$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/A227F4CC84CC11EFB2C53051C4F9AE02.roa File: A227F4CC84CC11EFB2C53051C4F9AE02.roa (raw, json) Hash identifier: Y2Tr1Ixlpiaz1ZaaVisHRV7bGTopPOYADJfeivF59M4= Subject key identifier: 00:85:CD:FA:28:BB:7D:E6:48:9C:02:9D:79:8D:7B:F2:CD:3B:B5:FE Certificate issuer: /CN=A91F2364/serialNumber=470CDFD49F5DFF212578DEC5DA21F21DA0B3FAD2 Certificate serial: 04 Authority key identifier: 47:0C:DF:D4:9F:5D:FF:21:25:78:DE:C5:DA:21:F2:1D:A0:B3:FA:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rwzf1J9d_yEleN7F2iHyHaCz-tI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/A227F4CC84CC11EFB2C53051C4F9AE02.roa Signing time: Mon 07 Oct 2024 16:53:40 +0000 ROA not before: Mon 07 Oct 2024 16:53:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55933 IP address blocks: 45.248.84.0/22 maxlen: 24 103.224.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/Rwzf1J9d_yEleN7F2iHyHaCz-tI.crl rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/Rwzf1J9d_yEleN7F2iHyHaCz-tI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rwzf1J9d_yEleN7F2iHyHaCz-tI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2364/serialNumber=470CDFD49F5DFF212578DEC5DA21F21DA0B3FAD2 Validity Not Before: Oct 7 16:53:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=67041214-c961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7a:30:8a:ed:39:18:77:04:42:1e:58:39:5e: cc:3e:64:a7:ed:f6:17:02:fb:b1:40:85:b2:ae:ef: b5:f3:d3:ee:14:10:22:3e:62:86:19:61:2a:0e:50: bf:ab:16:3a:6d:38:b2:ba:90:93:44:c0:15:7b:e4: c1:3f:4f:81:ff:aa:db:53:57:07:ae:c2:94:bb:53: 18:64:21:98:aa:9b:c8:e5:ac:d9:86:16:05:fb:82: d0:9b:6e:88:62:7a:31:06:4c:0b:10:7d:36:07:4f: a8:ba:57:96:9a:5d:0c:8e:5f:81:da:6c:7e:3b:23: 73:c9:66:e1:0d:24:b5:3a:14:46:a4:e0:a5:9c:91: 5b:d9:fb:bb:04:b2:23:1f:5c:5a:92:45:0f:38:e2: 42:87:c5:83:94:61:3b:b3:9a:b6:db:e2:52:95:6a: a3:e2:c5:96:e7:77:9a:ab:4f:4d:b9:ae:a7:9c:0d: 62:a0:6f:e9:87:79:05:ed:40:f9:6f:c8:5f:98:46: b7:fa:ce:74:f4:c1:e8:1c:09:18:4d:bf:1c:ef:b6: 41:50:51:a7:50:9e:60:46:82:bd:f2:62:7a:7e:ac: 12:1c:1b:36:1e:f3:25:3d:20:93:9f:40:15:6a:2e: 4d:d8:57:09:35:51:34:a2:73:e7:fb:70:9e:a1:96: 60:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:85:CD:FA:28:BB:7D:E6:48:9C:02:9D:79:8D:7B:F2:CD:3B:B5:FE X509v3 Authority Key Identifier: keyid:47:0C:DF:D4:9F:5D:FF:21:25:78:DE:C5:DA:21:F2:1D:A0:B3:FA:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/Rwzf1J9d_yEleN7F2iHyHaCz-tI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rwzf1J9d_yEleN7F2iHyHaCz-tI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/A227F4CC84CC11EFB2C53051C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.84.0/22 