$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa File: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (raw, json) Hash identifier: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08= Subject key identifier: 05:4B:AC:68:B8:CE:66:0B:D1:86:54:7F:BE:2B:F7:31:7D:E1:9E:3C Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0999 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa Signing time: Tue 30 Jul 2024 20:38:23 +0000 ROA not before: Tue 30 Jul 2024 20:38:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 16509 IP address blocks: 58.181.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Jul 30 20:38:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a94f3f-4b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:45:47:36:1c:28:5b:12:7e:27:60:97:c8:37: ac:24:11:42:f5:a4:fe:40:b2:d9:86:9c:2b:90:32: fe:2c:a6:7d:a9:89:41:f5:bb:9e:5c:a4:05:80:68: f6:fa:41:a0:63:89:a5:d3:55:96:74:f3:5f:fe:48: 6f:eb:70:07:d1:a6:77:e6:cf:92:2d:1c:11:cc:90: 17:a3:91:89:25:c2:3f:6f:74:e2:cd:c6:09:4d:fd: b9:09:79:26:09:c3:c4:0f:b6:76:d7:4d:33:e3:fa: 9a:51:e7:92:9c:63:54:36:fc:ec:77:cd:07:b2:05: 01:04:26:9a:17:53:13:7a:54:f9:e0:ee:4e:3c:e4: ad:17:2f:70:d4:c1:c3:c4:47:6d:02:57:c1:c3:cb: 4f:5c:ae:b7:09:d6:cf:8a:29:24:ae:b4:39:5d:a3: d0:cd:aa:e4:cc:67:cc:ee:20:37:34:ce:e9:21:45: 89:ae:46:a6:bc:d2:78:e8:c4:c5:be:ca:c8:3b:08: 79:46:06:ad:4e:81:5e:8c:81:86:81:ef:aa:6d:23: f3:43:ee:ac:3b:b6:ff:56:3b:06:0d:f5:65:ff:c3: b1:48:48:13:3f:d3:6c:e1:a4:24:2c:3e:d2:d4:04: e1:6c:47:9a:13:1d:4a:14:cf:09:84:12:d8:ab:ed: 87:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4B:AC:68:B8:CE:66:0B:D1:86:54:7F:BE:2B:F7:31:7D:E1:9E:3C X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.95.0/24 Signature Algorithm: sha256WithRSAEncryption 95:4b:91:e6:d1:ab:59:e0:5b:c6:34:b7:2c:98:77:a2:80:c8: 7f:a9:b5:d5:4f:cc:94:e3:9e:c1:77:eb:14:98:38:76:17:78: 95:67:18:b4:38:95:fa:2c:bd:8f:19:10:27:7f:be:3e:fd:13: 1c:90:78:db:75:1f:6f:c7:3d:64:e2:1d:f7:00:dc:5d:30:29: 1f:1c:d5:43:c6:21:b6:b4:85:04:18:35:10:39:20:84:8c:fa: b8:bc:e7:89:62:5a:50:a6:c6:9a:87:78:3f:0a:c4:23:b6:40: ef:a8:ec:43:0d:a3:53:25:2e:2c:b0:c0:24:bc:98:a6:4b:25: 54:f4:90:eb:99:30:47:6a:0b:1d:a5:69:72:9d:3b:f3:28:47: 21:97:9f:33:54:c7:ed:55:9f:db:b3:06:8a:cc:da:67:c4:4a: de:6b:bc:a5:6a:61:58:ad:20:cb:35:ab:97:05:f5:f7:01:01: a0:94:ea:eb:4c:e2:46:23:27:c3:ae:90:e8:6b:12:bb:f9:36: e0:f5:83:b5:3a:70:ed:44:97:67:d9:9c:51:dd:f7:e4:50:6c: 08:21:88:20:8f:6f:ce:59:d2:28:be:1a:50:fd:de:12:41:53: f6:85:8a:78:1a:b2:f1:3a:1d:8e:1c:97:e7:f2:41:05:1c:58: 51:f2:cb:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjQwNzMwMjAzODIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NGYzZi00YjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUVHNhwoWxJ+J2CXyDesJBFC9aT+QLLZhpwrkDL+LKZ9qYlB9bueXKQFgGj2 +kGgY4ml01WWdPNf/khv63AH0aZ35s+SLRwRzJAXo5GJJcI/b3TizcYJTf25CXkm CcPED7Z2100z4/qaUeeSnGNUNvzsd80HsgUBBCaaF1MTelT54O5OPOStFy9w1MHD xEdtAlfBw8tPXK63CdbPiikkrrQ5XaPQzarkzGfM7iA3NM7pIUWJrkamvNJ46MTF vsrIOwh5RgatToFejIGGge+qbSPzQ+6sO7b/VjsGDfVl/8OxSEgTP9Ns4aQkLD7S 1AThbEeaEx1KFM8JhBLYq+2HiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAVLrGi4 zmYL0YZUf74r9zF94Z48MB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNEMvQTczMjM1RUM3M0MyMTFFQTlENDBCODg1QzRGOUFFMDIvQTNENTBCMkVB M0RCMTFFQTk4QkM1RDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6tV8wDQYJKoZIhvcNAQELBQADggEBAJVLkebRq1ngW8Y0 tyyYd6KAyH+ptdVPzJTjnsF36xSYOHYXeJVnGLQ4lfosvY8ZECd/vj79ExyQeNt1 H2/HPWTiHfcA3F0wKR8c1UPGIba0hQQYNRA5IISM+ri854liWlCmxpqHeD8KxCO2 QO+o7EMNo1MlLiywwCS8mKZLJVT0kOuZMEdqCx2laXKdO/MoRyGXnzNUx+1Vn9uz BorM2mfESt5rvKVqYVitIMs1q5cF9fcBAaCU6utM4kYjJ8OukOhrErv5NuD1g7U6 cO1El2fZnFHd9+RQbAghiCCPb85Z0ii+GlD93hJBU/aFingasvE6HY4cl+fyQQUc WFHyy+4= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:48 2024 by rpki-client on console-fra.rpki-client.org