$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa File: 829DF1C85EA811EAA1DC5284C4F9AE02.roa (raw, json) Hash identifier: iknqna89TW/HbAaXthnpwwg5JkeF8vXOwE4qxXSZgG4= Subject key identifier: 5B:59:2E:D7:3B:02:CB:F0:86:99:BA:82:82:A7:26:BC:42:B5:CC:C3 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 0A8A Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa Signing time: Tue 22 Oct 2024 19:58:59 +0000 ROA not before: Tue 22 Oct 2024 19:58:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139619 IP address blocks: 223.119.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Oct 22 19:58:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67180402-267f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c3:9f:73:61:c0:df:12:59:be:22:20:35:14: 63:35:77:85:35:6e:05:92:26:de:32:88:3e:fe:d2: 3e:d4:dd:76:90:91:bf:2c:c1:b3:73:14:29:35:0f: 4b:b2:70:dd:eb:7f:9e:a6:28:86:4a:12:cf:9e:ba: 57:31:29:53:9c:8e:f7:83:13:bc:64:8b:a9:6d:96: a0:8e:21:05:6b:fb:24:89:2a:88:82:ea:7c:78:3b: d4:91:b6:ee:ed:d7:b2:0c:26:11:cd:d3:73:e4:f1: 00:19:1b:f1:c8:df:cc:f4:2a:09:cd:f5:ae:cf:87: f6:80:f6:0f:1f:97:7f:82:ee:91:1f:0b:b6:d4:fd: 4d:27:c9:26:71:e8:9d:86:0b:56:4b:7c:db:61:ad: 9b:27:8a:cd:35:52:d4:41:d9:8b:d0:25:8c:70:4d: 18:e5:1f:88:e5:34:3e:07:5d:4f:0f:d4:68:46:8a: 82:b8:18:b4:61:90:84:5c:93:e3:3f:03:5b:cc:d8: bf:ff:4b:d4:e9:86:ea:bd:be:7f:19:0d:bc:4c:79: c2:82:af:63:ce:78:f3:d5:08:09:8d:fb:33:d5:1e: 67:40:10:ab:70:ff:0e:ad:7f:44:f0:06:c7:d1:83: 4d:be:3c:28:aa:ef:06:b3:77:2c:37:c4:79:ff:9d: 07:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:59:2E:D7:3B:02:CB:F0:86:99:BA:82:82:A7:26:BC:42:B5:CC:C3 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.255.0/24 Signature Algorithm: sha256WithRSAEncryption 25:4d:f6:81:62:ef:74:97:b3:4d:a4:9d:54:75:8e:31:98:35: 23:b0:22:1b:0e:d6:5a:7f:ea:55:03:df:bf:bf:5e:ed:ed:d6: a6:7a:22:02:cf:5d:64:04:9c:88:9b:2a:56:c9:14:43:69:4b: 99:3e:26:d9:69:92:5a:9b:fb:ac:0b:92:37:fa:cb:a3:c3:e7: 9a:66:26:2e:a5:2b:d3:c7:a4:1c:dc:7a:91:f3:90:21:3a:1a: 83:2d:cd:84:fb:40:58:b4:14:b3:bf:47:94:78:25:fd:d0:cb: af:6e:b0:43:a3:3b:92:4d:c8:1d:52:15:97:5a:f6:82:b9:91: 0b:c7:b1:51:35:7a:c5:dc:29:69:a7:c9:01:78:48:38:cd:b1: 6f:f7:45:54:7c:fa:aa:ea:b7:34:fb:3d:86:54:e2:3a:2a:dc: 07:98:72:12:d9:90:45:0a:4f:d0:01:8a:fc:c2:c2:a7:02:73: ab:48:1a:b1:52:7a:02:b5:89:74:6e:96:fd:f8:35:80:84:8f: da:33:d9:87:ab:e3:ab:54:5f:8e:e9:26:ab:d5:d9:cd:52:1a: c7:c5:98:e7:45:e9:71:58:2b:66:a7:9b:9f:c7:3e:49:ef:28: f7:2d:39:c6:02:ef:2b:6b:f1:34:7a:fd:29:12:6a:9c:f8:c4: 0a:ec:3b:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjQxMDIyMTk1ODU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MDQwMi0yNjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcOfc2HA3xJZviIgNRRjNXeFNW4FkibeMog+/tI+1N12kJG/LMGzcxQpNQ9L snDd63+epiiGShLPnrpXMSlTnI73gxO8ZIupbZagjiEFa/skiSqIgup8eDvUkbbu 7deyDCYRzdNz5PEAGRvxyN/M9CoJzfWuz4f2gPYPH5d/gu6RHwu21P1NJ8kmceid hgtWS3zbYa2bJ4rNNVLUQdmL0CWMcE0Y5R+I5TQ+B11PD9RoRoqCuBi0YZCEXJPj PwNbzNi//0vU6Ybqvb5/GQ28THnCgq9jznjz1QgJjfsz1R5nQBCrcP8OrX9E8AbH 0YNNvjwoqu8Gs3csN8R5/50HjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFtZLtc7 Asvwhpm6goKnJrxCtczDMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvODI5REYxQzg1 RUE4MTFFQUExREM1Mjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfd/8wDQYJKoZIhvcNAQELBQADggEBACVN9oFi73SXs02k nVR1jjGYNSOwIhsO1lp/6lUD37+/Xu3t1qZ6IgLPXWQEnIibKlbJFENpS5k+Jtlp klqb+6wLkjf6y6PD55pmJi6lK9PHpBzcepHzkCE6GoMtzYT7QFi0FLO/R5R4Jf3Q y69usEOjO5JNyB1SFZda9oK5kQvHsVE1esXcKWmnyQF4SDjNsW/3RVR8+qrqtzT7 PYZU4joq3AeYchLZkEUKT9ABivzCwqcCc6tIGrFSegK1iXRulv34NYCEj9oz2Yer 46tUX47pJqvV2c1SGsfFmOdF6XFYK2anm5/HPknvKPctOcYC7ytr8TR6/SkSapz4 xArsO4A= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:18 2024 by rpki-client on console-fra.rpki-client.org