$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/1A0B540E3AA711EA83682876C4F9AE02.roa File: 1A0B540E3AA711EA83682876C4F9AE02.roa (raw, json) Hash identifier: Gpxpc8IRQzuHqiyk8bsF5mq9N6coqqpi1UICb22hud0= Subject key identifier: 87:ED:47:40:1E:B0:B9:BB:6F:48:92:77:A1:13:0E:BC:1E:CB:1D:B1 Certificate issuer: /CN=A91BD9C2/serialNumber=6F9AC04CE5AC71A7C2B7AFB1A55727A10E5B06EE Certificate serial: 0AA4 Authority key identifier: 6F:9A:C0:4C:E5:AC:71:A7:C2:B7:AF:B1:A5:57:27:A1:0E:5B:06:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5rATOWscafCt6-xpVcnoQ5bBu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/1A0B540E3AA711EA83682876C4F9AE02.roa Signing time: Mon 12 Aug 2024 19:57:47 +0000 ROA not before: Mon 12 Aug 2024 19:57:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38210 IP address blocks: 202.72.232.0/22 maxlen: 22 202.72.232.0/24 maxlen: 24 202.72.233.0/24 maxlen: 24 202.72.234.0/24 maxlen: 24 202.72.235.0/24 maxlen: 24 202.72.236.0/22 maxlen: 22 202.72.236.0/24 maxlen: 24 202.72.237.0/24 maxlen: 24 202.72.238.0/24 maxlen: 24 202.72.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/b5rATOWscafCt6-xpVcnoQ5bBu4.crl rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/b5rATOWscafCt6-xpVcnoQ5bBu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5rATOWscafCt6-xpVcnoQ5bBu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2724 (0xaa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD9C2/serialNumber=6F9AC04CE5AC71A7C2B7AFB1A55727A10E5B06EE Validity Not Before: Aug 12 19:57:47 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ba693b-19aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:64:99:a1:b1:66:8d:1f:a2:39:1d:c0:6a: b5:a7:24:08:05:a0:01:9b:a2:c1:df:f6:4c:42:4b: ce:92:a1:3c:76:41:93:4a:bc:8b:f3:af:f5:bb:bb: c7:ca:48:6a:88:be:79:8e:52:49:93:f2:72:5b:eb: 41:a2:73:c8:68:18:56:fa:b0:70:a8:5f:b3:51:dd: a7:03:60:ac:4e:96:06:db:c8:8f:7a:13:6a:cd:17: 7b:85:ab:13:bd:cf:2d:69:1e:8d:2d:96:d9:e6:6d: b9:80:1b:ab:f3:14:b9:69:b2:0d:b9:98:df:e6:ca: 3d:52:d5:5a:07:45:3f:65:1e:75:02:ef:98:de:f9: f9:ac:5d:27:d0:0b:1b:29:d9:7b:b0:c6:b9:dd:95: 65:33:7e:f5:c6:2d:7d:55:e3:05:ab:01:a2:f1:49: 50:bc:9e:9e:ca:b1:87:91:5a:5d:5c:f3:76:ca:f4: 59:43:cd:f4:e2:49:b3:d7:01:c8:8e:14:80:11:50: 83:a0:6b:3c:90:08:9f:61:da:b2:12:17:ab:02:4d: a8:41:ba:43:37:9a:74:cc:d6:e2:24:49:6b:ee:34: ef:17:03:5f:d7:2e:2e:7c:77:bf:58:f4:f3:ac:6a: 39:ad:23:1f:c3:9d:55:c0:82:8f:ee:ad:84:91:66: 13:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:ED:47:40:1E:B0:B9:BB:6F:48:92:77:A1:13:0E:BC:1E:CB:1D:B1 X509v3 Authority Key Identifier: