$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa File: 328EDB76383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs= Subject key identifier: B5:BA:F1:C9:1E:D6:E5:3A:9D:15:55:FF:39:F2:B3:E8:7D:E6:E2:62 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 343E Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa Signing time: Fri 21 Apr 2023 12:50:11 +0000 ROA not before: Fri 21 Apr 2023 12:50:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135536 IP address blocks: 61.45.251.0/24 maxlen: 24 2401:4601:251::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13374 (0x343e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Apr 21 12:50:11 2023 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=64428682-e00d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c4:4d:89:73:27:27:a2:5d:f5:7c:d5:9e:85: c4:e8:51:91:4b:de:a5:44:f6:74:9e:4d:6b:66:bf: 10:cc:4b:ab:bd:6d:4d:2d:7d:8e:2b:75:5c:64:db: 49:91:e7:97:e8:dc:e7:26:c7:97:c8:05:21:57:b1: 5d:c0:e4:1a:64:62:5d:df:f6:60:40:55:13:b7:a4: 84:ff:49:a5:71:f0:13:ed:f7:00:43:76:4e:ec:1e: a8:0b:ee:7e:75:3d:75:36:91:fc:db:2e:40:d6:fc: 8c:23:1b:9a:5b:6f:7b:4c:4d:9c:ad:b7:0d:47:5e: e4:25:de:f5:e2:b9:30:bd:86:be:5b:0f:fd:bf:5b: 38:bf:49:1b:49:20:f5:e7:a2:55:c3:85:54:44:37: fa:47:83:95:66:cc:09:9e:a9:a8:a3:69:a6:7b:b1: 88:a5:27:57:13:d7:aa:bc:e3:f9:93:94:40:17:7c: f8:52:89:62:e8:db:00:7c:82:ac:be:c3:36:9a:99: 86:6a:9d:13:de:3f:1b:4c:3c:c8:6c:ba:c7:b3:da: 3c:89:59:44:d7:28:fb:56:23:e0:70:33:93:39:c4: d3:1d:bc:8d:1b:c1:1b:d6:c7:3a:95:32:95:a1:fd: 93:b4:fd:17:ce:72:d2:19:d2:84:2a:38:08:af:13: b1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BA:F1:C9:1E:D6:E5:3A:9D:15:55:FF:39:F2:B3:E8:7D:E6:E2:62 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.251.0/24 IPv6: 2401:4601:251::/48 Signature Algorithm: sha256WithRSAEncryption 4f:ac:54:32:36:73:61:fd:6a:9e:e9:3f:9a:fd:bb:32:c2:6a: 43:dc:3b:da:94:95:19:b0:da:c2:93:50:5f:63:ea:34:9a:b1: 9b:2f:65:57:77:24:bd:ef:bf:c5:9c:3a:56:57:64:dd:6d:0a: c4:50:bd:77:0a:da:9c:67:82:db:3b:55:f6:45:7a:b6:95:de: 8d:12:39:87:02:c8:e2:1f:35:44:ef:b6:3b:da:25:e5:7d:12: a9:b7:3b:ba:b0:ed:14:cd:87:71:d0:52:20:0d:d9:75:8b:aa: 85:58:2a:83:a9:97:61:77:0b:c5:75:05:61:55:f9:88:23:1d: 30:3a:2f:ad:47:10:c9:0f:fc:83:fd:c9:4b:d1:ec:33:3c:97: 66:e0:11:bd:91:38:83:82:d1:79:bc:61:b9:b1:7d:0b:37:cb: 3b:a2:93:85:d5:10:7a:28:a1:95:dd:00:f9:5f:1d:e7:a4:58: 12:1f:30:8d:b9:96:66:ec:21:69:17:9b:bf:1f:95:9a:d2:1e: f9:a4:46:b5:97:67:cc:04:9b:42:b1:ac:f8:c1:bc:4a:41:12: 55:cf:6c:6c:8b:fc:70:5d:cd:59:36:0e:3c:1a:79:92:19:83: 49:f1:a4:6c:13:bc:86:d9:91:d3:3f:3d:7f:7a:a2:4e:ea:08: ad:1f:67:9e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICND4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjMwNDIxMTI1MDExWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDQyODY4Mi1lMDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysRNiXMnJ6Jd9XzVnoXE6FGRS96lRPZ0nk1rZr8QzEurvW1NLX2OK3VcZNtJ keeX6NznJseXyAUhV7FdwOQaZGJd3/ZgQFUTt6SE/0mlcfAT7fcAQ3ZO7B6oC+5+ dT11NpH82y5A1vyMIxuaW297TE2crbcNR17kJd714rkwvYa+Ww/9v1s4v0kbSSD1 56JVw4VURDf6R4OVZswJnqmoo2mme7GIpSdXE9eqvOP5k5RAF3z4Uoli6NsAfIKs vsM2mpmGap0T3j8bTDzIbLrHs9o8iVlE1yj7ViPgcDOTOcTTHbyNG8Eb1sc6lTKV of2TtP0XznLSGdKEKjgIrxOxAwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLW68cke 1uU6nRVV/znys+h95uJiMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzI4RURCNzYz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfswDwQCAAIwCQMHACQBRgECUTANBgkqhkiG9w0BAQsF AAOCAQEAT6xUMjZzYf1qnuk/mv27MsJqQ9w72pSVGbDawpNQX2PqNJqxmy9lV3ck ve+/xZw6Vldk3W0KxFC9dwranGeC2ztV9kV6tpXejRI5hwLI4h81RO+2O9ol5X0S qbc7urDtFM2HcdBSIA3ZdYuqhVgqg6mXYXcLxXUFYVX5iCMdMDovrUcQyQ/8g/3J S9HsMzyXZuARvZE4g4LRebxhubF9CzfLO6KThdUQeiihld0A+V8d56RYEh8wjbmW ZuwhaRebvx+VmtIe+aRGtZdnzASbQrGs+MG8SkESVc9sbIv8cF3NWTYOPBp5khmD SfGkbBO8htmR0z89f3qiTuoIrR9nng== -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:05 2024 by rpki-client on console-ams.rpki-client.org