103.224.80.0/22 Signature Algorithm: sha256WithRSAEncryption 10:55:f0:38:92:3c:95:0f:ea:1c:e9:80:c2:36:6c:80:e3:e4: c5:1a:44:9a:76:8e:43:1e:54:f9:d8:b9:cc:d9:6f:8b:06:e6: 6d:64:9e:2c:5d:0d:25:66:2b:56:ea:69:1b:17:41:58:65:4a: c0:e9:38:ae:95:d0:9a:e4:73:e6:8d:3b:e9:8a:88:90:f3:a1: ec:d1:ad:ac:4e:8f:71:2d:76:47:88:fc:17:27:f7:d3:76:51: ec:f7:7b:59:8b:9f:12:10:c8:01:59:b7:e1:df:99:4e:75:02: e9:65:43:1b:92:10:ae:6b:08:ab:b4:c4:35:8a:76:c7:5d:6c: 81:d6:74:fa:62:c6:ce:9d:64:44:3c:69:03:ee:77:24:54:8d: de:ea:09:18:ff:17:ee:48:3d:f3:a8:cf:44:06:85:9b:1c:2d: 5e:67:1b:67:a3:16:35:31:7c:31:30:7b:33:45:8a:12:62:40: cd:13:ad:69:8c:09:86:85:c2:1a:02:c7:f1:6a:26:1e:ea:d5: 82:bc:4d:14:2a:d5:47:d2:00:54:de:c4:3e:ab:65:a3:e3:84: b0:23:de:24:d5:f2:79:4e:43:09:60:12:ac:db:d3:c5:18:cd: 11:8a:06:4f:87:ac:6c:eb:84:49:4e:d2:fb:c4:75:f1:ba:5e: 46:2d:76:b4 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjM2NDExMC8GA1UEBRMoNDcwQ0RGRDQ5RjVERkYyMTI1NzhERUM1REEyMUYyMURB MEIzRkFEMjAeFw0yNDEwMDcxNjUzNDBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDQxMjE0LWM5NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsejCK7TkYdwRCHlg5Xsw+ZKft9hcC+7FAhbKu77Xz0+4UECI+YoYZYSoOUL+r FjptOLK6kJNEwBV75ME/T4H/qttTVweuwpS7UxhkIZiqm8jlrNmGFgX7gtCbbohi ejEGTAsQfTYHT6i6V5aaXQyOX4HabH47I3PJZuENJLU6FEak4KWckVvZ+7sEsiMf XFqSRQ844kKHxYOUYTuzmrbb4lKVaqPixZbnd5qrT025rqecDWKgb+mHeQXtQPlv yF+YRrf6znT0wegcCRhNvxzvtkFQUadQnmBGgr3yYnp+rBIcGzYe8yU9IJOfQBVq Lk3YVwk1UTSic+f7cJ6hlmB9AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUAIXN+ii7 feZInAKdeY178s07tf4wHwYDVR0jBBgwFoAURwzf1J9d/yEleN7F2iHyHaCz+tIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyMzY0LzA0MDU2NkE4ODRD QzExRUY4NEVFM0U1MEM0RjlBRTAyL1J3emYxSjlkX3lFbGVON0YyaUh5SGFDei10 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnd6ZjFKOWRfeUVsZU43RjJpSHlIYUN6LXRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjM2NC8wNDA1NjZBODg0Q0MxMUVGODRFRTNFNTBDNEY5QUUwMi9BMjI3RjRDQzg0 Q0MxMUVGQjJDNTMwNTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAi34VAMEAmfgUDANBgkqhkiG9w0BAQsFAAOCAQEAEFXwOJI8 lQ/qHOmAwjZsgOPkxRpEmnaOQx5U+di5zNlviwbmbWSeLF0NJWYrVuppGxdBWGVK wOk4rpXQmuRz5o076YqIkPOh7NGtrE6PcS12R4j8Fyf303ZR7Pd7WYufEhDIAVm3 4d+ZTnUC6WVDG5IQrmsIq7TENYp2x11sgdZ0+mLGzp1kRDxpA+53JFSN3uoJGP8X 7kg986jPRAaFmxwtXmcbZ6MWNTF8MTB7M0WKEmJAzROtaYwJhoXCGgLH8WomHurV grxNFCrVR9IAVN7EPqtlo+OEsCPeJNXyeU5DCWASrNvTxRjNEYoGT4esbOuESU7S +8R18bpeRi12tA== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org