keyid:6F:9A:C0:4C:E5:AC:71:A7:C2:B7:AF:B1:A5:57:27:A1:0E:5B:06:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/b5rATOWscafCt6-xpVcnoQ5bBu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5rATOWscafCt6-xpVcnoQ5bBu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD9C2/AB0DF4F23AA211EAA79E6A69C4F9AE02/1A0B540E3AA711EA83682876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.72.232.0/21 Signature Algorithm: sha256WithRSAEncryption a5:1f:90:c3:6f:2e:df:b1:02:b9:38:40:b6:cd:b4:42:25:1e: f2:06:f8:29:75:8e:87:11:57:a9:39:80:2e:8c:15:43:32:32: a5:10:9a:a0:6c:d8:98:6c:7e:3c:18:c7:21:97:3b:c1:8e:8b: ce:1a:b3:4c:23:9b:bf:d7:24:62:98:69:65:49:80:72:d0:19: 8b:83:73:bb:77:c2:9f:7b:85:fb:1a:6c:ee:c2:e3:4b:97:a7: cb:53:ae:59:11:7c:dc:c8:8d:2a:c2:ff:c6:55:b1:aa:14:b3: a3:b8:72:dc:19:f0:13:c9:8a:58:77:5b:fc:52:38:3a:4d:f4: 00:7c:63:91:2a:af:09:6c:c6:4e:d7:04:d7:12:44:5f:dd:9c: 2a:70:59:2e:c9:6f:a7:5d:8d:98:b6:36:f7:ed:5f:d4:57:63: d7:06:d8:35:5d:dc:0a:a7:7a:17:71:e2:83:18:3a:ac:f6:e7: ac:b3:ea:67:31:b4:0d:29:f9:e8:83:30:06:6a:a2:40:36:98: d4:ed:fb:5a:4b:ab:b6:ac:b4:58:f8:2f:f1:ac:11:20:71:0a: 33:e1:e1:34:e4:81:cc:15:28:0d:ee:63:ad:58:dc:f3:08:6c: 06:5e:5d:ec:a7:4f:06:73:f8:76:cf:02:dc:da:8f:e5:2c:33: 9f:bd:6e:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ5QzIxMTAvBgNVBAUTKDZGOUFDMDRDRTVBQzcxQTdDMkI3QUZCMUE1NTcyN0Ex MEU1QjA2RUUwHhcNMjQwODEyMTk1NzQ3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhNjkzYi0xOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgxkmaGxZo0fojkdwGq1pyQIBaABm6LB3/ZMQkvOkqE8dkGTSryL86/1u7vH ykhqiL55jlJJk/JyW+tBonPIaBhW+rBwqF+zUd2nA2CsTpYG28iPehNqzRd7hasT vc8taR6NLZbZ5m25gBur8xS5abINuZjf5so9UtVaB0U/ZR51Au+Y3vn5rF0n0Asb Kdl7sMa53ZVlM371xi19VeMFqwGi8UlQvJ6eyrGHkVpdXPN2yvRZQ8304kmz1wHI jhSAEVCDoGs8kAifYdqyEherAk2oQbpDN5p0zNbiJElr7jTvFwNf1y4ufHe/WPTz rGo5rSMfw51VwIKP7q2EkWYThQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIftR0Ae sLm7b0iSd6ETDrweyx2xMB8GA1UdIwQYMBaAFG+awEzlrHGnwrevsaVXJ6EOWwbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDlDMi9BQjBERjRGMjNB QTIxMUVBQTc5RTZBNjlDNEY5QUUwMi9iNXJBVE9Xc2NhZkN0Ni14cFZjbm9RNWJC dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I1ckFUT1dzY2FmQ3Q2LXhwVmNub1E1YkJ1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ5QzIvQUIwREY0RjIzQUEyMTFFQUE3OUU2QTY5QzRGOUFFMDIvMUEwQjU0MEUz QUE3MTFFQTgzNjgyODc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKSOgwDQYJKoZIhvcNAQELBQADggEBAKUfkMNvLt+xArk4 QLbNtEIlHvIG+Cl1jocRV6k5gC6MFUMyMqUQmqBs2JhsfjwYxyGXO8GOi84as0wj m7/XJGKYaWVJgHLQGYuDc7t3wp97hfsabO7C40uXp8tTrlkRfNzIjSrC/8ZVsaoU s6O4ctwZ8BPJilh3W/xSODpN9AB8Y5Eqrwlsxk7XBNcSRF/dnCpwWS7Jb6ddjZi2 NvftX9RXY9cG2DVd3Aqnehdx4oMYOqz256yz6mcxtA0p+eiDMAZqokA2mNTt+1pL q7astFj4L/GsESBxCjPh4TTkgcwVKA3uY61Y3PMIbAZeXeynTwZz+HbPAtzaj+Us M5+9bh4= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org