$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa File: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (raw, json) Hash identifier: 5tsj3TAsFxb8qTqVXGn9He+Eq077vpR4YIaSiSHaTqQ= Subject key identifier: 9C:A2:E7:6D:D7:63:C3:00:72:FC:7C:9D:1C:E4:8E:CA:C0:89:D4:4D Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 07E2 Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa Signing time: Wed 16 Oct 2024 21:10:45 +0000 ROA not before: Wed 16 Oct 2024 21:10:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9387 IP address blocks: 116.0.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2018 (0x7e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Oct 16 21:10:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67102bd4-0a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:a7:3a:08:cd:7a:4a:29:dd:7e:fd:4d:a0: 63:76:d2:f7:ff:51:cc:ee:c5:d6:fb:45:a6:fa:63: 3f:24:7a:b3:e3:69:1c:7b:a7:00:14:bc:65:8d:5f: 91:54:2e:5c:44:49:2e:1b:49:9b:6e:ee:49:e1:59: f8:1b:a9:74:b4:9a:1d:a7:e1:2b:ab:64:f1:b0:2a: 02:ce:ee:9b:06:56:42:0c:0a:d7:4e:60:01:8e:6e: a2:db:06:ae:6f:fb:d3:d1:49:74:07:ec:65:0d:1e: b4:c1:1d:1d:73:33:9f:40:6a:4d:b7:2a:77:71:27: 08:d7:ab:57:1f:27:d9:ca:13:0e:39:c1:59:b8:1c: c8:30:46:f9:86:97:18:20:c8:f0:ee:bd:3e:62:87: 2a:aa:9d:f5:b5:57:7d:55:f2:31:be:c8:ad:a1:cc: 36:9e:39:f0:ef:15:0d:45:58:a9:bd:a0:da:88:ae: 83:6e:b5:4a:32:72:a3:f9:d7:19:2d:aa:a7:1e:ab: b2:81:eb:9a:42:3d:40:98:3c:b2:f8:e8:4f:26:e5: 95:ee:a7:20:c1:48:93:22:76:d3:cc:a4:42:85:69: aa:aa:30:f2:f4:bd:55:88:d9:12:2d:48:47:69:bf: 39:7e:ab:ca:46:76:03:9e:92:d3:94:06:1d:55:48: 1a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A2:E7:6D:D7:63:C3:00:72:FC:7C:9D:1C:E4:8E:CA:C0:89:D4:4D X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.60.0/24 Signature Algorithm: sha256WithRSAEncryption 38:ad:4e:8b:bf:62:02:0a:20:e6:48:c1:0e:1a:5b:90:d4:ba: 23:dc:71:10:b0:01:8d:0e:84:81:c4:a3:f4:7d:bb:e0:d5:93: 21:61:14:95:ef:b1:e2:6f:d6:42:42:10:09:e9:16:a0:cc:2e: 46:fb:dc:65:d9:37:7a:31:69:fc:68:8b:d8:e4:7e:27:ff:91: cd:e8:33:b1:66:35:eb:40:61:f5:a7:b5:63:24:f1:ce:95:22: b6:8f:ca:ec:9d:fa:f0:63:f4:61:3e:70:cd:c1:a9:b1:3a:1e: 4a:b4:5e:c8:cd:80:80:73:74:86:ab:6a:9c:18:b8:b7:75:97: 22:5c:a9:dc:ff:3c:56:26:2b:1c:cf:6b:0b:45:18:c4:56:2e: 68:ce:7e:e0:f8:87:72:59:89:98:89:ed:8f:37:94:9f:56:52: 83:8a:1e:fe:ac:d1:b0:b6:af:fc:2e:b1:dc:45:88:81:3c:77: 79:ac:e5:f1:9b:5a:7a:6b:b4:a6:5b:f7:54:d5:c1:51:04:c6: a6:cf:34:e2:fd:07:8d:ac:1e:e8:28:da:fb:29:61:4f:87:79: 8b:c1:ff:ee:fe:6c:e6:42:2f:ca:8a:9d:3f:a8:05:12:8c:45: 50:28:9d:bc:8d:52:91:f7:08:05:ed:59:10:f8:f6:f6:77:49: ef:7a:49:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjQxMDE2MjExMDQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwMmJkNC0wYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumOnOgjNekop3X79TaBjdtL3/1HM7sXW+0Wm+mM/JHqz42kce6cAFLxljV+R VC5cREkuG0mbbu5J4Vn4G6l0tJodp+Erq2TxsCoCzu6bBlZCDArXTmABjm6i2wau b/vT0Ul0B+xlDR60wR0dczOfQGpNtyp3cScI16tXHyfZyhMOOcFZuBzIMEb5hpcY IMjw7r0+Yocqqp31tVd9VfIxvsitocw2njnw7xUNRVipvaDaiK6DbrVKMnKj+dcZ LaqnHquygeuaQj1AmDyy+OhPJuWV7qcgwUiTInbTzKRChWmqqjDy9L1ViNkSLUhH ab85fqvKRnYDnpLTlAYdVUgaYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJyi523X Y8MAcvx8nRzkjsrAidRNMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2RDkvODBERkRFQzBFNUREMTFFQUIyNDY4RDY1QzRGOUFFMDIvQkFFQjRCMjhG QkRGMTFFQThCNzM1OTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0ADwwDQYJKoZIhvcNAQELBQADggEBADitTou/YgIKIOZI wQ4aW5DUuiPccRCwAY0OhIHEo/R9u+DVkyFhFJXvseJv1kJCEAnpFqDMLkb73GXZ N3oxafxoi9jkfif/kc3oM7FmNetAYfWntWMk8c6VIraPyuyd+vBj9GE+cM3BqbE6 Hkq0XsjNgIBzdIarapwYuLd1lyJcqdz/PFYmKxzPawtFGMRWLmjOfuD4h3JZiZiJ 7Y83lJ9WUoOKHv6s0bC2r/wusdxFiIE8d3ms5fGbWnprtKZb91TVwVEExqbPNOL9 B42sHugo2vspYU+HeYvB/+7+bOZCL8qKnT+oBRKMRVAonbyNUpH3CAXtWRD49vZ3 Se96SQw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org