$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/7BCC4B32E85C11EE9593933FC4F9AE02.roa File: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (raw, json) Hash identifier: vSji2PW77227MPuRms4fNHOSHefJ2bW6akHMJ/kFIj0= Subject key identifier: 88:F0:F6:0E:8A:43:9E:5C:C6:D1:F6:D9:91:C7:7A:FA:6F:27:AB:21 Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0245 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/7BCC4B32E85C11EE9593933FC4F9AE02.roa Signing time: Wed 05 Jun 2024 04:31:41 +0000 ROA not before: Wed 05 Jun 2024 04:31:41 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151499 IP address blocks: 192.188.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Jun 5 04:31:41 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665fea2d-a500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f9:6b:18:f1:69:70:e7:02:bd:c1:e6:74:2f: e9:da:d3:4f:b9:9a:31:32:e3:17:e9:a5:9f:43:df: 16:04:d9:35:de:9e:18:fb:57:0c:8a:2f:21:f1:f0: f7:ad:50:40:02:65:b7:f9:8f:85:db:6c:20:ed:db: 6e:66:44:38:5f:7e:b5:d9:ea:5b:56:fc:31:f0:87: 32:e4:36:67:17:be:88:91:bd:c5:43:4b:c0:a4:9b: c5:17:6e:bd:57:55:37:af:63:9b:41:61:a1:ae:8d: b7:d2:7b:53:e3:f7:c1:1b:36:78:72:41:d0:0e:3b: 80:54:d5:ef:86:96:9d:70:bd:f5:de:e5:8f:fe:ed: 1b:a2:61:90:31:a7:54:3b:b8:8c:05:56:21:80:3f: c8:f2:7a:d9:5c:d6:b9:1e:f5:47:f5:63:8b:d6:30: a6:ac:69:02:d1:dd:4a:67:43:75:fc:9b:be:a9:76: e4:9e:e9:9f:98:13:bc:6b:04:b2:e8:da:b3:03:24: ab:65:e2:1a:80:b6:24:8d:e0:ad:e2:62:d7:71:a6: 53:6f:dc:b5:b7:f5:11:33:70:49:06:4e:09:f4:6b: ce:08:8b:81:1f:e5:8d:bd:56:1a:32:43:e7:61:74: 3d:fb:c3:84:61:07:a0:68:c3:fa:83:fa:ed:00:60: 7a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F0:F6:0E:8A:43:9E:5C:C6:D1:F6:D9:91:C7:7A:FA:6F:27:AB:21 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/7BCC4B32E85C11EE9593933FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.188.107.0/24 Signature Algorithm: sha256WithRSAEncryption 63:93:9d:b1:f5:8b:cd:9a:97:64:d8:98:7d:80:81:9e:77:44: e8:89:da:e2:9b:1f:28:2f:21:20:63:86:70:92:78:79:6d:34: bb:33:26:94:86:49:48:31:02:34:fe:4f:a6:05:dd:85:86:ac: 4a:85:ce:7a:7e:e7:3d:98:5a:eb:89:e9:7d:cb:e6:54:73:e0: cb:5e:72:76:81:51:52:65:3c:de:6c:cd:20:a4:3e:6f:52:9e: 20:d4:81:ed:8d:b7:26:60:8b:13:62:f5:55:ff:c4:1e:23:fd: 6e:7c:2e:6a:11:82:f2:9e:3f:1c:bf:e5:e5:2d:38:78:be:ba: 1a:b1:9f:43:f8:1e:15:13:86:9e:b4:ff:4b:49:ca:6a:90:3c: 3d:38:7a:33:bb:1b:86:96:0e:4b:7f:dd:e2:88:4f:84:da:92: 64:06:99:d1:9f:25:91:84:e7:03:ca:f3:cb:4d:ab:28:1e:a7: e1:0a:74:08:8e:9f:68:5c:5a:6a:ea:80:81:7c:6a:16:18:ca: ab:20:e1:48:cb:4d:9f:5c:53:83:f5:37:3a:c9:e2:06:b4:35: a1:f3:e0:c3:1a:98:58:da:d6:6f:87:b6:52:81:db:93:1b:02: a7:cd:86:99:a6:9e:ff:6f:15:7f:cd:83:9e:22:f4:66:77:dd: 22:3c:57:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjQwNjA1MDQzMTQxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZWEyZC1hNTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0flrGPFpcOcCvcHmdC/p2tNPuZoxMuMX6aWfQ98WBNk13p4Y+1cMii8h8fD3 rVBAAmW3+Y+F22wg7dtuZkQ4X3612epbVvwx8Icy5DZnF76Ikb3FQ0vApJvFF269 V1U3r2ObQWGhro230ntT4/fBGzZ4ckHQDjuAVNXvhpadcL313uWP/u0bomGQMadU O7iMBVYhgD/I8nrZXNa5HvVH9WOL1jCmrGkC0d1KZ0N1/Ju+qXbknumfmBO8awSy 6NqzAySrZeIagLYkjeCt4mLXcaZTb9y1t/URM3BJBk4J9GvOCIuBH+WNvVYaMkPn YXQ9+8OEYQegaMP6g/rtAGB6MQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIjw9g6K Q55cxtH22ZHHevpvJ6shMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkxQkMvQTRFNjczQ0FEQkU5MTFFQzk1MTEwNTE1QzRGOUFFMDIvN0JDQzRCMzJF ODVDMTFFRTk1OTM5MzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAvGswDQYJKoZIhvcNAQELBQADggEBAGOTnbH1i82al2TY mH2AgZ53ROiJ2uKbHygvISBjhnCSeHltNLszJpSGSUgxAjT+T6YF3YWGrEqFznp+ 5z2YWuuJ6X3L5lRz4MtecnaBUVJlPN5szSCkPm9SniDUge2NtyZgixNi9VX/xB4j /W58LmoRgvKePxy/5eUtOHi+uhqxn0P4HhUThp60/0tJymqQPD04ejO7G4aWDkt/ 3eKIT4TakmQGmdGfJZGE5wPK88tNqygep+EKdAiOn2hcWmrqgIF8ahYYyqsg4UjL TZ9cU4P1NzrJ4ga0NaHz4MMamFja1m+HtlKB25MbAqfNhpmmnv9vFX/Ng54i9GZ3 3SI8V4Y= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:07 2024 by rpki-client on console-fra.rpki-client.org