$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F9424C6C80FA11ED9B35954DC4F9AE02.roa File: F9424C6C80FA11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: GNMO+8voOxNBOb5ixsUP/MtpdlZbS27Vb7o1TavyMdI= Subject key identifier: AD:B9:85:29:DC:90:3B:76:72:11:4A:76:DC:14:3E:9C:8E:A9:CF:64 Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Certificate serial: 01B0 Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F9424C6C80FA11ED9B35954DC4F9AE02.roa Signing time: Fri 27 Sep 2024 02:26:30 +0000 ROA not before: Fri 27 Sep 2024 02:26:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7575 IP address blocks: 138.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Validity Not Before: Sep 27 02:26:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f617d6-b69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e7:dd:f2:6f:d4:b1:bd:42:86:dd:06:d2:2d: 6a:2b:77:63:0b:27:cb:d3:1c:0a:57:f0:c6:34:2a: 25:d2:09:01:8d:d3:ed:59:37:da:2f:95:6c:a3:41: 4e:7f:68:15:1e:87:ac:ec:35:2b:17:b5:35:19:73: 14:82:0d:c2:a4:46:0c:18:7a:04:93:68:e2:b8:6e: e5:5b:5a:7c:e4:ad:69:a6:b7:40:09:d4:46:df:82: 6b:b1:36:78:d6:d6:a1:4f:30:ae:85:cb:5b:9b:81: c9:9f:15:99:e6:ad:8d:a9:23:7e:e8:10:64:97:3c: 0a:30:d8:40:72:9b:65:0f:90:ae:f7:75:2c:65:13: c5:61:31:e8:47:39:a9:f9:6a:b5:16:2f:ca:2b:e8: 36:62:3d:f2:e0:1e:dc:bc:1c:2e:71:2e:ac:7f:6c: ef:51:e5:48:61:b5:7c:74:4f:99:e2:50:e2:e1:eb: 1e:86:6a:af:71:d6:12:90:a5:3d:f1:8b:fe:9f:e0: 3e:c0:e9:82:ef:f4:59:72:4e:f6:f5:99:a6:28:77: 0b:37:1e:13:13:d1:6b:78:4a:52:8b:c7:0e:c2:4b: 9f:b9:3e:dd:08:e0:e3:97:c3:93:cf:26:4c:2d:c6: bb:3d:27:3b:7a:62:43:84:79:31:e7:2f:d3:46:fe: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B9:85:29:DC:90:3B:76:72:11:4A:76:DC:14:3E:9C:8E:A9:CF:64 X509v3 Authority Key Identifier: keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F9424C6C80FA11ED9B35954DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:45:f5:55:d3:a7:34:6e:09:aa:81:58:33:5f:f7:b9:ec:b5: 51:dc:7a:77:1b:38:67:01:ad:08:a3:8d:c7:8d:04:0b:ac:89: aa:94:8c:6a:20:d8:43:90:cf:27:3f:ed:2a:9a:9f:91:8c:ca: 04:df:6f:8c:7f:80:66:39:b5:51:9e:0a:bf:6f:76:7c:19:5d: 1c:fb:e0:e2:d4:b6:46:03:02:44:aa:a6:b7:91:3f:0e:a7:11: 61:fc:c4:a2:21:d2:d8:26:d7:17:a6:5b:4b:22:f9:a1:10:ec: ff:d8:e6:75:ce:27:10:0c:3c:32:df:14:6f:c4:8b:a1:4f:ec: 74:69:73:09:ae:ad:b8:ba:19:ad:b7:60:cc:1b:ea:57:4d:2f: 6c:6c:61:2a:14:4a:c1:e6:d9:4d:05:50:74:43:8a:b9:7d:24: a2:75:9d:d2:48:89:ad:6b:b1:e8:89:fa:97:f8:0a:f6:bc:a6: 8b:f6:ca:b8:9a:29:e6:e7:66:69:82:e6:d3:de:d1:8b:0a:86: 3d:4a:8b:98:75:85:76:9e:6c:58:17:b4:5e:00:01:87:e2:d0: 5f:9b:1b:fa:c7:5e:24:c4:2c:fe:e7:ed:25:a2:76:1f:2c:7e: 74:2b:66:5d:34:3d:05:4c:ef:9c:c9:aa:e1:2e:48:92:8d:c8: dd:2f:b7:d5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKDNCODc2OTBFRjQwNTU2NzM4M0I2RjcyRkREMzAxMTYw Q0U4MjFGMkIwHhcNMjQwOTI3MDIyNjMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MTdkNi1iNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOfd8m/Usb1Cht0G0i1qK3djCyfL0xwKV/DGNCol0gkBjdPtWTfaL5Vso0FO f2gVHoes7DUrF7U1GXMUgg3CpEYMGHoEk2jiuG7lW1p85K1pprdACdRG34JrsTZ4 1tahTzCuhctbm4HJnxWZ5q2NqSN+6BBklzwKMNhAcptlD5Cu93UsZRPFYTHoRzmp +Wq1Fi/KK+g2Yj3y4B7cvBwucS6sf2zvUeVIYbV8dE+Z4lDi4esehmqvcdYSkKU9 8Yv+n+A+wOmC7/RZck729ZmmKHcLNx4TE9FreEpSi8cOwkufuT7dCODjl8OTzyZM Lca7PSc7emJDhHkx5y/TRv53ywIDAQABo4IClDCCApAwHQYDVR0OBBYEFK25hSnc kDt2chFKdtwUPpyOqc9kMB8GA1UdIwQYMBaAFDuHaQ70BVZzg7b3L90wEWDOgh8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80M0E1MTFBRTJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZuT0R0dmN2M1RBUllNNkNI eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL080ZHBEdlFGVm5PRHR2Y3YzVEFSWU02Q0h5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxQUQvNDNBNTExQUUyQ0JFMTFFRDk5ODI0QjRDQzRGOUFFMDIvRjk0MjRDNkM4 MEZBMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCKUDANBgkqhkiG9w0BAQsFAAOCAQEAHEX1VdOnNG4JqoFY M1/3uey1Udx6dxs4ZwGtCKONx40EC6yJqpSMaiDYQ5DPJz/tKpqfkYzKBN9vjH+A Zjm1UZ4Kv292fBldHPvg4tS2RgMCRKqmt5E/DqcRYfzEoiHS2CbXF6ZbSyL5oRDs /9jmdc4nEAw8Mt8Ub8SLoU/sdGlzCa6tuLoZrbdgzBvqV00vbGxhKhRKwebZTQVQ dEOKuX0konWd0kiJrWux6In6l/gK9rymi/bKuJop5udmaYLm097RiwqGPUqLmHWF dp5sWBe0XgABh+LQX5sb+sdeJMQs/uftJaJ2Hyx+dCtmXTQ9BUzvnMmq4S5Iko3I 3S+31Q== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:08 2024 by rpki-client on console-fra.rpki-client.org