$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/FA4555AA93DC11EEB00AF628C4F9AE02.roa File: FA4555AA93DC11EEB00AF628C4F9AE02.roa (raw, json) Hash identifier: 75sNh1PMhH03uxHTO3l/1V5P1IOdr7+9Td6YwoWFqok= Subject key identifier: 72:4F:03:02:8A:73:34:E1:85:42:53:71:58:E0:8B:68:D9:3F:E7:CB Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1D98 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/FA4555AA93DC11EEB00AF628C4F9AE02.roa Signing time: Wed 06 Dec 2023 02:13:00 +0000 ROA not before: Wed 06 Dec 2023 02:13:00 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134729 IP address blocks: 43.92.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7576 (0x1d98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 6 02:13:00 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656fd8ab-758d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:12:e9:14:a4:19:a7:11:f4:57:80:b0:88:92: 19:87:ae:c6:eb:a5:d9:77:33:e3:09:00:e4:c3:22: 56:7c:7d:5a:8c:4d:6f:1d:9f:f4:ec:74:8a:70:08: 1d:dc:69:c1:72:b4:19:14:bf:5e:d8:2b:5b:b2:5c: f1:48:4a:b4:31:e0:cc:93:d4:56:d0:7e:9d:16:d4: bd:bf:d3:d1:c0:8c:7f:64:8e:7d:aa:17:3c:d5:b4: fc:75:ae:63:64:2c:63:09:75:64:05:bb:f4:ad:13: 5f:5f:56:d2:51:34:48:9a:ba:4c:d7:94:43:d7:af: bf:2d:54:de:99:b0:6a:cd:fb:7a:76:e3:63:d3:cf: b1:45:33:90:2c:f4:52:49:ca:78:24:fc:a5:79:ca: 45:c4:b9:d6:93:36:83:e3:5c:fd:96:19:a1:6f:a8: 8b:74:58:fd:95:92:d6:1e:d7:8d:a4:84:31:f5:0c: 8f:06:00:5a:f9:b6:f6:22:5a:bc:bd:4e:7d:59:89: a4:5e:ad:a4:78:aa:95:75:cf:b2:1b:67:34:82:17: e6:b8:e0:e3:a8:c4:28:6c:c8:f4:62:fe:14:1b:17: d3:59:62:02:7e:e6:10:96:47:1c:e5:fb:98:83:2c: 75:32:0e:65:0e:30:78:3f:5f:4a:70:11:60:49:00: af:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4F:03:02:8A:73:34:E1:85:42:53:71:58:E0:8B:68:D9:3F:E7:CB X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/FA4555AA93DC11EEB00AF628C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.92.224.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:29:c3:8c:5a:f4:94:a0:5d:9f:65:27:28:cd:1d:2c:39:9a: 72:c9:36:78:b7:3f:29:5a:e5:7c:d0:5d:6c:d3:63:35:36:c6: 5e:34:92:72:41:59:48:d1:8f:e2:08:e5:93:da:68:72:64:70: 04:8e:3a:bd:d6:4a:77:ed:95:e9:c5:2f:cc:2b:ec:82:1c:ba: 1f:2e:49:89:08:79:69:9a:c9:55:33:77:49:91:f1:c2:f3:79: 32:fe:2c:9c:92:18:e8:48:ef:ac:ec:94:ae:b6:15:b6:75:56: c5:47:db:1f:33:4f:d4:c9:68:21:c5:9d:e6:d9:21:f7:9d:ee: 7e:1d:05:7b:09:91:24:e5:04:3c:29:ec:b6:90:5b:6a:03:e3: 09:b8:8a:6e:08:76:bc:0a:f3:42:99:1a:ef:cd:25:47:c2:f5: d4:4a:bf:06:9c:d6:6a:dd:ab:54:76:7e:a8:08:85:3f:0a:1b: 3f:e7:88:cf:8d:dc:18:42:94:7f:e6:a6:0b:84:6a:e4:c3:cc: ce:c6:e9:ad:26:7b:0f:9d:9a:66:1a:e3:5f:01:2a:a3:e4:bb: d2:82:36:f8:e2:23:f8:bd:01:b7:90:72:86:11:19:07:f4:9a: ec:75:fb:c2:2f:c3:22:80:d9:a2:23:0c:7b:96:50:2b:e2:99: 77:0c:9c:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjMxMjA2MDIxMzAwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZmZDhhYi03NThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxLpFKQZpxH0V4CwiJIZh67G66XZdzPjCQDkwyJWfH1ajE1vHZ/07HSKcAgd 3GnBcrQZFL9e2CtbslzxSEq0MeDMk9RW0H6dFtS9v9PRwIx/ZI59qhc81bT8da5j ZCxjCXVkBbv0rRNfX1bSUTRImrpM15RD16+/LVTembBqzft6duNj08+xRTOQLPRS Scp4JPylecpFxLnWkzaD41z9lhmhb6iLdFj9lZLWHteNpIQx9QyPBgBa+bb2Ilq8 vU59WYmkXq2keKqVdc+yG2c0ghfmuODjqMQobMj0Yv4UGxfTWWICfuYQlkcc5fuY gyx1Mg5lDjB4P19KcBFgSQCvZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJPAwKK czThhUJTcVjgi2jZP+fLMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvRkE0NTU1QUE5 M0RDMTFFRUIwMEFGNjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAUrXOAwDQYJKoZIhvcNAQELBQADggEBAB4pw4xa9JSgXZ9l JyjNHSw5mnLJNni3Pyla5XzQXWzTYzU2xl40knJBWUjRj+II5ZPaaHJkcASOOr3W SnftlenFL8wr7IIcuh8uSYkIeWmayVUzd0mR8cLzeTL+LJySGOhI76zslK62FbZ1 VsVH2x8zT9TJaCHFnebZIfed7n4dBXsJkSTlBDwp7LaQW2oD4wm4im4IdrwK80KZ Gu/NJUfC9dRKvwac1mrdq1R2fqgIhT8KGz/niM+N3BhClH/mpguEauTDzM7G6a0m ew+dmmYa418BKqPku9KCNvjiI/i9AbeQcoYRGQf0mux1+8IvwyKA2aIjDHuWUCvi mXcMnI4= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org