$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/4FF339D8F01D11EB8C4B505BC4F9AE02.roa File: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (raw, json) Hash identifier: kzECbfpnJK1DMJfZUK8eDMDVYRqxWsJZ8xpJMfAbRdI= Subject key identifier: A8:46:2C:B6:4D:BE:DC:EB:35:CF:7D:7F:5E:B7:0F:BD:D0:D8:8A:9F Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 19E9 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/4FF339D8F01D11EB8C4B505BC4F9AE02.roa Signing time: Thu 04 Apr 2024 14:50:44 +0000 ROA not before: Thu 04 Apr 2024 14:50:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 399077 IP address blocks: 116.51.24.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6633 (0x19e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 4 14:50:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660ebe43-32d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:13:fe:e8:9e:c4:79:ef:8f:dc:49:2c:40:60: bb:f3:2d:61:49:10:2c:c1:7f:62:f4:e5:b1:6d:7f: 92:bf:35:3a:98:8c:4a:5e:78:ad:f8:1c:56:15:57: 03:57:f3:d5:00:08:fd:a0:ce:32:8a:69:c6:1e:5d: e8:7c:4f:59:f3:30:dc:cd:42:b2:48:e3:1f:04:06: 47:b0:65:8e:90:70:df:c0:28:77:2c:27:b5:b9:49: 82:0c:d7:8f:f2:a2:2f:45:3b:79:93:53:5f:e3:bd: fb:0f:ff:80:83:77:8c:45:bd:00:95:ee:c1:e6:7e: 33:dc:84:1c:68:7a:6c:08:ca:51:ea:26:d8:31:43: ea:61:52:15:20:23:93:59:81:99:a7:72:6c:0d:a7: 25:3a:7d:c5:7a:8c:6e:9a:17:e0:40:40:96:f2:c5: 6d:a2:07:1b:07:9e:c7:cf:e8:80:60:5c:ea:9c:39: 34:27:bd:0d:f2:d0:b8:4b:09:40:a2:ca:aa:db:9e: 1f:19:96:96:77:37:f7:1a:c2:6e:29:e7:92:53:ee: 18:39:02:00:b8:a9:ff:62:bb:a1:f6:20:06:7a:e5: d5:94:4f:50:04:3a:7d:1d:93:8c:b6:9d:7b:1c:7b: 4a:c3:e3:51:4d:96:30:48:3c:c7:03:02:0d:a4:f5: f7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:46:2C:B6:4D:BE:DC:EB:35:CF:7D:7F:5E:B7:0F:BD:D0:D8:8A:9F X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/4FF339D8F01D11EB8C4B505BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.51.24.128/25 Signature Algorithm: sha256WithRSAEncryption ad:c1:75:e9:99:94:01:d3:18:1b:94:be:77:cf:82:2d:8c:16: 04:27:b2:5f:eb:d4:b3:5d:c9:e1:23:be:1d:15:e4:95:bb:41: 98:66:08:10:ee:2e:c5:59:1e:2c:c7:c6:2f:ca:48:d5:8a:8c: 54:af:75:ff:9f:8f:7b:7b:bc:74:39:c4:86:be:66:26:a9:3f: be:1b:d4:2e:96:8c:2c:ca:6f:22:57:65:6a:b8:cc:11:e9:5e: ef:6b:01:ed:ae:95:5c:90:f4:4b:2b:a6:52:58:1c:27:41:52: d8:54:8f:e1:d1:c4:09:97:b8:08:f1:77:2a:61:f3:f5:40:e3: ce:47:9c:86:6a:02:18:f2:45:6e:55:dd:fa:e4:40:14:85:a6: a9:64:9a:30:70:cd:58:09:1e:8f:85:bd:b6:80:ba:45:b8:37: 18:a9:47:aa:f2:41:ee:cd:5e:01:77:37:2c:a7:2b:99:60:09: 65:07:1f:32:e8:b0:fa:02:f6:ff:fc:86:37:90:51:cf:6a:d3: e1:ac:63:80:85:49:db:de:e1:de:c5:70:27:e1:9b:88:34:1f: 0f:f2:d0:9c:9d:6a:e2:c6:77:fb:c3:6e:43:05:c4:48:29:1c: 29:6f:3c:06:46:1d:64:ba:cb:c9:03:4b:4b:92:75:13:5f:f9: 29:3f:2a:03 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICGekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjQwNDA0MTQ1MDQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYmU0My0zMmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhP+6J7Eee+P3EksQGC78y1hSRAswX9i9OWxbX+SvzU6mIxKXnit+BxWFVcD V/PVAAj9oM4yimnGHl3ofE9Z8zDczUKySOMfBAZHsGWOkHDfwCh3LCe1uUmCDNeP 8qIvRTt5k1Nf4737D/+Ag3eMRb0Ale7B5n4z3IQcaHpsCMpR6ibYMUPqYVIVICOT WYGZp3JsDaclOn3FeoxumhfgQECW8sVtogcbB57Hz+iAYFzqnDk0J70N8tC4SwlA osqq254fGZaWdzf3GsJuKeeSU+4YOQIAuKn/Yruh9iAGeuXVlE9QBDp9HZOMtp17 HHtKw+NRTZYwSDzHAwINpPX3gwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKhGLLZN vtzrNc99f163D73Q2IqfMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvNEZGMzM5RDhG MDFEMTFFQjhDNEI1MDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgABMAcDBQd0MxiAMA0GCSqGSIb3DQEBCwUAA4IBAQCtwXXpmZQB0xgb lL53z4ItjBYEJ7Jf69SzXcnhI74dFeSVu0GYZggQ7i7FWR4sx8YvykjVioxUr3X/ n497e7x0OcSGvmYmqT++G9Qulowsym8iV2VquMwR6V7vawHtrpVckPRLK6ZSWBwn QVLYVI/h0cQJl7gI8XcqYfP1QOPOR5yGagIY8kVuVd365EAUhaapZJowcM1YCR6P hb22gLpFuDcYqUeq8kHuzV4BdzcspyuZYAllBx8y6LD6Avb//IY3kFHPatPhrGOA hUnb3uHexXAn4ZuINB8P8tCcnWrixnf7w25DBcRIKRwpbzwGRh1kusvJA0tLknUT X/kpPyoD -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org