$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/20EC686CFB8211EEAAFD740AC4F9AE02.roa File: 20EC686CFB8211EEAAFD740AC4F9AE02.roa (raw, json) Hash identifier: zz0LzZcl2ISFqUptTsVUEdI8lLaBASG9UpkOj4p05LY= Subject key identifier: 53:24:77:40:A8:2E:95:2D:FA:21:69:0E:41:C9:9D:F7:6C:03:B8:E5 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 0651 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/20EC686CFB8211EEAAFD740AC4F9AE02.roa Signing time: Mon 15 Apr 2024 23:44:41 +0000 ROA not before: Mon 15 Apr 2024 23:44:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133878 IP address blocks: 202.180.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Apr 15 23:44:41 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=661dbbe9-452e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:38:34:bf:a5:4c:df:76:f8:a5:cb:2f:e2:fa: 47:a0:58:d1:0f:fb:41:64:db:0c:d1:8d:25:9a:c1: 9b:47:be:b1:19:9f:52:7f:87:1a:5d:db:3a:6f:28: 9b:67:28:7a:08:8b:14:eb:f9:4b:97:57:7f:85:67: ca:c9:77:61:af:d6:ca:9f:53:58:a6:b6:f3:94:4c: 8e:9d:de:ef:3b:9d:f4:d7:42:08:ad:51:f0:fb:9a: f9:ff:ed:fb:b1:26:e1:79:7e:c5:e2:f1:3a:d0:e3: d0:2e:22:c0:6a:1f:2b:a6:90:ac:39:38:3d:50:44: 57:7d:c1:5a:dd:ff:eb:c5:5c:f6:fe:af:98:d5:0b: e9:68:61:89:87:53:17:3b:65:04:c7:12:ed:4c:59: 23:0e:db:a3:29:0c:50:42:33:0f:68:3d:49:30:56: 21:65:77:50:07:9f:7d:a3:7e:5f:71:6b:fb:b9:34: aa:95:45:6c:2f:a4:05:cb:5a:1e:87:b1:29:38:e6: f9:ac:c4:c3:b8:15:dc:b3:b7:1b:4f:f1:2a:c0:86: 4d:e7:a1:35:0b:75:5f:4b:c4:4c:ff:24:f0:88:1f: a9:28:2d:f8:76:1f:c7:78:46:a4:17:1f:e0:2e:a9: 60:8e:f0:fd:35:d4:e0:1e:c9:cc:45:51:d1:5b:f1: 03:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:24:77:40:A8:2E:95:2D:FA:21:69:0E:41:C9:9D:F7:6C:03:B8:E5 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/20EC686CFB8211EEAAFD740AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.180.79.0/24 Signature Algorithm: sha256WithRSAEncryption 74:23:c1:d8:60:eb:e0:24:15:fe:54:9b:52:5f:44:06:71:2d: 38:ac:8e:dc:ba:b7:f7:30:b8:2f:30:60:8c:cc:0a:00:aa:df: 05:d3:7e:9c:09:73:7a:82:6e:20:b9:d2:a2:53:e4:15:b0:af: b4:5a:47:dc:72:f7:ac:37:e3:90:db:cf:81:98:28:9d:c8:2f: 9a:c1:69:55:89:2e:f0:bf:13:c8:92:12:5f:c3:24:76:c6:a4: c0:a2:96:a7:79:6c:88:f9:84:3b:7a:e8:39:7a:10:dc:69:38: 77:77:93:44:ff:99:b9:0f:3c:43:a9:ef:86:39:e3:81:b8:28: 15:10:e1:c6:4a:fb:69:6f:df:af:31:7c:0a:b0:e8:ae:12:f8: 08:7b:02:a9:0c:0c:85:0e:5b:10:0c:c1:e8:90:a8:c9:5c:1b: 3f:4a:8d:01:4a:84:c6:14:a3:99:3d:03:5b:86:3d:2b:db:a0: 4b:b2:a8:23:27:86:37:48:c4:49:50:ea:1b:3c:ef:7e:c3:fa: 5a:77:f7:91:e9:96:37:ec:9c:f4:74:44:1c:79:18:89:d8:bf: 7f:35:6a:7f:41:2b:af:46:a4:55:90:b8:ca:8a:63:f4:b3:62: 16:38:6b:88:20:bb:9b:0b:43:01:08:dc:5d:1d:58:77:7f:cc: cd:d3:d8:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQwNDE1MjM0NDQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFkYmJlOS00NTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDg0v6VM33b4pcsv4vpHoFjRD/tBZNsM0Y0lmsGbR76xGZ9Sf4caXds6byib Zyh6CIsU6/lLl1d/hWfKyXdhr9bKn1NYprbzlEyOnd7vO53010IIrVHw+5r5/+37 sSbheX7F4vE60OPQLiLAah8rppCsOTg9UERXfcFa3f/rxVz2/q+Y1QvpaGGJh1MX O2UExxLtTFkjDtujKQxQQjMPaD1JMFYhZXdQB599o35fcWv7uTSqlUVsL6QFy1oe h7EpOOb5rMTDuBXcs7cbT/EqwIZN56E1C3VfS8RM/yTwiB+pKC34dh/HeEakFx/g LqlgjvD9NdTgHsnMRVHRW/EDmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFMkd0Co LpUt+iFpDkHJnfdsA7jlMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvMjBFQzY4NkNG QjgyMTFFRUFBRkQ3NDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKtE8wDQYJKoZIhvcNAQELBQADggEBAHQjwdhg6+AkFf5U m1JfRAZxLTisjty6t/cwuC8wYIzMCgCq3wXTfpwJc3qCbiC50qJT5BWwr7RaR9xy 96w345Dbz4GYKJ3IL5rBaVWJLvC/E8iSEl/DJHbGpMCilqd5bIj5hDt66Dl6ENxp OHd3k0T/mbkPPEOp74Y544G4KBUQ4cZK+2lv368xfAqw6K4S+Ah7AqkMDIUOWxAM weiQqMlcGz9KjQFKhMYUo5k9A1uGPSvboEuyqCMnhjdIxElQ6hs8737D+lp395Hp ljfsnPR0RBx5GInYv381an9BK69GpFWQuMqKY/SzYhY4a4ggu5sLQwEI3F0dWHd/ zM3T2LM= -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:15 2024 by rpki-client on console-fra.rpki-client.org