$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/E79C4936420D11EC89D7C163C4F9AE02.roa File: E79C4936420D11EC89D7C163C4F9AE02.roa (raw, json) Hash identifier: QqIyGCefAxLeqvom8feWqLCBzkG8r/+a3a+PgxerWrc= Subject key identifier: 21:6D:99:2B:0E:63:A3:7A:22:0C:D0:DC:3B:94:92:11:74:CF:7E:01 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DC4 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/E79C4936420D11EC89D7C163C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:53 +0000 ROA not before: Thu 28 Dec 2023 18:56:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 56311 IP address blocks: 210.57.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3524 (0xdc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:53 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4f5-4d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:df:94:45:6a:95:f6:e3:18:97:3e:91:37:b6: 5e:84:b4:17:71:ab:40:45:61:2e:2b:5e:fb:33:6a: b6:df:f5:4b:52:65:21:7f:fb:93:65:1c:23:a6:89: 4e:0e:1e:fd:32:aa:ad:05:8a:42:7b:3f:bf:96:2f: b1:69:3a:e1:4b:38:f8:49:a6:ce:f7:97:ab:3e:cd: 67:7a:cc:18:f8:a7:0d:45:27:08:8d:00:3b:89:93: 47:f8:c5:d7:6d:eb:2f:ad:1c:24:c1:52:cb:7e:6e: a6:eb:b6:a9:9a:6e:52:0d:1c:0f:5a:ed:de:64:c7: 30:2c:70:bc:ce:06:3a:a8:ed:70:b4:be:6c:d7:8c: bf:6e:ef:26:11:e1:2c:66:55:48:87:2e:8c:d0:8f: cd:b7:68:11:e2:22:5f:b5:d9:d2:77:96:91:1d:12: d0:2a:55:b7:29:0f:47:ab:b8:fa:7b:93:f2:94:b5: a2:ae:47:65:dd:84:f4:e0:d1:b8:de:f9:16:93:c5: 14:f3:92:7b:e7:dd:f4:01:96:d3:ef:48:9d:be:5a: 54:44:db:6a:bc:a3:b0:f6:18:89:9e:50:5b:b1:d6: d4:4e:fd:e7:3c:b1:6c:0f:65:a6:1f:f5:37:3a:50: a6:41:8f:df:35:33:10:ec:16:27:e1:91:e0:5c:44: 15:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6D:99:2B:0E:63:A3:7A:22:0C:D0:DC:3B:94:92:11:74:CF:7E:01 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/E79C4936420D11EC89D7C163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.57.76.0/24 Signature Algorithm: sha256WithRSAEncryption 55:ad:5a:21:09:2f:42:d3:b1:09:72:eb:1a:89:8a:33:67:4e: f3:20:e9:26:73:b4:d9:93:41:91:a6:03:ed:39:c9:ea:57:e9: 23:5f:36:00:f7:bc:2f:4c:6c:49:8f:d8:08:d2:e0:eb:f3:51: d6:1a:a9:78:82:eb:8a:85:8a:ff:6b:2f:37:08:da:30:84:33: 87:d2:fb:c8:7c:72:63:fe:68:f2:44:ee:99:6f:7f:d9:f0:3d: b3:1c:24:5a:64:98:9b:87:6f:16:a8:a4:a4:c0:03:45:5d:68: 07:f2:f7:2c:52:3a:d8:09:0e:8a:c5:8b:b4:1a:96:59:58:d2: 64:51:65:74:0d:dc:53:bf:e2:24:cd:37:03:4b:3b:25:9d:75: 84:b4:80:89:aa:8a:24:18:82:da:bf:e4:2f:9f:33:c9:a3:ff: eb:bb:4f:bd:44:89:73:6d:2d:12:e8:1b:2a:10:0c:f9:97:ee: fd:11:bf:f7:2a:54:a5:a1:cf:08:ab:83:4e:03:9a:29:03:ac: 51:0e:6b:34:51:99:60:4f:54:c0:0d:ef:21:c2:d1:a0:92:b8: 97:83:73:df:13:28:05:02:e3:fc:10:18:8c:6c:63:86:b4:59: bc:88:02:4c:e7:8e:07:c8:b2:a4:b8:cc:5e:f9:0d:74:d6:b0: a9:b2:cd:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRmNS00ZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+t+URWqV9uMYlz6RN7ZehLQXcatARWEuK177M2q23/VLUmUhf/uTZRwjpolO Dh79MqqtBYpCez+/li+xaTrhSzj4SabO95erPs1neswY+KcNRScIjQA7iZNH+MXX besvrRwkwVLLfm6m67apmm5SDRwPWu3eZMcwLHC8zgY6qO1wtL5s14y/bu8mEeEs ZlVIhy6M0I/Nt2gR4iJftdnSd5aRHRLQKlW3KQ9Hq7j6e5PylLWirkdl3YT04NG4 3vkWk8UU85J75930AZbT70idvlpURNtqvKOw9hiJnlBbsdbUTv3nPLFsD2WmH/U3 OlCmQY/fNTMQ7BYn4ZHgXEQVzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCFtmSsO Y6N6IgzQ3DuUkhF0z34BMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvRTc5QzQ5MzY0 MjBEMTFFQzg5RDdDMTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSOUwwDQYJKoZIhvcNAQELBQADggEBAFWtWiEJL0LTsQly 6xqJijNnTvMg6SZztNmTQZGmA+05yepX6SNfNgD3vC9MbEmP2AjS4OvzUdYaqXiC 64qFiv9rLzcI2jCEM4fS+8h8cmP+aPJE7plvf9nwPbMcJFpkmJuHbxaopKTAA0Vd aAfy9yxSOtgJDorFi7QalllY0mRRZXQN3FO/4iTNNwNLOyWddYS0gImqiiQYgtq/ 5C+fM8mj/+u7T71EiXNtLRLoGyoQDPmX7v0Rv/cqVKWhzwirg04DmikDrFEOazRR mWBPVMAN7yHC0aCSuJeDc98TKAUC4/wQGIxsY4a0WbyIAkznjgfIsqS4zF75DXTW sKmyzdk= -----END CERTIFICATE-----Generated at Fri May 31 22:13:11 2024 by rpki-client on console-fra.rpki-client.org