$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/08FA1EC60C0911EDBDF8C44FC4F9AE02.roa File: 08FA1EC60C0911EDBDF8C44FC4F9AE02.roa (raw, json) Hash identifier: alhBAf8jvRhFefsbDXOa8VjrZGUtci5WGYLgfA9nSPA= Subject key identifier: 45:0B:F4:B3:89:9B:97:9B:50:83:09:70:29:2C:74:E0:E6:2B:17:AE Certificate issuer: /CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Certificate serial: 3435 Authority key identifier: 1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/08FA1EC60C0911EDBDF8C44FC4F9AE02.roa Signing time: Sat 02 Nov 2024 15:21:05 +0000 ROA not before: Sat 02 Nov 2024 15:21:05 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45768 IP address blocks: 27.111.64.0/21 maxlen: 24 113.29.208.0/21 maxlen: 21 180.95.0.0/24 maxlen: 24 180.95.64.0/19 maxlen: 19 180.95.96.0/20 maxlen: 20 180.95.112.0/21 maxlen: 21 202.134.51.0/24 maxlen: 24 203.34.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13365 (0x3435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CA8/serialNumber=1E752C3D16048C3F3F6323D2B91070BF247D6866 Validity Not Before: Nov 2 15:21:05 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67264360-ad16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8c:10:31:ce:e0:84:db:a2:b8:33:de:af:ed: a2:7b:08:f8:2e:04:20:d9:1e:63:1e:13:e5:1a:90: 58:5a:c4:cd:09:9b:e9:73:21:f2:86:7d:82:e9:c5: 75:31:ae:8c:fe:83:65:7a:40:29:81:89:75:61:4c: f6:dc:e6:e2:04:5e:2e:e4:32:8c:6c:99:9d:a8:f3: 9c:33:b8:cc:4d:70:bd:fb:a6:7e:39:78:2d:54:ad: 62:ed:44:43:7b:fe:12:75:43:8e:eb:9c:5f:c6:ad: 09:5d:8a:2e:51:c8:28:ad:18:a5:e0:04:1b:a8:2d: 3b:2d:30:c0:d2:06:ba:6e:55:45:27:b6:35:32:75: 34:ce:8c:08:f3:65:0d:81:e9:c4:21:3e:7c:d8:4f: c2:c6:82:b8:19:ff:3c:46:f9:af:50:ea:92:bb:64: d8:df:28:52:01:44:6c:68:15:8b:c1:46:c3:c7:8d: 35:96:34:00:6f:5d:ee:41:83:c1:11:91:5c:19:fb: 1a:ce:cf:ff:b6:1c:bd:23:26:c3:06:c4:d5:8f:80: 64:80:a6:d7:49:0c:82:ee:b6:0c:e9:3f:bf:f7:34: 7c:62:a3:5d:d7:6c:f2:e8:dd:9f:9d:9b:41:39:c4: 62:6f:ee:87:30:30:30:ff:fe:ff:86:e7:ab:23:4e: 2c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0B:F4:B3:89:9B:97:9B:50:83:09:70:29:2C:74:E0:E6:2B:17:AE X509v3 Authority Key Identifier: keyid:1E:75:2C:3D:16:04:8C:3F:3F:63:23:D2:B9:10:70:BF:24:7D:68:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HnUsPRYEjD8_YyPSuRBwvyR9aGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CA8/870322581D9A11E2AA86C28708B02CD2/08FA1EC60C0911EDBDF8C44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.64.0/21 113.29.208.0/21 180.95.0.0/24 180.95.64.0-180.95.119.255 202.134.51.0/24 