$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/FD57EA90508511EEBA4C0E2BC4F9AE02.roa File: FD57EA90508511EEBA4C0E2BC4F9AE02.roa (raw, json) Hash identifier: rOkP4Vb8B8/6UrNv3XnkLOomlf0wseQaO6Jnqbw75S0= Subject key identifier: D7:29:7D:FC:31:9A:DB:B2:AC:5E:46:F7:E8:0E:50:DE:35:2C:CA:AA Certificate issuer: /CN=A91A2265/serialNumber=BBEC210E7529FD397F1338FFAC1DDD783C0FAA32 Certificate serial: AA Authority key identifier: BB:EC:21:0E:75:29:FD:39:7F:13:38:FF:AC:1D:DD:78:3C:0F:AA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-whDnUp_Tl_Ezj_rB3deDwPqjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/FD57EA90508511EEBA4C0E2BC4F9AE02.roa Signing time: Wed 31 Jul 2024 06:17:16 +0000 ROA not before: Wed 31 Jul 2024 06:17:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9334 IP address blocks: 203.167.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/u-whDnUp_Tl_Ezj_rB3deDwPqjI.crl rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/u-whDnUp_Tl_Ezj_rB3deDwPqjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-whDnUp_Tl_Ezj_rB3deDwPqjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2265/serialNumber=BBEC210E7529FD397F1338FFAC1DDD783C0FAA32 Validity Not Before: Jul 31 06:17:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9d6ec-1e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:26:46:21:27:ab:f4:08:b5:ef:f2:a4:d9:3d: a5:70:05:3b:ce:28:34:4f:a1:1a:1a:11:52:a7:99: 5b:91:29:57:8e:73:74:c0:48:e9:62:b4:aa:47:da: cb:fd:3f:1f:97:8c:9c:5d:6f:75:f3:c1:e9:0d:9a: d4:79:43:2d:78:6c:25:75:0c:f8:4e:b3:39:59:ef: c9:96:b1:5d:6d:75:c1:a4:f8:49:e7:e2:df:7a:1e: 61:13:55:82:af:27:4d:13:c4:5e:b5:f7:15:32:ec: 0d:c5:83:44:6c:8b:1e:13:2d:e9:07:b9:bf:47:8c: 78:c5:24:43:af:55:7a:e7:e1:f5:a9:6a:cc:46:3a: 74:f4:55:e2:62:82:c0:a3:c9:28:25:62:45:1f:8a: 73:4a:c2:51:db:a3:98:09:73:76:cb:ac:4f:99:7f: 9e:17:dd:0d:a0:13:fd:8a:4f:18:bf:40:0e:cc:cb: a8:49:e8:e1:d2:d4:f9:41:af:87:5f:ac:35:81:35: 73:fa:c9:a6:4a:8f:78:da:2f:b0:f4:62:53:f1:69: 6b:54:9c:b0:9a:71:b7:44:bc:cd:78:27:68:22:24: b6:30:68:d7:19:ed:56:22:d6:ba:b7:e2:1d:5f:3d: cf:81:29:35:78:ab:9c:f3:a8:56:7a:54:da:01:70: 4a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:29:7D:FC:31:9A:DB:B2:AC:5E:46:F7:E8:0E:50:DE:35:2C:CA:AA X509v3 Authority Key Identifier: keyid:BB:EC:21:0E:75:29:FD:39:7F:13:38:FF:AC:1D:DD:78:3C:0F:AA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/u-whDnUp_Tl_Ezj_rB3deDwPqjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-whDnUp_Tl_Ezj_rB3deDwPqjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/FD57EA90508511EEBA4C0E2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.167.0.0/21 