$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/140ABE8E8B1311EFB0B86052C4F9AE02.roa File: 140ABE8E8B1311EFB0B86052C4F9AE02.roa (raw, json) Hash identifier: LAXsXyrBF2QBAIeQpVNMfU7bu/c+l//BmCE8zjAyISM= Subject key identifier: 79:4E:EC:A0:A2:60:CA:C2:11:BF:D2:36:84:89:77:F1:C4:65:97:35 Certificate issuer: /CN=A91D17F2/serialNumber=5486376B05B8A2552329E361BD725C77E1F8D0C9 Certificate serial: 0CAF Authority key identifier: 54:86:37:6B:05:B8:A2:55:23:29:E3:61:BD:72:5C:77:E1:F8:D0:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/140ABE8E8B1311EFB0B86052C4F9AE02.roa Signing time: Tue 15 Oct 2024 16:43:45 +0000 ROA not before: Tue 15 Oct 2024 16:43:45 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 215129 IP address blocks: 59.152.60.0/24 maxlen: 24 59.152.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/VIY3awW4olUjKeNhvXJcd-H40Mk.crl rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/VIY3awW4olUjKeNhvXJcd-H40Mk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3247 (0xcaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17F2/serialNumber=5486376B05B8A2552329E361BD725C77E1F8D0C9 Validity Not Before: Oct 15 16:43:45 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=670e9bc1-b18e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d5:6f:bb:eb:c2:07:be:ee:d0:c2:8c:f1:cc: da:ef:ce:71:30:8a:3c:57:d0:3b:33:7c:3a:d6:16: 8c:62:28:5c:6b:81:26:d4:5c:45:e3:ea:aa:16:a3: 41:ba:3f:3f:d0:43:3a:ec:31:7a:94:80:42:79:d7: 89:da:95:33:26:5e:6c:3e:bf:2b:4a:8e:88:42:d6: e4:f9:ea:b5:be:79:59:56:5d:26:ca:ae:cc:f6:96: f6:d7:16:9a:17:38:40:a7:af:87:6b:39:b6:a1:c6: e2:61:33:99:12:0d:3c:ae:fd:90:01:cf:62:71:91: 2f:88:92:64:1c:30:d6:38:d5:8a:9d:ab:98:62:23: a7:e8:16:02:ce:cc:87:f7:12:f1:48:c8:a6:c5:5a: 00:38:73:18:54:a0:74:55:e8:92:de:92:23:c2:a4: 1f:08:47:67:18:55:a6:39:8d:98:f7:03:f5:4f:58: 77:98:44:8e:91:d0:77:1c:68:27:ce:01:f9:55:6d: 85:74:e1:d6:a6:cd:71:11:7d:27:6b:8e:41:f7:78: fd:b0:c3:7d:06:81:32:48:b7:2f:ef:84:99:5c:60: 91:81:59:8f:b8:a2:11:e6:e0:f6:41:89:b8:15:ca: 5b:26:d2:f4:21:76:c1:a8:12:87:af:c3:3c:8a:d0: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4E:EC:A0:A2:60:CA:C2:11:BF:D2:36:84:89:77:F1:C4:65:97:35 X509v3 Authority Key Identifier: keyid:54:86:37:6B:05:B8:A2:55:23:29:E3:61:BD:72:5C:77:E1:F8:D0:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/VIY3awW4olUjKeNhvXJcd-H40Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/140ABE8E8B1311EFB0B86052C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.60.0/23 