$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa File: 06820D08961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: AajhgEbZBOC20FRVNZHV44NbIbhPj9V3ePlv/pPgwT4= Subject key identifier: A4:5B:9B:38:24:F4:F5:98:B4:6E:D8:86:FA:63:E0:A4:D6:79:07:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 031D Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa Signing time: Fri 19 Jul 2024 02:24:13 +0000 ROA not before: Fri 19 Jul 2024 02:24:13 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133199 IP address blocks: 208.87.200.0/24 maxlen: 24 208.87.201.0/24 maxlen: 24 208.87.202.0/24 maxlen: 24 208.87.203.0/24 maxlen: 24 208.87.204.0/24 maxlen: 24 208.87.205.0/24 maxlen: 24 208.87.206.0/24 maxlen: 24 208.87.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 797 (0x31d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Jul 19 02:24:13 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6699ce4c-fbbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:58:b8:24:07:13:cf:f1:06:09:70:2d:f2: e5:f6:7a:27:21:e6:1e:cd:40:b2:8c:25:31:26:94: ec:ca:b7:0d:53:5f:b5:2c:46:45:43:ea:c3:cc:36: 1d:c7:0a:42:a6:ff:18:68:48:05:e5:a8:ce:d8:33: 1c:1e:3d:e6:a9:96:1e:56:9e:1b:5a:29:f2:21:cc: 77:c3:cd:c0:59:55:8d:19:29:ca:87:b7:c5:8e:ee: fd:53:9b:77:51:d1:7f:76:5d:f7:d5:6f:60:a8:15: c2:eb:5c:c8:70:45:3e:5c:65:eb:a8:68:51:24:84: 89:41:d6:09:5c:df:ab:d4:bf:bb:2a:83:21:e2:f0: 45:b7:3c:ce:e4:37:bc:e5:ae:79:c3:92:4e:bc:e5: 96:78:df:8a:35:b7:06:50:a8:89:29:af:36:8d:5b: b5:dd:19:2f:0b:36:4b:1c:c4:b2:21:f0:ab:28:a4: 0d:c8:35:f2:05:63:bd:c6:ee:fb:08:89:bd:df:dd: 64:c3:85:b1:b3:b1:53:ff:e0:da:62:d5:c2:64:42: f4:d8:ad:55:2d:2a:f5:b4:0f:08:1a:b5:69:f3:48: 20:af:c3:79:c8:ed:14:a5:b7:73:32:da:15:5a:9f: 51:45:fa:5a:ba:62:c0:8e:dd:11:0c:d0:83:b6:c1: 07:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5B:9B:38:24:F4:F5:98:B4:6E:D8:86:FA:63:E0:A4:D6:79:07:4F X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 208.87.200.0/21 Signature Algorithm: sha256WithRSAEncryption 88:ff:05:af:cf:fa:97:ba:c3:6f:41:28:c0:78:9f:4c:3d:7c: 60:6a:09:3c:60:19:b2:1b:2d:31:33:0f:db:4f:51:65:13:b5: de:8f:44:0c:14:c7:78:10:5f:a6:c4:c0:82:6d:76:2c:25:f5: 8d:7c:cf:93:14:09:6e:59:f3:06:91:d9:0b:fb:13:7c:de:89: d8:77:fb:7b:27:44:8e:59:1d:ea:df:0d:0a:85:a2:56:96:89: 34:02:70:3a:bc:ab:c1:78:8e:6a:9f:09:9c:2c:60:83:24:43: ca:89:1a:f3:d8:b9:99:05:06:00:e0:6c:98:d5:95:19:18:43: ff:f2:05:be:27:87:e1:85:37:39:3e:77:6a:32:9d:6c:15:36: b4:20:7e:cc:82:58:7b:2e:e3:72:8a:5c:63:b8:45:ab:f0:01: 0e:4c:bb:3f:9f:74:e7:53:19:2a:9d:22:ae:54:41:20:8b:5e: 85:ac:06:18:09:26:09:46:13:9c:a0:16:2d:88:f6:89:00:66: 44:b0:2d:3d:ae:ee:09:51:74:4e:d2:3f:7b:b9:01:81:42:91: 27:a0:a4:c2:8d:af:64:54:55:fd:04:de:51:f7:f2:03:f4:db: 1c:c3:8e:33:47:f7:10:5b:34:9b:13:32:47:71:50:6c:d1:46: e3:65:45:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjQwNzE5MDIyNDEzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk5Y2U0Yy1mYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMdYuCQHE8/xBglwLfLl9nonIeYezUCyjCUxJpTsyrcNU1+1LEZFQ+rDzDYd xwpCpv8YaEgF5ajO2DMcHj3mqZYeVp4bWinyIcx3w83AWVWNGSnKh7fFju79U5t3 UdF/dl331W9gqBXC61zIcEU+XGXrqGhRJISJQdYJXN+r1L+7KoMh4vBFtzzO5De8 5a55w5JOvOWWeN+KNbcGUKiJKa82jVu13RkvCzZLHMSyIfCrKKQNyDXyBWO9xu77 CIm9391kw4Wxs7FT/+DaYtXCZEL02K1VLSr1tA8IGrVp80ggr8N5yO0UpbdzMtoV Wp9RRfpaumLAjt0RDNCDtsEHIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKRbmzgk 9PWYtG7Yhvpj4KTWeQdPMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNEUzRTM2N0U5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMDY4MjBEMDg5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPQV8gwDQYJKoZIhvcNAQELBQADggEBAIj/Ba/P+pe6w29B KMB4n0w9fGBqCTxgGbIbLTEzD9tPUWUTtd6PRAwUx3gQX6bEwIJtdiwl9Y18z5MU CW5Z8waR2Qv7E3zeidh3+3snRI5ZHerfDQqFolaWiTQCcDq8q8F4jmqfCZwsYIMk Q8qJGvPYuZkFBgDgbJjVlRkYQ//yBb4nh+GFNzk+d2oynWwVNrQgfsyCWHsu43KK XGO4RavwAQ5Muz+fdOdTGSqdIq5UQSCLXoWsBhgJJglGE5ygFi2I9okAZkSwLT2u 7glRdE7SP3u5AYFCkSegpMKNr2RUVf0E3lH38gP02xzDjjNH9xBbNJsTMkdxUGzR RuNlRQA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org