$ rpki-client -vvf rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/9D3EBEF4921111EE9AD1150CC4F9AE02.roa File: 9D3EBEF4921111EE9AD1150CC4F9AE02.roa (raw, json) Hash identifier: 7q6dRt1PRPumvLOcxheCYVDUESOcIxgJ43UkEKxKC5g= Subject key identifier: A8:6A:51:11:DD:7A:73:B4:54:D7:C8:AC:21:35:1F:2F:BE:18:F2:6F Certificate issuer: /CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Certificate serial: 15 Authority key identifier: 7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/9D3EBEF4921111EE9AD1150CC4F9AE02.roa Signing time: Sun 03 Dec 2023 19:25:39 +0000 ROA not before: Sun 03 Dec 2023 19:25:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135407 IP address blocks: 210.87.64.0/24 maxlen: 24 210.87.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Validity Not Before: Dec 3 19:25:39 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656cd632-25ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:dd:57:ab:2e:02:e0:1b:f4:8a:33:8c:78:07: b6:13:8c:79:d9:3c:62:90:95:b9:37:bf:c7:09:d3: 7f:11:70:82:1e:ce:bb:c0:bb:df:e0:eb:e0:1e:d0: f4:75:33:3e:98:23:01:d7:ea:d1:37:ab:5a:a9:bb: 10:9b:db:71:d6:5e:fc:e2:17:88:73:89:f8:75:83: 65:fa:06:ef:de:4f:af:cc:3f:c5:7b:f9:fd:00:42: f2:eb:5e:4c:d6:5d:e0:b2:e0:ae:69:f6:48:f9:dd: 20:80:bc:c2:b1:91:84:df:ed:e3:27:ae:48:b7:3b: e4:04:59:70:4b:71:8e:be:a0:3d:6d:67:97:6c:d2: df:8e:69:ec:a0:18:bc:19:cf:fb:b3:d1:ce:18:16: b9:2a:2a:ad:86:23:14:8e:4c:63:cf:54:54:75:fe: 8a:cd:9d:dd:a6:eb:dc:c8:1a:60:f0:00:9a:8a:a8: 47:ab:ce:c0:ab:35:85:78:b1:89:4b:c7:82:46:06: 51:03:8c:ae:4f:8c:ad:d8:74:f4:03:59:4e:1d:57: a4:1d:37:a7:23:08:a0:4c:86:d6:e9:57:bd:c5:1c: 44:b7:07:f1:a6:8f:44:5a:96:0f:06:71:45:99:03: ac:0f:ce:67:82:32:e8:c2:bc:49:c4:c6:9f:88:f4: 7c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6A:51:11:DD:7A:73:B4:54:D7:C8:AC:21:35:1F:2F:BE:18:F2:6F X509v3 Authority Key Identifier: keyid:7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/9D3EBEF4921111EE9AD1150CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.87.64.0/23 Signature Algorithm: sha256WithRSAEncryption 01:2c:f0:03:35:e3:9c:68:69:5e:c8:9c:45:22:3f:d4:85:ec: 75:d0:2e:bb:72:55:48:85:0b:f9:d4:fb:61:51:8f:2e:8a:82: 0a:93:60:82:a6:6d:85:49:fa:ef:f6:6d:8a:d3:10:a7:0d:4d: e2:d7:3e:a6:52:bf:0c:ce:de:f3:06:36:56:3d:a8:39:5f:f1: 77:0a:32:80:23:7a:b3:1e:bc:c0:d3:f7:20:56:4c:89:15:b1: c7:78:71:7b:21:2b:b8:44:ec:7a:ea:1c:b6:31:c4:28:91:77: d3:a8:8b:4b:72:6d:65:1c:b7:7d:2b:01:cc:cc:04:0b:fd:3c: a8:cb:7f:01:36:e9:d8:03:21:df:6e:32:8e:0e:be:b8:79:d7: e9:33:cf:4e:d9:9b:e2:2a:9d:ef:ff:55:91:05:58:bf:26:6e: d2:5f:85:bf:92:aa:52:ad:19:42:ec:8a:2f:fb:97:38:c0:e3: 2d:43:4e:28:bc:66:5d:02:f1:22:74:40:3c:5f:2b:73:2f:54: ba:e6:1c:6a:4e:f4:8c:42:85:ad:15:62:bd:f3:1e:e5:31:b8: 1b:60:65:16:d8:2a:4e:32:d2:4a:61:78:a0:a1:68:0c:40:a2: 45:b6:95:59:7c:e6:4b:87:12:7f:d5:46:2b:d2:94:ba:4c:6d: 45:3c:6a:25 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjVEQjExMC8GA1UEBRMoN0JFMjMwMTUzQ0ZGOTAwMTY0MkRCQzlCMjRGODVEMEND MjgyMzY0RTAeFw0yMzEyMDMxOTI1MzlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NmNkNjMyLTI1YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ3VerLgLgG/SKM4x4B7YTjHnZPGKQlbk3v8cJ038RcIIezrvAu9/g6+Ae0PR1 Mz6YIwHX6tE3q1qpuxCb23HWXvziF4hzifh1g2X6Bu/eT6/MP8V7+f0AQvLrXkzW XeCy4K5p9kj53SCAvMKxkYTf7eMnrki3O+QEWXBLcY6+oD1tZ5ds0t+OaeygGLwZ z/uz0c4YFrkqKq2GIxSOTGPPVFR1/orNnd2m69zIGmDwAJqKqEerzsCrNYV4sYlL x4JGBlEDjK5PjK3YdPQDWU4dV6QdN6cjCKBMhtbpV73FHES3B/Gmj0Ralg8GcUWZ A6wPzmeCMujCvEnExp+I9HzBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqGpREd16 c7RU18isITUfL74Y8m8wHwYDVR0jBBgwFoAUe+IwFTz/kAFkLbybJPhdDMKCNk4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyNURCLzExOTM5RDEwOTA2 OTExRUVCMjNENzQyNUM0RjlBRTAyL2UtSXdGVHpfa0FGa0xieWJKUGhkRE1LQ05r NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZS1Jd0ZUel9rQUZrTGJ5YkpQaGRETUtDTms0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjVEQi8xMTkzOUQxMDkwNjkxMUVFQjIzRDc0MjVDNEY5QUUwMi85RDNFQkVGNDky MTExMUVFOUFEMTE1MENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAdJXQDANBgkqhkiG9w0BAQsFAAOCAQEAASzwAzXjnGhpXsic RSI/1IXsddAuu3JVSIUL+dT7YVGPLoqCCpNggqZthUn67/ZtitMQpw1N4tc+plK/ DM7e8wY2Vj2oOV/xdwoygCN6sx68wNP3IFZMiRWxx3hxeyEruETseuoctjHEKJF3 06iLS3JtZRy3fSsBzMwEC/08qMt/ATbp2AMh324yjg6+uHnX6TPPTtmb4iqd7/9V kQVYvyZu0l+Fv5KqUq0ZQuyKL/uXOMDjLUNOKLxmXQLxInRAPF8rcy9UuuYcak70 jEKFrRVivfMe5TG4G2BlFtgqTjLSSmF4oKFoDECiRbaVWXzmS4cSf9VGK9KUukxt RTxqJQ== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org