$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/626CA672591911EFAF1F1D23C4F9AE02.roa File: 626CA672591911EFAF1F1D23C4F9AE02.roa (raw, json) Hash identifier: AeHXxtKzggx7+8EAr/4ifBWx5ykFGA9hHbhXabbrHgE= Subject key identifier: 46:58:23:2A:0C:CA:9D:CC:AD:AA:45:5B:01:61:03:97:5D:AF:3E:19 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: 09 Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/626CA672591911EFAF1F1D23C4F9AE02.roa Signing time: Tue 13 Aug 2024 02:11:43 +0000 ROA not before: Tue 13 Aug 2024 02:11:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 1299 IP address blocks: 192.82.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Validity Not Before: Aug 13 02:11:43 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bac0df-0311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:61:58:02:86:ce:cc:49:08:30:9d:c3:25:06: b1:38:f5:b9:06:ac:41:2d:82:a5:c7:e5:c8:ef:21: 0e:7f:7e:5b:ad:8d:af:ff:69:12:c8:5b:f2:eb:4d: ec:bc:d8:a6:b1:81:c9:9b:c3:aa:be:a6:a0:3c:cd: 2a:bb:fe:de:da:ce:d1:9a:bc:eb:31:58:42:82:ef: 56:a6:7b:e7:17:8c:d3:08:77:45:00:a2:b9:c7:87: 6c:47:cc:c2:b9:b4:a3:6e:3a:14:21:27:43:16:3b: 12:8d:2f:73:19:95:25:46:64:9e:72:b1:8c:f0:59: 66:2b:e1:53:97:58:41:58:19:80:0d:6f:a5:b3:a2: 3a:e0:15:0b:b7:f8:87:f8:16:d2:c4:3d:03:a0:ba: 6f:06:09:c2:fc:50:c4:7a:c1:3b:8d:ea:b6:3a:24: a3:08:9e:52:60:f7:3f:e5:7e:53:08:1a:95:c5:9e: 34:c6:d5:1c:94:bd:76:24:6a:68:88:38:72:b1:74: 6a:7c:8f:fb:26:08:ae:f1:69:06:ab:38:4b:34:66: 53:fe:e4:79:d0:d4:86:1e:79:ac:d3:bf:bb:7c:bc: 63:f8:71:3b:66:63:38:1c:7c:5a:81:f7:bc:ce:65: 94:c1:73:4f:40:bd:82:4a:65:30:c2:67:ba:94:ac: 64:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:58:23:2A:0C:CA:9D:CC:AD:AA:45:5B:01:61:03:97:5D:AF:3E:19 X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/626CA672591911EFAF1F1D23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.82.88.0/22 Signature Algorithm: sha256WithRSAEncryption 33:9d:99:e5:5c:06:b2:c9:f0:1e:e3:18:f6:37:25:fd:a5:97: de:a5:8d:cb:af:ee:ae:85:4e:7b:e0:a9:92:60:ef:7d:02:88: 1a:57:8b:64:bc:97:7d:50:d7:45:61:2a:20:82:52:82:54:24: 8c:52:be:d8:a5:d9:35:77:57:98:eb:4c:2a:53:dd:74:0e:11: 79:ab:f7:2c:d5:ab:ba:a7:fc:61:fa:45:8f:2c:fd:4d:59:96: 8c:e3:d5:a6:bf:bc:df:1c:a4:da:4f:11:90:8f:d0:b2:3e:0c: 3b:8b:33:15:7c:23:88:03:06:ce:e3:f2:31:ce:25:41:df:fa: 83:a9:e0:2e:26:8f:42:fe:e1:05:a7:b8:65:75:e3:8a:2f:24: 1d:d8:0c:61:23:d4:5d:fa:0f:5e:06:e7:a5:95:7b:40:d4:0b: 72:9a:a6:2a:44:aa:e4:c4:f5:25:c8:96:37:09:03:c9:9d:b9: 5a:42:17:17:69:bc:c1:20:9d:8c:65:da:2b:92:06:f1:fc:93: 19:c1:77:6d:b0:73:81:d2:85:c5:1c:4e:11:ae:45:6f:35:57: 6b:2a:4b:9a:d5:c0:a2:92:4c:d4:9b:83:69:07:ad:50:03:1c: fe:01:5e:77:b0:7d:db:12:0e:3a:ee:99:8c:e0:4d:df:7e:8a: b8:68:4a:2f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDYyQTExMC8GA1UEBRMoMERBRjRGMUFDNTgxOTg5MzFBRDVDMDAwN0Y1MjU1QTc5 REQwRTRDNzAeFw0yNDA4MTMwMjExNDNaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmFjMGRmLTAzMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChYVgChs7MSQgwncMlBrE49bkGrEEtgqXH5cjvIQ5/flutja//aRLIW/LrTey8 2Kaxgcmbw6q+pqA8zSq7/t7aztGavOsxWEKC71ame+cXjNMId0UAornHh2xHzMK5 tKNuOhQhJ0MWOxKNL3MZlSVGZJ5ysYzwWWYr4VOXWEFYGYANb6WzojrgFQu3+If4 FtLEPQOgum8GCcL8UMR6wTuN6rY6JKMInlJg9z/lflMIGpXFnjTG1RyUvXYkamiI OHKxdGp8j/smCK7xaQarOEs0ZlP+5HnQ1IYeeazTv7t8vGP4cTtmYzgcfFqB97zO ZZTBc09AvYJKZTDCZ7qUrGTrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURlgjKgzK ncytqkVbAWEDl12vPhkwHwYDVR0jBBgwFoAUDa9PGsWBmJMa1cAAf1JVp53Q5Mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NjJBLzRFQkE4NDZFNTg1 NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRGE5UEdzV0JtSk1hMWNBQWYxSlZwNTNRNU1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80RUJBODQ2RTU4NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi82MjZDQTY3MjU5 MTkxMUVGQUYxRjFEMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsBSWDANBgkqhkiG9w0BAQsFAAOCAQEAM52Z5VwGssnwHuMY 9jcl/aWX3qWNy6/uroVOe+CpkmDvfQKIGleLZLyXfVDXRWEqIIJSglQkjFK+2KXZ NXdXmOtMKlPddA4Reav3LNWruqf8YfpFjyz9TVmWjOPVpr+83xyk2k8RkI/Qsj4M O4szFXwjiAMGzuPyMc4lQd/6g6ngLiaPQv7hBae4ZXXjii8kHdgMYSPUXfoPXgbn pZV7QNQLcpqmKkSq5MT1JciWNwkDyZ25WkIXF2m8wSCdjGXaK5IG8fyTGcF3bbBz gdKFxRxOEa5FbzVXaypLmtXAopJM1JuDaQetUAMc/gFed7B92xIOOu6ZjOBN336K uGhKLw== -----END CERTIFICATE-----Generated at Tue Oct 22 17:18:41 2024 by rpki-client on console-fra.rpki-client.org