$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa File: 612992C6012A11EFB75C350FC4F9AE02.roa (raw, json) Hash identifier: sRBYkh+KNmPBKadIVSqR9N6xv1Wcld9AuPTlooAnu58= Subject key identifier: 70:DF:7B:E5:2B:42:30:F5:B2:7E:EC:8D:73:B4:0A:A7:60:54:1C:A6 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 44 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa Signing time: Mon 19 Aug 2024 07:09:12 +0000 ROA not before: Mon 19 Aug 2024 07:09:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14618 IP address blocks: 117.74.104.0/24 maxlen: 24 117.74.105.0/24 maxlen: 24 117.74.106.0/24 maxlen: 24 117.74.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Aug 19 07:09:12 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c2ef98-7c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:8c:63:7a:12:f9:53:97:6c:a8:06:b9:f5: 8e:1e:dc:e3:3f:e3:36:ed:68:67:24:10:46:b7:75: 48:db:d7:d0:27:66:d0:d5:48:c7:3b:8a:d6:ad:06: 68:f1:d6:da:93:c9:ea:2f:fd:09:2f:4d:8e:fc:34: 3f:40:b6:91:d5:1c:b8:90:14:22:48:39:06:19:0c: 13:49:af:c7:fe:47:a0:04:a0:44:cb:ee:30:62:3b: 10:7a:13:30:b8:fc:b5:c7:ff:90:3f:4a:7d:13:97: 99:02:05:75:5c:8f:fd:0a:ab:b9:88:7e:ac:98:aa: cf:51:2b:07:83:a6:c3:4f:57:ae:e1:f0:c4:c1:da: ba:34:76:08:d9:16:62:e8:5e:56:a8:a7:8d:4a:85: 27:88:27:ab:50:28:d1:d2:1d:6a:46:21:31:29:be: fd:46:62:cd:e8:5a:27:af:72:57:68:af:96:78:33: be:05:6b:3a:bd:bf:bd:ad:40:77:48:06:be:ba:fe: 80:45:0c:8b:e8:fd:c1:5b:5e:9f:01:ab:03:75:5c: 03:fb:df:3b:e0:5b:52:ba:ce:0b:e7:86:fc:7e:b1: af:94:1e:ac:bb:8e:64:26:71:56:5b:84:4f:a5:32: 6b:df:8c:49:67:a8:22:06:9c:27:b2:2b:38:26:42: 79:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:DF:7B:E5:2B:42:30:F5:B2:7E:EC:8D:73:B4:0A:A7:60:54:1C:A6 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.74.104.0/22 Signature Algorithm: sha256WithRSAEncryption 26:12:c7:d3:8a:a7:5f:12:ec:ae:01:32:4a:21:b2:7a:24:fd: a5:5c:51:ed:60:61:94:7e:fb:0f:b9:23:0e:a8:df:b5:8f:88: b7:c4:fd:f2:57:74:5f:33:25:b1:bc:ce:6a:2e:92:d1:c6:78: 4a:f7:65:58:5c:9b:e7:3c:b3:51:4b:fe:ca:f3:05:a3:c9:c5: 3f:5a:0a:e2:cd:60:83:4c:7a:2c:5f:4d:aa:11:47:98:c3:f2: 66:54:3c:d0:41:fc:53:c4:f7:f7:dd:45:2a:95:0b:4a:76:f4: c4:8e:03:af:35:b2:76:b6:7c:39:46:9e:33:9d:0d:ad:b6:6e: 57:53:53:b0:0b:0c:d7:76:91:34:e4:1a:5b:e6:dc:86:bb:c2: b1:90:fb:fe:eb:2d:a7:80:88:a2:f3:99:37:dc:61:af:6e:38: 29:61:ae:79:2e:6b:25:cb:06:dc:23:e6:ba:47:2f:ce:ef:0b: 91:5c:4c:e5:e0:88:ff:13:39:06:90:c6:5f:32:9f:e8:8f:c9: 19:af:cf:94:ae:0e:c8:ff:50:b0:6b:03:57:36:ef:93:58:7b: 0a:d9:da:50:a8:79:d4:fd:3b:55:95:84:4f:fa:28:1f:44:1a: 1c:7c:e8:69:1c:2f:c6:10:ee:6f:67:d3:ab:fa:f8:38:2c:e9: 9a:fa:da:e4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODk0RjExMC8GA1UEBRMoODVCMTRBODkwQjlCRDQ5ODBEOTdFNDFCQjM5MUZDQzk4 NTBGQ0I3ODAeFw0yNDA4MTkwNzA5MTJaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzJlZjk4LTdjNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBR4xjehL5U5dsqAa59Y4e3OM/4zbtaGckEEa3dUjb19AnZtDVSMc7itatBmjx 1tqTyeov/QkvTY78ND9AtpHVHLiQFCJIOQYZDBNJr8f+R6AEoETL7jBiOxB6EzC4 /LXH/5A/Sn0Tl5kCBXVcj/0Kq7mIfqyYqs9RKweDpsNPV67h8MTB2ro0dgjZFmLo Xlaop41KhSeIJ6tQKNHSHWpGITEpvv1GYs3oWievcldor5Z4M74Fazq9v72tQHdI Br66/oBFDIvo/cFbXp8BqwN1XAP73zvgW1K6zgvnhvx+sa+UHqy7jmQmcVZbhE+l MmvfjElnqCIGnCeyKzgmQnlFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcN975StC MPWyfuyNc7QKp2BUHKYwHwYDVR0jBBgwFoAUhbFKiQub1JgNl+Qbs5H8yYUPy3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4OTRGLzBBRjQ1RTM2MDEy QTExRUZBNUZEOTE2RkM0RjlBRTAyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGJGS2lRdWIxSmdObC1RYnM1SDh5WVVQeTNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi82MTI5OTJDNjAx MkExMUVGQjc1QzM1MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnVKaDANBgkqhkiG9w0BAQsFAAOCAQEAJhLH04qnXxLsrgEy SiGyeiT9pVxR7WBhlH77D7kjDqjftY+It8T98ld0XzMlsbzOai6S0cZ4SvdlWFyb 5zyzUUv+yvMFo8nFP1oK4s1gg0x6LF9NqhFHmMPyZlQ80EH8U8T3991FKpULSnb0 xI4DrzWydrZ8OUaeM50NrbZuV1NTsAsM13aRNOQaW+bchrvCsZD7/ustp4CIovOZ N9xhr244KWGueS5rJcsG3CPmukcvzu8LkVxM5eCI/xM5BpDGXzKf6I/JGa/PlK4O yP9QsGsDVzbvk1h7CtnaUKh51P07VZWET/ooH0QaHHzoaRwvxhDub2fTq/r4OCzp mvra5A== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org