$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/0DEF13D4FC1711EC919B6757C4F9AE02.roa File: 0DEF13D4FC1711EC919B6757C4F9AE02.roa (raw, json) Hash identifier: ZplEo/zP0jHGZr0dLBLSTaxCxcoclbSDg8qfGUwBkSQ= Subject key identifier: A4:47:F5:28:5E:E5:30:EE:F8:72:95:F8:2E:16:8D:AF:49:C1:77:47 Certificate issuer: /CN=A91CEAA2/serialNumber=FF495293CB5F15E5D14BACC2DB1052B2E2C825C8 Certificate serial: 3429 Authority key identifier: FF:49:52:93:CB:5F:15:E5:D1:4B:AC:C2:DB:10:52:B2:E2:C8:25:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/0DEF13D4FC1711EC919B6757C4F9AE02.roa Signing time: Fri 30 Aug 2024 15:20:59 +0000 ROA not before: Fri 30 Aug 2024 15:20:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9304 IP address blocks: 116.214.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.crl rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13353 (0x3429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAA2/serialNumber=FF495293CB5F15E5D14BACC2DB1052B2E2C825C8 Validity Not Before: Aug 30 15:20:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d1e35b-8db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:28:6f:16:62:38:d6:44:c3:d8:38:2d:9f:53: a5:23:3c:e9:b1:b7:28:8f:f0:a3:42:99:cd:0b:b3: 1d:40:a3:08:e4:61:88:e7:25:19:7d:56:65:8d:c1: 64:6a:38:db:c5:01:dc:7c:48:e8:c5:86:44:f6:12: 00:f3:ac:6d:fe:fd:c3:25:a6:1b:ee:5c:5a:34:71: bf:98:7c:33:52:32:d7:30:dd:cc:e4:c6:a7:4e:55: ca:de:e6:fc:3d:df:f2:8b:9e:8c:4e:c1:21:cd:bf: 9b:40:1b:f4:d8:54:a3:27:8a:09:9d:af:9f:02:be: ba:7d:72:3d:fc:9f:23:ee:bb:54:99:29:e8:61:c9: cc:b3:e4:67:dd:67:bd:91:61:b9:69:05:7d:a3:cf: a8:f2:8d:60:6f:bf:7c:d8:3d:86:ff:9b:66:a0:79: 51:d5:9c:5a:aa:49:4d:9f:71:02:fe:dd:8d:ba:dc: 4c:c8:b7:43:4a:36:b1:07:33:8c:03:45:f3:79:53: 0d:82:3d:6f:42:f1:3c:a9:eb:6a:36:33:6d:79:fc: 4c:b3:8a:4f:5e:4b:65:83:2c:65:a8:6e:df:43:ef: 57:5b:6c:53:1b:53:e8:94:d6:b4:47:ec:70:35:c6: 7d:dd:b8:c1:5a:2e:7a:34:75:2a:78:57:06:19:bd: 65:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:47:F5:28:5E:E5:30:EE:F8:72:95:F8:2E:16:8D:AF:49:C1:77:47 X509v3 Authority Key Identifier: keyid:FF:49:52:93:CB:5F:15:E5:D1:4B:AC:C2:DB:10:52:B2:E2:C8:25:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/0DEF13D4FC1711EC919B6757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.214.110.0/23 Signature Algorithm: sha256WithRSAEncryption 91:bb:8d:d8:f1:38:46:c3:a7:a0:20:ff:ca:fc:d0:83:4d:2d: