$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E9D/52828B2A7B8711EEA840F21EC4F9AE02/CCAA0F667B8911EE9370D427C4F9AE02.roa File: CCAA0F667B8911EE9370D427C4F9AE02.roa (raw, json) Hash identifier: g3rXvCsXTLgyMSwvQGJFedrrzYlZJGmg81OWhtnreEI= Subject key identifier: 30:54:F3:FA:49:81:D8:2D:FD:04:BE:43:8D:E9:13:FA:E8:96:A2:07 Certificate issuer: /CN=A91F9E9D/serialNumber=BE019137A81D7E9CD9AF56CD91C587C2EF06E93B Certificate serial: 02 Authority key identifier: BE:01:91:37:A8:1D:7E:9C:D9:AF:56:CD:91:C5:87:C2:EF:06:E9:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vgGRN6gdfpzZr1bNkcWHwu8G6Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E9D/52828B2A7B8711EEA840F21EC4F9AE02/CCAA0F667B8911EE9370D427C4F9AE02.roa Signing time: Sun 05 Nov 2023 03:17:07 +0000 ROA not before: Sun 05 Nov 2023 03:17:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 152094 IP address blocks: 116.199.202.0/23 maxlen: 23 2401:4d60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E9D/52828B2A7B8711EEA840F21EC4F9AE02/vgGRN6gdfpzZr1bNkcWHwu8G6Ts.crl rsync://rpki.apnic.net/member_repository/A91F9E9D/52828B2A7B8711EEA840F21EC4F9AE02/vgGRN6gdfpzZr1bNkcWHwu8G6Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vgGRN6gdfpzZr1bNkcWHwu8G6Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E9D/serialNumber=BE019137A81D7E9CD9AF56CD91C587C2EF06E93B Validity Not Before: Nov 5 03:17:07 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65470933-3dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fb:8f:63:1e:d6:79:6b:93:9a:72:c3:f9:2f: 32:7a:e8:83:d8:f3:08:a1:cd:d6:6a:aa:2d:93:d2: 89:f7:a6:e4:d6:a8:6a:b7:ff:08:78:2c:ae:59:23: bd:09:8d:26:e6:66:9d:36:c5:2a:1b:d5:d8:9d:da: c3:78:74:3b:ee:59:ac:5c:80:c1:f0:df:4c:e6:8b: f6:ee:5c:75:71:4d:a6:a9:de:5e:58:d2:94:29:35: e7:bd:22:85:cd:b5:59:8f:61:33:97:a9:b6:fc:11: dd:a5:83:a1:af:43:b6:45:66:40:8b:b3:7c:0a:4a: 2b:31:d2:9d:52:ba:76:60:cf:f7:61:6b:38:2b:15: ed:2f:6f:ff:77:b0:2b:4c:57:b9:4e:06:78:2c:57: db:ec:12:39:02:c5:e4:61:3e:36:3e:5f:b6:d1:a6: cf:fd:15:ab:3b:98:cc:1b:cf:fe:56:9d:ca:e5:df: 75:8d:a9:07:55:fc:1d:77:c1:85:50:a4:4d:c0:13: a9:71:f0:88:dc:e3:63:8c:df:9a:76:87:30:39:b4: 8e:c6:4a:44:05:22:74:ed:2a:bb:06:9f:2c:ea:46: 85:bf:74:a8:9a:88:30:07:30:b0:23:7c:b2:4c:77: a5:bf:d4:02:3b:80:6c:b9:72:95:ab:f7:ee:bb:31: c6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:54:F3:FA:49:81:D8:2D:FD:04:BE:43:8D:E9:13:FA:E8:96:A2:07 X509v3 Authority Key Identifier: keyid:BE:01:91:37:A8:1D:7E:9C:D9:AF:56:CD:91:C5:87:C2:EF:06:E9:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E9D/52828B2A7B8711EEA840F21EC4F9AE02/vgGRN6gdfpzZr1bNkcWHwu8G6Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vgGRN6gdfpzZr1bNkcWHwu8G6Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E9D/52828B2A7B8711EEA840F21EC4F9AE02/CCAA0F667B8911EE9370D427C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.199.202.0/23 