$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa File: 3C52563E781F11EE9787607FC4F9AE02.roa (raw, json) Hash identifier: 0bgef1HoOJUlJF+Pq5efX6bYiWvNFCdJrO6WEDGbgUI= Subject key identifier: DE:43:F5:3C:19:82:61:36:0D:4E:83:1A:B3:77:77:F4:97:B1:65:A2 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0808 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa Signing time: Tue 02 Apr 2024 22:31:03 +0000 ROA not before: Tue 02 Apr 2024 22:31:03 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 26496 IP address blocks: 148.66.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Apr 2 22:31:03 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c8727-41f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:e0:56:f1:58:e6:4a:67:e1:e1:0b:d5:1a: 0c:01:d7:51:43:e2:d2:36:66:c9:63:7e:1a:32:33: 2f:93:c8:81:af:35:dc:46:2a:60:cf:43:44:f6:03: 33:53:01:28:5d:99:fe:0b:68:e7:48:87:04:0a:68: c5:eb:8a:e8:9f:ca:00:46:b5:ba:ec:67:b5:f0:5d: 1e:18:2b:93:dd:29:24:8f:bd:e0:34:71:2e:78:17: 4e:4c:d9:d5:23:d5:51:cc:b1:59:3e:a3:a8:68:82: a2:f7:c1:3c:6c:63:9e:69:47:02:1f:02:74:c1:67: 40:e5:16:ae:f3:c6:3a:52:d9:8a:7d:c1:6a:07:34: fc:b5:87:cf:26:1d:a8:7b:ee:1d:69:99:f5:be:45: 32:07:99:77:e6:14:4a:1c:eb:67:ea:f0:87:34:8c: 9b:c3:cc:64:ac:9f:97:2b:59:5d:6b:7f:33:79:df: 68:72:e4:0a:a2:85:d5:4e:ec:b5:0b:60:20:da:01: 11:eb:c4:eb:d4:11:3b:f5:f7:15:2f:ab:bd:88:a6: 7e:55:78:40:86:66:df:5d:d3:5b:09:64:78:09:3e: 36:a0:12:c5:c2:63:45:27:86:e3:3e:a8:a0:53:09: 81:e7:fb:19:08:50:de:a0:f5:04:f9:af:c0:78:d4: 0d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:43:F5:3C:19:82:61:36:0D:4E:83:1A:B3:77:77:F4:97:B1:65:A2 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.66.128.0/19 Signature Algorithm: sha256WithRSAEncryption 95:0c:b5:03:52:11:ee:1b:3a:8d:24:e4:67:76:a7:e2:36:40: dd:68:9f:f9:72:67:b4:60:18:ae:d7:36:d0:c8:95:dc:63:e0: b9:52:da:2b:9f:13:19:c8:ff:3d:44:dc:90:66:62:67:7b:36: 0c:09:8c:5e:d0:5e:96:bc:09:a4:59:3f:c6:43:65:68:71:34: 84:06:3a:05:cb:a7:e8:18:89:81:67:5d:51:82:48:35:c3:74: 8c:97:06:8f:54:fa:64:75:84:c6:ad:89:72:9b:08:09:d6:49: 4f:4b:b7:41:be:e8:76:49:fe:71:2a:3f:05:29:9b:d9:08:c2: 40:eb:83:0c:5a:72:c7:50:72:d7:8f:c0:bf:76:45:44:72:49: 4e:c5:be:22:4f:2c:ad:f7:fc:29:63:f0:05:29:51:2a:af:b1: 00:ed:84:bf:ec:4d:b8:64:fc:ad:2f:b7:f4:06:a7:96:59:b7: 1d:54:9f:df:5f:ce:a1:04:d3:00:17:37:dc:e0:47:51:79:82: e1:0d:f2:42:e8:1b:f9:5c:a4:a2:c5:a1:8c:01:68:8e:0f:5c: ae:b1:04:6f:97:78:07:43:d7:b2:f6:71:63:d5:d8:be:f3:4d: f6:60:75:7f:8d:a0:61:d5:d5:cd:53:ea:74:ed:62:af:c6:79: 75:00:21:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjQwNDAyMjIzMTAzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjODcyNy00MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQDgVvFY5kpn4eEL1RoMAddRQ+LSNmbJY34aMjMvk8iBrzXcRipgz0NE9gMz UwEoXZn+C2jnSIcECmjF64ron8oARrW67Ge18F0eGCuT3Skkj73gNHEueBdOTNnV I9VRzLFZPqOoaIKi98E8bGOeaUcCHwJ0wWdA5Rau88Y6UtmKfcFqBzT8tYfPJh2o e+4daZn1vkUyB5l35hRKHOtn6vCHNIybw8xkrJ+XK1lda38zed9ocuQKooXVTuy1 C2Ag2gER68Tr1BE79fcVL6u9iKZ+VXhAhmbfXdNbCWR4CT42oBLFwmNFJ4bjPqig UwmB5/sZCFDeoPUE+a/AeNQNKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN5D9TwZ gmE2DU6DGrN3d/SXsWWiMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMDMxMTYzMTJBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvM0M1MjU2M0U3 ODFGMTFFRTk3ODc2MDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWUQoAwDQYJKoZIhvcNAQELBQADggEBAJUMtQNSEe4bOo0k 5Gd2p+I2QN1on/lyZ7RgGK7XNtDIldxj4LlS2iufExnI/z1E3JBmYmd7NgwJjF7Q Xpa8CaRZP8ZDZWhxNIQGOgXLp+gYiYFnXVGCSDXDdIyXBo9U+mR1hMatiXKbCAnW SU9Lt0G+6HZJ/nEqPwUpm9kIwkDrgwxacsdQctePwL92RURySU7FviJPLK33/Clj 8AUpUSqvsQDthL/sTbhk/K0vt/QGp5ZZtx1Un99fzqEE0wAXN9zgR1F5guEN8kLo G/lcpKLFoYwBaI4PXK6xBG+XeAdD17L2cWPV2L7zTfZgdX+NoGHV1c1T6nTtYq/G eXUAIYM= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org