$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa File: F688FE388C5611E792848B4AC4F9AE02.roa (raw, json) Hash identifier: cte7A2h9jLVlV8SfTGir4YQNSb45IiEg8uru+aQWy7s= Subject key identifier: 31:22:9A:B0:DB:19:C7:EF:D1:EF:11:B5:20:AB:1C:C4:29:21:B2:03 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 26AD Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa Signing time: Wed 10 Apr 2024 16:24:02 +0000 ROA not before: Wed 10 Apr 2024 16:24:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 46071 IP address blocks: 58.69.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9901 (0x26ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:24:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd22-c961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:f1:09:52:71:ee:17:ac:42:5a:06:1d:23: 73:02:22:61:8d:f8:f9:d7:80:aa:b6:76:32:b1:96: 3e:38:b9:0d:b9:3a:92:84:ca:15:e4:b1:76:10:89: e7:c8:6a:cb:58:9e:7f:1f:10:3b:cd:64:ef:05:56: 1c:d5:a0:e0:4a:77:ff:2a:eb:20:9b:30:f2:1a:b7: f2:ea:c9:4f:e2:2e:5f:e4:c6:27:52:a1:bf:d3:30: c9:cf:41:4a:68:a6:0b:15:4b:f9:49:1a:f1:ef:2b: f5:f6:f1:f2:0a:f8:43:e6:9a:6f:4e:f6:a8:6e:9b: 7b:86:f4:d6:7f:22:c9:95:73:73:ea:62:bc:c9:69: f8:d9:98:eb:39:7f:9a:83:d6:48:16:24:e6:7e:a5: 84:78:15:11:da:a0:63:c4:a2:cf:b2:bd:4c:fb:d2: ba:db:38:ec:15:9c:5f:ed:70:00:fb:d9:4d:7f:33: c8:29:3f:63:c8:1b:6f:83:45:df:1f:16:e1:f9:4e: 86:ab:b0:c5:8a:74:a7:10:91:38:f2:b2:ff:46:0d: 4d:b8:00:ac:46:47:eb:c6:d1:8e:8b:89:bf:f3:e9: d7:14:5b:01:a0:2e:57:a5:ea:f8:e7:9b:d3:ae:b8: 4f:ad:57:d0:67:20:80:fb:0b:b7:72:ee:bc:30:b2: 35:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:22:9A:B0:DB:19:C7:EF:D1:EF:11:B5:20:AB:1C:C4:29:21:B2:03 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/F688FE388C5611E792848B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.69.6.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:5c:5e:21:e0:c5:75:d3:1f:99:20:60:ab:e8:f8:ae:13:83: ba:69:92:c4:63:cc:73:2e:78:47:bb:7b:1e:60:12:ef:b1:04: e4:f6:e3:75:35:ef:3f:3e:b2:d6:6e:1d:67:9c:8c:a5:c9:38: 53:38:f1:b8:91:1f:7b:25:41:c3:c7:ce:16:d4:3d:7f:8d:21: 00:4c:d0:35:69:6e:c3:80:32:27:9f:a1:35:ce:c9:16:d5:4a: 1a:ad:f7:86:0b:f1:cb:2f:02:02:f8:73:6d:70:50:db:f7:b3: 04:6b:ab:53:05:6d:ea:4e:ee:2d:65:ed:b9:c4:e9:8b:48:57: 51:b5:68:61:fb:95:9b:22:68:76:fb:35:5e:a7:27:94:ea:b8: 6c:d8:ab:4b:2e:b5:01:f5:0b:51:19:c1:de:5b:6d:78:2f:69: 20:19:8e:02:e5:81:2f:33:48:9f:0d:17:42:f8:77:99:9e:17: 78:dd:9b:31:68:28:2e:67:9e:a2:2c:65:2d:52:b9:a4:55:32: b9:a2:7f:e0:34:06:be:b2:f9:9c:0e:9a:f9:7f:51:c1:27:54: dd:a8:af:5b:4d:26:03:28:c4:27:5c:0f:39:f4:e0:9f:81:59: 73:c8:6a:5c:0a:c7:c1:b3:6f:c4:cd:6f:4b:7e:9b:6e:fb:3c: 31:0b:cf:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyNDAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQyMi1jOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnrxCVJx7hesQloGHSNzAiJhjfj514CqtnYysZY+OLkNuTqShMoV5LF2EInn yGrLWJ5/HxA7zWTvBVYc1aDgSnf/KusgmzDyGrfy6slP4i5f5MYnUqG/0zDJz0FK aKYLFUv5SRrx7yv19vHyCvhD5ppvTvaobpt7hvTWfyLJlXNz6mK8yWn42ZjrOX+a g9ZIFiTmfqWEeBUR2qBjxKLPsr1M+9K62zjsFZxf7XAA+9lNfzPIKT9jyBtvg0Xf Hxbh+U6Gq7DFinSnEJE48rL/Rg1NuACsRkfrxtGOi4m/8+nXFFsBoC5Xper455vT rrhPrVfQZyCA+wu3cu68MLI1tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDEimrDb Gcfv0e8RtSCrHMQpIbIDMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvRjY4OEZFMzg4 QzU2MTFFNzkyODQ4QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6RQYwDQYJKoZIhvcNAQELBQADggEBACpcXiHgxXXTH5kg YKvo+K4Tg7ppksRjzHMueEe7ex5gEu+xBOT243U17z8+stZuHWecjKXJOFM48biR H3slQcPHzhbUPX+NIQBM0DVpbsOAMiefoTXOyRbVShqt94YL8csvAgL4c21wUNv3 swRrq1MFbepO7i1l7bnE6YtIV1G1aGH7lZsiaHb7NV6nJ5TquGzYq0sutQH1C1EZ wd5bbXgvaSAZjgLlgS8zSJ8NF0L4d5meF3jdmzFoKC5nnqIsZS1SuaRVMrmif+A0 Br6y+ZwOmvl/UcEnVN2or1tNJgMoxCdcDzn04J+BWXPIalwKx8Gzb8TNb0t+m277 PDELz2I= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:06 2024 by rpki-client on console-fra.rpki-client.org