$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa File: 43AB9FC641A311ECA73C8C0EC4F9AE02.roa (raw, json) Hash identifier: qkuJyiuag7r0VmHzzxIeNNPZvE1YemZEbkXs9TYwx5o= Subject key identifier: 61:B8:58:27:A8:2F:44:4C:5A:F9:11:4C:EB:E6:9F:94:C1:F6:B4:1A Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 049F Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa Signing time: Tue 24 Sep 2024 16:54:19 +0000 ROA not before: Tue 24 Sep 2024 16:54:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 213.170.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 24 16:54:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2eebb-475e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:12:12:d3:d8:13:5c:96:4e:42:4d:25:27:db: d2:43:3c:59:e1:95:e3:ba:11:2f:76:5c:ab:dd:64: 60:7c:b4:82:be:5b:02:67:de:f7:69:e4:6c:de:38: d6:b8:ab:aa:66:ff:65:71:bc:da:49:35:2a:fc:39: be:d3:0e:a6:e6:55:a2:49:25:84:f7:b0:a4:ff:fc: cc:86:e7:a1:74:da:ef:a3:8c:da:ff:55:b2:11:15: bd:7f:68:0e:65:ad:f8:76:f7:b9:5c:86:f3:94:3b: cc:44:c0:ba:6b:16:01:68:58:cc:c2:13:93:89:f6: 99:88:6b:16:37:3d:ef:b3:40:15:8c:3e:4f:a5:22: a1:a5:bd:89:0c:50:3e:28:98:9b:38:d8:79:61:f8: d2:80:b7:a6:af:4e:3c:1f:a5:3a:76:6a:50:7a:83: 0b:c1:24:bd:e9:a7:d7:cf:90:55:b0:db:4d:9b:d9: e0:71:d0:90:33:26:e3:3d:36:b4:fd:fe:da:f9:76: 2a:fa:e8:7f:ca:40:00:c2:84:8f:78:7c:e3:cc:a3: 98:33:e7:1f:c2:64:54:02:39:a6:dd:92:b8:be:c7: 60:0b:73:26:5c:93:36:fa:6b:9a:bf:51:6b:f6:c3: 24:bb:77:9a:c2:a7:b7:4a:3a:f0:13:9f:01:1b:ab: 14:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B8:58:27:A8:2F:44:4C:5A:F9:11:4C:EB:E6:9F:94:C1:F6:B4:1A X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption 63:ea:f1:0b:03:9f:54:4c:38:c0:c9:bb:88:d7:c7:59:10:d9: a8:70:78:18:46:a3:7a:a2:22:a1:e3:e1:40:27:b1:b9:d2:67: a6:05:5f:79:1c:68:f3:35:70:39:08:d5:75:56:c7:fa:1d:1c: 1a:5c:96:ce:53:9e:10:bd:21:86:0c:35:2e:2c:bd:d4:a9:e6: 12:76:39:68:2b:85:4a:e9:fa:0e:47:41:df:6d:f6:e2:bc:27: c2:3b:57:af:00:e7:19:c0:d4:f4:23:98:02:16:1b:e4:4e:37: 15:a1:aa:8e:2b:9e:d5:15:f2:d0:e1:cd:4f:16:76:bf:52:ff: 4a:99:3a:eb:1e:7b:2a:21:51:3b:19:2c:2f:a2:42:df:19:bd: f5:89:5c:3f:cb:5e:10:2d:2b:85:01:8c:d0:a9:ea:3b:7d:a3: e2:0b:ba:63:6f:ca:65:01:73:52:f3:56:34:2f:65:84:7e:cb: 0d:82:ca:ce:58:25:f3:4a:88:32:6c:70:d3:56:a8:00:84:6d: dd:1f:e7:b1:d5:ec:11:59:87:80:3e:df:87:3b:82:49:15:fa: 75:cd:95:6a:89:5e:38:32:62:8a:b2:f6:10:fe:57:5e:97:93: e7:22:7e:49:a5:23:19:07:64:be:1f:b2:85:25:44:59:07:89: 37:46:dc:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjQwOTI0MTY1NDE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZWViYi00NzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BIS09gTXJZOQk0lJ9vSQzxZ4ZXjuhEvdlyr3WRgfLSCvlsCZ973aeRs3jjW uKuqZv9lcbzaSTUq/Dm+0w6m5lWiSSWE97Ck//zMhuehdNrvo4za/1WyERW9f2gO Za34dve5XIbzlDvMRMC6axYBaFjMwhOTifaZiGsWNz3vs0AVjD5PpSKhpb2JDFA+ KJibONh5YfjSgLemr048H6U6dmpQeoMLwSS96afXz5BVsNtNm9ngcdCQMybjPTa0 /f7a+XYq+uh/ykAAwoSPeHzjzKOYM+cfwmRUAjmm3ZK4vsdgC3MmXJM2+muav1Fr 9sMku3eawqe3SjrwE58BG6sUBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGG4WCeo L0RMWvkRTOvmn5TB9rQaMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvNDNBQjlGQzY0 MUEzMTFFQ0E3M0M4QzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALVqpwwDQYJKoZIhvcNAQELBQADggEBAGPq8QsDn1RMOMDJ u4jXx1kQ2ahweBhGo3qiIqHj4UAnsbnSZ6YFX3kcaPM1cDkI1XVWx/odHBpcls5T nhC9IYYMNS4svdSp5hJ2OWgrhUrp+g5HQd9t9uK8J8I7V68A5xnA1PQjmAIWG+RO NxWhqo4rntUV8tDhzU8Wdr9S/0qZOuseeyohUTsZLC+iQt8ZvfWJXD/LXhAtK4UB jNCp6jt9o+ILumNvymUBc1LzVjQvZYR+yw2Cys5YJfNKiDJscNNWqACEbd0f57HV 7BFZh4A+34c7gkkV+nXNlWqJXjgyYoqy9hD+V16Xk+cifkmlIxkHZL4fsoUlRFkH iTdG3Fo= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:06 2024 by rpki-client on console-fra.rpki-client.org