$ rpki-client -vvf rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/3C2B0A98259911EFB9393E2EC4F9AE02.roa File: 3C2B0A98259911EFB9393E2EC4F9AE02.roa (raw, json) Hash identifier: 9QHQZvjM+vc9/ggHHjXy9uMo+F24ckZTnlZByItAVGs= Subject key identifier: 9B:19:9C:3A:6F:F1:BE:7C:F2:E2:F8:A4:8F:FB:02:54:C7:6D:1D:DA Certificate issuer: /CN=A91E15AD/serialNumber=7F352A76956D7702FC77AF60FCC129E61FDBEA32 Certificate serial: 79 Authority key identifier: 7F:35:2A:76:95:6D:77:02:FC:77:AF:60:FC:C1:29:E6:1F:DB:EA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/3C2B0A98259911EFB9393E2EC4F9AE02.roa Signing time: Sat 08 Jun 2024 13:15:54 +0000 ROA not before: Sat 08 Jun 2024 13:15:54 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138346 IP address blocks: 115.84.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.crl rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E15AD/serialNumber=7F352A76956D7702FC77AF60FCC129E61FDBEA32 Validity Not Before: Jun 8 13:15:54 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6664598a-459d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:64:54:fa:ad:64:69:a3:3d:10:13:f2:f2:6e: c8:a4:a0:de:2b:39:56:58:6a:4f:62:e1:7d:8b:f0: 45:fc:d4:a1:72:0c:f3:39:89:ff:20:54:23:7e:6f: 4b:17:56:81:81:44:93:41:bc:c4:95:45:3e:6f:7e: 3e:54:a2:a5:d4:9c:a6:c2:77:76:5a:f4:16:c2:1b: ff:ab:d2:d4:09:0a:72:e1:ed:34:90:71:e1:af:50: c4:3a:93:2d:bb:a5:24:9a:e7:a7:e2:0c:50:03:4c: 3a:0e:16:61:86:13:3b:f4:d1:d5:35:0d:db:c0:6b: cf:c4:b8:16:d2:6f:5f:65:a1:af:07:b1:7b:32:43: 09:f3:8c:6c:ef:1c:1c:45:b4:2d:d0:23:89:8e:b7: b0:d3:32:82:d2:38:af:d7:c5:ec:8f:e0:a6:f7:40: e4:22:66:e0:43:c4:cd:c9:9a:4e:6b:6f:e2:c1:19: 96:cf:96:a0:97:ee:33:2e:17:0f:77:a1:9b:a3:23: 97:7f:3b:d4:23:d5:ba:95:50:27:c2:3e:ab:11:72: 85:46:9e:38:d2:ab:bf:30:c0:58:77:8d:96:f7:04: 65:5c:66:a4:67:32:21:94:45:5d:db:3f:d0:27:00: b5:d3:80:e2:c0:97:b8:bf:96:b5:7a:40:51:ff:dd: f0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:19:9C:3A:6F:F1:BE:7C:F2:E2:F8:A4:8F:FB:02:54:C7:6D:1D:DA X509v3 Authority Key Identifier: keyid:7F:35:2A:76:95:6D:77:02:FC:77:AF:60:FC:C1:29:E6:1F:DB:EA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/fzUqdpVtdwL8d69g_MEp5h_b6jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fzUqdpVtdwL8d69g_MEp5h_b6jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E15AD/B8B91C467E1211EE9CB11F3EC4F9AE02/3C2B0A98259911EFB9393E2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.84.168.0/24 