$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa File: 68EBA63A48B911EFB80D9535C4F9AE02.roa (raw, json) Hash identifier: OV24Kj5y+880mPdkukE2fpkmI0sbTUDGEcrj2jYLxRA= Subject key identifier: 6E:C8:7A:E9:75:0F:6E:7C:63:3C:2A:A9:F4:8C:D2:CB:82:FA:7E:C9 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 21 Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa Signing time: Thu 29 Aug 2024 07:50:26 +0000 ROA not before: Thu 29 Aug 2024 07:50:26 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 6453 IP address blocks: 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Aug 29 07:50:26 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d02842-54dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ff:9c:02:ba:07:08:7e:98:fa:36:32:10:cd: 2c:23:9a:ee:de:96:a9:6a:0f:81:33:7b:fe:c2:f9: 64:e7:16:e0:ed:12:64:9e:03:9d:b9:ce:3c:1d:27: 81:70:85:c5:ab:9f:e8:40:41:81:70:3f:2d:a7:fb: 07:96:35:f5:85:84:cc:34:86:33:81:07:4e:58:ca: 54:2d:45:62:a8:fe:8b:18:4c:ee:89:b4:95:d2:7c: 56:39:ce:b9:41:db:47:04:1b:28:b5:95:bc:d1:6a: 95:73:5d:09:9e:10:67:ab:09:10:cb:db:94:5e:c7: 53:e6:eb:62:0f:e6:11:55:fb:3d:c3:fe:48:26:26: 35:5a:b3:93:07:02:0e:05:ca:8a:14:c7:78:cb:66: 61:6e:66:6d:45:8d:3a:62:51:f0:2e:a0:0e:98:44: 92:5c:88:32:42:2c:37:5d:e7:21:f3:be:ee:e8:92: 83:93:15:ff:74:ab:97:b6:89:1c:d6:f5:fa:23:33: 74:71:c4:f3:f1:80:73:e8:07:e3:01:72:0d:e7:99: 82:ca:dc:79:97:89:15:a5:3c:17:d0:d6:aa:7f:9b: f8:11:ba:1e:0e:dd:b1:97:bc:07:57:39:b3:af:18: c7:ab:e7:66:63:85:43:83:5e:fd:40:26:fd:e7:05: 2c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C8:7A:E9:75:0F:6E:7C:63:3C:2A:A9:F4:8C:D2:CB:82:FA:7E:C9 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption a1:7e:86:d8:84:b6:19:3b:28:cd:ce:52:5c:ed:cf:71:a3:17: 5c:d2:73:3f:ac:80:56:2b:fc:80:d2:02:8e:83:4c:c3:ed:51: ca:50:2f:55:de:68:67:5a:86:ed:3c:c5:ba:6e:77:18:68:b7: 45:9d:e7:2f:e8:4f:54:4e:bd:fa:f5:af:54:f5:bd:c9:95:c7: 8a:a9:9e:d1:b7:a7:44:0b:8e:f3:e5:52:d3:3c:05:51:b9:c9: f0:9a:ef:f6:08:07:ba:ce:63:5d:f1:c1:41:f4:58:58:d4:e4: 8f:29:4c:19:5c:d3:7d:bd:fe:2e:6e:32:d8:1a:b5:80:17:6d: 83:c5:99:a2:27:ae:ee:94:64:b1:03:fe:1d:8f:e6:26:2e:3a: de:9e:1b:5c:cc:0e:45:01:9b:27:d0:7c:43:73:47:bd:e6:7e: 66:3d:2f:69:a6:a0:46:9d:d5:47:04:b5:9f:17:1e:f5:7c:c4: 0d:2c:a3:2a:db:53:c7:67:c0:7b:ab:2e:7c:94:db:31:44:31: 2b:f2:99:3a:b2:ab:68:c9:ee:ec:f4:b4:b7:c8:09:59:d9:e2: a5:a8:74:53:40:39:71:ca:9c:e3:c6:69:4e:92:a7:de:43:c4: 67:8a:80:fa:77:f7:51:ce:df:5e:e8:f9:67:fe:bd:cd:73:10: 88:8e:07:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NzgyRjExMC8GA1UEBRMoQzg2MDM2NTc1NTI0NDhFRDVCQkFFRDcxNzI0RDIyMjBG MDNCRjdDNjAeFw0yNDA4MjkwNzUwMjZaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDAyODQyLTU0ZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf/5wCugcIfpj6NjIQzSwjmu7elqlqD4Eze/7C+WTnFuDtEmSeA525zjwdJ4Fw hcWrn+hAQYFwPy2n+weWNfWFhMw0hjOBB05YylQtRWKo/osYTO6JtJXSfFY5zrlB 20cEGyi1lbzRapVzXQmeEGerCRDL25Rex1Pm62IP5hFV+z3D/kgmJjVas5MHAg4F yooUx3jLZmFuZm1FjTpiUfAuoA6YRJJciDJCLDdd5yHzvu7okoOTFf90q5e2iRzW 9fojM3RxxPPxgHPoB+MBcg3nmYLK3HmXiRWlPBfQ1qp/m/gRuh4O3bGXvAdXObOv GMer52ZjhUODXv1AJv3nBSyhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbsh66XUP bnxjPCqp9IzSy4L6fskwHwYDVR0jBBgwFoAUyGA2V1UkSO1buu1xck0iIPA798Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3ODJGLzZEMjA3NUY2NDA3 MDExRUZCREE5RDY2RkM0RjlBRTAyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveUdBMlYxVWtTTzFidXUxeGNrMGlJUEE3OThZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi82RDIwNzVGNjQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi82OEVCQTYzQTQ4 QjkxMUVGQjgwRDk1MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMAI7jANBgkqhkiG9w0BAQsFAAOCAQEAoX6G2IS2GTsozc5S XO3PcaMXXNJzP6yAViv8gNICjoNMw+1RylAvVd5oZ1qG7TzFum53GGi3RZ3nL+hP VE69+vWvVPW9yZXHiqme0benRAuO8+VS0zwFUbnJ8Jrv9ggHus5jXfHBQfRYWNTk jylMGVzTfb3+Lm4y2Bq1gBdtg8WZoieu7pRksQP+HY/mJi463p4bXMwORQGbJ9B8 Q3NHveZ+Zj0vaaagRp3VRwS1nxce9XzEDSyjKttTx2fAe6sufJTbMUQxK/KZOrKr aMnu7PS0t8gJWdnipah0U0A5ccqc48ZpTpKn3kPEZ4qA+nf3Uc7fXuj5Z/69zXMQ iI4HgA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org