$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa File: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (raw, json) Hash identifier: Es9AKZiU8brb3GnSF7C7yqjk6OwYTW61+uidALQGL7g= Subject key identifier: CA:DE:DE:04:F7:DC:35:84:40:50:83:44:DB:3E:C3:82:72:CB:D1:6B Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 102A Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa Signing time: Tue 28 Nov 2023 18:05:40 +0000 ROA not before: Tue 28 Nov 2023 18:05:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133136 IP address blocks: 66.96.219.0/24 maxlen: 24 66.96.220.0/24 maxlen: 24 66.96.221.0/24 maxlen: 24 66.96.223.0/24 maxlen: 24 158.140.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4138 (0x102a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 28 18:05:40 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65662bf3-7ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:55:6a:cc:52:f5:1c:9f:85:f2:2a:18:e3:4c: 26:2d:0c:eb:5c:53:82:55:fe:39:89:7c:60:59:a5: 66:82:2b:38:b4:3a:f6:a0:8a:39:40:ef:fc:d5:f4: 6d:f8:6f:5d:09:c4:80:77:bb:60:bf:e6:16:a3:e8: 45:c6:02:07:08:8b:49:26:1c:de:b3:88:0d:20:c6: e9:8f:5a:28:e6:20:4f:d0:18:bb:27:8e:49:83:3f: ba:49:38:c5:98:8c:22:36:8d:3c:d4:22:c5:d7:26: 84:2b:4b:2a:34:ce:50:bb:79:e3:9d:a5:24:5a:05: 6c:81:20:95:f7:72:68:71:66:f6:85:46:52:6a:6e: 18:73:42:34:f4:79:68:30:92:86:3f:d6:c3:36:49: 62:c4:ed:17:3e:78:b7:a1:31:ed:6d:be:d5:be:a4: 83:ef:8b:71:06:d1:96:32:d7:fd:4e:db:c6:cf:ff: ca:e8:5f:5c:83:51:18:8d:62:e6:5a:fa:76:f1:9c: f0:d3:af:ec:61:15:59:a0:5f:c4:2e:28:4b:56:a1: da:a6:67:ed:52:df:fe:ec:28:14:48:a0:87:0a:d1: dc:36:e1:03:d5:ca:c4:80:74:8f:6c:1c:a2:6c:f0: b9:6a:f0:e2:6f:8a:37:fe:71:2b:c0:c7:52:8d:c1: bb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DE:DE:04:F7:DC:35:84:40:50:83:44:DB:3E:C3:82:72:CB:D1:6B X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 66.96.219.0-66.96.221.255 66.96.223.0/24 158.140.151.0/24 Signature Algorithm: sha256WithRSAEncryption d9:5b:a8:cd:60:66:69:5f:17:cb:9e:71:82:45:25:23:e7:b9: 69:f9:05:c9:38:2e:3a:77:31:2c:0b:5e:a3:5a:bc:28:ee:c1: 4f:ac:66:bb:e7:59:02:11:0e:8f:a6:f5:69:a2:20:60:e9:c0: e6:63:cc:86:3b:fa:07:a2:42:27:6e:10:14:6e:d8:8f:b8:0a: 23:10:60:4b:65:dc:f8:03:ba:ac:5e:ce:71:2d:52:05:22:7f: 1e:34:e5:f7:d2:2d:96:17:d7:72:af:29:1f:6f:b4:81:8e:fa: 5f:20:b5:c4:34:56:53:be:f1:ed:5b:ed:79:27:61:39:61:22: c3:bb:f1:a3:0e:2d:68:c8:2b:d2:7b:f6:e2:4e:fe:46:4d:1a: c9:eb:4a:d0:48:e1:26:70:59:c4:97:16:77:44:ef:aa:1e:0f: 10:33:7b:ea:a0:75:36:b8:e2:c5:de:e5:30:ac:fa:2e:e0:04: dc:7a:a1:cc:06:29:b8:f0:97:b1:b0:cf:87:46:e5:c4:68:78: a5:7d:2f:13:6f:7f:dd:57:dc:33:f9:54:9a:fb:0b:9b:e1:93: 2d:36:1c:de:fc:d3:fb:d3:54:aa:ae:67:e0:5e:ee:f3:10:49: 44:8c:d1:ab:3f:eb:5d:f2:21:99:44:ee:43:b6:db:21:3d:5c: 02:c9:fc:34 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICECowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjMxMTI4MTgwNTQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MmJmMy03YWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lVqzFL1HJ+F8ioY40wmLQzrXFOCVf45iXxgWaVmgis4tDr2oIo5QO/81fRt +G9dCcSAd7tgv+YWo+hFxgIHCItJJhzes4gNIMbpj1oo5iBP0Bi7J45Jgz+6STjF mIwiNo081CLF1yaEK0sqNM5Qu3njnaUkWgVsgSCV93JocWb2hUZSam4Yc0I09Hlo MJKGP9bDNklixO0XPni3oTHtbb7VvqSD74txBtGWMtf9TtvGz//K6F9cg1EYjWLm Wvp28Zzw06/sYRVZoF/ELihLVqHapmftUt/+7CgUSKCHCtHcNuED1crEgHSPbByi bPC5avDib4o3/nErwMdSjcG7cwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFMre3gT3 3DWEQFCDRNs+w4Jyy9FrMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvNTQ4OEY2RUEw RjFBMTFFOUIzRjJBNzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAEJg2wMEAUJg3AMEAEJg3wMEAJ6MlzANBgkqhkiG9w0B AQsFAAOCAQEA2VuozWBmaV8Xy55xgkUlI+e5afkFyTguOncxLAteo1q8KO7BT6xm u+dZAhEOj6b1aaIgYOnA5mPMhjv6B6JCJ24QFG7Yj7gKIxBgS2Xc+AO6rF7OcS1S BSJ/HjTl99ItlhfXcq8pH2+0gY76XyC1xDRWU77x7VvteSdhOWEiw7vxow4taMgr 0nv24k7+Rk0ayetK0EjhJnBZxJcWd0Tvqh4PEDN76qB1Nrjixd7lMKz6LuAE3Hqh zAYpuPCXsbDPh0blxGh4pX0vE29/3VfcM/lUmvsLm+GTLTYc3vzT+9NUqq5n4F7u 8xBJRIzRqz/rXfIhmUTuQ7bbIT1cAsn8NA== -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:11 2024 by rpki-client on console-ams.rpki-client.org