bb:42:c0:c9:d2:17:86:30:28:5b:3a:e1:72:12:3c:27:f4:f8: 77:12:4c:75:26:90:7a:ee:20:28:b5:ac:2c:a9:42:c6:dd:67: 4d:a4:09:02:63:96:66:77:41:4d:78:62:aa:a0:c9:57:32:93: bd:a2:c4:99:b2:cc:8e:5e:6d:49:b1:39:fe:63:c2:6c:20:28: c6:41:dc:f4:3d:8e:d0:a7:20:b5:50:7f:9b:2a:c9:13:a4:d8: 53:71:f0:e9:68:11:53:11:a2:c5:51:36:49:d8:a5:ee:c7:a2: e9:47:96:55:6a:a5:ec:41:31:cd:d8:fd:9f:73:b1:c4:02:3c: 0e:ed:fa:97:e6:c5:e4:e9:fb:fd:6f:83:73:01:e0:f2:6f:9c: 8e:3c:08:ec:fc:cf:1e:03:f1:db:e8:02:de:c5:8a:a9:d4:b2: 0e:9e:81:97:48:c0:d1:0b:f2:99:d5:01:ce:cb:26:31:25:e1: 2f:be:d5:28:31:d0:94:74:9f:02:c7:21:89:0e:1f:32:35:f1: 02:00:a5:33:e3:21:43:97:27:21:69:2b:7a:5d:a4:35:6b:9f: 8b:b9:0b:02:4a:30:89:fc:f9:b2:9f:15:62:cf:6e:0a:0f:67: b2:60:44:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBQTIxMTAvBgNVBAUTKEZGNDk1MjkzQ0I1RjE1RTVEMTRCQUNDMkRCMTA1MkIy RTJDODI1QzgwHhcNMjQwODMwMTUyMDU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZTM1Yi04ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtShvFmI41kTD2Dgtn1OlIzzpsbcoj/CjQpnNC7MdQKMI5GGI5yUZfVZljcFk ajjbxQHcfEjoxYZE9hIA86xt/v3DJaYb7lxaNHG/mHwzUjLXMN3M5ManTlXK3ub8 Pd/yi56MTsEhzb+bQBv02FSjJ4oJna+fAr66fXI9/J8j7rtUmSnoYcnMs+Rn3We9 kWG5aQV9o8+o8o1gb7982D2G/5tmoHlR1ZxaqklNn3EC/t2NutxMyLdDSjaxBzOM A0XzeVMNgj1vQvE8qetqNjNtefxMs4pPXktlgyxlqG7fQ+9XW2xTG1PolNa0R+xw NcZ93bjBWi56NHUqeFcGGb1lnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKRH9She 5TDu+HKV+C4Wja9JwXdHMB8GA1UdIwQYMBaAFP9JUpPLXxXl0UuswtsQUrLiyCXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFBMi9EMkFCMjkyQzFE OTkxMUUyQkE1MjlBODYwOEIwMkNEMi9fMGxTazh0ZkZlWFJTNnpDMnhCU3N1TElK Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wbFNrOHRmRmVYUlM2ekMyeEJTc3VMSUpjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VBQTIvRDJBQjI5MkMxRDk5MTFFMkJBNTI5QTg2MDhCMDJDRDIvMERFRjEzRDRG QzE3MTFFQzkxOUI2NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF01m4wDQYJKoZIhvcNAQELBQADggEBAJG7jdjxOEbDp6Ag /8r80INNLbtCwMnSF4YwKFs64XISPCf0+HcSTHUmkHruICi1rCypQsbdZ02kCQJj lmZ3QU14YqqgyVcyk72ixJmyzI5ebUmxOf5jwmwgKMZB3PQ9jtCnILVQf5sqyROk 2FNx8OloEVMRosVRNknYpe7HoulHllVqpexBMc3Y/Z9zscQCPA7t+pfmxeTp+/1v g3MB4PJvnI48COz8zx4D8dvoAt7FiqnUsg6egZdIwNEL8pnVAc7LJjEl4S++1Sgx 0JR0nwLHIYkOHzI18QIApTPjIUOXJyFpK3pdpDVrn4u5CwJKMIn8+bKfFWLPbgoP Z7JgROo= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:03 2024 by rpki-client on console-fra.rpki-client.org