$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa File: 909AA4DC567011EFA451BD7CC4F9AE02.roa (raw, json) Hash identifier: bjEApDXzyRrXC/8zmtEFrhZSlQaCR7s98u4a/HKfriU= Subject key identifier: 29:3E:0B:44:EE:FC:67:8B:7C:0B:B5:10:0A:B7:65:76:F6:94:FD:B2 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 327A Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa Signing time: Fri 09 Aug 2024 16:58:13 +0000 ROA not before: Fri 09 Aug 2024 16:58:13 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 59211 IP address blocks: 116.251.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12922 (0x327a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Aug 9 16:58:13 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66b64aa5-e447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:e6:a3:7e:d2:46:42:e0:75:6b:a7:0e:3f: 82:bb:e5:c0:48:e0:8b:d5:06:a6:b2:7c:c6:f2:14: 91:cf:b3:3d:6e:a5:78:7c:21:65:56:db:b3:ec:5d: 62:9e:81:0e:96:c5:58:6d:eb:79:a4:14:69:2d:d8: a9:36:fd:98:d5:64:7c:9d:2b:73:37:ee:1a:01:b2: 9d:ac:ee:9d:8f:2b:9f:1d:05:86:f7:3c:af:49:54: b3:2d:00:4d:56:3e:bb:12:4f:b2:00:69:80:34:81: 04:a8:19:51:88:e5:98:95:39:cb:79:10:b4:51:18: 18:48:47:5f:83:28:16:c2:50:d0:d7:0e:ec:5f:f4: ed:93:e8:84:07:7c:e6:0d:f6:6f:78:9b:65:fd:f2: 7c:4a:5f:82:65:9a:eb:3e:5e:32:a9:58:d3:03:3b: 16:93:44:f4:bb:65:cd:12:e6:50:9f:66:63:fc:cf: 6d:24:b6:f2:fc:3a:a0:84:6f:51:d9:b7:eb:47:e0: b0:56:a0:98:ec:fd:6a:14:73:65:5f:27:33:8a:24: d2:99:ec:73:a7:3c:cb:22:b3:db:7e:1f:1b:a1:0d: 43:bd:f6:f1:a9:3e:71:c1:d5:82:91:35:ec:ec:8a: 57:ad:76:e9:e9:01:78:df:61:79:78:89:d8:fd:60: eb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3E:0B:44:EE:FC:67:8B:7C:0B:B5:10:0A:B7:65:76:F6:94:FD:B2 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.251.216.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:92:aa:91:fd:a8:3a:80:71:5a:d1:aa:c2:10:d6:7f:c7:29: 3e:5f:59:e8:e5:5a:a1:a7:bb:7e:a9:3b:bf:bd:c7:bd:b9:9d: b5:5a:16:72:61:cd:6c:e7:b1:ad:77:b2:1e:53:69:e9:5e:ab: 25:0b:85:c9:50:55:cb:04:69:6c:ac:4f:b6:00:90:cb:81:38: cd:0f:b5:f5:05:80:c3:c1:5e:f8:22:5e:1d:29:38:03:f6:32: 29:8f:85:57:7e:97:7d:11:c3:fa:ef:e8:5d:dc:4a:4a:71:ca: a8:53:b5:fa:a9:98:b9:32:b1:c0:1f:8a:2a:b0:66:60:4c:f1: e0:eb:7d:2e:e9:d5:12:a4:8c:2f:b8:ce:41:11:3e:25:b4:cd: 4b:92:97:a1:0b:b4:c4:19:43:63:d0:ac:72:02:fa:10:37:17: 7c:be:0d:c6:ab:5a:92:9f:c1:78:da:59:8e:da:43:06:d1:90: 62:13:4d:f3:49:70:d2:02:f7:4a:74:ae:e4:3b:4e:07:f9:1c: 99:f9:ec:dc:e3:7a:84:27:7c:22:6a:be:8a:a9:94:75:ed:f1: ac:48:5b:72:69:7e:d9:25:18:b7:5e:93:41:a2:57:03:f8:31: 74:34:62:cd:30:9d:b5:c2:2f:be:5b:c6:a9:24:6f:4c:af:62: 2a:36:dc:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjQwODA5MTY1ODEzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI2NGFhNS1lNDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL3mo37SRkLgdWunDj+Cu+XASOCL1QamsnzG8hSRz7M9bqV4fCFlVtuz7F1i noEOlsVYbet5pBRpLdipNv2Y1WR8nStzN+4aAbKdrO6djyufHQWG9zyvSVSzLQBN Vj67Ek+yAGmANIEEqBlRiOWYlTnLeRC0URgYSEdfgygWwlDQ1w7sX/Ttk+iEB3zm DfZveJtl/fJ8Sl+CZZrrPl4yqVjTAzsWk0T0u2XNEuZQn2Zj/M9tJLby/DqghG9R 2bfrR+CwVqCY7P1qFHNlXycziiTSmexzpzzLIrPbfh8boQ1DvfbxqT5xwdWCkTXs 7IpXrXbp6QF432F5eInY/WDrrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCk+C0Tu /GeLfAu1EAq3ZXb2lP2yMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NjMvQkZFNTRBNjg4MTVCMTFFMjlCNThBNzNCMzI5MkI1RTgvOTA5QUE0REM1 NjcwMTFFRkE0NTFCRDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN0+9gwDQYJKoZIhvcNAQELBQADggEBACySqpH9qDqAcVrR qsIQ1n/HKT5fWejlWqGnu36pO7+9x725nbVaFnJhzWznsa13sh5TaeleqyULhclQ VcsEaWysT7YAkMuBOM0PtfUFgMPBXvgiXh0pOAP2MimPhVd+l30Rw/rv6F3cSkpx yqhTtfqpmLkyscAfiiqwZmBM8eDrfS7p1RKkjC+4zkERPiW0zUuSl6ELtMQZQ2PQ rHIC+hA3F3y+DcarWpKfwXjaWY7aQwbRkGITTfNJcNIC90p0ruQ7Tgf5HJn57Nzj eoQnfCJqvoqplHXt8axIW3JpftklGLdek0GiVwP4MXQ0Ys0wnbXCL75bxqkkb0yv Yio23PQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:05 2024 by rpki-client on console-ams.rpki-client.org