$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/EBF0BAF86EF711EE821C4538C4F9AE02.roa File: EBF0BAF86EF711EE821C4538C4F9AE02.roa (raw, json) Hash identifier: SRfPwkdW8J3KzSSInHGn0eT98LHGl310oQZHm49vXRQ= Subject key identifier: 47:51:7D:40:FF:4B:86:B9:E4:A4:4C:69:B9:44:5A:0E:A2:CB:2B:48 Certificate issuer: /CN=A91BE514/serialNumber=D2ADBAF0D7D52CB94D4A13978B32053BCDF77A0F Certificate serial: A7 Authority key identifier: D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/EBF0BAF86EF711EE821C4538C4F9AE02.roa Signing time: Thu 05 Sep 2024 06:19:55 +0000 ROA not before: Thu 05 Sep 2024 06:19:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 203963 IP address blocks: 202.36.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.crl rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE514/serialNumber=D2ADBAF0D7D52CB94D4A13978B32053BCDF77A0F Validity Not Before: Sep 5 06:19:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d94d8a-5dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:e9:f8:a9:a7:4e:97:0d:a9:a8:2c:1c:d3: 26:9a:c6:ea:43:38:f9:ae:51:ff:4b:1c:26:da:35: 0d:b6:f4:6f:d7:af:6c:c1:4b:d1:3f:92:eb:ab:8a: bf:d5:b4:2b:72:9b:73:bc:7d:54:76:30:e9:08:62: 41:ed:3d:2d:59:e3:b7:bc:a1:55:65:49:92:d0:8f: 40:66:5a:a9:c3:f4:f0:b7:a0:4a:86:2f:68:c9:2d: 67:82:de:f9:73:6e:76:3a:8d:70:bc:a0:cc:18:78: 5a:82:a2:94:d1:49:4e:68:0b:70:c6:5d:e5:03:43: 1a:e2:a3:b5:50:d3:fa:c4:f7:16:ad:33:a0:89:83: e2:0b:13:05:7e:63:48:04:1d:a0:bc:7c:fa:7b:88: 88:29:96:ec:5f:8d:dc:d5:49:61:fd:87:78:85:37: 49:b8:32:ed:ed:95:87:93:5f:6d:46:f7:25:16:40: 97:83:cc:31:a5:bd:ca:5c:d5:6a:35:16:a3:92:a8: 0f:fb:3e:ef:05:8c:1d:19:a9:46:0c:97:57:b3:41: fa:16:e2:e3:1c:27:40:10:d8:39:df:82:2e:d5:29: 12:7e:3b:6c:f3:73:7e:ca:07:af:96:56:73:04:29: 0a:8f:7d:5d:e4:22:3a:97:c4:d5:19:f5:b6:5f:5f: 13:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:51:7D:40:FF:4B:86:B9:E4:A4:4C:69:B9:44:5A:0E:A2:CB:2B:48 X509v3 Authority Key Identifier: keyid:D2:AD:BA:F0:D7:D5:2C:B9:4D:4A:13:97:8B:32:05:3B:CD:F7:7A:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/0q268NfVLLlNShOXizIFO833eg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0q268NfVLLlNShOXizIFO833eg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE514/D8EDF68E6EF511EEBD180A32C4F9AE02/EBF0BAF86EF711EE821C4538C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.41.0/24 Signature Algorithm: sha256WithRSAEncryption bd:bd:14:f2:85:13:d4:db:e9:11:11:47:4c:2e:f5:11:ac:56: a7:71:14:c7:90:15:59:e5:a1:1a:a8:78:e3:64:39:78:18:74: fe:11:a7:d6:f9:91:df:77:c2:aa:6d:ba:b6:d7:20:3c:6b:c7: 64:f5:50:1d:47:0d:50:50:77:98:82:28:ce:73:04:33:91:a1: 78:ae:8c:e4:f8:eb:3b:dc:44:b5:3e:b9:dc:b2:ea:5c:2b:95: 33:2f:cc:ae:99:bd:74:cd:66:c9:f0:d1:fb:e8:9f:74:c1:ca: 59:a6:de:25:cf:88:e0:2a:63:5b:3a:5e:e3:92:6d:a5:56:e3: 63:e4:34:f5:83:7a:fa:0e:4e:85:49:1f:2a:08:21:ef:ec:b7: 73:ac:fc:46:b5:6e:e6:e5:8b:71:03:e0:af:d6:45:49:cb:08: 40:3f:30:8d:ec:09:52:47:f4:f6:46:51:42:84:ab:b6:da:0c: 32:b2:87:c1:79:18:23:78:d1:a9:a3:a9:13:80:30:9a:e1:87: 82:8e:85:dc:eb:b5:f5:3e:d8:a6:85:2f:04:19:56:2e:2c:6b: 94:cc:5a:65:6f:a5:7b:c2:c6:6d:c9:d9:68:41:66:5f:8f:69: 22:8a:81:99:b5:3f:bf:74:79:6e:0c:5e:3a:fd:4a:70:1d:16: a3:f0:ed:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU1MTQxMTAvBgNVBAUTKEQyQURCQUYwRDdENTJDQjk0RDRBMTM5NzhCMzIwNTNC Q0RGNzdBMEYwHhcNMjQwOTA1MDYxOTU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5NGQ4YS01ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDfp+KmnTpcNqagsHNMmmsbqQzj5rlH/Sxwm2jUNtvRv169swUvRP5Lrq4q/ 1bQrcptzvH1UdjDpCGJB7T0tWeO3vKFVZUmS0I9AZlqpw/Twt6BKhi9oyS1ngt75 c252Oo1wvKDMGHhagqKU0UlOaAtwxl3lA0Ma4qO1UNP6xPcWrTOgiYPiCxMFfmNI BB2gvHz6e4iIKZbsX43c1Ulh/Yd4hTdJuDLt7ZWHk19tRvclFkCXg8wxpb3KXNVq NRajkqgP+z7vBYwdGalGDJdXs0H6FuLjHCdAENg534Iu1SkSfjts83N+ygevllZz BCkKj31d5CI6l8TVGfW2X18ThQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEdRfUD/ S4a55KRMablEWg6iyytIMB8GA1UdIwQYMBaAFNKtuvDX1Sy5TUoTl4syBTvN93oP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTUxNC9EOEVERjY4RTZF RjUxMUVFQkQxODBBMzJDNEY5QUUwMi8wcTI2OE5mVkxMbE5TaE9YaXpJRk84MzNl ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxMjY4TmZWTExsTlNoT1hpeklGTzgzM2VnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkU1MTQvRDhFREY2OEU2RUY1MTFFRUJEMTgwQTMyQzRGOUFFMDIvRUJGMEJBRjg2 RUY3MTFFRTgyMUM0NTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJCkwDQYJKoZIhvcNAQELBQADggEBAL29FPKFE9Tb6RER R0wu9RGsVqdxFMeQFVnloRqoeONkOXgYdP4Rp9b5kd93wqpturbXIDxrx2T1UB1H DVBQd5iCKM5zBDORoXiujOT46zvcRLU+udyy6lwrlTMvzK6ZvXTNZsnw0fvon3TB ylmm3iXPiOAqY1s6XuOSbaVW42PkNPWDevoOToVJHyoIIe/st3Os/Ea1bubli3ED 4K/WRUnLCEA/MI3sCVJH9PZGUUKEq7baDDKyh8F5GCN40amjqROAMJrhh4KOhdzr tfU+2KaFLwQZVi4sa5TMWmVvpXvCxm3J2WhBZl+PaSKKgZm1P790eW4MXjr9SnAd FqPw7Y8= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org