$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/8852DDDEBED411ECBA66025BC4F9AE02.roa File: 8852DDDEBED411ECBA66025BC4F9AE02.roa (raw, json) Hash identifier: lc/qlMf4LlkPKULr4QDdOr7yT3mSRd2CWo/AG45TiUY= Subject key identifier: A6:1C:31:0C:37:20:C9:34:EA:52:9B:37:D9:AF:E6:5F:07:CE:2D:1D Certificate issuer: /CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Certificate serial: 33F7 Authority key identifier: 63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/8852DDDEBED411ECBA66025BC4F9AE02.roa Signing time: Mon 12 Aug 2024 15:20:57 +0000 ROA not before: Mon 12 Aug 2024 15:20:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45172 IP address blocks: 143.96.0.0/16 maxlen: 16 143.96.0.0/24 maxlen: 24 143.96.1.0/24 maxlen: 24 143.96.2.0/23 maxlen: 24 143.96.4.0/23 maxlen: 24 143.96.6.0/24 maxlen: 24 143.96.7.0/24 maxlen: 24 143.96.8.0/22 maxlen: 22 143.96.12.0/24 maxlen: 24 143.96.13.0/24 maxlen: 24 143.96.14.0/24 maxlen: 24 143.96.15.0/24 maxlen: 24 143.96.16.0/20 maxlen: 20 143.96.32.0/19 maxlen: 19 143.96.64.0/18 maxlen: 18 143.96.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13303 (0x33f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Validity Not Before: Aug 12 15:20:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ba2858-fae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:4f:3f:8b:01:f2:d6:2f:82:9b:7c:61:09: 4d:3c:95:df:21:6f:67:fa:7f:83:24:fd:b7:40:86: 72:c5:51:c7:00:93:45:85:1e:c5:22:b8:50:44:87: fb:86:9c:2e:17:34:63:64:f4:14:1a:88:91:a9:d1: e3:0b:6d:e4:02:22:a2:ad:78:56:fd:62:68:17:fa: b4:39:c6:51:fe:46:10:79:b3:60:0e:87:44:c5:73: 8f:8d:da:13:d8:70:44:25:b4:ec:de:bf:22:48:78: fc:99:18:42:32:3e:80:af:d6:cc:26:66:87:e8:49: 33:97:99:20:47:d6:73:38:c4:67:8f:d4:75:a3:06: 0a:7a:8b:70:73:04:f2:bf:96:3b:28:ee:c9:49:e7: 9b:00:c9:c2:9e:e5:53:12:89:da:67:7d:b5:98:b6: af:a4:cb:c3:69:c4:e7:4a:1f:c4:8b:38:ab:04:30: 71:a5:e3:4f:24:ea:ba:e2:8c:23:5b:d5:65:ed:32: 2a:12:97:27:39:3f:9f:39:89:8d:89:51:ce:ac:96: 8e:2e:9c:3a:f6:1d:17:90:c3:64:b2:fc:fb:62:e1: 87:e7:76:d0:19:28:b4:1e:8f:b1:04:18:a3:19:3d: 32:be:33:e4:32:64:a7:8d:9f:84:cd:ab:fb:5e:ba: 33:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1C:31:0C:37:20:C9:34:EA:52:9B:37:D9:AF:E6:5F:07:CE:2D:1D X509v3 Authority Key Identifier: keyid:63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/8852DDDEBED411ECBA66025BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:f2:8b:3b:ac:76:45:84:06:33:98:f4:21:85:f6:e9:ad:16: 24:bc:ef:be:b3:78:5a:70:44:34:e7:58:bc:c6:29:4b:9f:fb: 88:b3:47:4e:83:8b:eb:0b:8a:e0:7b:74:53:39:34:6a:f5:46: a0:99:43:f5:04:d4:90:b0:0d:84:63:10:56:22:9b:4b:63:89: 0d:51:85:e9:05:87:4b:68:ac:0d:a7:3f:7f:3b:ca:22:f7:06: b1:c4:53:cc:5f:d3:cd:ce:49:6d:ab:db:f7:65:c9:ef:0c:8f: d6:8d:2b:72:ac:00:28:ab:f0:78:2f:a8:ef:d1:4d:79:da:df: 00:d7:ab:e7:39:93:5e:9d:51:4d:54:3c:bf:e1:f9:77:28:7e: c9:d4:41:ba:87:48:b8:26:4d:d7:4c:09:1d:bd:92:e7:ef:26: 27:3e:66:a3:d9:9f:e7:f3:34:a0:dd:03:85:72:c7:a6:99:53: 85:7b:91:3d:cf:d4:6a:24:bf:44:03:52:61:1f:1d:bf:f9:ec: 9d:be:e3:5e:93:b9:61:6d:0a:98:7d:43:a0:19:4d:f6:39:87: 5b:94:fd:d9:c4:02:b5:42:77:06:3d:d1:25:7a:fa:53:72:2b: 02:db:f2:b3:03:03:c7:80:72:25:67:2d:e0:63:0d:d5:96:d5: 44:60:11:cf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICM/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKDYzMkM4REUwMjIwQjhDMTBCNDFGRjQ5QkZGOEI0MzJD RjhGRkQyNTQwHhcNMjQwODEyMTUyMDU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhMjg1OC1mYWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtNPP4sB8tYvgpt8YQlNPJXfIW9n+n+DJP23QIZyxVHHAJNFhR7FIrhQRIf7 hpwuFzRjZPQUGoiRqdHjC23kAiKirXhW/WJoF/q0OcZR/kYQebNgDodExXOPjdoT 2HBEJbTs3r8iSHj8mRhCMj6Ar9bMJmaH6Ekzl5kgR9ZzOMRnj9R1owYKeotwcwTy v5Y7KO7JSeebAMnCnuVTEonaZ321mLavpMvDacTnSh/EizirBDBxpeNPJOq64owj W9Vl7TIqEpcnOT+fOYmNiVHOrJaOLpw69h0XkMNksvz7YuGH53bQGSi0Ho+xBBij GT0yvjPkMmSnjZ+Ezav7XrozMQIDAQABo4IClDCCApAwHQYDVR0OBBYEFKYcMQw3 IMk06lKbN9mv5l8Hzi0dMB8GA1UdIwQYMBaAFGMsjeAiC4wQtB/0m/+LQyz4/9JU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy80NDlCQTUwNjFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpCQzBIX1NiXzR0RExQal8w bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l5eU40Q0lMakJDMEhfU2JfNHRETFBqXzBsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyOEMvNDQ5QkE1MDYxREEwMTFFMkI2RDg3MDkxMDhCMDJDRDIvODg1MkREREVC RUQ0MTFFQ0JBNjYwMjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCPYDANBgkqhkiG9w0BAQsFAAOCAQEAE/KLO6x2RYQGM5j0 IYX26a0WJLzvvrN4WnBENOdYvMYpS5/7iLNHToOL6wuK4Ht0Uzk0avVGoJlD9QTU kLANhGMQViKbS2OJDVGF6QWHS2isDac/fzvKIvcGscRTzF/Tzc5Jbavb92XJ7wyP 1o0rcqwAKKvweC+o79FNedrfANer5zmTXp1RTVQ8v+H5dyh+ydRBuodIuCZN10wJ Hb2S5+8mJz5mo9mf5/M0oN0DhXLHpplThXuRPc/UaiS/RANSYR8dv/nsnb7jXpO5 YW0KmH1DoBlN9jmHW5T92cQCtUJ3Bj3RJXr6U3IrAtvyswMDx4ByJWct4GMN1ZbV RGARzw== -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org