$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/222AC686648411EFBDC41B60C4F9AE02.roa File: 222AC686648411EFBDC41B60C4F9AE02.roa (raw, json) Hash identifier: Lizsushgwn3QnrxTVjgXJQqZWyxEpHtrCKuZyOLUAK0= Subject key identifier: 47:36:7B:68:E8:9F:42:39:78:96:CF:D9:A7:36:84:64:CC:FA:6D:7B Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 062D Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/222AC686648411EFBDC41B60C4F9AE02.roa Signing time: Tue 27 Aug 2024 14:53:34 +0000 ROA not before: Tue 27 Aug 2024 14:53:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140641 IP address blocks: 169.148.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Aug 27 14:53:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66cde86e-e7e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6a:c7:73:fd:ae:d3:d4:40:46:37:4e:c6:68: 28:0c:20:69:02:88:40:08:40:3d:16:00:3e:e3:67: a7:25:da:09:04:2a:63:1f:05:7b:95:a7:7c:08:62: 03:25:25:cf:59:0b:03:2d:d3:98:56:53:fd:21:fa: aa:0e:87:a7:d9:5c:26:65:9d:14:78:48:79:f0:9c: c9:72:56:54:df:1c:7a:f6:a6:40:48:bc:00:cf:7b: 6e:21:49:60:e7:64:60:d3:46:76:52:f4:43:ea:a5: a6:7a:b6:96:0a:b0:6f:59:2b:02:f7:f3:d1:97:9d: 78:13:21:d2:20:d7:f7:f8:79:5e:2d:72:3b:ec:58: dc:a5:fe:ae:91:4d:94:9b:d5:80:f1:44:ca:0f:e8: bb:55:81:75:c9:2c:df:ee:f6:4c:79:aa:96:e8:f1: 1d:4a:aa:90:a8:6e:18:4a:88:26:24:3c:a7:8a:80: 38:7a:4f:fd:07:bd:e7:41:38:f1:c6:38:fa:04:33: 53:90:fc:83:3e:4e:df:cb:91:60:9c:97:6f:dc:6c: d7:7e:e4:38:b4:3c:e9:82:ae:d5:de:67:65:ef:15: 1a:72:49:6d:45:d0:58:db:39:12:cd:ed:be:d6:62: 4e:77:54:4f:61:4e:a7:63:78:2a:13:aa:9a:83:c7: 3a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:36:7B:68:E8:9F:42:39:78:96:CF:D9:A7:36:84:64:CC:FA:6D:7B X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/222AC686648411EFBDC41B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.148.176.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:3a:28:6d:b0:f2:03:69:f1:a4:13:3e:3a:fa:f3:16:b8:df: 4a:8f:1f:c3:60:49:cc:eb:19:2f:a0:a8:9a:3f:25:2d:30:ca: 39:94:49:9a:96:3e:8b:83:c5:54:21:3d:b6:e3:55:ea:14:39: 09:dd:6c:bf:dd:b3:c1:6f:13:ce:e1:f9:44:d6:c1:a9:ab:c0: 47:cc:1a:04:a0:65:7d:36:d0:45:bf:8c:29:4e:be:ca:61:31: d9:2d:e8:d2:e9:a7:09:35:16:3e:fc:d8:0b:08:ce:7d:3b:d4: 17:f2:76:d3:ad:fa:67:d2:1b:44:7d:2c:30:75:e7:c0:9c:60: 92:1e:b4:cb:58:74:a7:b4:f6:c8:9a:a2:18:36:26:7d:3c:d6: 07:39:fb:5f:53:a8:4d:64:2a:19:32:43:81:23:37:3c:b5:ed: 44:df:85:10:5b:b7:d1:ba:3e:54:65:f5:ab:5f:4b:78:d3:94: 2e:44:af:64:72:97:2b:22:5d:d3:be:de:a5:42:76:f7:33:32: eb:bb:02:6a:05:89:4b:31:3d:80:3c:a5:3d:0c:58:5f:f1:74: 1a:ec:c8:70:02:10:23:31:3e:7c:4f:37:a6:4a:c4:85:e7:3b: 4d:be:93:a3:64:fb:c2:d5:66:07:93:d2:1f:48:3b:a6:c1:b0: 3a:4f:19:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjQwODI3MTQ1MzM0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkZTg2ZS1lN2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWrHc/2u09RARjdOxmgoDCBpAohACEA9FgA+42enJdoJBCpjHwV7lad8CGID JSXPWQsDLdOYVlP9IfqqDoen2VwmZZ0UeEh58JzJclZU3xx69qZASLwAz3tuIUlg 52Rg00Z2UvRD6qWmeraWCrBvWSsC9/PRl514EyHSINf3+HleLXI77Fjcpf6ukU2U m9WA8UTKD+i7VYF1ySzf7vZMeaqW6PEdSqqQqG4YSogmJDynioA4ek/9B73nQTjx xjj6BDNTkPyDPk7fy5FgnJdv3GzXfuQ4tDzpgq7V3mdl7xUackltRdBY2zkSze2+ 1mJOd1RPYU6nY3gqE6qag8c6PQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEc2e2jo n0I5eJbP2ac2hGTM+m17MB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY3NEIvNjFBMzM4NEE3ODJDMTFFQkFDMDRGNjcyQzRGOUFFMDIvMjIyQUM2ODY2 NDg0MTFFRkJEQzQxQjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGplLAwDQYJKoZIhvcNAQELBQADggEBACo6KG2w8gNp8aQT Pjr68xa430qPH8NgSczrGS+gqJo/JS0wyjmUSZqWPouDxVQhPbbjVeoUOQndbL/d s8FvE87h+UTWwamrwEfMGgSgZX020EW/jClOvsphMdkt6NLppwk1Fj782AsIzn07 1BfydtOt+mfSG0R9LDB158CcYJIetMtYdKe09siaohg2Jn081gc5+19TqE1kKhky Q4EjNzy17UTfhRBbt9G6PlRl9atfS3jTlC5Er2RylysiXdO+3qVCdvczMuu7AmoF iUsxPYA8pT0MWF/xdBrsyHACECMxPnxPN6ZKxIXnO02+k6Nk+8LVZgeT0h9IO6bB sDpPGRU= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:03 2024 by rpki-client on console-ams.rpki-client.org