$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8B7BDC02708811ED95A9DC75C4F9AE02.roa File: 8B7BDC02708811ED95A9DC75C4F9AE02.roa (raw, json) Hash identifier: LIC4JqnhhbZV4DldwBIYZJpNNfHsiprIB69VyfCle0Y= Subject key identifier: F7:7E:47:EA:8F:5A:21:A0:8B:3F:23:A6:CC:5A:34:11:4F:15:CD:5B Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Certificate serial: 0F24 Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8B7BDC02708811ED95A9DC75C4F9AE02.roa Signing time: Fri 26 Jan 2024 18:06:14 +0000 ROA not before: Fri 26 Jan 2024 18:06:14 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 23602 IP address blocks: 124.40.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3876 (0xf24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Validity Not Before: Jan 26 18:06:14 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b3f495-72bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:88:9f:0c:a7:e8:aa:05:38:03:60:1c:35:2f: e6:57:3c:52:2e:0e:57:a2:04:fa:ad:74:ce:00:d8: 57:24:52:59:41:46:78:79:3e:ca:08:2b:3b:e2:2b: 2a:c1:50:69:14:c0:c6:26:a3:fd:19:2e:9f:10:0a: 71:7a:24:30:c4:fe:b4:de:54:b1:ca:18:0d:c2:a7: f9:9f:10:0e:cc:03:cb:21:c4:8a:e0:b8:4e:66:82: ba:42:ee:c2:21:a9:dd:ab:e0:0c:0a:2b:9a:9b:db: 1b:ca:7b:fc:bb:56:f2:83:d0:e5:ee:26:62:d2:34: 25:80:4d:33:2a:d8:ca:f9:52:fd:9d:4a:32:bb:04: b5:24:59:66:b2:67:f7:7f:d9:d8:e2:5e:c1:0b:d5: 51:c5:3c:99:43:86:6f:20:5a:4f:9f:4e:d0:96:ec: a7:ad:aa:bb:35:f6:b6:08:0c:0e:de:8b:b5:36:bf: f5:4c:b7:bc:a9:3b:49:6f:75:67:3c:2b:1f:ee:d1: aa:ef:ff:df:85:35:32:c9:74:7c:c9:f8:d0:6e:48: 06:68:77:8e:0b:20:5e:fc:21:4b:9e:a9:df:4c:43: 92:7f:ed:2c:99:4c:d5:3b:24:07:77:2a:ee:c6:3f: a9:b4:ee:c2:22:c4:49:3f:ae:9b:19:49:93:98:da: e9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7E:47:EA:8F:5A:21:A0:8B:3F:23:A6:CC:5A:34:11:4F:15:CD:5B X509v3 Authority Key Identifier: keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8B7BDC02708811ED95A9DC75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.40.232.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:2d:77:ff:5f:36:80:b1:f2:8f:b0:ce:62:a8:1a:eb:23:7f: 6e:b5:9f:a2:f4:79:9c:8d:04:8d:c1:2e:d6:59:c4:92:e2:fe: fb:7e:dc:3a:39:68:c4:2b:93:ee:1d:76:c6:46:b7:f1:27:0b: 1b:eb:d3:be:fb:ee:5b:97:9a:50:d5:3e:89:c6:e9:7d:3a:27: 77:73:a9:b5:9b:14:45:b2:c1:b1:33:74:91:df:f1:69:82:f6: 31:1c:65:2b:f2:e9:89:d7:41:f9:d2:6f:be:1a:e4:bb:e2:17: 6c:6c:07:fe:fe:55:cf:06:8c:6d:7a:cd:69:97:d2:6e:d7:a3: 8b:ae:8c:c8:4d:c1:63:d9:90:c9:90:7c:fc:c6:ed:fc:a8:5a: d9:b2:de:72:24:21:24:a7:7b:ad:19:15:be:33:c1:ed:79:c8: 1b:64:c9:45:6d:0e:d1:b8:93:ed:05:d3:67:96:4f:55:89:c9: 0f:3f:39:c1:a2:99:1b:7c:17:8f:4b:51:64:23:f6:34:24:ad: d8:8c:e7:cf:db:a7:ce:05:e4:c7:6d:88:88:98:a3:a9:2b:60: b3:90:68:80:85:a9:ca:94:38:cb:ba:1b:b5:db:98:f6:dd:b4: 53:62:ca:14:a4:23:8d:0e:03:69:4b:c9:63:97:48:56:07:67: ec:86:5b:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxQkMxMTAvBgNVBAUTKDQyOUU5QkREQTI5NjYyMDAwM0NFQzVFRkFCQjgyM0Qz MDNGRTRGNzEwHhcNMjQwMTI2MTgwNjE0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIzZjQ5NS03MmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoifDKfoqgU4A2AcNS/mVzxSLg5XogT6rXTOANhXJFJZQUZ4eT7KCCs74isq wVBpFMDGJqP9GS6fEApxeiQwxP603lSxyhgNwqf5nxAOzAPLIcSK4LhOZoK6Qu7C Iandq+AMCiuam9sbynv8u1byg9Dl7iZi0jQlgE0zKtjK+VL9nUoyuwS1JFlmsmf3 f9nY4l7BC9VRxTyZQ4ZvIFpPn07Qluynraq7Nfa2CAwO3ou1Nr/1TLe8qTtJb3Vn PCsf7tGq7//fhTUyyXR8yfjQbkgGaHeOCyBe/CFLnqnfTEOSf+0smUzVOyQHdyru xj+ptO7CIsRJP66bGUmTmNrpSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPd+R+qP WiGgiz8jpsxaNBFPFc1bMB8GA1UdIwQYMBaAFEKem92ilmIAA87F76u4I9MD/k9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTFCQy84OTZDNkM0ODQ2 Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1lnQUR6c1h2cTdnajB3UC1U M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwNmIzYUtXWWdBRHpzWHZxN2dqMHdQLVQzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxQkMvODk2QzZDNDg0NkNFMTFFOTkyODUwQTNDQzRGOUFFMDIvOEI3QkRDMDI3 MDg4MTFFRDk1QTlEQzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB8KOgwDQYJKoZIhvcNAQELBQADggEBAJ0td/9fNoCx8o+w zmKoGusjf261n6L0eZyNBI3BLtZZxJLi/vt+3Do5aMQrk+4ddsZGt/EnCxvr0777 7luXmlDVPonG6X06J3dzqbWbFEWywbEzdJHf8WmC9jEcZSvy6YnXQfnSb74a5Lvi F2xsB/7+Vc8GjG16zWmX0m7Xo4uujMhNwWPZkMmQfPzG7fyoWtmy3nIkISSne60Z Fb4zwe15yBtkyUVtDtG4k+0F02eWT1WJyQ8/OcGimRt8F49LUWQj9jQkrdiM58/b p84F5MdtiIiYo6krYLOQaICFqcqUOMu6G7XbmPbdtFNiyhSkI40OA2lLyWOXSFYH Z+yGW7w= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org