$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/B6FD84CE54F611E79DF7E643C4F9AE02.roa File: B6FD84CE54F611E79DF7E643C4F9AE02.roa (raw, json) Hash identifier: r4vu1WVycI+yAQLPBHRRrX6zYEns7SujeRwz9d8Igvs= Subject key identifier: F8:8B:74:D6:E0:EC:ED:EB:79:E6:9B:82:4A:96:F4:09:67:CB:C7:91 Certificate issuer: /CN=A91AB063/serialNumber=E7584F959A081A4DD94809353051D235939C391D Certificate serial: 1A57 Authority key identifier: E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/B6FD84CE54F611E79DF7E643C4F9AE02.roa Signing time: Sat 28 Oct 2023 16:43:53 +0000 ROA not before: Sat 28 Oct 2023 16:43:53 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 18021 IP address blocks: 202.12.0.0/24 maxlen: 24 202.86.96.0/20 maxlen: 24 2400:5900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6743 (0x1a57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB063/serialNumber=E7584F959A081A4DD94809353051D235939C391D Validity Not Before: Oct 28 16:43:53 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=653d3a49-1cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:37:2d:ed:43:05:c1:28:59:db:a2:0d:b8: 47:f1:58:29:e9:72:12:30:79:53:9f:69:f3:00:e0: 49:13:dd:46:3c:2d:8e:1b:91:8f:bb:3b:6c:14:6a: a6:63:4c:ca:a2:ae:e8:2e:e5:8e:cf:41:bb:4e:9c: e0:99:5c:cc:c4:98:e5:82:3b:31:ec:a1:8a:3c:1a: 60:d3:51:88:3f:ba:32:21:4b:6b:ce:fc:fb:46:98: 77:d2:16:5d:6f:41:80:43:25:3b:19:50:14:b6:31: c4:63:67:f8:f7:1c:60:92:92:59:9f:f2:fb:71:f2: 2f:02:79:69:d5:ec:56:5e:61:e1:63:a1:68:87:e7: a1:8a:84:98:d3:09:7e:44:21:20:50:3e:35:a2:91: a6:56:73:a8:29:8a:eb:01:6c:7e:7e:01:5c:40:fa: 63:cd:18:d6:03:b3:8d:ec:7d:5a:43:68:88:92:f4: f4:77:d2:28:db:d0:e3:90:96:6e:95:11:aa:cc:1d: c3:f9:3d:a4:27:4c:92:09:b2:7e:89:11:fe:84:d7: 39:34:99:da:f7:10:fe:5c:b6:90:90:b7:13:97:4d: 52:c7:89:56:85:9d:b1:d1:d4:1f:cc:49:aa:36:76: 7c:50:ec:78:f7:a2:f0:fa:25:83:ec:1d:a3:3a:a1: a6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8B:74:D6:E0:EC:ED:EB:79:E6:9B:82:4A:96:F4:09:67:CB:C7:91 X509v3 Authority Key Identifier: keyid:E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/B6FD84CE54F611E79DF7E643C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.0.0/24 202.86.96.0/20 IPv6: 2400:5900::/32 Signature Algorithm: sha256WithRSAEncryption 91:a8:c9:98:0e:7a:29:5f:dd:69:7b:47:89:38:0e:52:fb:d8: c1:b1:38:2a:66:1f:7c:06:c8:50:78:d7:a3:2d:8c:dc:95:40: b4:06:8a:1e:46:3c:18:ac:bd:a8:b6:ac:4c:2c:0c:47:e4:0e: ee:ad:4c:f3:62:72:44:b7:c3:77:dd:61:b6:58:1b:02:33:9d: e6:3e:96:fe:8a:5e:c1:88:a5:46:4a:17:99:fd:dd:b1:7b:3e: 4c:b6:21:92:90:fa:4c:dc:7e:c6:76:f6:10:76:e2:78:0f:bf: 47:47:c9:a9:ac:5d:fa:0a:be:8f:3a:d3:92:6e:d5:b7:d6:34: c3:59:92:ec:0f:47:21:23:ad:4e:e0:9d:f1:c3:1a:0c:53:28: 38:77:20:f3:9e:11:33:52:20:86:d3:a1:54:b9:41:44:7a:ee: 7b:c9:c5:de:f3:33:1f:1f:62:5d:02:52:46:de:9a:1f:5c:c6: 3b:7f:b6:e9:83:43:c8:e0:e2:77:45:ab:c3:c7:1f:3b:81:f8: c4:06:bd:21:36:be:48:36:fa:e1:60:76:09:4c:45:95:23:82: 9d:f4:9d:55:1d:05:d9:da:5a:8e:c7:72:db:9d:66:65:05:8c: e9:ec:d4:07:99:25:17:be:7e:5e:df:72:8e:97:de:46:e2:9e: 0d:12:6e:70 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICGlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNjMxMTAvBgNVBAUTKEU3NTg0Rjk1OUEwODFBNEREOTQ4MDkzNTMwNTFEMjM1 OTM5QzM5MUQwHhcNMjMxMDI4MTY0MzUzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkM2E0OS0xY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaM3Le1DBcEoWduiDbhH8Vgp6XISMHlTn2nzAOBJE91GPC2OG5GPuztsFGqm Y0zKoq7oLuWOz0G7TpzgmVzMxJjlgjsx7KGKPBpg01GIP7oyIUtrzvz7Rph30hZd b0GAQyU7GVAUtjHEY2f49xxgkpJZn/L7cfIvAnlp1exWXmHhY6Foh+ehioSY0wl+ RCEgUD41opGmVnOoKYrrAWx+fgFcQPpjzRjWA7ON7H1aQ2iIkvT0d9Io29DjkJZu lRGqzB3D+T2kJ0ySCbJ+iRH+hNc5NJna9xD+XLaQkLcTl01Sx4lWhZ2x0dQfzEmq NnZ8UOx496Lw+iWD7B2jOqGm/QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPiLdNbg 7O3reeabgkqW9Alny8eRMB8GA1UdIwQYMBaAFOdYT5WaCBpN2UgJNTBR0jWTnDkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA2My8xMTg2QjZCQzA5 M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdrM1pTQWsxTUZIU05aT2NP UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUxaFBsWm9JR2szWlNBazFNRkhTTlpPY09SMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIwNjMvMTE4NkI2QkMwOTNBMTFFNzk1NDA5NTBCQzRGOUFFMDIvQjZGRDg0Q0U1 NEY2MTFFNzlERjdFNjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBADKDAADBATKVmAwDQQCAAIwBwMFACQAWQAwDQYJKoZIhvcN AQELBQADggEBAJGoyZgOeilf3Wl7R4k4DlL72MGxOCpmH3wGyFB416MtjNyVQLQG ih5GPBisvai2rEwsDEfkDu6tTPNickS3w3fdYbZYGwIzneY+lv6KXsGIpUZKF5n9 3bF7Pky2IZKQ+kzcfsZ29hB24ngPv0dHyamsXfoKvo8605Ju1bfWNMNZkuwPRyEj rU7gnfHDGgxTKDh3IPOeETNSIIbToVS5QUR67nvJxd7zMx8fYl0CUkbemh9cxjt/ tumDQ8jg4ndFq8PHHzuB+MQGvSE2vkg2+uFgdglMRZUjgp30nVUdBdnaWo7Hctud ZmUFjOns1AeZJRe+fl7fco6X3kbing0SbnA= -----END CERTIFICATE-----Generated at Fri May 31 20:34:13 2024 by rpki-client on console-ams.rpki-client.org