$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa File: AC8695B8A60611EE8FEB2160C4F9AE02.roa (raw, json) Hash identifier: e0d6vw79IEqP0AdvR6b4v7RskAnTjUKydxlFYiex0pY= Subject key identifier: F5:D8:F2:31:B5:1E:5C:10:21:33:9D:07:EC:3C:BF:4A:60:6C:41:E0 Certificate issuer: /CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Certificate serial: 0E99 Authority key identifier: 0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa Signing time: Wed 06 Nov 2024 17:55:58 +0000 ROA not before: Wed 06 Nov 2024 17:55:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 146994 IP address blocks: 43.241.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3737 (0xe99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Validity Not Before: Nov 6 17:55:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672badad-95cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:6d:6a:3f:1d:79:22:20:17:9d:99:fb:32: e2:62:c2:4a:e8:69:a1:60:f2:4e:3e:57:40:6f:fa: 22:4d:5b:8d:09:43:fc:b2:86:62:95:19:f4:46:17: 2e:75:3a:fe:cf:f8:25:9c:1f:ad:db:0a:65:dd:75: 76:55:10:fb:34:27:b5:5a:92:56:b4:1c:c6:d1:80: f9:7a:b8:5c:41:c9:b7:12:c3:49:0d:b8:66:17:61: f7:f6:c1:33:ad:2a:72:54:51:5e:5c:44:44:43:22: 89:59:d5:3d:04:a1:93:a1:49:25:4e:86:ed:8e:6c: ac:67:a8:93:4a:fd:be:a5:93:4a:5a:4d:1e:3c:83: 8c:7b:14:03:e0:9a:90:23:f6:50:ad:ef:86:7e:0e: f5:a7:fa:46:7a:09:96:53:4f:95:f9:a2:1a:57:1d: 33:f3:5d:1b:f5:89:b7:8c:11:69:06:e6:98:f4:f0: 3f:21:ad:07:7a:7e:cd:27:99:be:1d:41:4f:e8:dd: 7f:0f:d1:03:c3:f2:92:af:bf:7f:56:db:9d:89:07: 52:e9:15:7d:fc:2f:ce:50:17:b9:d3:97:4c:ee:be: 5a:4c:f8:0b:89:15:ea:69:51:a5:e3:f1:8f:d4:0c: 7d:43:5c:ef:e3:6b:f5:b6:69:66:9e:9a:95:1b:65: 28:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D8:F2:31:B5:1E:5C:10:21:33:9D:07:EC:3C:BF:4A:60:6C:41:E0 X509v3 Authority Key Identifier: keyid:0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.245.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:e6:0d:6b:62:ed:ed:19:2c:9a:15:3d:30:a9:48:ec:b7:5f: d0:d2:2c:c3:22:3d:0e:72:e2:94:13:b2:e1:d2:53:d0:89:52: 55:0e:d0:66:26:8a:18:88:e6:6e:c1:ea:dd:47:ac:84:7e:0e: 0d:80:99:07:09:4a:1a:63:5e:e3:14:af:67:35:82:df:2a:e0: 3e:07:41:1b:37:38:0f:16:a6:f6:31:32:e0:65:5f:51:01:77: 80:5f:15:c3:64:53:0f:91:29:91:ec:0f:8f:ce:47:9b:6d:e3: 3f:44:40:3d:f5:9b:32:f7:31:f4:06:18:bd:9a:c0:c9:5f:e8: fc:6c:0e:b5:e9:1e:60:7c:2b:1e:4e:bc:41:4f:e4:24:64:00: 11:6b:34:9c:81:40:dd:07:09:22:f2:94:ad:99:c0:45:72:66: 85:ea:8a:e8:f6:06:6f:fe:71:97:fb:52:f2:54:fd:80:c1:43: 59:07:81:72:ba:f3:91:cb:15:11:e5:b0:83:c7:75:3e:0b:b9: 83:2d:9c:a0:3f:3a:4f:c0:65:b8:34:35:4b:f1:f1:5c:bc:54: cd:bf:99:61:72:fc:91:38:1c:1c:f0:e6:11:79:db:c7:ff:cb: 2a:34:b9:f7:3b:6b:0b:c1:bd:56:04:5c:1b:0e:60:71:61:10: 89:00:50:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNTUxMTAvBgNVBAUTKDBCMjU2MUM0QjU3REE4MUQ3MEYzOTcyNEIwREUyQzcx MDE3NDlGNUQwHhcNMjQxMTA2MTc1NTU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYWRhZC05NWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTJtaj8deSIgF52Z+zLiYsJK6GmhYPJOPldAb/oiTVuNCUP8soZilRn0Rhcu dTr+z/glnB+t2wpl3XV2VRD7NCe1WpJWtBzG0YD5erhcQcm3EsNJDbhmF2H39sEz rSpyVFFeXEREQyKJWdU9BKGToUklTobtjmysZ6iTSv2+pZNKWk0ePIOMexQD4JqQ I/ZQre+Gfg71p/pGegmWU0+V+aIaVx0z810b9Ym3jBFpBuaY9PA/Ia0Hen7NJ5m+ HUFP6N1/D9EDw/KSr79/VtudiQdS6RV9/C/OUBe505dM7r5aTPgLiRXqaVGl4/GP 1Ax9Q1zv42v1tmlmnpqVG2UoZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPXY8jG1 HlwQITOdB+w8v0pgbEHgMB8GA1UdIwQYMBaAFAslYcS1fagdcPOXJLDeLHEBdJ9d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE1NS81Mzk5OEEzNDdF QjMxMUU5QUI5QzdCMjRDNEY5QUUwMi9DeVZoeExWOXFCMXc4NWNrc040c2NRRjBu MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N5Vmh4TFY5cUIxdzg1Y2tzTjRzY1FGMG4xMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTExNTUvNTM5OThBMzQ3RUIzMTFFOUFCOUM3QjI0QzRGOUFFMDIvQUM4Njk1QjhB NjA2MTFFRThGRUIyMTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr8fUwDQYJKoZIhvcNAQELBQADggEBAF/mDWti7e0ZLJoV PTCpSOy3X9DSLMMiPQ5y4pQTsuHSU9CJUlUO0GYmihiI5m7B6t1HrIR+Dg2AmQcJ ShpjXuMUr2c1gt8q4D4HQRs3OA8WpvYxMuBlX1EBd4BfFcNkUw+RKZHsD4/OR5tt 4z9EQD31mzL3MfQGGL2awMlf6PxsDrXpHmB8Kx5OvEFP5CRkABFrNJyBQN0HCSLy lK2ZwEVyZoXqiuj2Bm/+cZf7UvJU/YDBQ1kHgXK685HLFRHlsIPHdT4LuYMtnKA/ Ok/AZbg0NUvx8Vy8VM2/mWFy/JE4HBzw5hF528f/yyo0ufc7awvBvVYEXBsOYHFh EIkAUBU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org