$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa File: C006CA2248B311EFB8A4C178C4F9AE02.roa (raw, json) Hash identifier: RWKYaNgfk7P7N5uSJ3tE2gik3mua1Il7oXxrRLWnbWI= Subject key identifier: 2A:39:54:DE:DB:74:C1:06:80:52:EF:1F:E5:2E:28:C0:55:83:7C:79 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 20 Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa Signing time: Thu 29 Aug 2024 07:50:26 +0000 ROA not before: Thu 29 Aug 2024 07:50:26 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 36224 IP address blocks: 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Aug 29 07:50:26 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d02841-0597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:70:82:c8:8b:71:f8:66:87:90:a6:4c:2a:c9: 98:4a:aa:5f:be:52:57:bc:5e:e7:6b:6a:ec:98:73: 1d:00:43:71:b8:d6:4f:91:f1:5d:06:ad:98:09:68: ef:bd:a5:62:31:6e:58:f7:8b:3b:61:e6:bb:9e:f8: 9c:17:99:23:dc:5d:9d:89:d6:54:0d:98:85:d2:eb: 6c:97:bb:e8:5a:32:7d:c6:23:9a:3a:4a:9f:85:dc: 96:54:89:3a:0e:6d:07:15:ac:b4:00:41:eb:61:08: 52:68:5e:18:44:6b:39:1d:b2:b2:45:c3:b9:0b:35: f9:b6:0e:19:d1:fe:da:42:0a:54:40:cc:98:f6:e6: 3e:38:f2:21:9e:e1:c1:c2:27:28:58:0b:4a:35:bd: 0b:d6:f7:ea:a0:e2:e2:3e:01:aa:4e:78:b0:0e:96: c0:13:44:1d:50:10:b1:47:be:73:9f:a3:4a:d3:1c: 52:1f:3e:04:b9:90:6c:d0:09:d9:cc:11:28:52:6f: 9d:91:7a:d7:1b:bd:44:22:ee:80:e6:83:53:af:a2: ec:0e:95:14:66:b6:2d:7e:25:f5:24:97:9a:13:84: 6d:63:5d:26:e9:ec:e9:de:d0:72:e1:c2:ca:f7:30: b4:36:81:92:ac:00:65:6d:20:2b:84:a5:76:50:8c: ec:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:39:54:DE:DB:74:C1:06:80:52:EF:1F:E5:2E:28:C0:55:83:7C:79 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:e2:9b:ab:8c:a8:b6:54:4a:64:fc:9f:11:41:43:03:5a:ee: 22:68:7d:09:c3:49:04:ea:26:ca:53:cc:d0:37:b9:49:47:1e: 51:8d:e0:03:74:af:83:d9:86:fe:78:d0:1e:4b:2d:43:c7:a1: 6d:b3:c4:67:57:a3:bd:37:c3:2e:2f:db:3c:4a:74:87:78:8a: 5b:dc:bc:a8:c9:f1:7e:43:0c:16:8f:45:e8:95:f7:29:51:19: ca:39:a0:34:5a:f0:e9:3d:6f:63:9d:ff:85:24:32:25:7a:47: 83:99:f4:62:af:2f:fd:a3:81:0e:41:5c:fb:5f:7c:4a:bd:67: 8c:b3:cb:3a:0e:b0:26:bd:a1:1f:b1:8e:56:85:d9:a4:e4:90: 3e:b5:eb:5e:2b:34:32:87:c0:e5:e9:30:48:c2:71:ff:25:44: d4:e8:d2:fb:12:ee:5a:90:53:f9:a2:de:df:3b:32:40:13:78: 46:8d:9e:87:54:4b:17:b2:74:de:99:bd:74:84:c9:9a:76:56: 1b:3c:07:42:91:9d:a1:7e:1c:ed:e0:58:1c:0c:62:db:9a:4d: 39:3c:c0:e9:2c:4a:41:26:61:31:7c:f1:aa:7a:20:4e:f4:98: 74:62:7c:22:49:ef:85:f5:0a:07:d3:8b:2c:17:c2:ce:65:d2: 73:86:a1:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NzgyRjExMC8GA1UEBRMoQzg2MDM2NTc1NTI0NDhFRDVCQkFFRDcxNzI0RDIyMjBG MDNCRjdDNjAeFw0yNDA4MjkwNzUwMjZaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDAyODQxLTA1OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5cILIi3H4ZoeQpkwqyZhKql++Ule8XudrauyYcx0AQ3G41k+R8V0GrZgJaO+9 pWIxblj3izth5rue+JwXmSPcXZ2J1lQNmIXS62yXu+haMn3GI5o6Sp+F3JZUiToO bQcVrLQAQethCFJoXhhEazkdsrJFw7kLNfm2DhnR/tpCClRAzJj25j448iGe4cHC JyhYC0o1vQvW9+qg4uI+AapOeLAOlsATRB1QELFHvnOfo0rTHFIfPgS5kGzQCdnM EShSb52RetcbvUQi7oDmg1OvouwOlRRmti1+JfUkl5oThG1jXSbp7One0HLhwsr3 MLQ2gZKsAGVtICuEpXZQjOx9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKjlU3tt0 wQaAUu8f5S4owFWDfHkwHwYDVR0jBBgwFoAUyGA2V1UkSO1buu1xck0iIPA798Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3ODJGLzZEMjA3NUY2NDA3 MDExRUZCREE5RDY2RkM0RjlBRTAyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveUdBMlYxVWtTTzFidXUxeGNrMGlJUEE3OThZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi82RDIwNzVGNjQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9DMDA2Q0EyMjQ4 QjMxMUVGQjhBNEMxNzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMAI7jANBgkqhkiG9w0BAQsFAAOCAQEAGuKbq4yotlRKZPyf EUFDA1ruImh9CcNJBOomylPM0De5SUceUY3gA3Svg9mG/njQHkstQ8ehbbPEZ1ej vTfDLi/bPEp0h3iKW9y8qMnxfkMMFo9F6JX3KVEZyjmgNFrw6T1vY53/hSQyJXpH g5n0Yq8v/aOBDkFc+198Sr1njLPLOg6wJr2hH7GOVoXZpOSQPrXrXis0MofA5ekw SMJx/yVE1OjS+xLuWpBT+aLe3zsyQBN4Ro2eh1RLF7J03pm9dITJmnZWGzwHQpGd oX4c7eBYHAxi25pNOTzA6SxKQSZhMXzxqnogTvSYdGJ8IknvhfUKB9OLLBfCzmXS c4ah3A== -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:26 2024 by rpki-client on console-fra.rpki-client.org