$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6BB/3AB0F76AFB6211E9A82B394AC4F9AE02/B647F704090C11EFB666C967C4F9AE02.roa File: B647F704090C11EFB666C967C4F9AE02.roa (raw, json) Hash identifier: nC5w9TCzp4SV3Db1Ys8xIWCRbyZvrHjrm8RrtnxmKcY= Subject key identifier: 19:AE:52:22:5A:04:FA:CB:FA:58:2C:E9:ED:FC:2C:ED:48:79:2A:F5 Certificate issuer: /CN=A919D6BB/serialNumber=3753728E54F09A48513DFFD2FA71804411FCDB20 Certificate serial: 0BBF Authority key identifier: 37:53:72:8E:54:F0:9A:48:51:3D:FF:D2:FA:71:80:44:11:FC:DB:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N1NyjlTwmkhRPf_S-nGARBH82yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6BB/3AB0F76AFB6211E9A82B394AC4F9AE02/B647F704090C11EFB666C967C4F9AE02.roa Signing time: Fri 03 May 2024 05:19:28 +0000 ROA not before: Fri 03 May 2024 05:19:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134525 IP address blocks: 202.1.171.0/24 maxlen: 24 202.1.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6BB/3AB0F76AFB6211E9A82B394AC4F9AE02/N1NyjlTwmkhRPf_S-nGARBH82yA.crl rsync://rpki.apnic.net/member_repository/A919D6BB/3AB0F76AFB6211E9A82B394AC4F9AE02/N1NyjlTwmkhRPf_S-nGARBH82yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N1NyjlTwmkhRPf_S-nGARBH82yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3007 (0xbbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6BB/serialNumber=3753728E54F09A48513DFFD2FA71804411FCDB20 Validity Not Before: May 3 05:19:28 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=663473df-3633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4d:68:02:00:93:d7:55:96:09:fb:e9:61:f2: 1c:c7:b6:c2:33:dc:a9:da:c6:33:7e:5a:6b:90:a4: 7c:2b:d6:43:d1:a9:03:c8:0a:fe:81:35:ba:07:66: f7:23:fe:2d:9c:db:b6:2c:2f:c0:10:48:68:96:50: 2e:76:36:ec:7b:48:c1:43:1d:7e:40:95:32:49:c3: a0:42:93:35:8b:9e:37:a0:9c:c4:3b:db:a0:b9:32: 0e:d3:c8:3d:f9:c7:78:7f:60:03:f0:21:b0:9d:3c: 91:09:f6:ee:f8:52:ce:44:6e:09:48:b6:87:da:b0: 44:fc:4b:ce:a7:7a:3f:b7:1b:38:09:be:39:89:2b: bb:64:21:e2:82:fd:28:05:b6:88:3e:00:f1:1e:74: e5:6f:47:26:55:9f:e4:52:3f:bd:b5:cc:e6:65:24: 86:2c:5d:fe:dd:fb:1e:38:54:70:95:55:de:32:ab: 67:20:cc:d0:69:0e:3c:5a:bf:e3:0b:ce:ba:d1:a7: ac:93:fb:47:1d:38:a8:97:0b:7f:dc:41:a3:93:61: 26:f7:df:d8:6f:3b:03:93:2f:6e:db:fd:c5:50:2b: 63:88:c0:69:c7:2a:84:04:68:20:e7:bf:f9:e1:4a: 7e:b2:1b:6c:e4:a6:7d:2c:10:ae:84:b4:5e:d1:2d: 45:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AE:52:22:5A:04:FA:CB:FA:58:2C:E9:ED:FC:2C:ED:48:79:2A:F5 X509v3 Authority Key Identifier: keyid:37:53:72:8E:54:F0:9A:48:51:3D:FF:D2:FA:71:80:44:11:FC:DB:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6BB/3AB0F76AFB6211E9A82B394AC4F9AE02/N1NyjlTwmkhRPf_S-nGARBH82yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N1NyjlTwmkhRPf_S-nGARBH82yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6BB/3AB0F76AFB6211E9A82B394AC4F9AE02/B647F704090C11EFB666C967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.171.0/24 202.1.179.