$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa File: A23D5DE87A6911EA930EB439C4F9AE02.roa (raw, json) Hash identifier: pkQyF6/gfOZsdS2FZ7pXb1wwkEQgEQkFPici094hylM= Subject key identifier: F7:44:FC:CE:66:59:64:62:44:8E:65:B9:26:A7:0C:FA:7D:9B:BA:08 Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 093F Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa Signing time: Sun 02 Jun 2024 21:46:53 +0000 ROA not before: Sun 02 Jun 2024 21:46:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134201 IP address blocks: 45.118.60.0/22 maxlen: 24 103.58.92.0/22 maxlen: 24 2402:6480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Jun 2 21:46:53 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665ce84d-537b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:01:05:e4:9d:5f:33:62:36:76:ae:d5:fd: 73:97:36:ad:52:98:de:dd:82:76:bb:bd:4d:ff:96: 3c:55:53:d4:49:83:d4:8f:69:f2:17:fd:11:a9:15: 03:bd:9c:56:96:69:35:9c:94:6b:fa:a5:24:36:7c: 9d:bb:06:5c:5b:a9:f2:d1:64:26:18:38:52:02:b5: ca:63:cb:4a:64:68:2a:d8:96:5a:95:05:5e:38:fa: 2e:cb:1b:82:de:7a:22:ac:16:2c:a1:7d:15:42:2f: b9:c2:01:6d:89:25:2f:5f:45:9c:d4:95:48:fa:c7: 71:ac:3e:6c:42:2f:bd:d8:bc:4f:73:fb:1f:ee:15: 93:df:61:62:e7:b3:92:91:7b:0a:df:54:ce:2f:cd: 42:63:4a:33:3f:83:d8:47:f5:00:64:bb:1f:69:ec: 36:24:c9:76:04:31:bd:27:eb:98:75:f8:6d:93:29: 26:e6:fe:ac:6f:9c:0e:25:e4:41:49:e7:04:29:fa: 6f:c5:d1:59:dd:0e:68:16:53:7e:27:2f:7e:ea:1e: 41:33:a4:b9:02:7b:54:2a:c3:67:8b:2b:e4:f5:1a: be:c6:13:af:1b:d5:02:7c:70:01:83:f0:64:69:30: b8:5a:8e:8f:a8:3e:11:a1:fe:23:04:1a:41:9e:a4: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:44:FC:CE:66:59:64:62:44:8E:65:B9:26:A7:0C:FA:7D:9B:BA:08 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.60.0/22 103.58.92.0/22 IPv6: 2402:6480::/32 Signature Algorithm: sha256WithRSAEncryption 74:34:38:67:c0:c0:85:b3:f0:ec:b6:58:9c:be:99:60:67:bc: 4e:c9:3a:54:3e:3b:af:84:98:6f:e9:a5:d5:ec:a5:05:16:71: b7:ee:68:03:39:63:20:78:f7:d5:f3:d2:d3:10:1d:c2:15:e3: c8:cb:77:7b:48:c5:49:12:92:78:c3:2e:29:ec:f3:82:8a:8a: a9:45:93:23:97:d3:bd:4e:2a:45:1e:86:09:03:a8:fe:c3:2a: 68:cc:70:50:7c:71:9c:20:8b:65:72:20:c4:93:47:d2:bc:93: 84:a9:2b:51:2a:5d:ac:d2:a7:5e:d6:47:70:c9:93:3e:a5:d1: 3e:77:32:7c:28:63:3a:29:fc:7e:19:7c:57:84:a7:71:d7:97: f8:82:3a:36:97:a5:61:9c:de:f2:83:45:bb:31:02:c4:8e:7d: e9:90:41:fe:da:20:8d:5d:7f:d4:98:88:eb:06:91:16:6c:ea: 20:27:01:0b:02:8d:82:f0:3d:7a:83:f9:5d:a3:35:e4:18:36: e8:bf:af:18:39:f1:e6:fa:08:47:3d:64:59:94:d0:e6:2b:ff: 26:e7:5e:85:a0:98:1d:41:07:0a:a8:67:72:d3:95:31:20:e3: 0b:12:00:43:8e:a8:3e:b0:b9:bc:6d:38:f2:f3:81:97:69:72: 81:68:55:06 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjQwNjAyMjE0NjUzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjZTg0ZC01MzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFkBBeSdXzNiNnau1f1zlzatUpje3YJ2u71N/5Y8VVPUSYPUj2nyF/0RqRUD vZxWlmk1nJRr+qUkNnyduwZcW6ny0WQmGDhSArXKY8tKZGgq2JZalQVeOPouyxuC 3noirBYsoX0VQi+5wgFtiSUvX0Wc1JVI+sdxrD5sQi+92LxPc/sf7hWT32Fi57OS kXsK31TOL81CY0ozP4PYR/UAZLsfaew2JMl2BDG9J+uYdfhtkykm5v6sb5wOJeRB SecEKfpvxdFZ3Q5oFlN+Jy9+6h5BM6S5AntUKsNniyvk9Rq+xhOvG9UCfHABg/Bk aTC4Wo6PqD4Rof4jBBpBnqRCjwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPdE/M5m WWRiRI5luSanDPp9m7oIMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjYyMjcvMEQ3MjhBMEE3QTNGMTFFQThFM0Q4MDM1QzRGOUFFMDIvQTIzRDVERTg3 QTY5MTFFQTkzMEVCNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItdjwDBAJnOlwwDQQCAAIwBwMFACQCZIAwDQYJKoZIhvcN AQELBQADggEBAHQ0OGfAwIWz8Oy2WJy+mWBnvE7JOlQ+O6+EmG/ppdXspQUWcbfu aAM5YyB499Xz0tMQHcIV48jLd3tIxUkSknjDLins84KKiqlFkyOX071OKkUehgkD qP7DKmjMcFB8cZwgi2VyIMSTR9K8k4SpK1EqXazSp17WR3DJkz6l0T53MnwoYzop /H4ZfFeEp3HXl/iCOjaXpWGc3vKDRbsxAsSOfemQQf7aII1df9SYiOsGkRZs6iAn AQsCjYLwPXqD+V2jNeQYNui/rxg58eb6CEc9ZFmU0OYr/ybnXoWgmB1BBwqoZ3LT lTEg4wsSAEOOqD6wubxtOPLzgZdpcoFoVQY= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org