Signature Algorithm: sha256WithRSAEncryption 4c:66:a1:8b:09:5c:ed:03:16:6c:93:f4:bb:5f:5c:d7:3e:56: 3a:72:82:51:5b:53:92:8c:df:e6:bf:17:55:1b:95:d8:6d:28: 01:8c:45:a5:a2:e1:7d:aa:f5:6c:ae:96:da:c5:d7:b2:28:16: 43:9a:f6:b5:63:dd:46:e8:67:90:c0:fb:02:42:89:93:83:4b: fa:4e:3d:c0:2e:f4:6d:d6:86:de:7c:e5:30:38:45:df:01:ab: c4:13:28:98:3e:3b:ef:c4:93:75:d1:cc:24:3d:90:6d:b2:5b: 38:1a:2f:b1:bc:08:70:c9:69:b0:63:b3:e7:5e:45:1b:7d:c8: bf:18:79:8d:ec:7c:4f:f2:c4:35:af:07:91:de:b7:3f:88:af: 18:32:7c:48:76:0d:a3:52:86:6e:17:a9:8a:09:5a:d2:be:b6: 2d:4f:48:76:cb:a0:8e:d3:ee:cb:d1:fb:3b:7f:ff:c7:1f:eb: 11:9d:ee:41:11:3f:71:ce:5f:29:b8:90:f8:f3:c9:69:6d:a6: 10:da:a5:93:8a:18:58:de:6d:ea:61:74:8f:8d:f5:b7:be:ec: c7:a7:f5:37:f5:76:a0:68:27:f0:1f:00:7b:56:30:26:50:29: db:63:e3:bb:cf:bd:1e:c1:41:54:44:6b:4c:b2:01:f9:d9:a6: 3b:7a:f2:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIyNjUxMTAvBgNVBAUTKEJCRUMyMTBFNzUyOUZEMzk3RjEzMzhGRkFDMURERDc4 M0MwRkFBMzIwHhcNMjQwNzMxMDYxNzE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5ZDZlYy0xZTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyZGISer9Ai17/Kk2T2lcAU7zig0T6EaGhFSp5lbkSlXjnN0wEjpYrSqR9rL /T8fl4ycXW9188HpDZrUeUMteGwldQz4TrM5We/JlrFdbXXBpPhJ5+Lfeh5hE1WC rydNE8RetfcVMuwNxYNEbIseEy3pB7m/R4x4xSRDr1V65+H1qWrMRjp09FXiYoLA o8koJWJFH4pzSsJR26OYCXN2y6xPmX+eF90NoBP9ik8Yv0AOzMuoSejh0tT5Qa+H X6w1gTVz+smmSo942i+w9GJT8WlrVJywmnG3RLzNeCdoIiS2MGjXGe1WIta6t+Id Xz3PgSk1eKuc86hWelTaAXBK+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNcpffwx mtuyrF5G9+gOUN41LMqqMB8GA1UdIwQYMBaAFLvsIQ51Kf05fxM4/6wd3Xg8D6oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjI2NS85QTY2QUFERTUw ODUxMUVFQkEzRUZDMTFDNEY5QUUwMi91LXdoRG5VcF9UbF9FempfckIzZGVEd1Bx akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Utd2hEblVwX1RsX0V6al9yQjNkZUR3UHFqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTIyNjUvOUE2NkFBREU1MDg1MTFFRUJBM0VGQzExQzRGOUFFMDIvRkQ1N0VBOTA1 MDg1MTFFRUJBNEMwRTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLpwAwDQYJKoZIhvcNAQELBQADggEBAExmoYsJXO0DFmyT 9LtfXNc+VjpyglFbU5KM3+a/F1UbldhtKAGMRaWi4X2q9WyultrF17IoFkOa9rVj 3UboZ5DA+wJCiZODS/pOPcAu9G3Wht585TA4Rd8Bq8QTKJg+O+/Ek3XRzCQ9kG2y WzgaL7G8CHDJabBjs+deRRt9yL8YeY3sfE/yxDWvB5Hetz+IrxgyfEh2DaNShm4X qYoJWtK+ti1PSHbLoI7T7svR+zt//8cf6xGd7kERP3HOXym4kPjzyWltphDapZOK GFjebephdI+N9be+7Men9Tf1dqBoJ/AfAHtWMCZQKdtj47vPvR7BQVREa0yyAfnZ pjt68lg= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org