Signature Algorithm: sha256WithRSAEncryption c8:78:07:bd:01:1c:f4:5c:28:d8:21:cc:e2:0f:0e:ab:65:a9: ca:6f:f8:b0:30:50:d4:73:ba:75:b0:4f:4f:d2:12:33:0d:aa: 69:ec:8b:61:f3:8d:68:18:ac:97:02:01:5e:c1:ae:9d:38:05: 20:62:10:4a:d3:a6:65:3e:ed:3e:0b:ef:23:6f:ce:37:da:ae: 40:10:db:7a:b7:17:52:fe:52:82:73:2a:51:42:ed:09:b1:95: 70:6c:e0:66:db:14:82:cb:5f:5d:ff:f6:87:74:1a:39:52:65: f8:c3:85:06:9f:cf:ff:54:3b:44:e0:c3:7a:1f:47:08:eb:e4: 1c:b0:7f:0b:a7:35:6c:2c:52:9a:b3:58:cd:b0:c5:9e:5e:47: 08:14:af:a1:48:f5:cb:b0:53:09:53:91:81:6e:df:4a:a6:55: b4:54:76:98:34:10:8e:d0:d7:24:85:fe:fb:2b:85:e0:b0:69: ac:55:74:d0:c7:0f:96:d9:47:62:1b:93:d7:25:7f:86:4c:05: 13:f9:ce:6d:21:e3:e3:68:ce:86:22:59:39:b0:da:ba:c1:f7: de:0a:66:6f:9a:7c:73:4c:22:34:2a:5d:29:ad:48:c9:29:76: 23:16:7c:63:17:ea:4c:5a:45:68:fd:00:7c:a1:b8:4a:63:a3: 8f:c4:54:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RjIxMTAvBgNVBAUTKDU0ODYzNzZCMDVCOEEyNTUyMzI5RTM2MUJENzI1Qzc3 RTFGOEQwQzkwHhcNMjQxMDE1MTY0MzQ1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBlOWJjMS1iMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdVvu+vCB77u0MKM8cza785xMIo8V9A7M3w61haMYihca4Em1FxF4+qqFqNB uj8/0EM67DF6lIBCedeJ2pUzJl5sPr8rSo6IQtbk+eq1vnlZVl0myq7M9pb21xaa FzhAp6+Hazm2ocbiYTOZEg08rv2QAc9icZEviJJkHDDWONWKnauYYiOn6BYCzsyH 9xLxSMimxVoAOHMYVKB0VeiS3pIjwqQfCEdnGFWmOY2Y9wP1T1h3mESOkdB3HGgn zgH5VW2FdOHWps1xEX0na45B93j9sMN9BoEySLcv74SZXGCRgVmPuKIR5uD2QYm4 FcpbJtL0IXbBqBKHr8M8itCwzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHlO7KCi YMrCEb/SNoSJd/HEZZc1MB8GA1UdIwQYMBaAFFSGN2sFuKJVIynjYb1yXHfh+NDJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdGMi80Qzg4QTdBMEZE RkUxMUU5QkQ2NjdEMUZDNEY5QUUwMi9WSVkzYXdXNG9sVWpLZU5odlhKY2QtSDQw TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJWTNhd1c0b2xVaktlTmh2WEpjZC1INDBNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RjIvNEM4OEE3QTBGREZFMTFFOUJENjY3RDFGQzRGOUFFMDIvMTQwQUJFOEU4 QjEzMTFFRkIwQjg2MDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAE7mDwwDQYJKoZIhvcNAQELBQADggEBAMh4B70BHPRcKNgh zOIPDqtlqcpv+LAwUNRzunWwT0/SEjMNqmnsi2HzjWgYrJcCAV7Brp04BSBiEErT pmU+7T4L7yNvzjfarkAQ23q3F1L+UoJzKlFC7QmxlXBs4GbbFILLX13/9od0GjlS ZfjDhQafz/9UO0Tgw3ofRwjr5BywfwunNWwsUpqzWM2wxZ5eRwgUr6FI9cuwUwlT kYFu30qmVbRUdpg0EI7Q1ySF/vsrheCwaaxVdNDHD5bZR2Ibk9clf4ZMBRP5zm0h 4+NozoYiWTmw2rrB994KZm+afHNMIjQqXSmtSMkpdiMWfGMX6kxaRWj9AHyhuEpj o4/EVNA= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:28 2024 by rpki-client on console-fra.rpki-client.org