IPv6: 2401:4d60::/32 Signature Algorithm: sha256WithRSAEncryption 95:e1:00:1b:84:e1:2a:7c:9d:99:e1:5b:02:d7:67:d7:0f:8f: 34:b2:23:0b:cf:9b:7d:f7:b5:d5:84:ca:e3:fd:87:25:b9:bb: 46:a8:d1:d9:3e:ef:ad:32:ec:e9:99:c9:4b:08:47:dd:5d:51: 8d:94:71:7b:bb:ed:d7:f8:c0:e6:d6:4d:5c:f4:b2:4e:ee:e9: 61:6c:db:17:44:27:e1:80:ce:28:2a:aa:12:b9:a3:d0:c1:0e: 21:ed:cf:1f:da:2a:cd:28:81:03:a1:89:a2:e7:e7:38:b4:8a: 92:c3:d6:b1:07:06:fb:1a:18:58:a4:95:44:25:83:c8:01:71: 48:bf:ae:f2:8d:fa:06:51:b3:6a:fb:e9:fc:2d:bb:54:43:fe: 33:98:38:2c:bb:e3:de:01:69:69:1d:3c:0d:d8:9f:f9:77:3c: 07:4a:74:b2:c9:a3:d6:2a:c4:37:6c:f7:86:ff:a3:41:68:fd: 81:78:55:a4:1c:37:ef:30:7a:8e:02:10:40:d4:9c:d6:95:e3: 5b:ef:e5:7a:11:85:f9:fc:55:ed:5b:68:76:56:4c:87:6c:47: 28:22:66:f4:35:79:32:a1:7a:31:a5:09:4e:14:56:da:e2:1b: a3:18:f9:64:7a:a8:96:ba:19:9a:c7:86:81:20:68:e8:b9:3b: e9:88:0d:fb -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUU5RDExMC8GA1UEBRMoQkUwMTkxMzdBODFEN0U5Q0Q5QUY1NkNEOTFDNTg3QzJF RjA2RTkzQjAeFw0yMzExMDUwMzE3MDdaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDcwOTMzLTNkYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ+49jHtZ5a5OacsP5LzJ66IPY8wihzdZqqi2T0on3puTWqGq3/wh4LK5ZI70J jSbmZp02xSob1did2sN4dDvuWaxcgMHw30zmi/buXHVxTaap3l5Y0pQpNee9IoXN tVmPYTOXqbb8Ed2lg6GvQ7ZFZkCLs3wKSisx0p1SunZgz/dhazgrFe0vb/93sCtM V7lOBngsV9vsEjkCxeRhPjY+X7bRps/9Fas7mMwbz/5Wncrl33WNqQdV/B13wYVQ pE3AE6lx8Ijc42OM35p2hzA5tI7GSkQFInTtKrsGnyzqRoW/dKiaiDAHMLAjfLJM d6W/1AI7gGy5cpWr9+67McafAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUMFTz+kmB 2C39BL5DjekT+uiWogcwHwYDVR0jBBgwFoAUvgGRN6gdfpzZr1bNkcWHwu8G6Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5RTlELzUyODI4QjJBN0I4 NzExRUVBODQwRjIxRUM0RjlBRTAyL3ZnR1JONmdkZnB6WnIxYk5rY1dId3U4RzZU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdmdHUk42Z2RmcHpacjFiTmtjV0h3dThHNlRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUU5RC81MjgyOEIyQTdCODcxMUVFQTg0MEYyMUVDNEY5QUUwMi9DQ0FBMEY2NjdC ODkxMUVFOTM3MEQ0MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAXTHyjANBAIAAjAHAwUAJAFNYDANBgkqhkiG9w0BAQsFAAOC AQEAleEAG4ThKnydmeFbAtdn1w+PNLIjC8+bffe11YTK4/2HJbm7RqjR2T7vrTLs 6ZnJSwhH3V1RjZRxe7vt1/jA5tZNXPSyTu7pYWzbF0Qn4YDOKCqqErmj0MEOIe3P H9oqzSiBA6GJoufnOLSKksPWsQcG+xoYWKSVRCWDyAFxSL+u8o36BlGzavvp/C27 VEP+M5g4LLvj3gFpaR08Ddif+Xc8B0p0ssmj1irEN2z3hv+jQWj9gXhVpBw37zB6 jgIQQNSc1pXjW+/lehGF+fxV7VtodlZMh2xHKCJm9DV5MqF6MaUJThRW2uIboxj5 ZHqolroZmseGgSBo6Lk76YgN+w== -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org