$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/96F5D26CFD5A11EEA0731E55C4F9AE02.roa File: 96F5D26CFD5A11EEA0731E55C4F9AE02.roa (raw, json) Hash identifier: G67FBcoSo5SdfUGnyF3K1ScYA7zHkycNrRNLNW9eMyM= Subject key identifier: BB:1B:04:8F:31:F5:B8:A2:3F:BD:DC:74:2D:EF:28:5E:9E:50:5F:88 Certificate issuer: /CN=A91CC86F/serialNumber=6BADD7D5D1128112D70AB4A2452401428F9D097B Certificate serial: B7 Authority key identifier: 6B:AD:D7:D5:D1:12:81:12:D7:0A:B4:A2:45:24:01:42:8F:9D:09:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a63X1dESgRLXCrSiRSQBQo-dCXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/96F5D26CFD5A11EEA0731E55C4F9AE02.roa Signing time: Fri 31 May 2024 07:42:25 +0000 ROA not before: Fri 31 May 2024 07:42:25 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152687 IP address blocks: 202.37.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/a63X1dESgRLXCrSiRSQBQo-dCXs.crl rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/a63X1dESgRLXCrSiRSQBQo-dCXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a63X1dESgRLXCrSiRSQBQo-dCXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC86F/serialNumber=6BADD7D5D1128112D70AB4A2452401428F9D097B Validity Not Before: May 31 07:42:25 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66597f60-2cab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:da:27:d2:6c:e8:85:eb:28:ce:5f:61:1b:7b: ea:5f:84:73:bb:a2:e3:1f:7b:3d:a2:52:f4:62:8d: 00:0d:d0:6e:a7:3c:d0:93:7a:b2:fb:38:8b:a0:b2: ab:d1:24:00:1a:59:86:39:0c:90:b0:ca:bb:60:1f: 4c:88:ec:c5:ca:10:13:e5:e2:7c:7a:64:ff:ba:37: 04:6a:69:b2:17:2e:03:5c:e0:9d:24:3c:0e:fe:6a: 50:ad:b4:9a:fd:7e:37:18:32:15:02:80:5c:a9:2d: d7:5e:6e:e7:a9:f6:a2:88:90:b7:57:93:7b:e0:0d: 95:d1:9b:d3:82:cf:c9:47:91:aa:65:1c:6d:aa:31: 2c:bc:0a:74:5c:e3:ba:30:25:1a:30:5e:b9:83:1f: 2b:09:07:9c:d3:c4:58:22:56:a4:c3:83:65:92:2c: d6:36:38:16:f4:91:f4:71:1a:d9:97:e3:e0:a2:26: 91:e8:01:11:f8:42:0f:d4:fc:54:ff:74:a8:9a:9c: e8:c9:78:16:79:83:a6:27:6b:47:6f:28:78:9d:79: 4b:d1:12:81:22:c5:6d:95:50:1b:60:25:7d:c6:44: 5b:60:4a:bc:74:3c:47:27:c9:0c:65:75:38:51:13: 3a:ff:8c:f5:e0:b1:af:e3:65:a2:aa:1f:cf:be:4d: 6a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:1B:04:8F:31:F5:B8:A2:3F:BD:DC:74:2D:EF:28:5E:9E:50:5F:88 X509v3 Authority Key Identifier: keyid:6B:AD:D7:D5:D1:12:81:12:D7:0A:B4:A2:45:24:01:42:8F:9D:09:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/a63X1dESgRLXCrSiRSQBQo-dCXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a63X1dESgRLXCrSiRSQBQo-dCXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/96F5D26CFD5A11EEA0731E55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.133.0/24 