$ rpki-client -vvf rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa File: C86D4880DBDE11EAB7E6495DC4F9AE02.roa (raw, json) Hash identifier: 2VtzC1wNl+/IWRn1jdogIA2gjxLNEWi2d4TWXps0MWc= Subject key identifier: F3:F1:59:4C:8B:52:AA:1B:E8:34:C0:9D:99:C0:BD:75:46:C6:69:A3 Certificate issuer: /CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Certificate serial: 06BD Authority key identifier: 40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa Signing time: Fri 04 Aug 2023 21:58:38 +0000 ROA not before: Fri 04 Aug 2023 21:58:38 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137386 IP address blocks: 123.253.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Validity Not Before: Aug 4 21:58:38 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd748e-0576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:22:17:e0:08:96:d2:d2:5b:29:7a:de:04:86: 56:c3:72:1c:9a:6a:65:fb:2b:02:9a:94:b7:51:37: 0b:9d:4f:cd:88:e5:b0:51:28:10:5f:44:b8:99:83: 33:10:38:7a:e7:3b:ff:d6:c7:56:99:a2:4a:23:fb: f7:a4:11:12:ff:93:d9:16:2f:51:04:d7:b0:5d:3e: 27:ec:59:63:a5:6b:b1:4f:1c:99:de:87:74:df:27: 0a:61:54:38:84:2d:fc:53:24:ce:f1:f4:d3:a9:8b: fa:99:be:47:0b:d5:a5:cc:53:25:e5:48:d1:8c:2a: 54:6f:75:4d:1b:eb:48:cb:b9:ea:10:5a:f7:2f:57: 32:84:9a:b7:5e:11:38:f3:1f:18:75:64:a8:c9:13: a4:29:2d:65:8c:c4:c6:aa:e9:18:60:09:af:02:8e: 6c:6e:41:bf:c6:5d:eb:d0:63:54:bd:c2:0f:c1:26: ab:a7:94:c7:fb:d8:f9:48:6a:b6:f3:17:b1:7d:7f: 14:53:b1:ab:3c:76:5c:76:36:b0:9b:ad:76:6b:f2: f9:3b:5d:58:f1:9f:b6:05:83:76:0b:70:dd:dc:5b: 26:dd:90:eb:b6:66:79:23:ec:d7:25:89:3e:07:b3: e9:57:d9:40:7f:76:ee:8f:70:81:f4:0c:8c:77:76: c4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:F1:59:4C:8B:52:AA:1B:E8:34:C0:9D:99:C0:BD:75:46:C6:69:A3 X509v3 Authority Key Identifier: keyid:40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.219.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:b7:45:79:f0:54:df:b4:fa:7f:92:07:5e:e5:b8:56:04:b8: c1:e4:e4:d4:00:64:27:57:b5:09:31:38:3a:ee:9f:74:5b:25: 6e:06:6c:77:22:88:11:3d:98:2a:65:80:29:d2:01:e9:9d:3c: 5c:ef:1b:fa:70:04:54:e3:2b:fa:c2:b4:34:50:fe:f3:be:2d: f3:d9:fe:8b:02:33:c4:42:8e:b9:0c:95:62:e0:cd:7b:d3:15: 5a:d0:1b:6b:c5:6f:db:de:72:df:06:c3:33:b5:27:d6:af:f8: 5a:f7:18:c8:8f:ee:61:84:32:d6:52:04:07:01:0f:f9:37:65: ec:6c:c7:85:ee:58:cc:be:e1:d3:e4:d5:54:bc:aa:0a:ff:25: 1b:b8:c4:84:ef:a4:47:69:ad:b1:a9:d4:a3:d9:70:db:d7:95: 86:1b:41:d6:ae:8c:e5:bd:f7:97:f6:ea:2b:97:00:29:dc:8c: 78:3c:66:a6:44:22:f9:ca:46:54:02:4e:65:9f:b1:0c:1a:a8: 7b:42:59:2a:bf:eb:01:b5:01:5e:3a:dc:43:1f:4b:36:fa:06: bd:f1:26:de:73:16:da:7e:63:2d:92:06:40:ca:32:44:0f:79: 25:89:a9:ed:69:30:b7:59:b8:9c:c7:15:9a:3c:eb:6e:dd:6b: be:73:58:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3MkMxMTAvBgNVBAUTKDQwNjA2QTVCNUQyOUJCRjQyMTY3RkE2OEIzMjY4NjdF RjkwRTgyNkYwHhcNMjMwODA0MjE1ODM4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNzQ4ZS0wNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yIX4AiW0tJbKXreBIZWw3Icmmpl+ysCmpS3UTcLnU/NiOWwUSgQX0S4mYMz EDh65zv/1sdWmaJKI/v3pBES/5PZFi9RBNewXT4n7FljpWuxTxyZ3od03ycKYVQ4 hC38UyTO8fTTqYv6mb5HC9WlzFMl5UjRjCpUb3VNG+tIy7nqEFr3L1cyhJq3XhE4 8x8YdWSoyROkKS1ljMTGqukYYAmvAo5sbkG/xl3r0GNUvcIPwSarp5TH+9j5SGq2 8xexfX8UU7GrPHZcdjawm612a/L5O11Y8Z+2BYN2C3Dd3Fsm3ZDrtmZ5I+zXJYk+ B7PpV9lAf3buj3CB9AyMd3bE9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPPxWUyL Uqob6DTAnZnAvXVGxmmjMB8GA1UdIwQYMBaAFEBgaltdKbv0IWf6aLMmhn75DoJv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODcyQy9GMjBFNTU5NkRC REMxMUVBOTNGRjdENDRDNEY5QUUwMi9RR0JxVzEwcHVfUWhaX3Bvc3lhR2Z2a09n bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHQnFXMTBwdV9RaFpfcG9zeWFHZnZrT2dtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3MkMvRjIwRTU1OTZEQkRDMTFFQTkzRkY3RDQ0QzRGOUFFMDIvQzg2RDQ4ODBE QkRFMTFFQUI3RTY0OTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7/dswDQYJKoZIhvcNAQELBQADggEBAI23RXnwVN+0+n+S B17luFYEuMHk5NQAZCdXtQkxODrun3RbJW4GbHciiBE9mCplgCnSAemdPFzvG/pw BFTjK/rCtDRQ/vO+LfPZ/osCM8RCjrkMlWLgzXvTFVrQG2vFb9vect8GwzO1J9av +Fr3GMiP7mGEMtZSBAcBD/k3Zexsx4XuWMy+4dPk1VS8qgr/JRu4xITvpEdprbGp 1KPZcNvXlYYbQdaujOW995f26iuXACncjHg8ZqZEIvnKRlQCTmWfsQwaqHtCWSq/ 6wG1AV463EMfSzb6Br3xJt5zFtp+Yy2SBkDKMkQPeSWJqe1pMLdZuJzHFZo8627d a75zWM4= -----END CERTIFICATE-----Generated at Fri May 31 23:53:08 2024 by rpki-client on console-fra.rpki-client.org