$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa File: 0791DE6034A511ED9D82D13BC4F9AE02.roa (raw, json) Hash identifier: gOctjmkYOR8ziwDdEKAqJFY7unVPqTO+qQuiZZdjL1k= Subject key identifier: E4:02:4C:05:3D:05:D2:6D:13:13:96:85:9A:42:51:09:A6:A3:1B:61 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 099E Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa Signing time: Wed 04 Sep 2024 20:39:08 +0000 ROA not before: Wed 04 Sep 2024 20:39:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 149175 IP address blocks: 39.109.92.0/24 maxlen: 24 39.109.93.0/24 maxlen: 24 39.109.94.0/24 maxlen: 24 39.109.95.0/24 maxlen: 24 103.120.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2462 (0x99e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Sep 4 20:39:08 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8c56b-b6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:be:d3:c0:d7:55:bd:aa:8a:87:ce:b4:af:bd: ef:cf:73:64:8b:d0:95:1b:9e:9e:cf:83:4b:8b:0f: d3:c0:5e:e6:a4:d7:34:a0:05:00:19:2d:52:0a:6b: f2:c3:5d:cc:62:d2:8b:cc:9c:67:52:22:32:e6:dd: 5e:a7:51:25:bc:0e:68:58:0d:ab:34:e8:e4:a2:c6: 14:fb:93:e7:d8:00:6f:4f:01:25:be:40:59:10:65: 32:c2:bc:b8:5f:42:6f:4a:0b:35:cc:30:ea:3a:fd: 0e:48:58:da:86:07:b1:df:b9:22:cf:44:08:02:05: da:88:62:94:3b:c8:0b:5c:21:34:33:26:aa:f4:fa: fd:95:63:f1:51:97:30:6e:50:eb:28:92:93:58:c2: 78:f6:4d:71:83:d2:cc:9f:b2:62:e2:b2:97:a7:3b: a1:ec:15:01:8c:3c:0a:b4:7e:8e:c3:74:2c:81:86: 25:66:58:7c:9b:bb:2a:9c:cd:e9:5c:1d:96:d6:f9: ec:67:90:1f:3e:f8:c1:d3:2c:92:d3:bb:94:12:32: 90:d2:f1:a5:fc:6d:b0:6c:78:94:a6:59:56:6a:8a: 14:dc:a5:67:09:a3:c1:01:94:63:e2:e5:fc:36:ae: 5e:5d:48:ab:c2:84:75:df:ec:fa:6a:3b:2c:54:44: 43:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:02:4C:05:3D:05:D2:6D:13:13:96:85:9A:42:51:09:A6:A3:1B:61 X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.109.92.0/22 103.120.228.0/23 Signature Algorithm: sha256WithRSAEncryption 24:65:a0:3e:8b:7f:da:33:7e:e1:83:95:d1:9d:81:ce:20:92: a6:40:c7:31:36:ed:d2:09:9e:64:52:26:9a:a3:67:a9:32:88: 9e:3f:98:63:b8:42:8c:01:f8:bb:31:b3:9e:b2:09:cd:00:f1: 4d:47:e8:f0:20:be:9b:c6:de:2f:bf:f6:ae:a8:3b:dc:50:b4: 29:ec:55:65:c8:26:72:18:d1:10:06:58:3b:d8:b0:7f:f8:56: bd:a3:5a:05:31:4c:d8:aa:fc:ed:5c:43:fa:17:2f:91:44:ee: e9:08:35:57:b9:60:09:62:e2:8d:a2:78:4e:04:e2:67:7c:22: e6:a4:17:fb:e2:39:77:27:89:85:8e:1c:53:25:ad:2a:8a:bd: 6d:26:10:15:d3:a0:40:35:40:f7:d0:e9:4c:ee:f5:78:a7:58: e6:a2:6e:97:c0:51:07:63:01:4b:4c:7e:46:b9:b9:09:32:76: 32:3b:ae:4b:64:54:f3:aa:6b:ba:bf:97:30:32:bb:ef:65:4d: db:74:45:2f:cd:b3:63:05:12:12:89:ae:9a:a9:ec:f1:a1:a4: 50:62:7b:d5:f3:ad:c8:a8:ee:6a:24:4d:e9:44:e6:0d:f4:96: 7b:5b:c9:31:b5:0e:22:3e:3d:c1:75:e0:81:66:96:ab:61:17: 07:84:74:99 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjQwOTA0MjAzOTA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4YzU2Yi1iNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4L7TwNdVvaqKh860r73vz3Nki9CVG56ez4NLiw/TwF7mpNc0oAUAGS1SCmvy w13MYtKLzJxnUiIy5t1ep1ElvA5oWA2rNOjkosYU+5Pn2ABvTwElvkBZEGUywry4 X0JvSgs1zDDqOv0OSFjahgex37kiz0QIAgXaiGKUO8gLXCE0Myaq9Pr9lWPxUZcw blDrKJKTWMJ49k1xg9LMn7Ji4rKXpzuh7BUBjDwKtH6Ow3QsgYYlZlh8m7sqnM3p XB2W1vnsZ5AfPvjB0yyS07uUEjKQ0vGl/G2wbHiUpllWaooU3KVnCaPBAZRj4uX8 Nq5eXUirwoR13+z6ajssVERDXwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOQCTAU9 BdJtExOWhZpCUQmmoxthMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdEQ0QvODQ0MjhCMEU3M0QxMTFFQTlDREVDNTM0QzRGOUFFMDIvMDc5MURFNjAz NEE1MTFFRDlEODJEMTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAInbVwDBAFneOQwDQYJKoZIhvcNAQELBQADggEBACRloD6L f9ozfuGDldGdgc4gkqZAxzE27dIJnmRSJpqjZ6kyiJ4/mGO4QowB+Lsxs56yCc0A 8U1H6PAgvpvG3i+/9q6oO9xQtCnsVWXIJnIY0RAGWDvYsH/4Vr2jWgUxTNiq/O1c Q/oXL5FE7ukINVe5YAli4o2ieE4E4md8IuakF/viOXcniYWOHFMlrSqKvW0mEBXT oEA1QPfQ6Uzu9XinWOaibpfAUQdjAUtMfka5uQkydjI7rktkVPOqa7q/lzAyu+9l Tdt0RS/Ns2MFEhKJrpqp7PGhpFBie9Xzrcio7mokTelE5g30lntbyTG1DiI+PcF1 4IFmlqthFweEdJk= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org