$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa File: 678B44F28B9F11EA97BB8046C4F9AE02.roa (raw, json) Hash identifier: wFJyDSA5bve8q453PoeDdrgwvukF88huEeIw8fjT0YQ= Subject key identifier: 72:E3:3E:06:EC:8E:2E:FC:99:E2:2B:C1:46:9B:A3:12:59:97:92:93 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 17A2 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:40 +0000 ROA not before: Tue 20 Feb 2024 17:55:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 53813 IP address blocks: 175.45.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6050 (0x17a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e79c-5a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:29:12:e8:31:f7:27:4c:c2:63:22:c8:18:2e: f1:4e:a0:09:34:e1:51:2b:3d:fc:3a:5c:66:00:7f: 8e:76:3e:a6:e3:ce:ba:bd:bb:f5:6f:76:ca:cb:65: d9:33:03:19:75:fd:20:13:23:db:05:cc:9e:24:8f: 3e:b1:f4:99:02:c8:bf:7d:f0:03:ee:fb:a0:e0:48: 15:85:f8:0b:16:9b:a9:f6:e7:45:b4:86:d9:e1:52: 7e:e0:5f:d2:80:ab:9a:d7:1d:37:9e:b9:2a:8d:b4: 83:52:be:64:29:05:90:14:22:72:7b:2a:23:e1:c7: da:dc:9e:61:74:81:29:fa:b3:80:e3:a2:9c:69:74: db:5a:61:71:86:b4:95:b5:ef:d2:59:48:b8:da:e6: 5a:83:bb:1f:74:3c:96:36:8f:29:5c:a0:35:91:3b: b5:c7:5b:4c:29:a0:59:d3:2d:b4:2e:e8:f5:28:af: 20:ae:2d:78:bf:7f:04:62:d3:07:55:9c:80:2e:1b: 0b:9c:fa:96:5c:1f:8f:db:0e:b4:dc:26:72:59:bb: 31:21:06:69:45:d6:d4:aa:e3:9f:19:4a:24:62:9e: 7b:79:41:87:5d:18:bb:ae:99:30:98:d8:2a:d9:d0: 1a:8e:f7:23:25:f6:66:80:cb:8a:b2:2d:27:f2:cc: c8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E3:3E:06:EC:8E:2E:FC:99:E2:2B:C1:46:9B:A3:12:59:97:92:93 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/678B44F28B9F11EA97BB8046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.45.116.0/24 Signature Algorithm: sha256WithRSAEncryption 25:21:1c:c7:47:96:89:c4:d6:33:d4:9e:16:b4:9c:14:02:75: 68:4e:d8:ba:0e:f9:61:96:fd:1e:3d:70:23:3e:63:2d:43:65: a7:46:2c:48:07:93:7d:28:a0:c0:36:ee:03:a0:86:e2:80:d3: 20:9a:9d:86:d6:80:18:0f:42:c6:e7:d2:69:c8:45:d0:02:db: e3:d7:0a:96:ba:bd:6f:52:e7:be:12:8a:d9:23:c9:b3:a3:1a: 1f:2b:76:94:db:28:8c:7e:ee:34:8c:0a:57:b3:4c:c4:a9:ee: d7:b5:1e:6f:74:69:3e:ec:6e:c7:27:e6:00:6e:00:4d:93:43: 08:2c:d2:78:bf:cc:24:8c:4b:15:83:12:85:ed:6f:09:cb:8b: e9:f9:fe:79:3c:8b:94:ef:47:0d:a1:6a:14:0c:10:8a:97:b3: 85:b5:e6:11:bd:a9:f5:b9:1d:27:bb:60:18:4d:33:9c:ed:3a: 4c:61:9b:48:fe:7a:f0:16:b0:89:30:7b:6f:67:de:af:1c:b7: 8c:99:19:43:04:e5:17:94:b7:10:08:4a:2a:e3:5e:00:33:bf: f0:98:88:11:bb:71:0e:f9:18:96:db:78:ae:a8:5e:97:09:ec: 66:d8:23:c2:60:54:7b:f2:86:a7:c6:8f:cf:60:ee:40:f9:d0: 4d:de:5e:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTQwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5Yy01YTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCkS6DH3J0zCYyLIGC7xTqAJNOFRKz38OlxmAH+Odj6m4866vbv1b3bKy2XZ MwMZdf0gEyPbBcyeJI8+sfSZAsi/ffAD7vug4EgVhfgLFpup9udFtIbZ4VJ+4F/S gKua1x03nrkqjbSDUr5kKQWQFCJyeyoj4cfa3J5hdIEp+rOA46KcaXTbWmFxhrSV te/SWUi42uZag7sfdDyWNo8pXKA1kTu1x1tMKaBZ0y20Luj1KK8gri14v38EYtMH VZyALhsLnPqWXB+P2w603CZyWbsxIQZpRdbUquOfGUokYp57eUGHXRi7rpkwmNgq 2dAajvcjJfZmgMuKsi0n8szIowIDAQABo4IClTCCApEwHQYDVR0OBBYEFHLjPgbs ji78meIrwUaboxJZl5KTMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNjc4QjQ0RjI4 QjlGMTFFQTk3QkI4MDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACvLXQwDQYJKoZIhvcNAQELBQADggEBACUhHMdHlonE1jPU nha0nBQCdWhO2LoO+WGW/R49cCM+Yy1DZadGLEgHk30ooMA27gOghuKA0yCanYbW gBgPQsbn0mnIRdAC2+PXCpa6vW9S574SitkjybOjGh8rdpTbKIx+7jSMClezTMSp 7te1Hm90aT7sbscn5gBuAE2TQwgs0ni/zCSMSxWDEoXtbwnLi+n5/nk8i5TvRw2h ahQMEIqXs4W15hG9qfW5HSe7YBhNM5ztOkxhm0j+evAWsIkwe29n3q8ct4yZGUME 5ReUtxAISirjXgAzv/CYiBG7cQ75GJbbeK6oXpcJ7GbYI8JgVHvyhqfGj89g7kD5 0E3eXkA= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:10 2024 by rpki-client on console-ams.rpki-client.org