$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa File: 9C6F02C6249D11EF9532356DC4F9AE02.roa (raw, json) Hash identifier: GVPLUWjv0YSUBAjrGFWZzv8A2IuzybZwhe5F/69UqCo= Subject key identifier: 9F:1D:6F:20:27:1A:99:F5:23:70:3B:BD:B5:3A:33:BF:6D:08:7B:E9 Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: F1 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa Signing time: Fri 07 Jun 2024 07:14:42 +0000 ROA not before: Fri 07 Jun 2024 07:14:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134190 IP address blocks: 45.117.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jun 7 07:14:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6662b362-af11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1c:e8:f5:66:53:53:3a:39:22:6f:75:59:32: 1e:dd:3e:a6:1c:fc:a8:0d:d6:e4:4a:86:b3:47:d8: 8a:6e:46:f0:f5:0f:d5:2f:e0:b9:3c:76:1a:cc:a9: d5:47:47:32:c6:17:c2:a4:1a:a9:b6:bb:08:c9:e2: e7:b1:69:c7:39:45:be:8a:b0:fe:fc:5f:c9:f6:63: e8:79:3d:3e:69:96:66:f0:e4:65:33:67:ef:f2:22: 09:48:61:b5:6d:3b:ea:92:06:13:e6:2c:7e:47:b4: 63:f5:14:18:f1:a9:f4:3d:1e:37:76:93:b0:57:e4: e4:2a:ab:e5:e3:e9:c0:87:c3:1d:9e:22:41:08:ad: 23:c4:6d:eb:ad:6b:52:f5:3a:1d:10:20:09:8c:c5: de:f8:ea:f7:85:1e:e5:b2:bd:2d:68:6c:b4:d8:24: f3:65:6a:52:82:cb:bb:04:3c:5d:ca:59:a5:b9:c0: cf:9c:7e:55:b3:f0:e9:62:de:00:84:fb:3c:a4:45: d9:b9:cb:01:76:c5:5a:37:86:86:7f:75:f4:b6:d8: f5:c8:ba:a7:fe:0e:9c:21:cd:9a:40:ea:5c:70:28: 26:2b:b9:7f:9d:c4:11:66:9b:af:f2:ac:28:91:10: 98:f4:75:b0:9b:64:17:a8:05:f5:9e:f1:51:9f:8f: fb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:1D:6F:20:27:1A:99:F5:23:70:3B:BD:B5:3A:33:BF:6D:08:7B:E9 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.123.0/24 Signature Algorithm: sha256WithRSAEncryption 32:f1:14:59:e7:44:c5:8d:28:f2:de:e1:42:b0:65:4e:18:05: a1:10:eb:46:9c:83:97:91:ac:b4:49:73:84:ad:a3:58:6d:19: d3:63:85:0b:a4:1d:e2:f8:71:bf:7a:19:f2:22:94:b9:db:9e: 27:ba:bf:63:32:75:ef:5e:ba:51:c5:6f:44:b6:92:96:2a:f9: cb:d3:bc:b1:c1:f2:7e:d4:48:12:3c:d3:94:ee:b3:d4:d5:e3: eb:de:e7:2c:5e:40:6c:72:3b:fe:77:5f:e8:91:21:c9:49:22: 0a:3a:5c:ca:71:26:73:04:5f:81:e5:5e:73:7b:2a:ba:fb:e7: a0:91:58:e1:66:2d:dd:3c:53:cf:a1:ce:36:34:4f:7d:ab:ad: 78:78:61:06:76:62:a0:6f:50:94:d3:79:65:78:13:41:e2:ca: 54:cc:33:8e:d0:ac:75:16:ce:2e:ab:20:1f:df:6b:28:31:e9: 01:26:24:34:25:44:7e:68:6f:f0:59:e8:5d:a8:02:63:1a:f7: dd:33:68:66:82:a5:a6:0d:d5:3e:0c:e4:95:c5:de:6e:cc:af: ec:1f:33:a2:70:60:75:8b:04:c8:2e:49:5f:5f:3f:80:de:aa: 09:18:61:ad:67:d9:5f:e1:76:15:07:f1:da:ff:3e:ba:1d:c8: a5:b9:2d:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjQwNjA3MDcxNDQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyYjM2Mi1hZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBzo9WZTUzo5Im91WTIe3T6mHPyoDdbkSoazR9iKbkbw9Q/VL+C5PHYazKnV R0cyxhfCpBqptrsIyeLnsWnHOUW+irD+/F/J9mPoeT0+aZZm8ORlM2fv8iIJSGG1 bTvqkgYT5ix+R7Rj9RQY8an0PR43dpOwV+TkKqvl4+nAh8MdniJBCK0jxG3rrWtS 9TodECAJjMXe+Or3hR7lsr0taGy02CTzZWpSgsu7BDxdylmlucDPnH5Vs/DpYt4A hPs8pEXZucsBdsVaN4aGf3X0ttj1yLqn/g6cIc2aQOpccCgmK7l/ncQRZpuv8qwo kRCY9HWwm2QXqAX1nvFRn4/7DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ8dbyAn Gpn1I3A7vbU6M79tCHvpMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4RTIvOTUyRkE2MzJEMkU2MTFFRDlBNTJENTVBQzRGOUFFMDIvOUM2RjAyQzYy NDlEMTFFRjk1MzIzNTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdXswDQYJKoZIhvcNAQELBQADggEBADLxFFnnRMWNKPLe 4UKwZU4YBaEQ60acg5eRrLRJc4Sto1htGdNjhQukHeL4cb96GfIilLnbnie6v2My de9eulHFb0S2kpYq+cvTvLHB8n7USBI805Tus9TV4+ve5yxeQGxyO/53X+iRIclJ Igo6XMpxJnMEX4HlXnN7Krr756CRWOFmLd08U8+hzjY0T32rrXh4YQZ2YqBvUJTT eWV4E0HiylTMM47QrHUWzi6rIB/faygx6QEmJDQlRH5ob/BZ6F2oAmMa990zaGaC paYN1T4M5JXF3m7Mr+wfM6JwYHWLBMguSV9fP4DeqgkYYa1n2V/hdhUH8dr/Prod yKW5LaI= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:54 2024 by rpki-client on console-ams.rpki-client.org