$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa File: 09182D38084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: ezYsgIsJQh8aISDzGTb2ynExMdrgWLQpdiVgohF5Bnw= Subject key identifier: B0:02:7C:2A:80:41:B2:CC:A0:C8:A2:C3:34:A5:AC:43:1D:72:74:F2 Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 04AE Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa Signing time: Thu 02 May 2024 06:34:32 +0000 ROA not before: Thu 02 May 2024 06:34:32 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45577 IP address blocks: 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: May 2 06:34:32 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=663333f8-7860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:de:14:27:5a:9d:e2:38:93:d0:45:58:82:b0: 3f:ac:07:57:60:ae:36:03:04:2c:63:72:51:a5:af: 96:f7:20:4b:89:72:cc:c9:1a:11:b8:9a:b3:97:18: a6:9a:6a:50:41:cd:e9:d6:a3:12:21:6b:c1:aa:6c: a4:54:6f:f2:1e:81:05:63:97:7d:ee:ee:e3:87:11: 0a:e3:63:f3:11:41:6e:1e:3a:16:9d:13:59:f7:b8: e9:9a:af:5e:54:e0:41:db:ad:c6:96:71:d0:95:61: 2b:a4:09:30:3e:dc:97:84:0b:59:32:16:b4:30:27: ac:92:fc:cc:d9:15:1e:8d:d1:4f:c6:4c:94:99:05: ff:04:0d:38:cb:47:ef:93:63:da:bd:78:93:16:4c: f5:d1:44:e7:70:e5:93:e9:cd:d2:6b:fa:2d:d6:81: 59:27:66:0c:c5:15:c6:ca:49:35:36:56:95:00:04: 60:6d:99:59:e2:40:29:f7:9c:9e:fd:73:65:a8:c9: 96:35:5f:e2:58:11:86:8b:63:2a:68:a4:f1:4c:2b: cd:40:b9:6f:c1:93:96:9b:29:3b:32:fb:86:d7:23: 28:3f:2d:8e:12:36:5e:f2:3f:85:bd:18:63:a2:44: d2:df:c1:c8:2d:e8:7b:f0:64:d2:84:2c:5d:5f:48: 30:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:02:7C:2A:80:41:B2:CC:A0:C8:A2:C3:34:A5:AC:43:1D:72:74:F2 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption a0:16:6e:9d:d3:ea:d8:93:f6:48:bf:65:73:5f:7a:7d:bb:8b: fe:ab:a8:41:23:ce:fa:3e:52:38:e6:8d:95:ab:ef:b5:93:bc: 8c:c0:5c:50:1c:75:6e:3d:3c:64:2c:86:0d:d8:6e:64:0f:ee: 5a:b6:96:09:7d:2a:00:4b:5c:1d:2e:1a:fc:90:04:1f:1a:d3: ae:28:86:b0:a4:99:e2:ac:df:4c:78:5c:fe:3b:b6:db:22:55: 7e:37:e7:8c:03:82:1f:e9:2a:ae:a7:1e:5d:57:6f:df:f5:ae: 23:1c:03:e7:bc:38:89:68:d1:45:57:95:ad:bd:3a:9f:f7:c3: 2d:93:e7:65:2a:f5:7e:28:93:e0:35:ab:74:6f:4d:a9:15:f2: 0b:f1:b8:97:39:1c:a1:64:75:30:dc:3c:85:0f:5e:48:3d:9d: 84:68:e3:7c:14:c3:18:4c:ee:bd:b1:50:3e:9d:77:f5:c8:e7: 41:43:5f:6d:43:c0:8b:a3:7d:35:97:96:2e:db:23:89:bc:56: 08:1c:0e:ac:0d:35:f3:53:e4:d8:dc:05:a4:03:df:be:5f:da: d9:d4:a0:09:9f:e4:e4:0f:b4:68:27:55:bd:25:dd:b5:18:f2: 06:da:f1:e8:92:a1:01:85:10:87:eb:55:49:e8:ba:6c:b2:6a: a6:a6:14:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjQwNTAyMDYzNDMyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzMzNmOC03ODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N4UJ1qd4jiT0EVYgrA/rAdXYK42AwQsY3JRpa+W9yBLiXLMyRoRuJqzlxim mmpQQc3p1qMSIWvBqmykVG/yHoEFY5d97u7jhxEK42PzEUFuHjoWnRNZ97jpmq9e VOBB263GlnHQlWErpAkwPtyXhAtZMha0MCeskvzM2RUejdFPxkyUmQX/BA04y0fv k2PavXiTFkz10UTncOWT6c3Sa/ot1oFZJ2YMxRXGykk1NlaVAARgbZlZ4kAp95ye /XNlqMmWNV/iWBGGi2MqaKTxTCvNQLlvwZOWmyk7MvuG1yMoPy2OEjZe8j+FvRhj okTS38HILeh78GTShCxdX0gw9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLACfCqA QbLMoMiiwzSlrEMdcnTyMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDkxODJEMzgw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALfGeAwDQYJKoZIhvcNAQELBQADggEBAKAWbp3T6tiT9ki/ ZXNfen27i/6rqEEjzvo+UjjmjZWr77WTvIzAXFAcdW49PGQshg3YbmQP7lq2lgl9 KgBLXB0uGvyQBB8a064ohrCkmeKs30x4XP47ttsiVX4354wDgh/pKq6nHl1Xb9/1 riMcA+e8OIlo0UVXla29Op/3wy2T52Uq9X4ok+A1q3RvTakV8gvxuJc5HKFkdTDc PIUPXkg9nYRo43wUwxhM7r2xUD6dd/XI50FDX21DwIujfTWXli7bI4m8VggcDqwN NfNT5NjcBaQD375f2tnUoAmf5OQPtGgnVb0l3bUY8gba8eiSoQGFEIfrVUnoumyy aqamFJk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org