$ rpki-client -vvf rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/2A26D2607E1311EEAF8FD93EC4F9AE02.roa File: 2A26D2607E1311EEAF8FD93EC4F9AE02.roa (raw, json) Hash identifier: lO4z0/8coYc47q8hWXVuaX9wXtDh6vCyrQsV6AIYdqA= Subject key identifier: BC:E3:69:7D:2A:A2:28:5A:75:41:62:06:0D:57:1C:23:4C:B0:03:89 Certificate issuer: /CN=A91E15AD/serialNumber=7F352A76956D7702FC77AF60FCC129E61FDBEA32 Certificate serial: 06 Authority key identifier: 7F:35:2A:76:95:6D:77:02:FC:77:AF:60:FC:C1:29:E6:1F:DB:EA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/2A26D2607E1311EEAF8FD93EC4F9AE02.roa Signing time: Wed 08 Nov 2023 08:46:03 +0000 ROA not before: Wed 08 Nov 2023 08:46:03 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151989 IP address blocks: 115.84.168.0/23 maxlen: 23 115.84.168.0/24 maxlen: 24 115.84.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.crl rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E15AD/serialNumber=7F352A76956D7702FC77AF60FCC129E61FDBEA32 Validity Not Before: Nov 8 08:46:03 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654b4acb-a1ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:b1:12:a0:d7:17:35:70:e3:37:a8:61:31: 1e:dc:cd:b2:3f:d9:81:96:83:3e:87:0c:5a:31:79: a6:a5:ad:c1:ae:e4:2e:d6:e4:8e:07:61:aa:e2:61: 59:1e:fa:08:8f:09:f4:c7:27:9a:86:72:1c:6c:3c: c1:5c:1b:ba:1d:7e:45:5b:d1:1d:55:07:13:d2:56: 17:2f:cc:0f:b2:ff:74:c0:6b:67:92:de:ee:30:8c: d4:90:4b:8a:4b:44:2a:dc:7e:c9:5a:2d:97:e2:2c: 07:30:0a:ca:cb:b7:17:ef:4c:20:8b:bc:e2:83:52: a0:53:dd:00:ee:26:08:11:28:78:ff:46:33:8e:7d: 0d:d8:b5:ae:7b:bf:fe:62:60:d4:1f:ef:30:3c:8a: e2:d1:06:47:ed:a8:b6:97:18:d9:36:0f:a0:70:c2: 3f:84:96:70:1f:12:3c:8a:5f:01:e3:5a:d5:63:99: ab:e4:33:f2:f9:a4:7a:16:99:35:ae:b5:a2:c5:75: 2f:27:95:e0:43:f9:43:be:96:73:84:31:60:78:d9: 7d:82:3f:50:94:e5:8d:2b:03:97:7b:66:20:b2:49: e7:7d:69:41:fb:59:51:c8:2a:80:fe:e0:b0:db:2f: c8:29:e7:76:2c:d8:a5:23:0a:a4:10:10:f6:5a:79: 7c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E3:69:7D:2A:A2:28:5A:75:41:62:06:0D:57:1C:23:4C:B0:03:89 X509v3 Authority Key Identifier: keyid:7F:35:2A:76:95:6D:77:02:FC:77:AF:60:FC:C1:29:E6:1F:DB:EA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/2A26D2607E1311EEAF8FD93EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.84.168.0/23 Signature Algorithm: sha256WithRSAEncryption 