$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa File: 81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa (raw, json) Hash identifier: nb4ekLYfMcmcZ6P490LxZTkaHaEPmz90vPJhXehdrTo= Subject key identifier: 27:2D:C8:B3:7E:14:DD:3A:32:B1:FF:45:4D:0A:75:14:8C:69:2E:4A Certificate issuer: /CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Certificate serial: 2410 Authority key identifier: 11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa Signing time: Fri 02 Aug 2024 15:30:57 +0000 ROA not before: Fri 02 Aug 2024 15:30:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135295 IP address blocks: 136.228.152.0/24 maxlen: 24 136.228.153.0/24 maxlen: 24 136.228.154.0/24 maxlen: 24 136.228.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9232 (0x2410) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Validity Not Before: Aug 2 15:30:57 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66acfbb0-f55c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c4:70:f5:ee:cd:d0:01:09:d1:a7:3f:86:30: af:37:71:d7:a8:0e:52:f3:87:3d:78:a7:ec:4c:35: b6:8e:e7:85:11:6f:4a:47:8c:79:b2:9c:26:64:cd: 93:07:2a:63:1a:d3:0d:81:39:36:86:d5:b8:ca:21: f4:93:12:71:d8:4f:28:a1:f5:51:a1:92:b8:03:ff: 88:2d:4d:18:8d:4d:36:82:61:ae:14:4e:9e:e6:2f: a3:07:4b:3a:37:58:28:52:5e:8c:2e:74:73:5a:ed: c4:57:c1:a0:cd:56:70:d3:b1:9a:96:1b:e2:1a:f4: 03:ea:e1:d5:ae:8e:14:98:3c:f8:d7:91:7c:24:b5: 50:85:ca:4e:60:e6:81:0d:83:19:11:29:6d:17:63: 99:a5:82:a2:7e:f7:3b:e4:ae:14:c3:56:b2:56:bd: 6f:47:6f:4e:a0:89:4d:e4:9f:03:e7:5f:f9:22:c4: 5c:ca:16:86:24:03:0c:ef:9c:e4:a4:9f:28:77:7e: ca:0c:7c:86:a7:73:8f:11:be:56:e1:53:df:a1:2b: be:1e:ca:7d:a9:1c:c8:67:d5:ef:70:e2:a0:40:4b: 3d:66:0c:6e:ca:37:57:33:62:c4:98:4b:dc:02:48: 19:ea:90:54:92:02:56:36:c8:e8:4e:af:65:7c:d6: ff:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2D:C8:B3:7E:14:DD:3A:32:B1:FF:45:4D:0A:75:14:8C:69:2E:4A X509v3 Authority Key Identifier: keyid:11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.228.152.0/22 Signature Algorithm: sha256WithRSAEncryption a9:ee:9c:08:82:ba:87:36:45:5d:7b:c0:59:74:af:0f:b1:21: 63:71:1b:ed:56:22:d2:8b:e9:28:ca:dc:6f:f6:cf:11:4d:5a: 38:14:2e:45:9a:ad:50:24:65:c8:ad:03:bb:12:d1:74:e8:2d: ba:4d:1e:7e:d6:d1:b1:52:96:83:06:03:6e:12:26:08:61:45: b0:47:c4:c0:b5:bf:a8:98:11:65:b5:9b:09:e2:5b:0e:a3:00: 14:70:94:f2:31:49:ae:98:c3:65:e2:78:bc:b2:fb:3f:f6:3b: 31:24:28:a5:b8:1f:d5:8c:40:97:73:bd:a2:ca:f9:8f:43:ac: a9:1f:f2:47:8e:d3:ab:fb:08:20:c7:bb:2f:a1:8b:6f:09:0a: 1f:12:5c:f8:f1:96:7a:92:ca:a1:ea:d5:7c:9d:de:04:40:28: eb:81:83:fa:0c:ed:3c:3c:48:70:b1:79:67:ca:a2:e3:07:0e: 23:9d:46:c8:84:82:a2:c5:cb:42:77:f0:83:eb:a6:04:af:74: 96:e0:61:fd:8f:36:db:de:14:f4:54:0d:b2:07:70:9f:34:7b: 75:46:2d:37:e9:e2:d9:34:98:e6:9d:ba:3e:33:f3:cc:78:f8: b8:c5:dd:3d:f8:81:40:db:ed:d7:df:2a:ae:16:83:57:96:d2: 0f:77:a6:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKDExMTAzMTBFMEY4MDQ2NzcwM0Q4NDc3RkIzRUUyNUYx RDg4ODhFOUUwHhcNMjQwODAyMTUzMDU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFjZmJiMC1mNTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysRw9e7N0AEJ0ac/hjCvN3HXqA5S84c9eKfsTDW2jueFEW9KR4x5spwmZM2T BypjGtMNgTk2htW4yiH0kxJx2E8oofVRoZK4A/+ILU0YjU02gmGuFE6e5i+jB0s6 N1goUl6MLnRzWu3EV8GgzVZw07GalhviGvQD6uHVro4UmDz415F8JLVQhcpOYOaB DYMZESltF2OZpYKifvc75K4Uw1ayVr1vR29OoIlN5J8D51/5IsRcyhaGJAMM75zk pJ8od37KDHyGp3OPEb5W4VPfoSu+Hsp9qRzIZ9XvcOKgQEs9ZgxuyjdXM2LEmEvc AkgZ6pBUkgJWNsjoTq9lfNb/dwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCctyLN+ FN06MrH/RU0KdRSMaS5KMB8GA1UdIwQYMBaAFBEQMQ4PgEZ3A9hHf7PuJfHYiI6e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC9GREVGRDczNjRC RDYxMUU1QTdDQTMwMzNDNEY5QUUwMi9FUkF4RGctQVJuY0QyRWRfcy00bDhkaUlq cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VSQXhEZy1BUm5jRDJFZF9zLTRsOGRpSWpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5NTgvRkRFRkQ3MzY0QkQ2MTFFNUE3Q0EzMDMzQzRGOUFFMDIvODFFNkEwMzhC RUJEMTFFQkExQkM4QTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKI5JgwDQYJKoZIhvcNAQELBQADggEBAKnunAiCuoc2RV17 wFl0rw+xIWNxG+1WItKL6SjK3G/2zxFNWjgULkWarVAkZcitA7sS0XToLbpNHn7W 0bFSloMGA24SJghhRbBHxMC1v6iYEWW1mwniWw6jABRwlPIxSa6Yw2XieLyy+z/2 OzEkKKW4H9WMQJdzvaLK+Y9DrKkf8keO06v7CCDHuy+hi28JCh8SXPjxlnqSyqHq 1Xyd3gRAKOuBg/oM7Tw8SHCxeWfKouMHDiOdRsiEgqLFy0J38IPrpgSvdJbgYf2P NtveFPRUDbIHcJ80e3VGLTfp4tk0mOaduj4z88x4+LjF3T34gUDb7dffKq4Wg1eW 0g93pn8= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org