$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/C286BE40C4C711EDAFA9AF17C4F9AE02.roa File: C286BE40C4C711EDAFA9AF17C4F9AE02.roa (raw, json) Hash identifier: wm0PciNiC4cbLFQcb4SHn/OMRIvkGpQeYyT8rS6bdpU= Subject key identifier: 37:CD:F4:B8:35:D5:0D:6F:1B:6C:CE:C0:A3:88:58:FD:57:68:68:6E Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 07CD Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/C286BE40C4C711EDAFA9AF17C4F9AE02.roa Signing time: Thu 22 Aug 2024 21:39:53 +0000 ROA not before: Thu 22 Aug 2024 21:39:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136950 IP address blocks: 45.125.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Aug 22 21:39:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7b029-5df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a0:0c:c5:79:f4:73:a8:f3:61:04:00:f7:4e: fd:ac:3d:44:52:bf:5f:f7:f8:cf:bf:a2:be:7e:d0: f8:82:7e:97:ce:0d:c3:4a:85:7f:af:0b:df:f8:88: fc:a7:bf:1b:f2:d2:2c:5a:2d:3d:d5:d5:72:50:ab: ba:1c:97:3f:9d:c3:ca:a3:a8:78:7a:84:3f:9d:a2: 9b:6f:f3:e1:5b:a5:84:ef:af:0d:c5:95:78:96:b7: 53:72:39:15:c0:e3:aa:bc:3c:f8:41:7b:99:e5:45: d0:9e:60:b4:11:0c:76:69:8a:22:c9:c2:31:c5:c0: 14:25:7e:42:8e:ab:3d:af:83:8e:e8:ea:dd:dd:59: f8:f9:17:a5:88:ab:25:3a:c8:f4:45:d5:05:65:39: 43:bc:b4:56:f7:9a:4a:b9:57:34:44:31:8d:e2:a6: de:7f:39:09:0e:ff:37:6a:37:de:38:49:5b:16:d4: 3c:1a:90:d0:f2:9d:fb:bd:24:1b:8e:20:e1:b9:e1: 86:3c:fe:57:62:0f:3a:68:6d:63:38:2c:49:9c:ef: 6c:12:08:55:dd:3e:dd:f0:68:a6:92:90:81:89:7b: b9:a4:3b:c8:61:08:59:5c:5e:c4:7b:e4:fc:c9:e8: 66:43:61:bd:b7:2d:5c:ea:29:4b:99:d1:61:72:cb: 6f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:CD:F4:B8:35:D5:0D:6F:1B:6C:CE:C0:A3:88:58:FD:57:68:68:6E X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/C286BE40C4C711EDAFA9AF17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.51.0/24 Signature Algorithm: sha256WithRSAEncryption 39:98:0a:c9:10:84:90:f6:89:fa:13:6c:69:aa:84:24:2e:d3: 28:2d:28:50:8d:0c:3e:56:01:5f:44:66:88:8b:c2:f8:a5:f6: 9f:65:2a:38:01:a6:8b:c4:92:5f:0a:b0:7d:c8:61:cf:38:05: fd:15:74:f3:8b:14:9c:5e:92:a1:33:da:eb:82:66:15:37:d2: 71:82:b9:20:9f:57:78:24:11:18:8b:c5:78:3d:ff:e5:f6:f0: 88:ca:b3:c6:8b:c2:a8:8d:5e:2c:25:50:3a:1e:c5:31:74:7e: 9e:ff:06:7b:4b:41:af:f2:93:76:08:c9:22:db:fd:f1:55:e6: 2c:e1:10:28:18:6b:e3:d2:bb:d5:d8:b7:fe:b9:b0:d3:d3:c0: 1a:c3:ff:66:2e:90:02:91:c8:05:44:e5:5b:68:2b:91:7a:f5: a1:b0:61:33:70:d8:36:f5:ad:86:af:ad:04:d5:ce:13:93:e9: 6b:e2:4d:97:d3:75:ff:66:b6:1f:aa:81:c5:4f:3b:5f:5a:62: a9:01:0f:ed:93:7d:bf:6c:fc:96:4c:d5:dc:22:82:5c:e9:1c: f5:a6:fa:4f:d4:06:cc:86:28:74:b9:34:01:9c:10:f3:cd:51: 25:dd:99:12:a4:64:8f:cc:91:80:84:85:ef:30:a8:37:74:3f: 96:4f:34:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjQwODIyMjEzOTUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3YjAyOS01ZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aAMxXn0c6jzYQQA9079rD1EUr9f9/jPv6K+ftD4gn6Xzg3DSoV/rwvf+Ij8 p78b8tIsWi091dVyUKu6HJc/ncPKo6h4eoQ/naKbb/PhW6WE768NxZV4lrdTcjkV wOOqvDz4QXuZ5UXQnmC0EQx2aYoiycIxxcAUJX5Cjqs9r4OO6Ord3Vn4+ReliKsl Osj0RdUFZTlDvLRW95pKuVc0RDGN4qbefzkJDv83ajfeOElbFtQ8GpDQ8p37vSQb jiDhueGGPP5XYg86aG1jOCxJnO9sEghV3T7d8GimkpCBiXu5pDvIYQhZXF7Ee+T8 yehmQ2G9ty1c6ilLmdFhcstvpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDfN9Lg1 1Q1vG2zOwKOIWP1XaGhuMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ4MzQvNTFCRURGQzRDQzhEMTFFQUFGRkVEQjM2QzRGOUFFMDIvQzI4NkJFNDBD NEM3MTFFREFGQTlBRjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtfTMwDQYJKoZIhvcNAQELBQADggEBADmYCskQhJD2ifoT bGmqhCQu0ygtKFCNDD5WAV9EZoiLwvil9p9lKjgBpovEkl8KsH3IYc84Bf0VdPOL FJxekqEz2uuCZhU30nGCuSCfV3gkERiLxXg9/+X28IjKs8aLwqiNXiwlUDoexTF0 fp7/BntLQa/yk3YIySLb/fFV5izhECgYa+PSu9XYt/65sNPTwBrD/2YukAKRyAVE 5VtoK5F69aGwYTNw2Db1rYavrQTVzhOT6WviTZfTdf9mth+qgcVPO19aYqkBD+2T fb9s/JZM1dwiglzpHPWm+k/UBsyGKHS5NAGcEPPNUSXdmRKkZI/MkYCEhe8wqDd0 P5ZPNIk= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:46 2024 by rpki-client on console-fra.rpki-client.org