$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa File: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: edKxCRC82bIyo5EFf2kYcOl9j2hTLw1gRejNr30iPhk= Subject key identifier: 26:3F:3B:03:DA:D3:9F:4D:B4:58:69:2E:4B:ED:BD:B8:E2:7A:C7:2E Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0547 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:11 +0000 ROA not before: Wed 04 Oct 2023 23:41:11 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132815 IP address blocks: 131.203.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 4 23:41:11 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df817-02dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:59:f7:54:d0:7d:3d:74:da:5d:c3:8d:f3:84: 89:c8:ae:3e:59:06:8e:67:eb:03:c4:71:73:e3:a2: 9d:a9:60:1c:46:7e:72:1d:f1:eb:2f:ca:4b:90:6a: ba:c5:d9:a1:21:a5:32:70:9c:be:26:ac:d1:b1:ff: a4:ce:e9:ed:73:72:f2:9a:9d:7b:f5:fa:42:28:9e: f5:b3:a8:89:81:6c:be:a1:48:f1:dd:4f:59:32:18: f3:86:b2:a5:47:b3:92:15:69:d8:b9:6e:d7:6d:22: 22:d6:a9:43:e0:f3:8d:2c:c1:b2:99:3e:cd:a8:f7: cc:71:1b:9a:f3:8a:b4:25:99:c3:7e:74:90:2c:fd: 23:8f:d1:15:d3:f4:b6:e9:f5:d6:e4:61:68:01:db: 4f:3e:5f:53:44:9d:08:cd:c2:ba:1e:89:1e:22:58: 9b:f4:c9:81:89:8d:f4:eb:dd:0a:11:3f:56:76:37: 17:94:33:22:8d:31:2c:43:d0:71:eb:3a:c8:99:e0: 0e:32:3f:e1:10:65:0f:0c:b1:8a:03:52:a5:fe:81: 42:ce:13:bc:92:09:6d:33:ee:63:e0:a6:46:66:89: 77:ec:71:94:13:24:cd:0f:83:8f:e5:ff:87:d7:ff: 16:dd:6a:87:c5:d7:8b:30:05:d2:d9:be:d6:8a:b1: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3F:3B:03:DA:D3:9F:4D:B4:58:69:2E:4B:ED:BD:B8:E2:7A:C7:2E X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.185.0/24 Signature Algorithm: sha256WithRSAEncryption 25:8d:da:e8:ab:57:a3:01:90:ef:76:3b:19:38:7a:60:fb:be: 47:e7:1a:30:2d:e9:74:f8:17:35:b1:25:d0:cb:12:f4:30:a7: b4:ec:40:d3:a0:5a:be:46:6a:6a:40:6e:24:c3:95:6c:c4:c2: 5a:53:53:23:98:2b:01:59:b2:a0:3e:3e:3d:5c:8f:56:a4:14: 26:c9:70:dd:bf:24:67:c0:f0:21:5e:3d:fb:9d:8d:08:8d:f5: 9f:c0:80:8b:5a:22:6e:7c:a2:dc:6d:06:37:c9:03:f5:54:05: c7:75:c3:1d:cc:40:a4:92:91:95:77:51:59:2b:a4:b8:8b:b0: df:52:0c:75:aa:c3:39:3b:e8:db:3d:8d:ef:7a:3f:da:56:78: 35:63:99:f4:47:ae:c9:d4:d2:f0:fa:d4:ec:79:4c:a7:ca:84: b2:ad:7d:2a:0d:d5:d1:4f:96:28:8d:c8:15:7d:59:d8:9a:a0: 23:f1:3a:14:05:a0:cf:b0:dc:a0:76:65:98:ac:ae:47:41:92: fa:ce:37:7f:ff:6d:65:fc:b6:90:03:ef:45:2d:28:4f:0a:c8: fd:e1:58:1a:1f:55:f8:0a:89:02:ab:9e:60:3f:33:f4:89:a5: 65:5b:ad:9d:51:47:99:0d:13:d9:93:a5:b2:cc:12:ac:37:75: ca:da:b0:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjMxMDA0MjM0MTExWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgxNy0wMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvln3VNB9PXTaXcON84SJyK4+WQaOZ+sDxHFz46KdqWAcRn5yHfHrL8pLkGq6 xdmhIaUycJy+JqzRsf+kzuntc3Lymp179fpCKJ71s6iJgWy+oUjx3U9ZMhjzhrKl R7OSFWnYuW7XbSIi1qlD4PONLMGymT7NqPfMcRua84q0JZnDfnSQLP0jj9EV0/S2 6fXW5GFoAdtPPl9TRJ0IzcK6HokeIlib9MmBiY30690KET9WdjcXlDMijTEsQ9Bx 6zrImeAOMj/hEGUPDLGKA1Kl/oFCzhO8kgltM+5j4KZGZol37HGUEyTND4OP5f+H 1/8W3WqHxdeLMAXS2b7WirEpEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCY/OwPa 059NtFhpLkvtvbjiescuMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0M3QUU5QjRB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDy7kwDQYJKoZIhvcNAQELBQADggEBACWN2uirV6MBkO92 Oxk4emD7vkfnGjAt6XT4FzWxJdDLEvQwp7TsQNOgWr5GampAbiTDlWzEwlpTUyOY KwFZsqA+Pj1cj1akFCbJcN2/JGfA8CFePfudjQiN9Z/AgItaIm58otxtBjfJA/VU Bcd1wx3MQKSSkZV3UVkrpLiLsN9SDHWqwzk76Ns9je96P9pWeDVjmfRHrsnU0vD6 1Ox5TKfKhLKtfSoN1dFPliiNyBV9WdiaoCPxOhQFoM+w3KB2ZZisrkdBkvrON3// bWX8tpAD70UtKE8KyP3hWBofVfgKiQKrnmA/M/SJpWVbrZ1RR5kNE9mTpbLMEqw3 dcrasJk= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org