$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/3061606C730211EE89A20645C4F9AE02.roa File: 3061606C730211EE89A20645C4F9AE02.roa (raw, json) Hash identifier: FXx7Bk+LSYPn2DbNqZNWdevC6/zZKAPhSGR/vJ/qik0= Subject key identifier: 68:9D:10:A1:22:F6:79:0B:6B:73:17:03:2E:EE:9C:99:5F:4C:57:73 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 0A8E Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/3061606C730211EE89A20645C4F9AE02.roa Signing time: Tue 22 Oct 2024 19:59:02 +0000 ROA not before: Tue 22 Oct 2024 19:59:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58411 IP address blocks: 223.119.240.0/24 maxlen: 24 223.121.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2702 (0xa8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Oct 22 19:59:02 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67180406-6f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d6:16:41:ac:21:f9:51:30:ca:c8:e3:3a:b7: 56:67:69:04:af:27:c2:10:ab:a5:b6:87:04:89:8a: d6:dc:5c:c5:0a:d1:42:0d:1d:59:0c:0b:e9:31:09: 9a:99:cb:93:3b:fc:52:77:21:e7:5e:81:1b:32:49: 77:77:c1:29:b3:52:fc:3b:a8:21:0b:0d:f3:71:15: 94:a6:76:22:34:68:38:b3:ff:f5:e4:65:d9:18:b0: a0:44:c9:1e:b5:2b:d0:48:c4:35:ff:c7:e9:2d:f3: 28:25:fd:04:d9:97:1b:a0:00:24:29:c5:d0:f3:6c: 95:29:b5:42:9e:5e:7b:96:49:ac:72:03:96:93:93: f3:1b:f4:9d:bb:45:78:96:1c:86:06:2d:ad:7a:78: c6:c2:00:07:62:b9:15:c9:b2:62:bf:f1:b4:63:b7: 6a:a6:77:19:2a:4d:a1:8b:55:42:3c:4b:8d:91:ec: af:17:f7:c7:a7:26:59:a0:cb:6c:68:77:e9:87:de: 42:9f:b8:f4:3a:61:8f:c8:8e:c6:41:f5:b9:e1:be: 2e:95:f7:5d:44:6e:25:db:53:f2:96:4f:a8:5d:6a: f8:a0:c9:d6:6f:8a:35:ed:85:10:a4:88:2a:e2:fd: 6f:d7:1a:93:fd:45:23:ec:e1:91:47:22:9b:58:0b: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9D:10:A1:22:F6:79:0B:6B:73:17:03:2E:EE:9C:99:5F:4C:57:73 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/3061606C730211EE89A20645C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.240.0/24 223.121.56.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:d1:f0:46:ce:cb:2b:0f:93:46:46:b2:6b:a7:95:d1:8d:cd: 61:b1:2e:7f:0a:fe:77:17:e7:ba:5d:fd:5b:df:54:22:39:c9: de:c9:ca:d6:6d:45:d8:eb:15:a7:69:83:ad:28:83:13:05:1b: c4:07:81:18:78:1a:54:b0:ac:cf:29:09:64:df:cb:12:8b:21: 5e:84:d5:ba:47:a3:63:dc:f4:9f:ed:0c:8f:b0:51:c5:69:f2: 30:51:cf:97:84:2a:4c:9b:25:0c:4f:ca:7e:ab:8f:46:c7:16: db:72:b2:0c:f9:1a:15:6c:21:d6:07:59:e2:d3:4f:9b:25:d8: 70:f2:f0:10:97:79:8c:54:86:e4:38:62:4f:53:d1:e2:8e:bc: 2f:58:5c:a8:85:ac:03:a0:7f:bd:2c:d8:64:0c:8f:83:fe:b0: 26:96:ec:9f:5a:35:b3:56:b6:0a:df:b7:6e:30:13:21:f8:b3: d7:a4:90:c7:a3:5f:d4:c0:1c:e0:10:ab:c3:8e:f0:90:21:df: 5f:e6:df:b9:70:b4:ab:41:c0:ad:58:71:56:b3:12:a7:2c:89: c7:f1:0a:7e:3d:1a:1f:34:d7:36:d6:b5:6a:70:b3:64:f6:78: 58:fa:ab:05:72:bd:6f:1a:b8:e2:d1:31:1a:63:de:cc:e7:19: 86:50:34:61 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjQxMDIyMTk1OTAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MDQwNi02ZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9YWQawh+VEwysjjOrdWZ2kEryfCEKultocEiYrW3FzFCtFCDR1ZDAvpMQma mcuTO/xSdyHnXoEbMkl3d8Eps1L8O6ghCw3zcRWUpnYiNGg4s//15GXZGLCgRMke tSvQSMQ1/8fpLfMoJf0E2ZcboAAkKcXQ82yVKbVCnl57lkmscgOWk5PzG/Sdu0V4 lhyGBi2tenjGwgAHYrkVybJiv/G0Y7dqpncZKk2hi1VCPEuNkeyvF/fHpyZZoMts aHfph95Cn7j0OmGPyI7GQfW54b4ulfddRG4l21Pylk+oXWr4oMnWb4o17YUQpIgq 4v1v1xqT/UUj7OGRRyKbWAtNbQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGidEKEi 9nkLa3MXAy7unJlfTFdzMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvMzA2MTYwNkM3 MzAyMTFFRTg5QTIwNjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADfd/ADBADfeTgwDQYJKoZIhvcNAQELBQADggEBAGvR8EbO yysPk0ZGsmunldGNzWGxLn8K/ncX57pd/VvfVCI5yd7JytZtRdjrFadpg60ogxMF G8QHgRh4GlSwrM8pCWTfyxKLIV6E1bpHo2Pc9J/tDI+wUcVp8jBRz5eEKkybJQxP yn6rj0bHFttysgz5GhVsIdYHWeLTT5sl2HDy8BCXeYxUhuQ4Yk9T0eKOvC9YXKiF rAOgf70s2GQMj4P+sCaW7J9aNbNWtgrft24wEyH4s9ekkMejX9TAHOAQq8OO8JAh 31/m37lwtKtBwK1YcVazEqcsicfxCn49Gh801zbWtWpws2T2eFj6qwVyvW8auOLR MRpj3sznGYZQNGE= -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:04 2024 by rpki-client on console-ams.rpki-client.org