$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/23A0D39C0F1D11E991F4271EC4F9AE02.roa File: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (raw, json) Hash identifier: f1Axpq+Y9qp0ZeZKbPlrZpgSxrjbARoaWRKQTgoHG74= Subject key identifier: 25:7F:99:41:81:3C:AA:AC:2D:68:98:B5:A9:E7:DE:8B:C5:6F:D2:D7 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 1028 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/23A0D39C0F1D11E991F4271EC4F9AE02.roa Signing time: Tue 28 Nov 2023 18:05:38 +0000 ROA not before: Tue 28 Nov 2023 18:05:38 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132132 IP address blocks: 66.96.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4136 (0x1028) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 28 18:05:38 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65662bf2-486d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bd:ae:77:84:c4:c1:46:b0:b2:e0:ea:b6:ca: ed:ff:a5:d2:a3:55:6f:a4:95:02:87:2a:cc:58:8d: 50:10:f6:a8:b5:6c:a6:f4:4b:4f:1d:8a:e2:f6:dd: b2:2f:eb:5c:e6:74:c4:07:99:18:4c:25:0c:54:73: ab:e9:5a:51:ea:06:f7:61:bf:6a:19:e1:7e:09:91: 6c:64:22:c8:15:13:e2:a0:34:97:de:b1:03:84:25: fd:ac:d2:74:be:36:9b:a5:eb:2c:d9:67:4b:d2:29: 6c:2f:95:2d:5c:d2:45:ff:d2:2b:9f:d9:95:67:3f: 03:ba:77:24:19:a3:3b:a2:00:3d:8b:b4:62:5b:e0: d1:88:e2:28:cd:e6:94:d6:a5:82:80:21:78:fc:9a: 5e:de:fb:bb:57:f3:31:c6:bb:9e:b6:35:de:aa:8d: 97:1d:18:94:50:47:e6:51:4a:10:43:bd:5b:0b:5e: 7a:e0:f9:0e:c6:c6:f3:57:94:be:e6:c4:f3:64:3d: 3a:66:9c:57:5c:cb:82:66:3e:6c:b3:47:8c:84:57: 17:84:87:75:9a:7a:f2:66:7a:05:70:c7:c1:84:28: b4:92:11:1a:4d:b9:9d:04:de:e7:2d:cc:53:f0:45: 7a:ba:6d:c3:84:e2:b7:6e:83:02:31:f0:07:1c:b0: 57:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7F:99:41:81:3C:AA:AC:2D:68:98:B5:A9:E7:DE:8B:C5:6F:D2:D7 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/23A0D39C0F1D11E991F4271EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 66.96.222.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:15:3a:83:a9:66:df:17:79:91:6e:71:55:d8:87:70:c9:6d: bf:ce:db:1d:0c:41:4e:c0:2b:25:24:ed:03:13:68:92:64:4d: 95:db:ac:f0:e6:d4:dc:93:95:c7:8d:76:63:c5:fc:48:cd:94: 56:77:86:77:03:60:0a:06:8b:1f:66:4e:07:23:26:fd:e2:4e: 63:d6:1b:d2:18:48:5a:90:f3:fb:5a:35:55:f7:79:36:02:8d: 7c:25:7e:8f:35:a9:bb:d2:5a:e2:6d:1a:2c:46:ff:e9:d3:a0: a9:8a:8d:ad:c1:1f:71:b2:52:93:91:54:ea:9b:8b:16:3c:e4: b5:b4:27:f9:38:0b:aa:81:16:5f:c3:6b:92:67:97:67:26:0a: 99:85:96:58:24:d7:fb:2b:bc:09:26:83:75:11:7c:8b:f8:c4: ad:5d:43:cd:a5:c7:a0:5c:c0:df:f8:10:7d:1c:17:b0:66:0f: 1a:69:f2:05:e7:31:d5:40:f8:db:66:47:3a:52:c7:e4:b3:26: 6c:7e:47:0f:b9:6c:be:7d:91:80:85:4d:d0:78:6a:70:58:fa: 1b:ca:a9:a8:17:fb:a1:4d:03:72:f2:80:81:40:29:4d:40:f0: ff:62:3f:93:03:4b:bc:9e:00:45:b8:f0:27:39:4a:34:3d:87: 00:5f:dc:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjMxMTI4MTgwNTM4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MmJmMi00ODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAob2ud4TEwUawsuDqtsrt/6XSo1VvpJUChyrMWI1QEPaotWym9EtPHYri9t2y L+tc5nTEB5kYTCUMVHOr6VpR6gb3Yb9qGeF+CZFsZCLIFRPioDSX3rEDhCX9rNJ0 vjabpess2WdL0ilsL5UtXNJF/9Irn9mVZz8DunckGaM7ogA9i7RiW+DRiOIozeaU 1qWCgCF4/Jpe3vu7V/MxxruetjXeqo2XHRiUUEfmUUoQQ71bC1564PkOxsbzV5S+ 5sTzZD06ZpxXXMuCZj5ss0eMhFcXhId1mnryZnoFcMfBhCi0khEaTbmdBN7nLcxT 8EV6um3DhOK3boMCMfAHHLBXEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCV/mUGB PKqsLWiYtann3ovFb9LXMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvMjNBMEQzOUMw RjFEMTFFOTkxRjQyNzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABCYN4wDQYJKoZIhvcNAQELBQADggEBAGwVOoOpZt8XeZFu cVXYh3DJbb/O2x0MQU7AKyUk7QMTaJJkTZXbrPDm1NyTlceNdmPF/EjNlFZ3hncD YAoGix9mTgcjJv3iTmPWG9IYSFqQ8/taNVX3eTYCjXwlfo81qbvSWuJtGixG/+nT oKmKja3BH3GyUpORVOqbixY85LW0J/k4C6qBFl/Da5Jnl2cmCpmFllgk1/srvAkm g3URfIv4xK1dQ82lx6BcwN/4EH0cF7BmDxpp8gXnMdVA+NtmRzpSx+SzJmx+Rw+5 bL59kYCFTdB4anBY+hvKqagX+6FNA3LygIFAKU1A8P9iP5MDS7yeAEW48Cc5SjQ9 hwBf3PE= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:08 2024 by rpki-client on console-fra.rpki-client.org