89:1f:5b:ba:03:53:87:2a:ac:72:e2:6e:10:57:d9:79:80:24: fb:07:86:df:e3:40:e1:53:61:e2:a3:8c:05:b9:77:56:8d:1a: 80:f0:69:86:ac:a2:47:90:94:e3:2c:15:52:fb:f9:a0:b1:51: 59:1d:d4:d4:15:43:e2:61:35:81:b5:b1:ed:8a:1a:e2:b7:df: 38:5a:71:e7:95:cb:e1:bb:d8:8a:df:29:ea:ff:8a:db:29:36: dd:22:91:b8:86:3e:d6:d8:61:a3:5f:dd:54:87:1a:b1:36:68: c5:6e:04:a6:08:66:e8:1b:08:c2:62:71:55:1a:76:60:b8:e4: 1c:b2:19:ee:aa:2f:0e:50:41:61:1c:f2:30:51:aa:0d:a4:b4: c9:c1:ae:a3:43:09:ee:bf:64:4d:7e:a6:bf:a0:d2:2f:74:7e: 2c:f8:99:59:2d:41:47:92:97:c1:8c:ac:2c:b3:4c:3c:0b:ff: cc:ae:38:31:8a:82:98:06:47:d7:3f:c6:04:d6:77:bf:47:94: 2e:da:51:df:1f:42:13:5c:e5:6c:b0:55:f3:35:10:d3:2e:2e: e7:11:3f:5c:2c:6b:a0:32:ff:04:69:ce:a3:48:7c:8c:1d:20: ee:11:72:e5:34:1e:db:27:5d:f3:3a:32:a4:bc:71:6e:12:6e: c4:ba:af:5c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTVBRDExMC8GA1UEBRMoN0YzNTJBNzY5NTZENzcwMkZDNzdBRjYwRkNDMTI5RTYx RkRCRUEzMjAeFw0yMzExMDgwODQ2MDNaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NGI0YWNiLWExYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8WbESoNcXNXDjN6hhMR7czbI/2YGWgz6HDFoxeaalrcGu5C7W5I4HYariYVke +giPCfTHJ5qGchxsPMFcG7odfkVb0R1VBxPSVhcvzA+y/3TAa2eS3u4wjNSQS4pL RCrcfslaLZfiLAcwCsrLtxfvTCCLvOKDUqBT3QDuJggRKHj/RjOOfQ3Yta57v/5i YNQf7zA8iuLRBkftqLaXGNk2D6Bwwj+ElnAfEjyKXwHjWtVjmavkM/L5pHoWmTWu taLFdS8nleBD+UO+lnOEMWB42X2CP1CU5Y0rA5d7ZiCySed9aUH7WVHIKoD+4LDb L8gp53Ys2KUjCqQQEPZaeXzxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvONpfSqi KFp1QWIGDVccI0ywA4kwHwYDVR0jBBgwFoAUfzUqdpVtdwL8d69g/MEp5h/b6jIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNUFEL0I4QjkxQzQ2N0Ux MjExRUU5Q0IxMUYzRUM0RjlBRTAyL2Z6VXFkcFZ0ZHdMOGQ2OWdfTUVwNWhfYjZq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZnpVcWRwVnRkd0w4ZDY5Z19NRXA1aF9iNmpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTVBRC9COEI5MUM0NjdFMTIxMUVFOUNCMTFGM0VDNEY5QUUwMi8yQTI2RDI2MDdF MTMxMUVFQUY4RkQ5M0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXNUqDANBgkqhkiG9w0BAQsFAAOCAQEAiR9bugNThyqscuJu EFfZeYAk+weG3+NA4VNh4qOMBbl3Vo0agPBphqyiR5CU4ywVUvv5oLFRWR3U1BVD 4mE1gbWx7Yoa4rffOFpx55XL4bvYit8p6v+K2yk23SKRuIY+1thho1/dVIcasTZo xW4Epghm6BsIwmJxVRp2YLjkHLIZ7qovDlBBYRzyMFGqDaS0ycGuo0MJ7r9kTX6m v6DSL3R+LPiZWS1BR5KXwYysLLNMPAv/zK44MYqCmAZH1z/GBNZ3v0eULtpR3x9C E1zlbLBV8zUQ0y4u5xE/XCxroDL/BGnOo0h8jB0g7hFy5TQe2ydd8zoypLxxbhJu xLqvXA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org