$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/466891560ADA11ECBFAECB29C4F9AE02.roa File: 466891560ADA11ECBFAECB29C4F9AE02.roa (raw, json) Hash identifier: NDMWr6ROve032HDCvpKDnE+3M7NstRNL4WiBRR7Uc9w= Subject key identifier: 52:BF:B4:4D:16:2C:23:F9:A6:69:C3:B1:F9:33:41:41:E8:66:C1:89 Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0A6D Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/466891560ADA11ECBFAECB29C4F9AE02.roa Signing time: Fri 12 Jul 2024 20:50:22 +0000 ROA not before: Fri 12 Jul 2024 20:50:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 0 IP address blocks: 45.127.172.0/22 maxlen: 22 101.97.43.0/24 maxlen: 24 183.177.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2669 (0xa6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: Jul 12 20:50:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6691970e-064a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a3:73:8d:26:13:b3:70:eb:cc:54:33:4d:95: cb:cf:f9:82:e6:17:7c:c3:e2:77:ac:c8:5b:f1:10: ee:fa:0a:54:ef:e1:e1:c6:03:71:fa:db:c5:8d:4e: 70:b4:85:03:24:d4:30:40:4b:04:aa:1b:61:91:88: 1b:ba:99:e1:83:75:77:51:b9:75:e1:39:48:bb:c4: 37:30:c5:6a:54:3a:f9:01:29:91:24:6e:60:79:d9: cb:d1:a8:98:b9:ab:a0:65:3a:9b:ce:59:99:cb:b9: 65:39:c5:bd:a3:23:96:90:64:5f:d6:3d:ea:46:b4: b8:85:e6:6f:66:4c:aa:63:03:61:a1:f3:46:89:d9: c0:24:8a:4d:c7:7d:b3:b3:d9:e9:89:de:d0:36:90: 28:c1:1e:05:c5:ce:6b:61:29:96:31:0a:80:c2:83: 19:5b:6c:ee:4a:a6:1d:ef:64:54:d7:52:b5:e0:3c: a6:73:be:65:84:72:5a:50:84:fa:4e:b1:6d:27:ca: cc:71:7f:f6:04:76:3f:1a:88:94:75:5d:ca:11:78: 50:55:da:23:07:ca:30:44:21:f5:12:28:8a:ac:cd: 0f:27:0f:e2:67:65:34:62:67:fb:e3:3c:05:39:ae: 73:42:d9:ca:a2:cf:e1:a0:f9:f6:f7:fc:f7:fd:86: 74:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BF:B4:4D:16:2C:23:F9:A6:69:C3:B1:F9:33:41:41:E8:66:C1:89 X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/466891560ADA11ECBFAECB29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.172.0/22 101.97.43.0/24 183.177.61.0/24 Signature Algorithm: sha256WithRSAEncryption 64:72:00:11:64:6c:14:28:1a:7d:77:27:2e:6f:7e:1c:6f:1c: 80:4b:28:b6:18:25:6d:34:a2:b6:dc:8e:b3:86:a1:5c:a4:b6: 78:5b:69:00:c9:a3:7f:83:e9:25:fb:57:3f:3a:1d:db:29:a7: 67:69:69:0b:66:19:3f:7f:8d:29:61:bf:ea:77:3d:ff:45:b7: c1:29:11:58:99:99:32:f6:06:67:ae:c6:61:c2:5f:fc:b3:97: c9:08:89:41:b6:2e:60:49:db:fd:42:9b:88:47:98:b0:3d:4b: 1e:f7:20:25:6f:24:13:82:00:33:c9:33:87:c3:e6:b2:77:1f: 8b:07:2e:7e:9f:da:0b:aa:56:a2:d5:1c:72:c2:f8:46:5d:dc: be:8f:cc:19:17:c5:ac:7e:c4:c5:9d:0a:e6:82:16:34:c0:76: eb:c5:e7:20:a1:4a:1c:ae:29:36:8f:e3:88:1b:5f:f9:f1:39: 55:b8:7d:6f:80:96:93:e5:c1:0b:cc:29:94:85:27:26:b0:01: 6b:db:c8:1d:05:a0:0c:99:d7:6c:5f:a8:32:96:34:a8:14:7c: 4a:e9:cb:1a:05:a9:bc:41:f9:24:75:ab:a7:77:0c:dc:51:a1: 6e:46:9b:b3:81:8e:a1:66:ce:70:42:88:45:a9:2c:3c:a5:1e: 50:7d:bc:23 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjQwNzEyMjA1MDIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxOTcwZS0wNjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66NzjSYTs3DrzFQzTZXLz/mC5hd8w+J3rMhb8RDu+gpU7+HhxgNx+tvFjU5w tIUDJNQwQEsEqhthkYgbupnhg3V3Ubl14TlIu8Q3MMVqVDr5ASmRJG5gednL0aiY uaugZTqbzlmZy7llOcW9oyOWkGRf1j3qRrS4heZvZkyqYwNhofNGidnAJIpNx32z s9npid7QNpAowR4Fxc5rYSmWMQqAwoMZW2zuSqYd72RU11K14Dymc75lhHJaUIT6 TrFtJ8rMcX/2BHY/GoiUdV3KEXhQVdojB8owRCH1EiiKrM0PJw/iZ2U0Ymf74zwF Oa5zQtnKos/hoPn29/z3/YZ0wwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFK/tE0W LCP5pmnDsfkzQUHoZsGJMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1NTgvM0RGMTRGMDg1Mzk0MTFFQUJGNkI0RjVGQzRGOUFFMDIvNDY2ODkxNTYw QURBMTFFQ0JGQUVDQjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItf6wDBABlYSsDBAC3sT0wDQYJKoZIhvcNAQELBQADggEB AGRyABFkbBQoGn13Jy5vfhxvHIBLKLYYJW00orbcjrOGoVyktnhbaQDJo3+D6SX7 Vz86Hdspp2dpaQtmGT9/jSlhv+p3Pf9Ft8EpEViZmTL2BmeuxmHCX/yzl8kIiUG2 LmBJ2/1Cm4hHmLA9Sx73ICVvJBOCADPJM4fD5rJ3H4sHLn6f2guqVqLVHHLC+EZd 3L6PzBkXxax+xMWdCuaCFjTAduvF5yChShyuKTaP44gbX/nxOVW4fW+AlpPlwQvM KZSFJyawAWvbyB0FoAyZ12xfqDKWNKgUfErpyxoFqbxB+SR1q6d3DNxRoW5Gm7OB jqFmznBCiEWpLDylHlB9vCM= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:46 2024 by rpki-client on console-fra.rpki-client.org