$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa File: 89A73D46772311EBB972032EC4F9AE02.roa (raw, json) Hash identifier: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ= Subject key identifier: 19:55:56:6A:1C:7A:3A:24:46:84:7E:E8:1C:E6:93:8F:F6:69:7A:D6 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3440 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa Signing time: Fri 21 Apr 2023 12:50:13 +0000 ROA not before: Fri 21 Apr 2023 12:50:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135538 IP address blocks: 61.45.253.0/24 maxlen: 24 2401:4601:253::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13376 (0x3440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Apr 21 12:50:13 2023 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=64428684-0ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:a7:4b:fd:c1:62:25:ca:ec:9c:a7:b5:01: 52:5e:66:35:98:49:36:6f:bd:26:c4:4d:37:24:51: db:9b:89:5a:e1:5a:96:49:06:fb:ac:8e:db:2a:fc: a3:04:34:00:71:61:7c:5a:41:20:44:a3:f5:2b:dc: 4c:34:1f:28:36:bc:b2:e6:87:55:86:c9:0b:aa:6a: dd:47:67:6f:16:53:db:79:98:7e:cf:56:de:d9:11: e5:c3:1e:0b:00:26:2c:69:eb:fa:09:1f:0c:17:03: c3:02:39:c8:26:34:74:12:a7:2b:16:07:6c:fb:15: c4:14:e6:ba:08:41:6a:f8:2a:25:a5:82:55:ca:fb: 81:80:26:2e:6f:3f:9f:47:f5:19:73:d0:d6:dd:dc: 9b:82:7a:a3:fd:3b:55:b4:06:9a:a1:57:4d:a2:67: 72:2b:17:4a:75:af:a4:17:cc:8f:81:0b:a8:0d:49: 62:10:6d:b1:a2:99:2b:26:0a:ac:9c:4a:05:17:8e: fc:67:0b:a2:22:8f:56:9d:ea:94:07:24:26:3f:2b: 43:b7:89:9b:49:57:02:8e:3d:86:78:22:a5:a4:34: 39:bd:9e:ad:1f:7a:68:eb:89:01:5b:a5:48:09:4d: 8c:1f:46:de:8e:e3:26:85:0f:e8:4e:81:2f:1c:c0: 7a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:55:56:6A:1C:7A:3A:24:46:84:7E:E8:1C:E6:93:8F:F6:69:7A:D6 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.253.0/24 IPv6: 2401:4601:253::/48 Signature Algorithm: sha256WithRSAEncryption 3e:c3:dc:f1:f1:3c:83:75:a3:63:06:ab:bc:ab:b3:37:fc:1e: 99:b6:36:8e:a7:80:46:23:a5:73:e3:59:6e:0b:26:cd:2a:df: ef:2e:10:8a:57:71:b6:d5:35:9a:78:92:c6:84:dc:64:b9:b7: f5:e8:4e:d7:53:a4:72:b5:79:a8:e2:d9:eb:fa:ac:60:d5:2b: af:2f:e7:8f:51:6b:1b:f1:bb:27:26:7d:8f:5d:3e:59:32:f3: d9:b5:3d:58:aa:77:dc:19:54:a6:60:7d:e4:0f:11:06:e9:a0: d0:e8:3a:7d:68:e8:34:3b:e9:56:d7:9f:4f:85:dc:f3:2d:3d: 6d:9a:e0:18:86:61:4a:7e:af:0a:f7:f6:82:ce:19:15:88:2b: c7:74:1a:54:d4:2c:62:68:3c:47:40:cf:6c:34:42:b6:8d:03: 09:75:3d:bf:02:47:b9:e0:39:d9:fd:ee:08:75:d3:25:0d:bc: a4:8d:ac:0c:81:03:cf:bf:81:50:b4:90:53:e3:89:57:8c:eb: e9:0f:2d:12:31:1c:c9:1f:a5:ee:75:f4:a6:a0:7f:82:27:78: 84:c7:77:8f:89:fa:e0:19:17:9d:c9:2a:0c:9f:5d:37:86:aa: 92:44:16:74:6a:36:b7:e3:13:9f:15:fb:aa:64:8b:4c:ec:7b: 0e:29:b0:ae -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjMwNDIxMTI1MDEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDQyODY4NC0wZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqSnS/3BYiXK7JyntQFSXmY1mEk2b70mxE03JFHbm4la4VqWSQb7rI7bKvyj BDQAcWF8WkEgRKP1K9xMNB8oNryy5odVhskLqmrdR2dvFlPbeZh+z1be2RHlwx4L ACYsaev6CR8MFwPDAjnIJjR0EqcrFgds+xXEFOa6CEFq+ColpYJVyvuBgCYubz+f R/UZc9DW3dybgnqj/TtVtAaaoVdNomdyKxdKda+kF8yPgQuoDUliEG2xopkrJgqs nEoFF478ZwuiIo9WneqUByQmPytDt4mbSVcCjj2GeCKlpDQ5vZ6tH3po64kBW6VI CU2MH0bejuMmhQ/oToEvHMB6gQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBlVVmoc ejokRoR+6Bzmk4/2aXrWMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvODlBNzNENDY3 NzIzMTFFQkI5NzIwMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9Lf0wDwQCAAIwCQMHACQBRgECUzANBgkqhkiG9w0BAQsF AAOCAQEAPsPc8fE8g3WjYwarvKuzN/wembY2jqeARiOlc+NZbgsmzSrf7y4Qildx ttU1mniSxoTcZLm39ehO11OkcrV5qOLZ6/qsYNUrry/nj1FrG/G7JyZ9j10+WTLz 2bU9WKp33BlUpmB95A8RBumg0Og6fWjoNDvpVtefT4Xc8y09bZrgGIZhSn6vCvf2 gs4ZFYgrx3QaVNQsYmg8R0DPbDRCto0DCXU9vwJHueA52f3uCHXTJQ28pI2sDIED z7+BULSQU+OJV4zr6Q8tEjEcyR+l7nX0pqB/gid4hMd3j4n64BkXnckqDJ9dN4aq kkQWdGo2t+MTnxX7qmSLTOx7Dimwrg== -----END CERTIFICATE-----Generated at Sat May 18 15:58:26 2024 by rpki-client on console-ams.rpki-client.org