e:03: 35:49:3e:86:8a:a2:32:af:7d:43:bb:74:f8:d7:1d: 48:06:ce:5b:42:14:57:2b:ff:ff:87:d4:a0:73:6b: d4:ac:21:f4:92:74:7f:4b:1e:a2:46:85:11:26:44: ab:53:d3:84:d8:bc:65:a0:7a:29:40:d0:61:61:cb: 1a:56:8b:d9:ae:b0:dc:7b:b4:83:b6:9b:34:f8:a1: 73:20:c6:37:3a:7d:f9:90:35:ed:c0:e3:e2:a9:46: a0:95:ec:b9:78:39:1f:cc:5f:33:f0:dd:4e:6d:19: bc:d8:5b:1d:df:8e:e2:a9:35:da:95:83:82:92:23: a9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EC:C3:C1:94:5F:FF:A4:F6:18:C0:11:DD:34:41:AF:7B:EB:59:53 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/7155C8563E5E11EAB043A522C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.244.10.0/23 Signature Algorithm: sha256WithRSAEncryption 57:04:69:dc:a7:fe:2f:24:51:92:65:f5:89:7a:d8:be:4c:fb: b5:f4:f1:03:bc:ec:26:15:b9:19:c2:81:68:6a:69:ae:12:46: af:a1:7b:fe:43:e7:e7:bb:e5:37:2c:a3:56:22:3b:ce:01:08: ef:24:a4:d7:d3:8b:b4:45:06:b2:56:01:d5:c9:56:c9:77:c6: 84:25:ca:75:90:e0:1a:9f:ae:13:42:60:4d:3a:7d:7c:a2:8e: 05:94:dd:fb:aa:db:51:3b:e9:4b:a8:cd:10:b4:18:42:ee:8c: a1:be:f4:a9:24:59:67:51:1e:84:e2:67:8e:c4:d8:c8:be:75: 84:02:3a:55:9e:14:0b:ee:73:f5:55:d9:6e:3d:f9:f3:f0:a9: 89:cd:01:48:38:81:90:86:2b:a9:5a:c1:a2:f4:c3:2a:ba:f1: 9e:0e:d6:9e:5f:8b:a8:54:b7:2a:3a:4b:72:e4:4c:d9:89:fd: ab:d1:8b:f5:15:21:89:02:01:82:2d:78:2d:3f:a6:6f:ec:18: f5:e2:93:73:63:87:32:1a:d2:81:24:85:dd:ef:4c:d7:eb:9c: 48:35:a2:c1:8d:6a:81:65:ed:8d:b3:3d:24:52:6b:cf:8b:b0: 44:d3:5d:70:27:8c:d6:96:5f:fa:be:74:27:29:44:c2:1f:47: db:4e:82:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjQxMTA2MTgyNjUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYjRlOS02N2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+8vR84RKFdkFD/cXiRwSRaayfUtiw7wt4v+AZIZRY1Z/CfYbEh/kVs+ASZC n53VHbLm824zDH3qiA6UdcTQKQATZzDAgjA9EguNHa1w2OU1jeSG/BKBsXBBeydF lGUoRptyDaZ7glImItHRzrISH3d1nmHaouMt6KeIpv22EG0HK9g2jgM1ST6GiqIy r31Du3T41x1IBs5bQhRXK///h9Sgc2vUrCH0knR/Sx6iRoURJkSrU9OE2LxloHop QNBhYcsaVovZrrDce7SDtps0+KFzIMY3On35kDXtwOPiqUagley5eDkfzF8z8N1O bRm82Fsd347iqTXalYOCkiOpVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMjsw8GU X/+k9hjAEd00Qa9761lTMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQTMvMTg4MjNDOEMwNTAxMTFFQUJEOUIyMDJDQzRGOUFFMDIvNzE1NUM4NTYz RTVFMTFFQUIwNDNBNTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHG9AowDQYJKoZIhvcNAQELBQADggEBAFcEadyn/i8kUZJl 9Yl62L5M+7X08QO87CYVuRnCgWhqaa4SRq+he/5D5+e75Tcso1YiO84BCO8kpNfT i7RFBrJWAdXJVsl3xoQlynWQ4BqfrhNCYE06fXyijgWU3fuq21E76UuozRC0GELu jKG+9KkkWWdRHoTiZ47E2Mi+dYQCOlWeFAvuc/VV2W49+fPwqYnNAUg4gZCGK6la waL0wyq68Z4O1p5fi6hUtyo6S3LkTNmJ/avRi/UVIYkCAYIteC0/pm/sGPXik3Nj hzIa0oEkhd3vTNfrnEg1osGNaoFl7Y2zPSRSa8+LsETTXXAnjNaWX/q+dCcpRMIf R9tOgoo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org