$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa File: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (raw, json) Hash identifier: e+nnHqsSXjcst0jgKsFSCtqmvZobXZzEGEA8nesrhMk= Subject key identifier: 5C:CB:4F:29:8E:71:4B:1B:C7:85:6B:B4:25:36:E3:85:47:7E:68:3A Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1B10 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa Signing time: Tue 02 Apr 2024 16:54:08 +0000 ROA not before: Tue 02 Apr 2024 16:54:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 41179 IP address blocks: 45.112.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6928 (0x1b10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Apr 2 16:54:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c3830-a632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f0:66:5e:13:c6:9c:51:84:fb:77:59:1c:e7: 8a:09:8d:71:2c:2b:f8:a5:85:cb:fa:b5:73:9f:4e: 4c:79:00:b4:48:b8:d9:dc:bd:13:7b:b0:0a:2c:5c: 11:45:c4:3f:82:ff:d6:3e:d1:41:50:fc:6f:a4:10: 65:7e:da:a2:92:79:07:54:2b:c8:6e:93:87:ad:90: cb:b2:7f:27:3f:79:69:35:0f:43:13:de:e7:61:c2: 7b:ed:3d:91:d9:85:6a:1d:de:12:9a:cc:d4:a6:08: f6:c5:c2:47:63:bd:0e:06:6d:e4:ac:d4:45:16:c4: 67:bd:0a:b0:b0:27:58:39:6f:97:3a:ab:4e:1e:be: a8:b5:bb:3a:ad:df:a9:3e:89:2b:ed:37:1e:c2:a6: 1e:fa:86:d5:f9:d6:74:b6:97:64:1e:73:03:74:eb: 0c:0d:7e:ca:e4:55:f2:fd:ef:ac:6c:19:92:75:cb: 1c:b6:47:07:36:00:05:94:74:ef:2a:b4:8d:46:90: d0:64:4a:2e:f5:88:24:a2:93:25:2d:52:d1:bc:77: bf:e6:62:fc:82:c9:1f:77:47:e0:9c:9e:9b:c9:d4: ff:98:8a:43:1b:14:ca:5f:7c:6c:8a:c2:5a:85:36: c6:24:a6:48:25:6a:a8:28:5d:47:0f:b7:68:db:cf: 6a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:CB:4F:29:8E:71:4B:1B:C7:85:6B:B4:25:36:E3:85:47:7E:68:3A X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/C3ACDB568E9311E9AA8A2877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.86.0/24 Signature Algorithm: sha256WithRSAEncryption 31:67:05:23:f1:9b:ce:bd:c5:33:0d:e8:b9:96:27:56:e8:8b: 46:68:a8:c3:a7:ec:c9:0d:09:12:96:d5:28:ee:b9:cb:dc:f5: e7:34:0f:f3:41:84:40:b8:eb:b6:56:5a:92:3e:2e:e8:99:17: 23:83:32:89:43:aa:d0:b6:eb:23:20:45:ce:44:11:e6:b1:23: 89:ab:3b:9f:45:ac:b6:5d:df:88:3d:17:83:de:47:c5:9c:73: d7:35:f9:f6:f5:9e:c8:08:4a:8a:3b:2f:98:46:eb:78:da:73: 5d:7c:f1:e8:d0:47:9f:82:15:59:d5:b0:24:ca:03:00:35:ac: 81:55:ce:db:81:bc:f6:46:06:f3:5d:63:5d:7a:c7:9c:fc:f3: 8f:c2:4d:ac:f6:d7:57:9c:cd:5f:d5:cb:19:c1:ef:ef:1f:e1: 36:86:6d:9c:32:f4:03:6c:9b:93:9e:05:6e:e6:be:80:6f:df: c9:0c:8c:43:4d:8c:8e:bf:fe:26:ab:f1:94:22:14:15:29:23: c1:b6:ce:94:fe:7d:53:a2:42:87:f9:18:3f:37:cb:c4:ba:d0: f4:60:a9:ec:54:ed:e7:0b:d0:68:b4:28:13:31:e8:67:ef:91: 22:51:98:fe:44:13:a5:eb:7d:69:d7:92:57:a2:4b:54:4d:b0: e2:ce:8e:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjQwNDAyMTY1NDA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjMzgzMC1hNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vBmXhPGnFGE+3dZHOeKCY1xLCv4pYXL+rVzn05MeQC0SLjZ3L0Te7AKLFwR RcQ/gv/WPtFBUPxvpBBlftqiknkHVCvIbpOHrZDLsn8nP3lpNQ9DE97nYcJ77T2R 2YVqHd4SmszUpgj2xcJHY70OBm3krNRFFsRnvQqwsCdYOW+XOqtOHr6otbs6rd+p Pokr7TcewqYe+obV+dZ0tpdkHnMDdOsMDX7K5FXy/e+sbBmSdcsctkcHNgAFlHTv KrSNRpDQZEou9YgkopMlLVLRvHe/5mL8gskfd0fgnJ6bydT/mIpDGxTKX3xsisJa hTbGJKZIJWqoKF1HD7do289quwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFzLTymO cUsbx4VrtCU244VHfmg6MB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFGMjAvNjVBOUEyNDJGNUM0MTFFNjhBQUEwMDg1QzRGOUFFMDIvQzNBQ0RCNTY4 RTkzMTFFOUFBOEEyODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcFYwDQYJKoZIhvcNAQELBQADggEBADFnBSPxm869xTMN 6LmWJ1boi0ZoqMOn7MkNCRKW1Sjuucvc9ec0D/NBhEC467ZWWpI+LuiZFyODMolD qtC26yMgRc5EEeaxI4mrO59FrLZd34g9F4PeR8Wcc9c1+fb1nsgISoo7L5hG63ja c1188ejQR5+CFVnVsCTKAwA1rIFVztuBvPZGBvNdY116x5z884/CTaz211eczV/V yxnB7+8f4TaGbZwy9ANsm5OeBW7mvoBv38kMjENNjI6//iar8ZQiFBUpI8G2zpT+ fVOiQof5GD83y8S60PRgqexU7ecL0Gi0KBMx6GfvkSJRmP5EE6XrfWnXkleiS1RN sOLOjhU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org