$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/0619825C2F2A11ED9F62040DC4F9AE02.roa File: 0619825C2F2A11ED9F62040DC4F9AE02.roa (raw, json) Hash identifier: bLu187oQ1lOEDVsWFJAVJ+BC8AtvGpF01GYT734k9Oo= Subject key identifier: DD:97:07:C4:0F:55:8E:66:C7:4B:1D:E1:76:36:17:58:97:61:41:A3 Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 088E Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/0619825C2F2A11ED9F62040DC4F9AE02.roa Signing time: Sat 20 Jan 2024 18:05:35 +0000 ROA not before: Sat 20 Jan 2024 18:05:35 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137470 IP address blocks: 202.3.0.0/24 maxlen: 24 202.3.1.0/24 maxlen: 24 202.3.3.0/24 maxlen: 24 202.3.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2190 (0x88e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Jan 20 18:05:35 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ac0b6e-4d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d3:61:53:b6:84:a4:5e:96:78:43:fc:a7:54: b8:be:df:e8:78:27:6f:97:12:99:f4:ad:d0:24:9e: 5c:58:15:3e:58:64:dd:00:18:fd:a9:11:5a:dd:1b: fb:d8:10:3d:ac:16:75:17:0b:1f:d6:4e:c7:2e:bd: ed:20:0a:59:ce:08:9f:42:93:1f:4c:2b:2f:67:02: ee:36:a7:5f:62:2e:e5:84:3c:a2:78:ed:08:f0:3d: b9:09:87:d2:39:b1:44:e0:d8:b5:9d:64:0a:a8:ac: d9:a7:fa:52:88:ff:96:2e:90:af:31:b3:79:d8:c9: 45:da:01:e8:2a:e0:c7:56:78:5d:88:fa:eb:aa:8e: 91:a9:86:d0:dd:62:e3:b9:79:8f:56:0a:b0:8e:3a: 4d:ab:9d:c6:8b:1a:0f:32:0a:43:b3:04:c2:22:b7: 17:df:b2:6d:b7:f3:bf:2e:47:b5:06:1d:9f:a5:dc: f0:7f:cf:95:e7:1b:e6:60:1b:f5:3a:1d:4f:82:53: 40:0c:25:69:f8:ea:36:c9:8c:38:7e:b4:07:53:24: af:7b:26:66:67:0b:a8:bc:2d:1d:18:72:8a:5f:50: 6e:af:46:d1:77:70:52:fe:84:a6:06:85:dd:3a:39: b2:a0:8d:1c:aa:fd:53:0e:89:d5:26:3e:13:62:ef: b4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:97:07:C4:0F:55:8E:66:C7:4B:1D:E1:76:36:17:58:97:61:41:A3 X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/0619825C2F2A11ED9F62040DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.0.0/23 202.3.3.0-202.3.4.255 Signature Algorithm: sha256WithRSAEncryption 91:6a:3b:03:f6:4e:d4:b4:a8:75:8b:28:28:da:37:47:e1:ba: 0c:63:fc:bb:b6:1e:e1:79:28:3e:a2:72:55:f0:99:29:af:40: e1:27:97:a5:75:28:ff:d9:19:6f:48:8d:93:f2:78:68:f1:c2: ec:d1:14:61:17:5c:93:54:d9:eb:e2:07:25:af:c1:aa:ca:52: be:29:9a:60:72:a5:01:82:ad:24:2f:65:89:b4:2d:b7:7b:c5: 36:d5:b7:88:4b:c8:2b:cd:a2:3a:41:ec:86:6a:df:fe:90:f6: f0:d4:72:cd:43:41:da:03:6a:34:de:8e:9e:c3:01:dd:da:99: ad:5c:54:c8:6f:22:af:5a:64:16:1e:9b:04:98:a6:8a:2c:b1: 91:34:13:de:02:a4:9c:d7:8b:8b:e5:42:4c:fd:8c:b1:5c:e4: 9d:43:d9:9f:a0:d5:f3:b9:d7:5f:34:f7:89:7b:eb:46:17:ac: 5f:ff:61:07:84:0a:75:37:01:9a:f2:9f:82:f1:77:b6:2f:68: b7:e3:30:0a:35:b2:59:25:a5:1d:f7:a4:c0:b2:b3:b6:e9:0c: f7:12:2b:1b:6a:81:1b:23:bf:ff:bc:e5:4a:78:10:47:4a:e7: 32:f8:35:c1:7e:5e:5b:28:da:f7:78:87:46:ae:a4:3a:24:b0: 20:26:47:0a -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjQwMTIwMTgwNTM1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjMGI2ZS00ZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NNhU7aEpF6WeEP8p1S4vt/oeCdvlxKZ9K3QJJ5cWBU+WGTdABj9qRFa3Rv7 2BA9rBZ1Fwsf1k7HLr3tIApZzgifQpMfTCsvZwLuNqdfYi7lhDyieO0I8D25CYfS ObFE4Ni1nWQKqKzZp/pSiP+WLpCvMbN52MlF2gHoKuDHVnhdiPrrqo6RqYbQ3WLj uXmPVgqwjjpNq53GixoPMgpDswTCIrcX37Jtt/O/Lke1Bh2fpdzwf8+V5xvmYBv1 Oh1PglNADCVp+Oo2yYw4frQHUySveyZmZwuovC0dGHKKX1Bur0bRd3BS/oSmBoXd OjmyoI0cqv1TDonVJj4TYu+0KQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFN2XB8QP VY5mx0sd4XY2F1iXYUGjMB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyRjcvNUVBQzYxNDQ4RkE2MTFFQTlBQ0I3RTdGQzRGOUFFMDIvMDYxOTgyNUMy RjJBMTFFRDlGNjIwNDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAHKAwAwDAMEAMoDAwMEAMoDBDANBgkqhkiG9w0BAQsFAAOC AQEAkWo7A/ZO1LSodYsoKNo3R+G6DGP8u7Ye4XkoPqJyVfCZKa9A4SeXpXUo/9kZ b0iNk/J4aPHC7NEUYRdck1TZ6+IHJa/BqspSvimaYHKlAYKtJC9libQtt3vFNtW3 iEvIK82iOkHshmrf/pD28NRyzUNB2gNqNN6OnsMB3dqZrVxUyG8ir1pkFh6bBJim iiyxkTQT3gKknNeLi+VCTP2MsVzknUPZn6DV87nXXzT3iXvrRhesX/9hB4QKdTcB mvKfgvF3ti9ot+MwCjWyWSWlHfekwLKztukM9xIrG2qBGyO//7zlSngQR0rnMvg1 wX5eWyja93iHRq6kOiSwICZHCg== -----END CERTIFICATE-----Generated at Sun Jun 16 18:49:18 2024 by rpki-client on console-fra.rpki-client.org