$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa File: 29D2F7BE0CA711ED98CF681AC4F9AE02.roa (raw, json) Hash identifier: pTLG0WiZ5krYcSGHfWJAPWz+llPAx5qbifmNwzqhPMM= Subject key identifier: 1E:32:9E:47:6D:1A:99:80:01:56:E6:3C:B1:49:BC:00:A6:E2:8B:DA Certificate issuer: /CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Certificate serial: 0316 Authority key identifier: 04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa Signing time: Fri 19 Jul 2024 02:24:12 +0000 ROA not before: Fri 19 Jul 2024 02:24:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133861 IP address blocks: 217.194.132.0/24 maxlen: 24 217.194.133.0/24 maxlen: 24 217.194.134.0/24 maxlen: 24 217.194.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Validity Not Before: Jul 19 02:24:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6699ce4b-3dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7f:82:fb:7e:5f:e8:f2:39:fc:2e:08:8b:14: 89:74:e7:23:55:7f:54:c4:9d:9e:e8:8c:a0:7f:49: 71:90:ef:19:ba:03:6d:de:07:e0:c5:e3:e3:b9:82: b6:39:8c:92:46:10:a1:5e:a0:c3:e8:8c:d2:50:ed: 5d:f8:3b:b0:47:75:7f:06:00:84:38:1b:84:fc:51: 72:6e:fa:ae:e7:e0:56:18:71:79:26:f8:b9:a4:00: 4f:1e:c3:b2:27:03:b3:99:0f:33:d0:87:8f:c2:f8: da:f4:98:04:6a:9a:62:0e:d9:1e:c2:a7:c1:a9:29: cb:8c:91:74:2b:8c:3e:bc:07:be:35:34:ec:d8:41: 01:f6:a9:0a:b7:5e:c5:a9:fc:92:3c:81:ab:24:34: cd:e8:41:83:4d:78:d6:58:34:e5:d9:87:c3:d5:95: b9:94:de:e2:17:a3:18:02:70:c4:ed:61:e7:c5:86: 94:22:36:1f:1d:4e:5f:45:da:a3:4f:33:09:96:09: f5:1d:e1:dc:f1:8b:36:80:6b:e1:27:a1:f5:ea:fa: e2:ef:aa:96:c8:62:93:56:7f:23:c1:87:fc:72:72: 4d:cb:01:65:ca:16:65:bb:1f:0d:6c:ef:c6:71:51: 65:9e:b1:47:cf:2f:9d:3e:9a:5a:95:86:f2:02:0f: 38:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:32:9E:47:6D:1A:99:80:01:56:E6:3C:B1:49:BC:00:A6:E2:8B:DA X509v3 Authority Key Identifier: keyid:04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.194.132.0/22 Signature Algorithm: sha256WithRSAEncryption 85:01:db:11:01:62:f7:d2:d6:b8:10:fb:56:6d:88:eb:1f:7a: 98:39:31:08:31:07:af:3e:14:24:97:f9:45:47:9f:da:ae:f4: 5b:dc:7a:72:a8:95:a9:7b:5e:8f:ef:ce:5e:5a:ae:c6:ab:ba: c7:9d:f6:4e:c7:f5:2e:e3:01:c0:77:03:a0:cf:2d:a8:c1:6b: c6:a0:15:08:08:c2:0d:1f:41:ff:e3:de:31:7b:00:f0:fc:a6: e3:c6:38:96:55:e3:c4:70:41:49:52:a7:e7:06:04:66:e0:78: 1b:96:5c:bd:ca:95:82:15:ae:9b:a2:a9:f1:f3:85:96:87:f1: d7:54:99:5c:77:c8:e9:c2:57:66:7c:b8:f1:67:82:db:0f:12: bd:f6:80:8b:94:a9:b2:b5:20:94:59:85:8b:13:fc:b0:33:c0: f7:f8:82:2b:f6:52:05:56:41:f8:4d:72:a3:c1:c6:f0:99:32: 50:82:71:c6:83:4e:07:72:ea:d5:2e:bb:ed:51:6f:6f:e6:28: f1:ba:d1:60:83:1e:a9:22:f2:49:ba:c9:1b:74:0c:bd:47:fb: 9e:80:b4:59:55:8a:20:60:df:36:ed:d1:4b:bd:e9:42:25:bd: 86:c5:6e:4c:f3:c2:af:4f:8a:3a:09:20:01:9c:86:bb:be:5c: 6d:14:3a:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKDA0RUUwNzZBNURGQTk0OEMzOEY4M0M4Q0FDMjBGRTBF OEU4NkQ4MEIwHhcNMjQwNzE5MDIyNDEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk5Y2U0Yi0zZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7H+C+35f6PI5/C4IixSJdOcjVX9UxJ2e6Iygf0lxkO8ZugNt3gfgxePjuYK2 OYySRhChXqDD6IzSUO1d+DuwR3V/BgCEOBuE/FFybvqu5+BWGHF5Jvi5pABPHsOy JwOzmQ8z0IePwvja9JgEappiDtkewqfBqSnLjJF0K4w+vAe+NTTs2EEB9qkKt17F qfySPIGrJDTN6EGDTXjWWDTl2YfD1ZW5lN7iF6MYAnDE7WHnxYaUIjYfHU5fRdqj TzMJlgn1HeHc8Ys2gGvhJ6H16vri76qWyGKTVn8jwYf8cnJNywFlyhZlux8NbO/G cVFlnrFHzy+dPppalYbyAg84/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4ynkdt GpmAAVbmPLFJvACm4ovaMB8GA1UdIwQYMBaAFATuB2pd+pSMOPg8jKwg/g6OhtgL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80NEE1MTk0ODk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi9CTzRIYWwzNmxJdzQtRHlNckNELURvNkcy QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JPNEhhbDM2bEl3NC1EeU1yQ0QtRG82RzJBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNDRBNTE5NDg5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMjlEMkY3QkUw Q0E3MTFFRDk4Q0Y2ODFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALZwoQwDQYJKoZIhvcNAQELBQADggEBAIUB2xEBYvfS1rgQ +1ZtiOsfepg5MQgxB68+FCSX+UVHn9qu9FvcenKolal7Xo/vzl5arsarused9k7H 9S7jAcB3A6DPLajBa8agFQgIwg0fQf/j3jF7APD8puPGOJZV48RwQUlSp+cGBGbg eBuWXL3KlYIVrpuiqfHzhZaH8ddUmVx3yOnCV2Z8uPFngtsPEr32gIuUqbK1IJRZ hYsT/LAzwPf4giv2UgVWQfhNcqPBxvCZMlCCccaDTgdy6tUuu+1Rb2/mKPG60WCD Hqki8km6yRt0DL1H+56AtFlViiBg3zbt0Uu96UIlvYbFbkzzwq9PijoJIAGchru+ XG0UOuo= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:59 2024 by rpki-client on console-fra.rpki-client.org