$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7EACD6DEA69D11ED970A2E1EC4F9AE02.roa File: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: AFKfQ2LqcuOz5m0RPpKO2Pxqkn+0Wfo1ky/6p6LkQq8= Subject key identifier: 9E:7B:0E:D8:20:E0:36:1A:4D:32:31:BC:86:2E:DD:83:73:9E:23:F7 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 054C Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7EACD6DEA69D11ED970A2E1EC4F9AE02.roa Signing time: Wed 04 Oct 2023 23:41:17 +0000 ROA not before: Wed 04 Oct 2023 23:41:17 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45267 IP address blocks: 131.203.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 4 23:41:17 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651df81c-456a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:93:6b:52:7d:b3:f3:91:e5:1a:59:7e:72:8e: 57:28:5d:83:07:df:59:db:87:c6:a9:17:bb:92:d4: 91:60:92:f5:b4:18:e7:f7:68:f4:97:87:1b:29:f4: 88:f0:46:b4:c8:dc:3b:21:c7:c8:a9:87:f8:56:2e: bf:f8:ae:f3:b6:43:e6:46:93:30:50:46:1d:7f:85: ef:7d:a3:72:40:68:39:68:01:28:66:d8:fe:65:5e: aa:b4:ac:3d:cd:71:dc:56:fc:28:9f:17:be:fc:c9: 31:cb:5e:83:25:29:93:ca:d1:11:37:e0:77:51:44: 15:63:ec:b7:45:d5:71:48:fd:3f:1a:34:69:1d:36: 2c:91:4f:03:35:e4:64:b9:dc:d3:95:c5:75:a5:34: 03:29:dc:d8:bc:75:7a:fa:7e:c5:57:90:39:a0:3f: e3:f4:88:6d:c0:b3:94:c5:4f:b7:9c:b8:33:0d:17: 02:f4:ba:a2:34:23:d3:ce:41:6b:00:a6:bc:e5:8d: 35:e3:19:2f:dc:dc:da:20:b9:07:e8:b2:3d:7f:ba: 33:4a:c8:72:53:3b:ee:e7:49:ae:1a:2e:fe:72:11: f0:01:35:54:5e:8a:b6:8d:11:26:cf:f9:1a:6e:22: a0:b1:30:5e:c9:a7:ce:5a:84:d4:c2:cf:cd:fa:5e: 54:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7B:0E:D8:20:E0:36:1A:4D:32:31:BC:86:2E:DD:83:73:9E:23:F7 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7EACD6DEA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.140.0/24 Signature Algorithm: sha256WithRSAEncryption 81:6e:7c:35:07:f9:53:55:3e:60:44:3b:d4:35:86:12:87:16: 0c:6d:45:99:f2:9e:96:77:9c:a8:56:99:72:65:8a:36:50:76: 5b:41:ac:c2:3e:d9:21:0b:8f:3a:35:07:b2:5c:41:c3:24:8e: 5a:a6:02:c9:c6:fa:66:4f:a5:b9:59:e6:47:d8:b7:36:d3:55: 0a:3d:19:9e:03:bb:e2:f6:c4:96:a6:c1:bb:52:64:9c:7b:33: 0b:51:e7:2e:e3:d6:2c:57:56:ee:7f:a2:c2:6a:fd:d8:30:ae: 41:3b:58:ac:c0:80:ce:a4:76:80:4e:cc:67:2b:05:ed:f0:34: 98:dc:87:db:37:98:14:2d:75:10:a8:fa:b2:fc:97:98:b0:0f: 22:1f:5f:5b:e5:a3:58:03:b3:44:11:2e:5d:eb:56:c8:f3:b9: 19:95:4b:e1:c6:89:c3:a0:ef:b4:6a:ac:91:f4:e3:66:b5:b4: 09:32:e7:e4:0b:0f:7b:3e:91:71:6d:cd:99:3c:bc:4d:7b:1e: 6e:31:95:8c:c0:bf:ef:9c:6f:1b:b8:38:e2:24:04:b7:1c:12: d1:b0:62:45:12:bb:f7:d4:47:1d:32:92:d6:ba:d5:df:db:26: 0f:d6:60:73:53:b4:cd:a1:6a:83:c7:57:61:37:d9:33:e0:89: cf:87:1d:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjMxMDA0MjM0MTE3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjgxYy00NTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZNrUn2z85HlGll+co5XKF2DB99Z24fGqRe7ktSRYJL1tBjn92j0l4cbKfSI 8Ea0yNw7IcfIqYf4Vi6/+K7ztkPmRpMwUEYdf4XvfaNyQGg5aAEoZtj+ZV6qtKw9 zXHcVvwonxe+/Mkxy16DJSmTytERN+B3UUQVY+y3RdVxSP0/GjRpHTYskU8DNeRk udzTlcV1pTQDKdzYvHV6+n7FV5A5oD/j9IhtwLOUxU+3nLgzDRcC9LqiNCPTzkFr AKa85Y014xkv3NzaILkH6LI9f7ozSshyUzvu50muGi7+chHwATVUXoq2jREmz/ka biKgsTBeyafOWoTUws/N+l5UIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ57Dtgg 4DYaTTIxvIYu3YNzniP3MB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0VBQ0Q2REVB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDy4wwDQYJKoZIhvcNAQELBQADggEBAIFufDUH+VNVPmBE O9Q1hhKHFgxtRZnynpZ3nKhWmXJlijZQdltBrMI+2SELjzo1B7JcQcMkjlqmAsnG +mZPpblZ5kfYtzbTVQo9GZ4Du+L2xJamwbtSZJx7MwtR5y7j1ixXVu5/osJq/dgw rkE7WKzAgM6kdoBOzGcrBe3wNJjch9s3mBQtdRCo+rL8l5iwDyIfX1vlo1gDs0QR Ll3rVsjzuRmVS+HGicOg77RqrJH042a1tAky5+QLD3s+kXFtzZk8vE17Hm4xlYzA v++cbxu4OOIkBLccEtGwYkUSu/fURx0ykta61d/bJg/WYHNTtM2haoPHV2E32TPg ic+HHW0= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org