$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: pPxZKn2y1CbPcH9j/w8gLWF2hGu76QpyepgvN98sxQo= Subject key identifier: 09:E0:40:E2:FD:46:DD:1E:93:47:4A:B8:31:7A:F1:BB:9F:55:83:77 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 062D Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Wed 24 Jul 2024 23:41:44 +0000 ROA not before: Wed 24 Jul 2024 23:41:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 62610 IP address blocks: 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 24 23:41:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a19138-a4eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e3:36:94:25:f0:44:3c:e9:3b:46:f0:fb:8a: e3:bd:82:b0:ac:d3:5b:3a:ae:75:61:00:30:ca:77: d4:35:7a:1e:30:73:4f:04:c7:47:ab:db:f4:cc:cd: b4:35:f3:41:33:39:3c:d4:0d:29:ae:ed:1c:33:ce: cb:f0:82:92:39:f9:b0:f0:67:12:5c:25:48:4f:9f: 2a:6d:00:f8:d0:8e:c8:eb:e6:af:e4:b5:d8:aa:78: 82:98:ea:b9:c8:54:c7:d2:32:6d:fd:1a:36:fc:5e: 79:30:69:0b:ef:5d:29:81:99:3f:d7:1b:65:a0:b0: 97:29:7b:b8:88:72:8b:66:7c:33:1a:25:82:95:44: dd:8a:ba:c8:95:6c:94:44:3f:20:e8:69:de:09:31: 9f:06:3f:d9:1d:19:55:b8:ed:5f:79:af:85:6b:04: 26:27:2c:0d:be:c3:9e:f6:c8:5b:11:96:eb:87:66: 4d:77:56:9c:85:93:ba:59:c8:a5:f5:1d:97:60:3d: d7:02:20:e4:c5:ff:34:77:51:a0:bb:0f:84:08:8d: 39:d2:9e:b1:19:cc:e6:28:50:bb:84:f8:fe:15:c7: ef:32:96:d1:b4:21:5d:02:cc:8b:fb:dd:de:0d:ed: 12:69:0a:88:a1:c1:77:d8:55:aa:96:c6:1f:eb:f5: ff:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E0:40:E2:FD:46:DD:1E:93:47:4A:B8:31:7A:F1:BB:9F:55:83:77 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 Signature Algorithm: sha256WithRSAEncryption 87:7b:c3:98:ce:f9:b2:b5:af:6f:77:64:27:7a:13:e3:41:91: 8c:32:94:8f:9c:45:cb:9e:48:12:35:c4:b5:99:26:ef:e7:b7: 4a:c1:7a:31:2e:f5:c3:fc:c8:04:f6:93:fe:74:df:2d:39:b4: 38:5e:cf:62:7d:70:fa:d0:e7:bf:2f:8d:3b:7a:c7:21:35:87: 69:e0:3d:cf:5c:44:e5:24:15:e2:88:cf:80:23:06:c5:76:e5: 03:a9:c4:23:f5:bb:58:32:a4:ce:14:a0:63:4d:5c:6c:15:09: 5b:7b:d7:74:63:b9:86:3c:ea:ef:90:63:da:9d:1c:31:fe:df: 3c:3c:cc:64:ed:b9:7e:e6:a3:21:56:f0:f2:3c:4e:d3:45:90: db:58:8a:15:bd:20:fc:0b:a9:5f:89:92:c7:bb:d3:8c:13:61: 68:99:08:8d:d9:25:38:66:9f:6b:cb:69:79:13:79:fd:b7:29: 78:ab:55:49:dc:04:ee:05:16:49:d2:55:64:90:39:a4:68:8d: b3:17:d2:78:44:b7:20:b3:c0:86:90:66:6e:ca:54:9f:10:74: 6e:a5:fd:88:53:cd:22:42:80:3f:c1:1e:9b:1e:cf:ae:9d:55: 18:90:12:19:fc:3f:69:bd:3c:e3:2e:2a:38:7e:4e:25:3f:60: 58:76:cf:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjQwNzI0MjM0MTQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExOTEzOC1hNGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OM2lCXwRDzpO0bw+4rjvYKwrNNbOq51YQAwynfUNXoeMHNPBMdHq9v0zM20 NfNBMzk81A0pru0cM87L8IKSOfmw8GcSXCVIT58qbQD40I7I6+av5LXYqniCmOq5 yFTH0jJt/Ro2/F55MGkL710pgZk/1xtloLCXKXu4iHKLZnwzGiWClUTdirrIlWyU RD8g6GneCTGfBj/ZHRlVuO1fea+FawQmJywNvsOe9shbEZbrh2ZNd1achZO6Wcil 9R2XYD3XAiDkxf80d1Gguw+ECI050p6xGczmKFC7hPj+FcfvMpbRtCFdAsyL+93e De0SaQqIocF32FWqlsYf6/X/oQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFAngQOL9 Rt0ek0dKuDF68bufVYN3MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBACcO0kDBACcO3sDBACcO5IDBACcO7gwDQYJKoZIhvcNAQEL BQADggEBAId7w5jO+bK1r293ZCd6E+NBkYwylI+cRcueSBI1xLWZJu/nt0rBejEu 9cP8yAT2k/503y05tDhez2J9cPrQ578vjTt6xyE1h2ngPc9cROUkFeKIz4AjBsV2 5QOpxCP1u1gypM4UoGNNXGwVCVt713RjuYY86u+QY9qdHDH+3zw8zGTtuX7moyFW 8PI8TtNFkNtYihW9IPwLqV+Jkse704wTYWiZCI3ZJThmn2vLaXkTef23KXirVUnc BO4FFknSVWSQOaRojbMX0nhEtyCzwIaQZm7KVJ8QdG6l/YhTzSJCgD/BHpsez66d VRiQEhn8P2m9POMuKjh+TiU/YFh2z90= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:54 2024 by rpki-client on console-fra.rpki-client.org