Signature Algorithm: sha256WithRSAEncryption 17:1c:45:69:af:7a:ae:8a:fb:b8:cd:17:07:71:a9:d0:2c:39: 78:3d:fe:16:5d:a7:25:cb:45:7d:02:d0:98:17:4e:22:04:ff: 9c:71:9a:d8:cb:62:fc:f2:c5:95:65:bf:b9:04:85:d6:a4:6b: 60:df:7f:d2:b2:44:e8:12:ab:a1:ba:1a:50:50:4c:b7:69:ef: 65:dd:b0:e4:b5:9b:6c:cd:1a:b8:79:b6:68:40:e1:0a:3f:8a: c3:15:9e:4b:ef:ca:59:90:48:d9:a8:58:bc:95:f0:12:ec:81: 3d:7a:93:63:63:23:5a:87:66:8e:cd:e1:e3:c7:e5:82:ca:d6: 3e:ae:9d:fd:4a:79:68:b0:44:e8:9a:d6:fa:c9:26:4c:a1:cb: 9e:88:2f:95:77:71:b3:71:56:13:cc:0b:af:77:63:f7:29:6d: 7e:ad:51:55:20:ee:c1:ea:52:40:fc:a5:5f:26:aa:05:d0:db: f1:43:4b:96:bd:84:5e:77:12:66:5a:c0:ba:9a:9f:9d:ae:d1: f8:14:70:2e:48:3a:7b:1b:3b:91:ed:6a:28:93:bc:02:43:0d: 81:9d:fa:74:49:fb:b5:4b:a5:86:e8:4a:d6:da:ed:0d:b0:09: 7c:42:c3:e9:59:1c:31:3d:41:07:c7:25:98:07:c4:69:ae:ac: 5b:6e:df:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4NkYxMTAvBgNVBAUTKDZCQUREN0Q1RDExMjgxMTJENzBBQjRBMjQ1MjQwMTQy OEY5RDA5N0IwHhcNMjQwNTMxMDc0MjI1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5N2Y2MC0yY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNon0mzohesozl9hG3vqX4Rzu6LjH3s9olL0Yo0ADdBupzzQk3qy+ziLoLKr 0SQAGlmGOQyQsMq7YB9MiOzFyhAT5eJ8emT/ujcEammyFy4DXOCdJDwO/mpQrbSa /X43GDIVAoBcqS3XXm7nqfaiiJC3V5N74A2V0ZvTgs/JR5GqZRxtqjEsvAp0XOO6 MCUaMF65gx8rCQec08RYIlakw4NlkizWNjgW9JH0cRrZl+PgoiaR6AER+EIP1PxU /3SompzoyXgWeYOmJ2tHbyh4nXlL0RKBIsVtlVAbYCV9xkRbYEq8dDxHJ8kMZXU4 URM6/4z14LGv42Wiqh/Pvk1qnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLsbBI8x 9biiP73cdC3vKF6eUF+IMB8GA1UdIwQYMBaAFGut19XREoES1wq0okUkAUKPnQl7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzg2Ri80N0JBMjhBRTEz RjYxMUVFOTI1RjBBMzZDNEY5QUUwMi9hNjNYMWRFU2dSTFhDclNpUlNRQlFvLWRD WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E2M1gxZEVTZ1JMWENyU2lSU1FCUW8tZENYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M4NkYvNDdCQTI4QUUxM0Y2MTFFRTkyNUYwQTM2QzRGOUFFMDIvOTZGNUQyNkNG RDVBMTFFRUEwNzMxRTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJYUwDQYJKoZIhvcNAQELBQADggEBABccRWmveq6K+7jN FwdxqdAsOXg9/hZdpyXLRX0C0JgXTiIE/5xxmtjLYvzyxZVlv7kEhdaka2Dff9Ky ROgSq6G6GlBQTLdp72XdsOS1m2zNGrh5tmhA4Qo/isMVnkvvylmQSNmoWLyV8BLs gT16k2NjI1qHZo7N4ePH5YLK1j6unf1KeWiwROia1vrJJkyhy56IL5V3cbNxVhPM C693Y/cpbX6tUVUg7sHqUkD8pV8mqgXQ2/FDS5a9hF53EmZawLqan52u0fgUcC5I OnsbO5HtaiiTvAJDDYGd+nRJ+7VLpYboStba7Q2wCXxCw+lZHDE9QQfHJZgHxGmu rFtu39w= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org