$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/AEA7C9C0818911EA81577016C4F9AE02.roa File: AEA7C9C0818911EA81577016C4F9AE02.roa (raw, json) Hash identifier: WuIJH5EmbtRmJmFCN//mGN8XhCDwfYBWN+2IltuHvZ4= Subject key identifier: 8E:29:CA:C4:2F:FC:09:AF:F8:A5:6F:05:1B:09:31:2C:B4:8A:26:E7 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 17F6 Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/AEA7C9C0818911EA81577016C4F9AE02.roa Signing time: Fri 02 Aug 2024 16:33:00 +0000 ROA not before: Fri 02 Aug 2024 16:33:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45352 IP address blocks: 212.8.230.0/24 maxlen: 24 212.8.231.0/24 maxlen: 24 212.8.254.0/24 maxlen: 24 212.8.255.0/24 maxlen: 24 212.92.102.0/24 maxlen: 24 212.92.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6134 (0x17f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Validity Not Before: Aug 2 16:33:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad0a3b-7833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c0:00:d1:50:2b:16:d3:48:d0:40:c5:87:e6: 6c:d3:29:b4:43:21:b4:2f:f9:e5:f2:07:8a:90:06: 7e:c9:4b:b1:f9:35:6b:8f:ab:b5:1d:3b:c2:ea:69: fb:a4:d8:c7:0c:da:1d:1a:bc:59:ae:ff:65:73:51: cb:7d:db:84:a9:7c:77:c7:f0:3a:8d:21:75:22:60: ac:5f:e1:36:e9:d2:e3:88:89:b2:a5:a4:73:03:3c: e0:3c:38:6a:01:f7:78:45:83:8a:cd:fb:18:78:6b: f8:12:4d:0c:ed:30:33:19:df:5d:31:40:d2:67:cf: da:8a:1d:c8:45:4f:8a:59:95:46:05:53:16:bb:13: 88:d2:2b:89:2c:2a:92:8b:7f:ec:d1:29:92:9c:14: 8b:08:54:36:77:67:b1:48:1b:e9:14:39:68:44:74: 19:94:e8:cc:d5:07:3d:68:b4:bc:8f:bd:86:fd:10: 9a:22:01:3e:a0:ee:d1:66:7a:cb:19:21:4b:d0:22: 5c:71:d0:ff:de:fa:65:c5:1e:2b:bd:d6:16:32:e1: 22:cb:4e:1e:d9:f9:f9:95:78:cb:3f:6c:e0:5e:23: e1:54:25:64:8f:fa:a1:f3:f7:2a:18:81:b7:1b:d3: fd:1d:42:72:09:75:c4:02:ff:90:ef:33:5a:45:55: 25:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:29:CA:C4:2F:FC:09:AF:F8:A5:6F:05:1B:09:31:2C:B4:8A:26:E7 X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/AEA7C9C0818911EA81577016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 212.8.230.0/23 212.8.254.0/23 212.92.102.0/23 Signature Algorithm: sha256WithRSAEncryption ba:07:fc:f8:e2:66:23:3d:a4:45:e2:2d:50:e7:f8:bf:eb:e3: c8:64:22:28:5d:09:af:4e:1b:99:aa:f4:b8:aa:12:16:fe:41: d9:5c:c0:45:bf:f6:cc:05:ea:c7:bf:ad:80:fc:29:3d:a0:49: 92:4f:9e:1b:42:7f:ab:11:84:bc:09:e2:2f:0a:bb:a4:57:c0: 9c:7a:6f:14:24:90:d0:2e:47:76:46:a8:82:02:4b:db:b0:a9: b5:99:44:56:ba:0b:ec:5b:bb:a0:05:6e:ff:bd:2a:a4:1b:b3: df:8d:a6:24:67:c9:01:ba:7d:4a:6f:17:93:51:06:18:da:24: 10:d2:2d:1c:f0:aa:f8:8e:84:1d:f7:35:de:6c:66:3b:75:f3: 52:9d:48:e6:6a:8e:08:48:87:6a:86:a3:89:66:c5:de:2d:69: b2:40:83:93:a9:d7:42:e1:3b:df:7e:ee:31:70:6d:f9:da:6f: dc:44:29:25:d3:e1:e0:d1:9b:2b:eb:f3:4b:32:20:fa:e7:ee: d7:49:45:7c:10:cc:69:b0:99:d6:95:fc:25:74:f6:7d:7a:93: 8d:95:5c:dd:60:99:f7:33:b9:86:ff:43:31:9b:32:66:61:72: 36:c2:56:6a:aa:18:de:10:b0:9a:0c:b4:ca:45:97:ff:10:d2: 3e:94:0d:90 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICF/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjQwODAyMTYzMzAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkMGEzYi03ODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncAA0VArFtNI0EDFh+Zs0ym0QyG0L/nl8geKkAZ+yUux+TVrj6u1HTvC6mn7 pNjHDNodGrxZrv9lc1HLfduEqXx3x/A6jSF1ImCsX+E26dLjiImypaRzAzzgPDhq Afd4RYOKzfsYeGv4Ek0M7TAzGd9dMUDSZ8/aih3IRU+KWZVGBVMWuxOI0iuJLCqS i3/s0SmSnBSLCFQ2d2exSBvpFDloRHQZlOjM1Qc9aLS8j72G/RCaIgE+oO7RZnrL GSFL0CJccdD/3vplxR4rvdYWMuEiy04e2fn5lXjLP2zgXiPhVCVkj/qh8/cqGIG3 G9P9HUJyCXXEAv+Q7zNaRVUlawIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFI4pysQv /Amv+KVvBRsJMSy0iibnMB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2OTEvNTBDNjkyOTI5RDI0MTFFNzg2MUEyMjZCQzRGOUFFMDIvQUVBN0M5QzA4 MTg5MTFFQTgxNTc3MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAHUCOYDBAHUCP4DBAHUXGYwDQYJKoZIhvcNAQELBQADggEB ALoH/PjiZiM9pEXiLVDn+L/r48hkIihdCa9OG5mq9LiqEhb+QdlcwEW/9swF6se/ rYD8KT2gSZJPnhtCf6sRhLwJ4i8Ku6RXwJx6bxQkkNAuR3ZGqIICS9uwqbWZRFa6 C+xbu6AFbv+9KqQbs9+NpiRnyQG6fUpvF5NRBhjaJBDSLRzwqviOhB33Nd5sZjt1 81KdSOZqjghIh2qGo4lmxd4tabJAg5Op10LhO99+7jFwbfnab9xEKSXT4eDRmyvr 80syIPrn7tdJRXwQzGmwmdaV/CV09n16k42VXN1gmfczuYb/QzGbMmZhcjbCVmqq GN4QsJoMtMpFl/8Q0j6UDZA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org