$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa File: FE60ECB0879311EB84047577C4F9AE02.roa (raw, json) Hash identifier: 7JqfyMrbJ4CL7Io5TdtHAHWsu8lXWZvGXH4eXClkDWI= Subject key identifier: 20:53:07:63:C2:E2:DE:D3:B9:FF:B5:05:7D:1A:63:0F:2C:43:49:75 Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 07D9 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa Signing time: Wed 14 Aug 2024 21:39:45 +0000 ROA not before: Wed 14 Aug 2024 21:39:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 18422 IP address blocks: 140.96.0.0/16 maxlen: 19 140.96.0.0/18 maxlen: 24 140.96.2.0/24 maxlen: 24 140.96.4.0/23 maxlen: 23 140.96.4.0/24 maxlen: 24 140.96.10.0/23 maxlen: 24 140.96.64.0/19 maxlen: 23 140.96.64.0/20 maxlen: 24 140.96.80.0/21 maxlen: 24 140.96.88.0/22 maxlen: 24 140.96.92.0/23 maxlen: 24 140.96.94.0/24 maxlen: 24 140.96.100.0/22 maxlen: 24 140.96.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2009 (0x7d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Aug 14 21:39:45 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bd2420-e3f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:de:0b:15:04:ea:11:14:83:70:83:ae:f0:21: 6c:c7:03:9b:ca:90:c5:20:21:15:4b:da:ec:38:e5: 16:46:43:80:2d:42:5e:d3:55:9d:80:63:7c:0b:19: 03:22:d9:f3:68:0c:3d:05:2d:aa:e4:22:3d:2d:61: e6:24:62:af:3a:6e:37:c5:09:87:dd:c5:f8:c0:47: 00:a3:66:a3:92:bc:e0:c7:42:8c:79:aa:f2:2a:b2: 03:4f:27:a5:e9:c2:62:bc:9c:68:57:ff:00:38:48: dc:97:7b:85:8b:ef:be:ee:62:8d:8a:4c:71:84:55: b5:fd:06:2b:09:be:09:44:0f:a6:9b:20:d9:4f:51: 0f:9a:e0:95:10:c9:5c:e6:6e:09:b9:93:c4:f3:4d: 25:a9:1d:bf:ae:a5:ac:26:a5:88:62:32:c1:a5:fc: 11:3d:d5:c0:1a:c9:3a:3d:e3:c8:e9:49:b5:23:d2: be:57:42:32:bd:b3:23:29:d5:b5:1c:c0:3c:11:1f: c4:c5:28:06:89:cc:fa:01:b8:34:47:ff:aa:f8:1d: e8:f7:4d:57:21:45:79:9c:18:8f:c8:e9:1f:75:7b: 69:a7:a0:da:71:59:c4:6a:70:d1:aa:b5:74:f6:f5: 8b:f7:9e:c3:13:98:da:3a:99:08:e8:c6:83:63:eb: 71:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:53:07:63:C2:E2:DE:D3:B9:FF:B5:05:7D:1A:63:0F:2C:43:49:75 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:9c:1f:42:8c:00:79:13:38:64:0c:cd:7d:a6:b5:a0:e4:3f: 20:ef:77:22:a3:ca:5f:60:9d:c5:b4:03:82:d5:0f:08:36:10: bd:ee:66:64:b3:93:11:c7:0e:3a:f2:02:e2:13:67:a9:c3:1f: e3:4d:35:6e:e5:fc:d7:f7:34:e2:7f:4e:05:c9:14:49:7c:7e: cb:fa:e0:8e:9c:77:c4:ff:ad:a5:8f:aa:49:42:c1:e9:01:7b: 50:5d:16:50:88:e0:60:0b:7f:2e:86:a4:dc:f6:4a:49:a9:4e: 1f:f6:d2:90:97:f0:1f:9a:cd:61:39:f8:78:27:11:41:9f:0c: aa:28:7d:73:93:cb:9c:dd:98:df:ef:8f:ca:f1:76:2e:e4:12: b3:6e:60:76:eb:ae:29:9e:6e:8c:27:48:81:72:fc:6d:70:e1: 82:4e:f2:e6:a0:ac:d5:e3:f1:11:97:dd:06:4a:7b:a6:1c:cf: e5:88:f3:15:75:1b:98:50:70:4e:d8:e0:09:b8:92:05:ec:90: b5:fc:25:6a:eb:ee:36:e5:82:ce:49:eb:c8:bf:15:42:04:dd: 83:f3:16:02:8c:1c:09:0f:ca:a3:56:98:89:38:d9:a8:3d:e6: 77:aa:fc:db:9b:f4:3a:a4:32:3b:db:76:ae:b6:db:c5:04:ae: b6:f2:a8:3b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICB9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjQwODE0MjEzOTQ1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkMjQyMC1lM2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAud4LFQTqERSDcIOu8CFsxwObypDFICEVS9rsOOUWRkOALUJe01WdgGN8CxkD ItnzaAw9BS2q5CI9LWHmJGKvOm43xQmH3cX4wEcAo2ajkrzgx0KMearyKrIDTyel 6cJivJxoV/8AOEjcl3uFi+++7mKNikxxhFW1/QYrCb4JRA+mmyDZT1EPmuCVEMlc 5m4JuZPE800lqR2/rqWsJqWIYjLBpfwRPdXAGsk6PePI6Um1I9K+V0IyvbMjKdW1 HMA8ER/ExSgGicz6Abg0R/+q+B3o901XIUV5nBiPyOkfdXtpp6DacVnEanDRqrV0 9vWL957DE5jaOpkI6MaDY+tx2QIDAQABo4IClDCCApAwHQYDVR0OBBYEFCBTB2PC 4t7Tuf+1BX0aYw8sQ0l1MB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhCNkYvRTQ0OEJGMThDNEVGMTFFQTg3RjQzODEwQzRGOUFFMDIvRkU2MEVDQjA4 NzkzMTFFQjg0MDQ3NTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCMYDANBgkqhkiG9w0BAQsFAAOCAQEAjJwfQowAeRM4ZAzN faa1oOQ/IO93IqPKX2CdxbQDgtUPCDYQve5mZLOTEccOOvIC4hNnqcMf4001buX8 1/c04n9OBckUSXx+y/rgjpx3xP+tpY+qSULB6QF7UF0WUIjgYAt/Loak3PZKSalO H/bSkJfwH5rNYTn4eCcRQZ8Mqih9c5PLnN2Y3++PyvF2LuQSs25gduuuKZ5ujCdI gXL8bXDhgk7y5qCs1ePxEZfdBkp7phzP5YjzFXUbmFBwTtjgCbiSBeyQtfwlauvu NuWCzknryL8VQgTdg/MWAowcCQ/Ko1aYiTjZqD3md6r825v0OqQyO9t2rrbbxQSu tvKoOw== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org