$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa File: 2AECA58494EE11EE84F9D73CC4F9AE02.roa (raw, json) Hash identifier: +E0KzbFV6669WlE58ZMt1iHSfRG0oPeDGd3vMX3MCM8= Subject key identifier: BB:6F:15:06:47:38:C6:7A:F0:D0:0E:34:8A:6C:40:94:F4:BE:A1:69 Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Certificate serial: 0691 Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa Signing time: Thu 03 Oct 2024 06:19:08 +0000 ROA not before: Thu 03 Oct 2024 06:19:08 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 19551 IP address blocks: 166.81.2.0/24 maxlen: 24 166.81.63.0/24 maxlen: 24 166.81.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Validity Not Before: Oct 3 06:19:08 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66fe375c-5051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6e:48:9d:1c:4a:c0:e7:15:6b:76:29:ba:e1: 91:0a:0a:82:fa:b7:2f:a5:e9:cb:9c:40:63:f4:d0: df:9c:bb:74:75:e1:19:26:31:cc:1c:ce:40:15:ec: e7:09:5d:41:d5:0b:9c:8e:e8:ab:ae:9d:04:08:23: 95:a7:63:38:71:31:71:c1:ff:0c:c3:b5:5d:83:5e: 23:7e:a7:d0:fd:e6:db:ac:0f:ff:7d:31:a1:5c:c0: e5:ea:40:ce:c1:a6:c2:71:5f:a7:6c:a2:0e:32:a7: c7:55:af:70:11:c5:76:60:65:8a:32:67:cb:91:32: da:ed:f1:d1:f9:17:24:a7:19:7c:85:dc:37:cd:e3: 33:11:41:ab:6d:eb:77:8b:2e:4c:8c:e3:96:85:5c: ea:47:d7:de:60:f5:09:41:41:78:0d:7d:93:a9:b8: 81:6f:02:36:58:fe:81:ca:82:79:a3:86:0c:05:f6: ef:5b:11:8b:60:9c:b7:41:70:9a:dd:83:e8:ea:c1: 66:29:66:a5:35:41:1c:eb:39:35:1a:15:bd:d4:6d: 0a:65:3d:b9:af:b9:6a:1e:7b:38:05:ef:46:03:5b: ab:cc:bb:35:e0:f5:fb:b2:f6:7a:bd:6b:28:dc:3d: e2:d7:29:d3:d6:52:3d:4c:c9:56:2a:98:cf:72:a5: c6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6F:15:06:47:38:C6:7A:F0:D0:0E:34:8A:6C:40:94:F4:BE:A1:69 X509v3 Authority Key Identifier: keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.81.2.0/24 166.81.63.0/24 166.81.83.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:67:76:2d:4b:1c:b8:d5:7e:9d:b7:98:1c:5c:04:06:39:c2: 10:c0:57:a8:e7:5e:77:90:26:a2:24:f6:2d:6f:e7:05:14:b2: 13:e6:a1:96:77:a1:30:40:d1:a7:3e:c5:74:52:f6:c0:70:d5: c9:18:33:24:08:36:23:1c:8f:01:91:09:19:b7:fc:c9:45:c5: 38:37:1e:49:0e:97:61:fe:7e:6f:95:3c:8a:38:71:aa:50:86: 76:4d:68:f0:6a:4b:41:bf:93:14:84:58:f9:c2:f1:53:5b:84: db:e5:4a:95:38:11:6a:d7:85:76:b5:76:b0:d6:2a:fa:7d:76: 55:ff:d4:0e:fe:ea:08:08:8a:b2:44:ac:d8:32:46:18:22:fe: c2:5b:6e:db:0d:05:6f:2b:4f:24:2f:06:bc:25:f8:b2:de:9f: fa:ba:99:a4:ad:30:4f:b8:ac:79:e8:9d:5c:70:64:11:97:9a: 3b:c6:5c:9b:56:4a:a9:f2:e8:07:cd:1d:77:12:d9:a5:9d:4a: 66:e4:4f:38:a3:57:f8:4f:6b:76:c6:43:4b:74:d3:e9:2e:ef: 67:25:09:37:2c:a0:0e:ba:c1:b3:d2:12:39:13:bb:0e:f6:fe: c3:7e:4b:bb:b5:35:40:6f:c4:1b:62:50:a7:18:fd:c4:d7:ff: 87:12:12:05 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMUIxMTAvBgNVBAUTKDhCOEFENUNBMUMzRThCOENGNDY4QjVGNDk2QTkxQUJC MEU0OENGQTgwHhcNMjQxMDAzMDYxOTA4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMzc1Yy01MDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5W5InRxKwOcVa3YpuuGRCgqC+rcvpenLnEBj9NDfnLt0deEZJjHMHM5AFezn CV1B1Qucjuirrp0ECCOVp2M4cTFxwf8Mw7Vdg14jfqfQ/ebbrA//fTGhXMDl6kDO wabCcV+nbKIOMqfHVa9wEcV2YGWKMmfLkTLa7fHR+Rckpxl8hdw3zeMzEUGrbet3 iy5MjOOWhVzqR9feYPUJQUF4DX2TqbiBbwI2WP6ByoJ5o4YMBfbvWxGLYJy3QXCa 3YPo6sFmKWalNUEc6zk1GhW91G0KZT25r7lqHns4Be9GA1urzLs14PX7svZ6vWso 3D3i1ynT1lI9TMlWKpjPcqXGCwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLtvFQZH OMZ68NAONIpsQJT0vqFpMB8GA1UdIwQYMBaAFIuK1cocPouM9Gi19JapGrsOSM+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMxQi9EMEVDQ0Q0ODg5 M0QxMUVCOTE2REYwMjJDNEY5QUUwMi9pNHJWeWh3LWk0ejBhTFgwbHFrYXV3NUl6 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2k0clZ5aHctaTR6MGFMWDBscWthdXc1SXo2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMUIvRDBFQ0NENDg4OTNEMTFFQjkxNkRGMDIyQzRGOUFFMDIvMkFFQ0E1ODQ5 NEVFMTFFRTg0RjlENzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACmUQIDBACmUT8DBACmUVMwDQYJKoZIhvcNAQELBQADggEB AB5ndi1LHLjVfp23mBxcBAY5whDAV6jnXneQJqIk9i1v5wUUshPmoZZ3oTBA0ac+ xXRS9sBw1ckYMyQINiMcjwGRCRm3/MlFxTg3HkkOl2H+fm+VPIo4capQhnZNaPBq S0G/kxSEWPnC8VNbhNvlSpU4EWrXhXa1drDWKvp9dlX/1A7+6ggIirJErNgyRhgi /sJbbtsNBW8rTyQvBrwl+LLen/q6maStME+4rHnonVxwZBGXmjvGXJtWSqny6AfN HXcS2aWdSmbkTzijV/hPa3bGQ0t00+ku72clCTcsoA66wbPSEjkTuw72/sN+S7u1 NUBvxBtiUKcY/cTX/4cSEgU= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org