$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa File: A64C29AA3D9811EE88B2694CC4F9AE02.roa (raw, json) Hash identifier: P543uAxi61jv6pAr/0Afy+uliwnXO1AO2KiTZ1BtODA= Subject key identifier: 0F:AC:89:E7:29:04:5F:F0:77:23:85:25:57:87:57:01:46:64:C9:9F Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 07E3 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa Signing time: Tue 28 May 2024 23:03:09 +0000 ROA not before: Tue 28 May 2024 23:03:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 36131 IP address blocks: 169.136.68.0/24 maxlen: 24 169.136.69.0/24 maxlen: 24 169.136.70.0/24 maxlen: 24 169.136.71.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.73.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.132.0/24 maxlen: 24 169.136.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2019 (0x7e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: May 28 23:03:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665662ad-ad6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c7:a1:dc:25:f9:84:d6:99:68:e8:a9:65:54: cd:38:4d:9a:ab:e1:78:2e:d1:6c:d8:ba:65:88:89: 1a:fc:77:36:64:8e:4f:15:d7:81:f2:94:81:8c:b8: 33:c4:a3:40:84:cb:4a:da:bc:d7:a3:b6:bd:30:56: 6e:73:63:3a:2e:fb:99:66:ee:8e:e5:94:ae:88:a8: 21:2c:aa:9f:b0:9b:fc:8a:07:f1:c6:b5:43:4c:77: c5:12:6e:c3:9b:4c:50:80:d4:9c:80:ff:e5:f3:56: 70:19:cd:bb:1c:b0:fe:c0:1b:22:cd:5b:10:bd:d6: 9d:90:c1:c7:e6:2d:6a:a0:62:21:70:cd:39:7b:33: 79:ac:c9:90:36:fc:55:21:10:45:c4:7b:06:9a:e7: bb:0f:fa:bc:ea:a2:74:87:92:b7:40:49:3f:a6:ca: a9:40:a4:60:d4:15:0e:52:6c:4f:80:65:07:84:5a: fa:86:ac:30:82:65:79:e8:0a:a3:5a:45:9e:4b:ea: 0c:bf:3f:03:36:22:53:19:fc:8f:3e:21:62:62:48: fa:27:02:c6:08:1e:52:b3:f1:94:a4:a5:19:49:aa: 92:0a:87:d8:5d:9e:31:6b:34:3c:2c:29:c5:bc:db: d8:6e:e2:00:58:71:3e:2e:b6:6c:ce:66:ee:b8:1d: 86:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AC:89:E7:29:04:5F:F0:77:23:85:25:57:87:57:01:46:64:C9:9F X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.68.0-169.136.73.255 169.136.128.0/24 169.136.130.0/24 169.136.132.0/24 169.136.141.0/24 Signature Algorithm: sha256WithRSAEncryption 81:fb:10:c3:31:8c:17:fc:d5:72:cf:1f:16:13:05:c8:cc:5b: 56:b3:6a:7c:06:e5:43:f3:52:22:88:ca:2c:48:6b:ff:27:dd: c4:90:04:a9:ef:0c:28:c1:f4:1f:73:0b:5f:a8:78:0e:a0:8b: a6:86:96:7a:c5:06:3d:d8:95:04:e2:e6:43:5c:30:fa:2d:3a: 64:fd:fc:f7:d8:91:5a:00:5d:41:4c:8b:54:b5:0b:2a:07:a9: 3f:71:c3:d7:db:47:2f:d6:7f:c4:8d:d0:97:bb:0a:98:c3:90: 97:a7:30:20:5f:d8:48:9e:88:b6:dd:a3:b9:03:9c:be:8b:c3: cc:3d:f8:1d:bd:6b:7d:c7:11:25:a0:fa:3b:e7:96:05:4d:2a: b9:87:26:16:e9:7f:70:19:ac:d8:4e:24:ca:f3:a9:ba:46:61: 2b:b6:7f:46:0b:77:0f:30:42:13:71:65:8c:cb:fa:d8:66:fd: 8f:42:24:33:0e:32:f5:7c:48:8d:96:e2:c4:c8:ea:a3:38:39: bb:22:1e:79:9d:32:5d:18:6d:10:79:7e:d0:40:ec:c0:c3:6a: 01:88:fe:e6:d6:31:1d:61:5b:33:30:a8:c0:41:38:06:22:45: a9:6a:dd:89:95:b1:fa:8c:d7:ee:76:ea:11:a5:0f:62:51:28: d6:2f:86:ea -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjQwNTI4MjMwMzA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NjJhZC1hZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnseh3CX5hNaZaOipZVTNOE2aq+F4LtFs2LpliIka/Hc2ZI5PFdeB8pSBjLgz xKNAhMtK2rzXo7a9MFZuc2M6LvuZZu6O5ZSuiKghLKqfsJv8igfxxrVDTHfFEm7D m0xQgNScgP/l81ZwGc27HLD+wBsizVsQvdadkMHH5i1qoGIhcM05ezN5rMmQNvxV IRBFxHsGmue7D/q86qJ0h5K3QEk/psqpQKRg1BUOUmxPgGUHhFr6hqwwgmV56Aqj WkWeS+oMvz8DNiJTGfyPPiFiYkj6JwLGCB5Ss/GUpKUZSaqSCofYXZ4xazQ8LCnF vNvYbuIAWHE+LrZszmbuuB2GowIDAQABo4ICtTCCArEwHQYDVR0OBBYEFA+siecp BF/wdyOFJVeHVwFGZMmfMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQTY0QzI5QUEz RDk4MTFFRTg4QjI2OTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYwDAMEAqmIRAMEAamISAMEAKmIgAMEAKmIggMEAKmIhAMEAKmI jTANBgkqhkiG9w0BAQsFAAOCAQEAgfsQwzGMF/zVcs8fFhMFyMxbVrNqfAblQ/NS IojKLEhr/yfdxJAEqe8MKMH0H3MLX6h4DqCLpoaWesUGPdiVBOLmQ1ww+i06ZP38 99iRWgBdQUyLVLULKgepP3HD19tHL9Z/xI3Ql7sKmMOQl6cwIF/YSJ6Itt2juQOc vovDzD34Hb1rfccRJaD6O+eWBU0quYcmFul/cBms2E4kyvOpukZhK7Z/Rgt3DzBC E3FljMv62Gb9j0IkMw4y9XxIjZbixMjqozg5uyIeeZ0yXRhtEHl+0EDswMNqAYj+ 5tYxHWFbMzCowEE4BiJFqWrdiZWx+ozX7nbqEaUPYlEo1i+G6g== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org