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:64:85:80:82:3e:26:d2:5b:0a:f7:4e:63:10:9b:17:62:04: 9a:6e:f3:ad:80:0c:74:aa:e1:0d:ed:0c:35:06:07:22:a0:0e: 5d:b0:11:46:51:9b:ef:b3:18:27:56:4f:2e:90:54:62:32:6d: 8b:65:cc:ad:20:e5:b8:4a:2d:d4:fa:80:d8:6a:79:e2:3f:44: bd:c5:3d:a9:fd:2b:df:74:c0:a1:35:b5:a7:22:7f:55:71:6a: 0f:26:cd:5c:79:bb:48:ed:ac:8f:49:32:91:86:24:82:2d:d3: 78:ab:36:fa:9b:7b:64:42:2d:6b:21:2e:8a:04:b0:6c:6e:15: 06:50:15:6f:82:2e:54:1a:cb:b6:8c:38:a8:a5:49:ac:18:e4: a1:50:5d:d5:23:da:47:bd:9e:20:d8:a4:1d:88:49:72:3e:a7: 82:9c:6e:ad:0f:3c:a5:9b:d9:1a:ab:48:a9:eb:72:db:0a:24: 73:42:f9:61:34:08:b4:b7:1d:fd:8b:20:55:60:79:db:fa:d9: 78:d9:e4:58:16:be:f4:5b:a1:a9:8c:4b:6a:d3:49:1c:d0:c1: e0:c8:10:23:1f:f5:9c:90:24:d7:f0:d7:6e:15:71:94:7b:7d: 6d:5c:12:c2:4d:d2:9d:27:95:1f:69:34:6d:f8:e0:9f:7d:27: a3:91:e8:89 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2QkIxMTAvBgNVBAUTKDM3NTM3MjhFNTRGMDlBNDg1MTNERkZEMkZBNzE4MDQ0 MTFGQ0RCMjAwHhcNMjQwNTAzMDUxOTI4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0NzNkZi0zNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8k1oAgCT11WWCfvpYfIcx7bCM9yp2sYzflprkKR8K9ZD0akDyAr+gTW6B2b3 I/4tnNu2LC/AEEhollAudjbse0jBQx1+QJUyScOgQpM1i543oJzEO9uguTIO08g9 +cd4f2AD8CGwnTyRCfbu+FLORG4JSLaH2rBE/EvOp3o/txs4Cb45iSu7ZCHigv0o BbaIPgDxHnTlb0cmVZ/kUj+9tczmZSSGLF3+3fseOFRwlVXeMqtnIMzQaQ48Wr/j C8660aesk/tHHTiolwt/3EGjk2Em99/YbzsDky9u2/3FUCtjiMBpxyqEBGgg57/5 4Up+shts5KZ9LBCuhLRe0S1FfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBmuUiJa BPrL+lgs6e38LO1IeSr1MB8GA1UdIwQYMBaAFDdTco5U8JpIUT3/0vpxgEQR/Nsg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZCQi8zQUIwRjc2QUZC NjIxMUU5QTgyQjM5NEFDNEY5QUUwMi9OMU55amxUd21raFJQZl9TLW5HQVJCSDgy eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04xTnlqbFR3bWtoUlBmX1MtbkdBUkJIODJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ2QkIvM0FCMEY3NkFGQjYyMTFFOUE4MkIzOTRBQzRGOUFFMDIvQjY0N0Y3MDQw OTBDMTFFRkI2NjZDOTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKAasDBADKAbMwDQYJKoZIhvcNAQELBQADggEBAH1khYCC PibSWwr3TmMQmxdiBJpu862ADHSq4Q3tDDUGByKgDl2wEUZRm++zGCdWTy6QVGIy bYtlzK0g5bhKLdT6gNhqeeI/RL3FPan9K990wKE1tacif1Vxag8mzVx5u0jtrI9J MpGGJIIt03irNvqbe2RCLWshLooEsGxuFQZQFW+CLlQay7aMOKilSawY5KFQXdUj 2ke9niDYpB2ISXI+p4Kcbq0PPKWb2RqrSKnrctsKJHNC+WE0CLS3Hf2LIFVgedv6 2XjZ5FgWvvRboamMS2rTSRzQweDIECMf9ZyQJNfw124VcZR7fW1cEsJN0p0nlR9p NG344J99J6OR6Ik= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org