$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/ACC1DEB0960A11EC8BB4F586C4F9AE02.roa File: ACC1DEB0960A11EC8BB4F586C4F9AE02.roa (raw, json) Hash identifier: /9wYxqntRiGnvgXxlBbc4/94IQMO4HOR9thkiSTkR6A= Subject key identifier: 43:2E:9A:66:EA:51:9A:21:04:6D:1E:2F:4D:F6:B9:97:B9:0C:37:C0 Certificate issuer: /CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Certificate serial: 0315 Authority key identifier: 04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/ACC1DEB0960A11EC8BB4F586C4F9AE02.roa Signing time: Fri 19 Jul 2024 02:24:11 +0000 ROA not before: Fri 19 Jul 2024 02:24:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133199 IP address blocks: 217.194.132.0/24 maxlen: 24 217.194.133.0/24 maxlen: 24 217.194.134.0/24 maxlen: 24 217.194.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Validity Not Before: Jul 19 02:24:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6699ce4b-2ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:16:16:25:7d:ab:a9:26:d9:01:6f:f5:bb:e5: fd:1d:a3:38:c5:f3:c0:5c:6f:8a:5a:87:32:e9:bb: c5:8f:d4:e6:87:1d:b9:6e:94:2f:5a:22:8f:c1:7b: 4d:d2:b3:28:41:f5:53:e9:b7:8a:a5:6a:f3:a3:cd: 7f:20:c2:9e:89:f3:dd:9f:0f:ac:be:82:5b:9c:27: 6b:cc:f1:ef:66:11:e5:22:2a:06:34:ce:eb:6d:da: f6:31:20:ff:a6:12:32:76:0c:b0:fb:23:90:0b:31: 8a:34:b7:59:67:af:b0:e1:7f:7f:60:89:64:42:89: fb:ac:2b:9a:f8:f8:16:b5:ba:3f:88:8f:24:0b:b7: 77:44:76:41:bc:81:08:0d:cf:a2:28:cc:78:59:17: 5f:2d:c2:c4:df:79:ee:c9:3b:aa:d9:04:6a:59:34: 52:2a:84:3e:20:ae:7e:8c:fc:7c:4e:34:86:ad:8f: bb:6b:47:b1:28:4f:39:93:ca:d4:a9:0f:6b:69:70: c7:58:4a:7a:02:ab:8f:93:04:bd:b0:bb:62:b5:cf: ff:d9:bf:f5:7a:2c:22:41:38:bc:3c:6e:0f:ea:b3: 81:e7:d7:51:bb:0a:4f:2e:e7:d2:af:54:ef:df:62: 8f:0a:a2:16:eb:40:df:5b:82:10:8c:56:ce:31:56: ec:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:2E:9A:66:EA:51:9A:21:04:6D:1E:2F:4D:F6:B9:97:B9:0C:37:C0 X509v3 Authority Key Identifier: keyid:04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/ACC1DEB0960A11EC8BB4F586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.194.132.0/22 Signature Algorithm: sha256WithRSAEncryption 60:e6:bb:1e:c8:0d:14:0b:d3:19:95:02:6a:b6:8f:9d:f4:31: c5:c6:7b:8a:9d:dc:70:84:95:0d:47:9e:7c:54:83:b8:1f:48: 57:ba:51:6b:22:f1:34:e6:f2:71:a4:83:03:3b:11:ed:ca:b8: 6f:78:1a:ce:9c:e2:d0:ec:11:fd:ea:6f:f5:ff:c4:e1:d5:49: a4:a7:f9:18:71:52:c5:18:e9:05:d8:13:0e:3e:c8:ef:16:42: 16:9d:3d:3f:b3:47:6c:d3:70:2c:a0:86:85:98:ec:96:aa:95: 27:31:95:c4:d7:95:67:0a:16:43:6e:5e:f2:82:c4:9e:55:11: 51:8c:31:b0:26:4b:22:4f:83:73:c9:6e:b9:56:be:ce:42:e7: c0:b2:58:bc:05:be:9a:fd:64:24:04:75:9e:4b:76:b0:67:1d: ff:f9:f6:2d:78:c7:ca:c9:e9:2a:ec:d0:70:ef:ca:4d:2a:ee: fe:96:a6:20:60:b6:f6:3c:7e:45:99:47:45:ad:4f:0f:47:84: f3:6a:33:b3:f6:da:b0:30:a2:1d:00:73:45:ee:37:28:4c:8c: 6c:9b:37:fb:80:2b:27:13:1d:8d:2c:52:bc:f9:26:25:27:9c: 73:57:b0:80:dc:82:54:98:9c:1f:67:d5:ce:0c:c9:dc:2a:46: ed:18:ea:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKDA0RUUwNzZBNURGQTk0OEMzOEY4M0M4Q0FDMjBGRTBF OEU4NkQ4MEIwHhcNMjQwNzE5MDIyNDExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk5Y2U0Yi0yYWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BYWJX2rqSbZAW/1u+X9HaM4xfPAXG+KWocy6bvFj9Tmhx25bpQvWiKPwXtN 0rMoQfVT6beKpWrzo81/IMKeifPdnw+svoJbnCdrzPHvZhHlIioGNM7rbdr2MSD/ phIydgyw+yOQCzGKNLdZZ6+w4X9/YIlkQon7rCua+PgWtbo/iI8kC7d3RHZBvIEI Dc+iKMx4WRdfLcLE33nuyTuq2QRqWTRSKoQ+IK5+jPx8TjSGrY+7a0exKE85k8rU qQ9raXDHWEp6AquPkwS9sLtitc//2b/1eiwiQTi8PG4P6rOB59dRuwpPLufSr1Tv 32KPCqIW60DfW4IQjFbOMVbswQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEMummbq UZohBG0eL032uZe5DDfAMB8GA1UdIwQYMBaAFATuB2pd+pSMOPg8jKwg/g6OhtgL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80NEE1MTk0ODk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi9CTzRIYWwzNmxJdzQtRHlNckNELURvNkcy QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JPNEhhbDM2bEl3NC1EeU1yQ0QtRG82RzJBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNDRBNTE5NDg5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvQUNDMURFQjA5 NjBBMTFFQzhCQjRGNTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALZwoQwDQYJKoZIhvcNAQELBQADggEBAGDmux7IDRQL0xmV Amq2j530McXGe4qd3HCElQ1HnnxUg7gfSFe6UWsi8TTm8nGkgwM7Ee3KuG94Gs6c 4tDsEf3qb/X/xOHVSaSn+RhxUsUY6QXYEw4+yO8WQhadPT+zR2zTcCyghoWY7Jaq lScxlcTXlWcKFkNuXvKCxJ5VEVGMMbAmSyJPg3PJbrlWvs5C58CyWLwFvpr9ZCQE dZ5LdrBnHf/59i14x8rJ6Srs0HDvyk0q7v6WpiBgtvY8fkWZR0WtTw9HhPNqM7P2 2rAwoh0Ac0XuNyhMjGybN/uAKycTHY0sUrz5JiUnnHNXsIDcglSYnB9n1c4Mydwq Ru0Y6pc= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:59 2024 by rpki-client on console-fra.rpki-client.org