203.34.155.0/24 Signature Algorithm: sha256WithRSAEncryption 74:0b:d2:3d:7d:47:fa:a1:09:69:4a:4f:96:35:0b:51:4f:e8: 47:72:e6:03:4f:32:bb:bb:da:95:9f:6a:65:36:33:7a:09:12: 19:fe:95:dc:c2:dd:a3:ae:3f:ef:67:de:43:c4:ee:3a:21:ad: 1f:05:2f:0e:58:75:3c:4a:3a:a4:54:65:4a:73:71:94:7b:9e: 1a:35:ee:4a:10:36:96:78:f7:fd:d0:a2:30:e3:96:cb:b6:72: 96:e0:a4:3c:40:a0:db:fc:f2:17:52:64:f7:01:11:07:fe:c4: 3b:fe:72:a3:00:3a:29:5e:fe:6c:14:71:f4:08:fa:27:cf:dc: 9b:76:32:d7:84:a2:6c:8a:8a:96:d7:09:58:07:f8:35:fb:62: b2:d1:c2:69:96:ae:df:54:b7:1c:c3:d6:b5:fd:44:a3:63:9e: da:1b:e4:30:57:c0:92:ac:a6:52:08:e4:58:cf:24:d8:df:17: 85:a7:1b:2d:73:2d:78:3b:cf:d8:ee:a2:65:55:4b:09:24:ac: e4:b8:c9:84:e3:4e:35:01:68:1c:36:ce:e8:f7:9a:71:e7:25: 66:49:39:90:d1:73:b6:05:97:ed:5e:d3:e3:bb:1f:41:51:45: f8:16:18:87:88:20:48:2c:db:a3:09:be:f2:40:b4:83:aa:96: 3e:ab:8e:50 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICNDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDQTgxMTAvBgNVBAUTKDFFNzUyQzNEMTYwNDhDM0YzRjYzMjNEMkI5MTA3MEJG MjQ3RDY4NjYwHhcNMjQxMTAyMTUyMTA1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NDM2MC1hZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIwQMc7ghNuiuDPer+2iewj4LgQg2R5jHhPlGpBYWsTNCZvpcyHyhn2C6cV1 Ma6M/oNlekApgYl1YUz23ObiBF4u5DKMbJmdqPOcM7jMTXC9+6Z+OXgtVK1i7URD e/4SdUOO65xfxq0JXYouUcgorRil4AQbqC07LTDA0ga6blVFJ7Y1MnU0zowI82UN genEIT582E/CxoK4Gf88RvmvUOqSu2TY3yhSAURsaBWLwUbDx401ljQAb13uQYPB EZFcGfsazs//thy9IybDBsTVj4BkgKbXSQyC7rYM6T+/9zR8YqNd12zy6N2fnZtB OcRib+6HMDAw//7/huerI04s5wIDAQABo4ICuzCCArcwHQYDVR0OBBYEFEUL9LOJ m5ebUIMJcCksdODmKxeuMB8GA1UdIwQYMBaAFB51LD0WBIw/P2Mj0rkQcL8kfWhm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNBOC84NzAzMjI1ODFE OUExMUUyQUE4NkMyODcwOEIwMkNEMi9IblVzUFJZRWpEOF9ZeVBTdVJCd3Z5Ujlh R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huVXNQUllFakQ4X1l5UFN1UkJ3dnlSOWFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJDQTgvODcwMzIyNTgxRDlBMTFFMkFBODZDMjg3MDhCMDJDRDIvMDhGQTFFQzYw QzA5MTFFREJERjhDNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAMbb0ADBANxHdADBAC0XwAwDAMEBrRfQAMEA7RfcAMEAMqG MwMEAMsimzANBgkqhkiG9w0BAQsFAAOCAQEAdAvSPX1H+qEJaUpPljULUU/oR3Lm A08yu7valZ9qZTYzegkSGf6V3MLdo64/72feQ8TuOiGtHwUvDlh1PEo6pFRlSnNx lHueGjXuShA2lnj3/dCiMOOWy7ZyluCkPECg2/zyF1Jk9wERB/7EO/5yowA6KV7+ bBRx9Aj6J8/cm3Yy14SibIqKltcJWAf4NftistHCaZau31S3HMPWtf1Eo2Oe2hvk MFfAkqymUgjkWM8k2N8XhacbLXMteDvP2O6iZVVLCSSs5LjJhONONQFoHDbO6Pea ceclZkk5kNFztgWX7V7T47sfQVFF+BYYh4ggSCzbowm+8kC0g6qWPquOUA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org