$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/76C6BCF6B72811ECAEFC180DC4F9AE02.roa File: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (raw, json) Hash identifier: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8= Subject key identifier: D3:55:BB:0C:2E:DB:45:C5:ED:09:3C:3C:23:14:79:32:7D:F7:F1:A1 Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 133D Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/76C6BCF6B72811ECAEFC180DC4F9AE02.roa Signing time: Sun 04 Aug 2024 15:51:45 +0000 ROA not before: Sun 04 Aug 2024 15:51:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4755 IP address blocks: 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4925 (0x133d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 4 15:51:45 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66afa391-bd0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f4:55:a5:35:02:22:b1:bc:05:0f:9a:57:7f: a4:e7:ce:6c:23:8a:a0:a7:ad:62:ba:4a:e7:7e:73: 5e:ee:25:bd:03:11:56:59:2a:d1:c6:51:ae:95:82: 70:95:b1:46:c2:1f:f8:63:0c:16:c2:1c:f7:37:8b: 35:6b:5e:19:4e:b9:4d:d7:87:6e:d6:98:9e:35:8d: 04:66:40:44:bb:da:f1:09:5a:76:03:e7:b5:b9:5e: 13:c7:6a:c5:9e:00:25:b1:e4:a4:9f:62:b1:37:e8: 1d:c6:95:0c:bd:2e:12:49:33:1e:2d:3b:8f:55:f8: c2:a8:b6:8f:09:2d:64:ec:0b:06:44:cb:bd:b1:8b: 0e:8e:61:2f:6a:18:cc:a0:f6:73:a5:ea:d6:eb:b2: 27:82:88:7f:ea:ed:64:1a:ee:42:68:ad:61:2d:76: 16:86:ce:51:ee:58:7e:19:69:84:5a:23:8d:d3:c3: 63:01:c2:6e:32:52:e4:b7:5e:9a:ae:d2:25:78:70: eb:01:f8:72:f5:48:3f:1e:07:ce:e9:bd:e5:1b:b1: 85:82:f6:a7:0c:c0:23:7d:e0:cd:bb:ce:3a:ee:a5: 50:23:72:e3:fd:e4:46:66:fd:04:d5:53:20:de:fc: 5c:60:a4:6c:61:a4:8e:23:92:8a:44:05:88:3e:fa: bf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:55:BB:0C:2E:DB:45:C5:ED:09:3C:3C:23:14:79:32:7D:F7:F1:A1 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/76C6BCF6B72811ECAEFC180DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 87:ba:1a:7b:8a:ba:53:c5:fb:63:7c:a3:13:53:ed:79:2a:95: c2:2d:34:a6:db:38:48:6f:7d:53:e3:eb:47:90:00:51:64:bf: d4:ea:62:2b:53:64:89:bb:06:7c:ac:7a:fa:e5:00:50:e8:6e: 26:db:83:34:72:b0:09:38:63:5e:c5:84:1c:7d:aa:dc:6b:d0: 29:7d:77:11:40:5c:62:f8:20:12:36:c8:0c:b0:82:19:6c:74: 85:eb:28:f8:b4:95:1c:49:d6:d5:2e:c8:a5:12:ca:c9:3e:1d: 2e:9e:15:29:75:4f:b5:19:36:9b:20:46:7b:55:74:ed:aa:8d: 2f:70:7d:06:95:aa:13:9b:0c:94:f7:55:16:ee:8f:7c:3a:51: 3c:06:8f:e0:4b:72:83:51:46:ea:22:eb:08:48:5b:e8:7c:06: 2d:fb:fa:48:16:f7:63:b0:8f:3d:4d:78:0b:cc:9f:5e:d6:cc: a5:a1:f8:86:b8:5d:c1:2a:fe:ab:49:61:2d:e0:61:af:73:ca: ad:ad:03:85:5a:b3:82:d3:a6:79:44:26:6e:6d:0b:50:f1:e1: b5:63:a5:ae:e5:10:98:73:3e:ea:5f:36:26:99:62:3c:c1:5a: 00:dc:54:02:56:78:31:df:c7:f7:20:90:b5:e0:4d:ac:57:f1: c4:59:79:36 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjQwODA0MTU1MTQ1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFmYTM5MS1iZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vRVpTUCIrG8BQ+aV3+k585sI4qgp61iukrnfnNe7iW9AxFWWSrRxlGulYJw lbFGwh/4YwwWwhz3N4s1a14ZTrlN14du1pieNY0EZkBEu9rxCVp2A+e1uV4Tx2rF ngAlseSkn2KxN+gdxpUMvS4SSTMeLTuPVfjCqLaPCS1k7AsGRMu9sYsOjmEvahjM oPZzperW67Ingoh/6u1kGu5CaK1hLXYWhs5R7lh+GWmEWiON08NjAcJuMlLkt16a rtIleHDrAfhy9Ug/HgfO6b3lG7GFgvanDMAjfeDNu8467qVQI3Lj/eRGZv0E1VMg 3vxcYKRsYaSOI5KKRAWIPvq/dwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNNVuwwu 20XF7Qk8PCMUeTJ99/GhMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvNzZDNkJDRjZC NzI4MTFFQ0FFRkMxODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGC+H4DBADAlhAwDQYJKoZIhvcNAQELBQADggEBAIe6GnuK ulPF+2N8oxNT7XkqlcItNKbbOEhvfVPj60eQAFFkv9TqYitTZIm7BnysevrlAFDo bibbgzRysAk4Y17FhBx9qtxr0Cl9dxFAXGL4IBI2yAywghlsdIXrKPi0lRxJ1tUu yKUSysk+HS6eFSl1T7UZNpsgRntVdO2qjS9wfQaVqhObDJT3VRbuj3w6UTwGj+BL coNRRuoi6whIW+h8Bi37+kgW92Owjz1NeAvMn17WzKWh+Ia4XcEq/qtJYS3gYa9z yq2tA4Vas4LTpnlEJm5tC1Dx4bVjpa7lEJhzPupfNiaZYjzBWgDcVAJWeDHfx/cg kLXgTaxX8cRZeTY= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:10 2024 by rpki-client on console-ams.rpki-client.org