$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa File: 534379FCEE1611ECA6DE1824C4F9AE02.roa (raw, json) Hash identifier: nz0TqyYIJbty+IiMMO1L40DQ1f9SJsrGYZW4STnoOWg= Subject key identifier: F6:86:B3:EA:6A:D1:81:1D:42:4B:C7:A0:38:14:9A:D0:81:D2:C0:70 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 348A Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa Signing time: Wed 04 Sep 2024 14:50:30 +0000 ROA not before: Wed 04 Sep 2024 14:50:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 198949 IP address blocks: 1.179.246.0/24 maxlen: 24 1.179.247.0/24 maxlen: 24 118.174.10.0/24 maxlen: 24 180.180.242.0/24 maxlen: 24 180.180.243.0/24 maxlen: 24 180.180.244.0/24 maxlen: 24 180.180.245.0/24 maxlen: 24 180.180.247.0/24 maxlen: 24 203.113.14.0/24 maxlen: 24 203.113.95.0/24 maxlen: 24 203.114.98.0/24 maxlen: 24 203.114.102.0/24 maxlen: 24 2001:ec0:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Sep 4 14:50:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d873b6-b6db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ef:1c:ec:fa:de:65:6c:42:ae:e3:8c:17:b0: 0b:a3:fa:42:b6:92:1b:16:e3:e9:7d:d7:1c:f4:02: aa:80:16:eb:8a:91:8b:da:8a:01:a2:2a:51:45:83: a2:ab:d3:64:ee:02:b1:71:65:43:24:ba:6b:3e:80: 25:13:ba:8d:31:ba:fc:72:9f:7c:6a:c0:8c:18:54: f9:3a:0e:1e:3c:0b:d3:cd:31:a9:73:00:a8:39:51: 60:26:b2:e1:cf:14:79:e8:ae:5a:08:f1:99:1c:fb: 51:f0:86:0e:4f:1c:92:31:76:80:08:de:80:a9:a3: 73:7b:5e:8f:6c:2b:47:4b:8f:cd:19:01:21:cb:90: 20:7a:ae:ee:e3:f1:cc:a3:9f:67:5c:34:c0:53:d0: f2:02:bd:56:54:c0:63:e1:77:38:d8:00:0c:88:5b: fb:cd:b7:df:0d:c0:64:3c:1b:fc:36:85:2c:25:80: 6f:86:27:97:4f:6d:97:5f:a8:30:6a:e1:66:46:bd: 23:f2:4d:d6:ff:69:e9:6c:93:72:e0:dd:89:d0:24: d2:77:a1:70:27:5f:bd:b7:4d:45:a8:81:82:cf:bc: ee:d8:72:0a:4c:54:18:65:98:24:c2:79:25:1d:97: f1:b3:98:44:03:cf:19:89:44:c2:39:44:82:4a:3a: b8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:86:B3:EA:6A:D1:81:1D:42:4B:C7:A0:38:14:9A:D0:81:D2:C0:70 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.179.246.0/23 118.174.10.0/24 180.180.242.0-180.180.245.255 180.180.247.0/24 203.113.14.0/24 203.113.95.0/24 203.114.98.0/24 203.114.102.0/24 IPv6: 2001:ec0:100::/40 Signature Algorithm: sha256WithRSAEncryption a0:ce:76:0b:19:69:30:e6:f0:0f:3a:c3:8c:8b:40:85:d8:11: 37:41:72:57:ba:ae:02:35:da:93:62:2c:3e:d7:c7:3f:95:05: d3:be:71:23:cc:7a:c7:38:3b:07:82:ee:5a:01:6c:e8:69:e2: a1:60:1d:a1:c8:17:a0:13:15:a6:ba:f0:3f:aa:c2:50:41:47: d4:9f:0a:04:b8:74:20:eb:e7:52:80:82:08:00:30:99:82:f6: 24:e9:e9:f1:3a:66:3f:85:e9:fe:36:22:b9:09:bb:21:cc:a1: a8:21:96:b1:bb:b1:45:0b:2f:b2:e5:26:f0:bc:06:65:45:a2: fd:b8:14:b2:2c:f6:3f:45:12:b9:db:58:18:b9:29:d1:1e:07: 7b:ef:38:1c:c1:e1:49:af:76:3b:b5:11:f6:a2:eb:9e:01:65: bd:8f:d6:4d:f7:35:0d:96:3a:7c:c0:27:44:d4:4f:e9:f8:d9: f6:34:26:12:65:b9:2a:19:31:ff:03:4f:79:49:67:68:3e:75: e7:dc:d5:c8:9f:b1:78:d1:e0:2a:d8:6c:68:64:e5:31:34:8e: ca:66:61:cb:d8:21:49:b2:c5:5e:48:0d:b2:e5:65:81:31:b8: 47:c0:a9:dc:fe:98:05:8a:38:a5:c1:aa:38:19:c6:fd:a1:cc: 0e:8f:a5:e4 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjQwOTA0MTQ1MDMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4NzNiNi1iNmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApu8c7PreZWxCruOMF7ALo/pCtpIbFuPpfdcc9AKqgBbripGL2ooBoipRRYOi q9Nk7gKxcWVDJLprPoAlE7qNMbr8cp98asCMGFT5Og4ePAvTzTGpcwCoOVFgJrLh zxR56K5aCPGZHPtR8IYOTxySMXaACN6AqaNze16PbCtHS4/NGQEhy5Ageq7u4/HM o59nXDTAU9DyAr1WVMBj4Xc42AAMiFv7zbffDcBkPBv8NoUsJYBvhieXT22XX6gw auFmRr0j8k3W/2npbJNy4N2J0CTSd6FwJ1+9t01FqIGCz7zu2HIKTFQYZZgkwnkl HZfxs5hEA88ZiUTCOUSCSjq4UwIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFPaGs+pq 0YEdQkvHoDgUmtCB0sBwMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvNTM0Mzc5RkNF RTE2MTFFQ0E2REUxODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQMD4EAgABMDgDBAEBs/YDBAB2rgowDAMEAbS08gMEAbS09AMEALS09wMEAMtx DgMEAMtxXwMEAMtyYgMEAMtyZjAOBAIAAjAIAwYAIAEOwAEwDQYJKoZIhvcNAQEL BQADggEBAKDOdgsZaTDm8A86w4yLQIXYETdBcle6rgI12pNiLD7Xxz+VBdO+cSPM esc4OweC7loBbOhp4qFgHaHIF6ATFaa68D+qwlBBR9SfCgS4dCDr51KAgggAMJmC 9iTp6fE6Zj+F6f42IrkJuyHMoaghlrG7sUULL7LlJvC8BmVFov24FLIs9j9FErnb WBi5KdEeB3vvOBzB4Umvdju1Efai654BZb2P1k33NQ2WOnzAJ0TUT+n42fY0JhJl uSoZMf8DT3lJZ2g+defc1cifsXjR4CrYbGhk5TE0jspmYcvYIUmyxV5IDbLlZYEx uEfAqdz+mAWKOKXBqjgZxv2hzA6PpeQ= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:03 2024 by rpki-client on console-fra.rpki-client.org