Signature Algorithm: sha256WithRSAEncryption 00:d7:39:c2:45:f1:7a:f1:3a:e1:13:c9:5f:ab:9c:ec:9a:3e: 50:13:ac:13:5a:28:e9:c7:10:81:11:49:f5:02:16:94:5a:80: cd:c1:86:1f:93:67:1a:ed:77:7b:ae:8c:40:86:89:28:a5:7a: 51:8c:62:2c:28:a5:c2:4b:79:07:0f:02:1a:c4:b5:1d:b4:1a: f7:25:b3:ee:31:15:e2:d2:95:86:45:39:dc:95:df:0f:97:dd: 37:5d:e3:f1:5a:28:18:ee:7f:4e:d6:a4:bd:25:d2:a5:0c:a7: 98:43:40:47:6d:6a:a6:a5:7c:eb:f6:b7:0d:54:ae:fa:20:bc: ea:3e:9e:65:28:bc:1d:d8:aa:cc:b3:b1:42:d3:61:8e:92:1d: f0:f6:36:ee:b8:90:5c:85:c2:93:64:7e:c4:e5:72:58:d4:9c: 35:0b:23:80:5d:2d:77:0d:e5:43:3f:a5:7e:5f:2f:0b:aa:8d: c5:97:e5:7a:2e:4a:14:d0:91:20:76:b5:4c:a3:42:eb:e1:63: 69:16:48:9e:a0:9b:97:e2:2e:77:84:73:c9:4b:60:c8:0c:68: 88:ed:72:5c:34:9e:f7:6b:c8:8e:c9:59:23:9d:5b:38:53:09: 62:7b:18:8f:ca:81:d4:16:08:1a:89:53:c8:52:b6:6c:a9:59: 0c:7c:c8:87 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTVBRDExMC8GA1UEBRMoN0YzNTJBNzY5NTZENzcwMkZDNzdBRjYwRkNDMTI5RTYx RkRCRUEzMjAeFw0yNDA2MDgxMzE1NTRaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjQ1OThhLTQ1OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVZFT6rWRpoz0QE/LybsikoN4rOVZYak9i4X2L8EX81KFyDPM5if8gVCN+b0sX VoGBRJNBvMSVRT5vfj5UoqXUnKbCd3Za9BbCG/+r0tQJCnLh7TSQceGvUMQ6ky27 pSSa56fiDFADTDoOFmGGEzv00dU1DdvAa8/EuBbSb19loa8HsXsyQwnzjGzvHBxF tC3QI4mOt7DTMoLSOK/XxeyP4Kb3QOQiZuBDxM3Jmk5rb+LBGZbPlqCX7jMuFw93 oZujI5d/O9Qj1bqVUCfCPqsRcoVGnjjSq78wwFh3jZb3BGVcZqRnMiGURV3bP9An ALXTgOLAl7i/lrV6QFH/3fApAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmxmcOm/x vnzy4vikj/sCVMdtHdowHwYDVR0jBBgwFoAUfzUqdpVtdwL8d69g/MEp5h/b6jIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNUFEL0I4QjkxQzQ2N0Ux MjExRUU5Q0IxMUYzRUM0RjlBRTAyL2Z6VXFkcFZ0ZHdMOGQ2OWdfTUVwNWhfYjZq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZnpVcWRwVnRkd0w4ZDY5Z19NRXA1aF9iNmpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTVBRC9COEI5MUM0NjdFMTIxMUVFOUNCMTFGM0VDNEY5QUUwMi8zQzJCMEE5ODI1 OTkxMUVGQjkzOTNFMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHNUqDANBgkqhkiG9w0BAQsFAAOCAQEAANc5wkXxevE64RPJ X6uc7Jo+UBOsE1oo6ccQgRFJ9QIWlFqAzcGGH5NnGu13e66MQIaJKKV6UYxiLCil wkt5Bw8CGsS1HbQa9yWz7jEV4tKVhkU53JXfD5fdN13j8VooGO5/TtakvSXSpQyn mENAR21qpqV86/a3DVSu+iC86j6eZSi8HdiqzLOxQtNhjpId8PY27riQXIXCk2R+ xOVyWNScNQsjgF0tdw3lQz+lfl8vC6qNxZflei5KFNCRIHa1TKNC6+FjaRZInqCb l+Iud4RzyUtgyAxoiO1yXDSe92vIjslZI51bOFMJYnsYj8qB1BYIGolTyFK2bKlZ DHzIhw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org