$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa File: B59B34B2A59511EFB1B8AF36C4F9AE02.roa (raw, json) Hash identifier: eiCuC1YeFyOuHPZHqPQ601dUszGySRFgdPdOWzMPWtY= Subject key identifier: 82:55:11:70:42:74:68:3E:DD:E1:0E:0D:7E:27:D6:25:9E:6C:9C:12 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 0843 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa Signing time: Mon 18 Nov 2024 10:13:09 +0000 ROA not before: Mon 18 Nov 2024 10:13:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 212879 IP address blocks: 169.136.64.0/24 maxlen: 24 169.136.65.0/24 maxlen: 24 169.136.67.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.133.0/24 maxlen: 24 169.136.145.0/24 maxlen: 24 169.136.147.0/24 maxlen: 24 169.136.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Nov 18 10:13:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673b1334-3296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c4:ff:e6:e1:4e:f0:b9:55:11:89:91:f3:51: 6c:2b:aa:2d:11:5f:91:25:1c:d9:bf:a2:3b:21:62: cf:ef:39:07:c3:b6:90:73:8e:b5:9f:a9:02:31:4a: af:45:5f:8f:9b:2d:26:f1:fa:33:11:be:23:3f:8e: fd:e7:ab:7c:c5:7e:7a:3b:da:ca:0b:57:44:c9:60: 36:ec:6c:1f:fc:69:f5:8b:d9:bd:2f:d9:55:b3:8c: 8b:f6:6b:de:5b:7e:f2:33:99:e8:b8:92:b8:80:55: 41:19:75:e4:54:56:9c:1f:6d:22:12:c6:09:91:c6: 0e:ab:6e:08:85:0b:00:ba:2b:2c:d3:03:a6:1a:7e: d7:8e:c4:70:1c:f8:c2:32:d3:72:eb:74:5a:c1:80: 33:01:9a:e9:22:00:2e:21:9c:8b:56:a8:f6:e4:47: 25:ed:7b:e1:70:25:b2:20:59:f3:de:23:7f:93:a0: dd:08:52:95:04:39:ad:9f:2a:68:20:2d:08:d8:89: 1a:8e:ac:c4:e6:5e:e5:72:f1:56:c7:0f:66:44:b1: 08:80:42:32:56:d8:28:72:8b:fb:ea:d8:a6:73:ec: 9e:11:85:fe:b6:a0:76:e5:90:bf:be:72:37:fd:61: 1a:a5:e6:75:9c:37:80:64:06:f1:51:d3:2c:7d:8a: 34:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:55:11:70:42:74:68:3E:DD:E1:0E:0D:7E:27:D6:25:9E:6C:9C:12 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.64.0/23 169.136.67.0/24 169.136.72.0/24 169.136.133.0/24 169.136.145.0/24 169.136.147.0/24 169.136.154.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:df:db:68:d0:04:92:f2:36:6c:46:61:1b:b5:db:fb:33:5a: f0:f4:e5:cc:d4:d4:01:5d:b6:65:38:63:9c:56:4b:ce:db:8a: 0b:13:da:80:b6:0c:15:86:ac:f3:14:d6:c4:ab:40:f6:1b:72: 9f:3f:37:f3:e2:95:58:e3:0b:79:b4:29:72:d5:f0:e9:69:82: 6e:25:67:c2:38:0c:44:1a:08:13:3a:0c:29:8f:78:2e:d8:6b: 71:aa:82:ee:09:47:22:12:a7:0e:b2:aa:2f:26:92:4c:aa:72: 30:8b:c3:d8:07:ab:7f:29:36:99:b8:38:f9:da:2c:6d:86:04: 61:db:e0:f9:f8:43:e3:e3:09:7b:4b:4a:15:1a:2e:27:6c:e5: c9:3f:a4:93:51:78:6d:a9:13:f2:7e:9c:91:4d:52:54:41:ad: 5a:8a:c6:87:1f:43:00:e8:b7:67:67:4b:05:4b:c4:4d:d4:a8: dd:ca:bc:a2:dc:c1:a1:64:9a:fd:31:d6:f5:f8:80:0d:2a:d4: 77:45:82:6f:1d:a3:78:60:c8:c3:e5:7b:9f:44:c6:de:66:5f: f8:f1:bb:46:ff:ce:e8:5b:67:70:ff:7b:ba:ac:e1:b5:7b:1b: 8d:16:d7:6c:5d:d5:cd:52:86:18:cf:66:b7:e7:3b:b2:93:ea: 5f:98:65:98 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjQxMTE4MTAxMzA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNiMTMzNC0zMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusT/5uFO8LlVEYmR81FsK6otEV+RJRzZv6I7IWLP7zkHw7aQc461n6kCMUqv RV+Pmy0m8fozEb4jP47956t8xX56O9rKC1dEyWA27Gwf/Gn1i9m9L9lVs4yL9mve W37yM5nouJK4gFVBGXXkVFacH20iEsYJkcYOq24IhQsAuiss0wOmGn7XjsRwHPjC MtNy63RawYAzAZrpIgAuIZyLVqj25Ecl7XvhcCWyIFnz3iN/k6DdCFKVBDmtnypo IC0I2IkajqzE5l7lcvFWxw9mRLEIgEIyVtgocov76timc+yeEYX+tqB25ZC/vnI3 /WEapeZ1nDeAZAbxUdMsfYo0SQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFIJVEXBC dGg+3eEODX4n1iWebJwSMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQjU5QjM0QjJB NTk1MTFFRkIxQjhBRjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAGpiEADBACpiEMDBACpiEgDBACpiIUDBACpiJEDBACpiJMD BACpiJowDQYJKoZIhvcNAQELBQADggEBAH7f22jQBJLyNmxGYRu12/szWvD05czU 1AFdtmU4Y5xWS87bigsT2oC2DBWGrPMU1sSrQPYbcp8/N/PilVjjC3m0KXLV8Olp gm4lZ8I4DEQaCBM6DCmPeC7Ya3Gqgu4JRyISpw6yqi8mkkyqcjCLw9gHq38pNpm4 OPnaLG2GBGHb4Pn4Q+PjCXtLShUaLids5ck/pJNReG2pE/J+nJFNUlRBrVqKxocf QwDot2dnSwVLxE3UqN3KvKLcwaFkmv0x1vX4gA0q1HdFgm8do3hgyMPle59Ext5m X/jxu0b/zuhbZ3D/e7qs4bV7G40W12xd1c1ShhjPZrfnO7KT6l+YZZg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org