$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/204B342ECEF111ED9D71580AC4F9AE02.roa File: 204B342ECEF111ED9D71580AC4F9AE02.roa (raw, json) Hash identifier: GCFWHH3ZIGeHMDZKkLbSVzgFKzs6HSAW8HBAGzMnYm4= Subject key identifier: 21:5E:4F:1E:2A:CB:51:2F:73:CB:94:A5:B1:31:88:1D:3B:C6:DB:A1 Certificate issuer: /CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38 Certificate serial: 0576 Authority key identifier: 31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/204B342ECEF111ED9D71580AC4F9AE02.roa Signing time: Wed 03 Jan 2024 00:02:10 +0000 ROA not before: Wed 03 Jan 2024 00:02:10 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 201942 IP address blocks: 115.124.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38 Validity Not Before: Jan 3 00:02:10 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594a401-6331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8c:ea:93:ed:11:7b:3b:1b:0b:eb:80:85:b7: d5:59:88:83:73:6e:ba:61:65:fe:13:02:1f:f7:e8: 67:0f:92:59:6d:5b:79:d9:a3:25:9f:99:bd:13:ee: c1:be:59:51:17:9c:5c:1a:e1:a2:6b:4d:94:da:f2: 96:22:14:f5:01:ed:dc:3d:bb:4f:4b:ad:95:04:0f: 86:0d:08:d7:95:39:06:e3:d8:e8:e0:58:bc:6c:e7: 70:42:7f:09:91:d1:e9:c5:f8:68:41:5c:5c:af:bc: 1d:0f:36:9a:98:c3:56:71:d2:61:61:69:e5:28:c6: fd:36:e3:07:58:76:48:ba:04:c4:d2:32:11:a2:ab: 7d:f9:c2:15:04:a7:6d:c7:d5:bd:d6:51:bf:b3:18: 32:39:f2:be:5c:52:80:2f:83:89:68:06:a1:9e:fe: 2c:97:8b:8e:07:34:08:64:25:fd:4a:d2:9c:30:ba: b9:c9:3d:e9:63:66:c7:63:8e:f4:b1:92:19:80:00: 63:3d:5a:53:a0:21:3e:72:ab:01:f3:02:f8:7c:94: fa:14:1c:d1:9e:22:ec:df:9e:a3:96:92:06:18:77: ce:19:5f:10:7a:88:34:b5:a1:47:a6:8c:84:e9:ce: 82:0a:dc:8c:a5:a9:24:e5:a5:cb:46:b6:cc:0f:58: 43:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5E:4F:1E:2A:CB:51:2F:73:CB:94:A5:B1:31:88:1D:3B:C6:DB:A1 X509v3 Authority Key Identifier: keyid:31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/204B342ECEF111ED9D71580AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.124.36.0/22 Signature Algorithm: sha256WithRSAEncryption 59:a1:d5:a3:c3:c0:91:f3:56:c4:ca:50:bf:7c:2f:3b:41:e3: 68:89:c4:57:b7:dc:f6:f2:1f:1e:ad:16:0c:ac:fb:42:a7:48: 3f:d4:a1:c8:c5:06:f6:a9:3f:08:7c:a8:d1:e2:1a:13:97:e7: 1f:eb:da:10:78:74:61:c9:56:7e:03:07:ad:eb:5f:85:e0:8c: ca:64:e7:91:93:d5:6c:91:6f:19:91:8c:33:3e:96:1a:be:58: 41:f0:2d:18:1e:29:69:57:a9:3b:cd:1e:c2:68:2c:50:f3:74: 24:83:58:73:86:94:b2:61:85:e3:1e:98:7e:5d:b5:6d:69:c1: f9:24:34:27:56:7a:57:88:1c:03:48:d6:e1:be:b6:a4:57:47: 92:6b:18:c2:de:b4:06:4b:49:9e:82:c4:8b:4a:4b:6c:8e:06: 0c:2d:05:26:08:2d:80:0b:72:51:93:9f:c3:01:73:7b:cd:1e: 3a:75:8a:f9:d1:81:e8:39:87:3e:a6:57:3e:ff:e2:35:a6:81: 22:c6:ee:c5:54:14:8d:7c:52:b4:1a:4d:22:af:25:c7:57:ff: 7d:3b:98:1e:18:39:7f:d5:e9:ac:23:1a:14:6a:09:76:e3:b9: 87:72:59:7f:e7:82:b7:54:23:78:90:6f:52:de:36:9b:6c:37: af:cf:1d:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGMDQxMTAvBgNVBAUTKDMxMTZFMDc1ODQwNTZDMTZGNTY4RjBFQzYwOThFN0RD NEY1MDRBMzgwHhcNMjQwMTAzMDAwMjEwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0YTQwMS02MzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYzqk+0RezsbC+uAhbfVWYiDc266YWX+EwIf9+hnD5JZbVt52aMln5m9E+7B vllRF5xcGuGia02U2vKWIhT1Ae3cPbtPS62VBA+GDQjXlTkG49jo4Fi8bOdwQn8J kdHpxfhoQVxcr7wdDzaamMNWcdJhYWnlKMb9NuMHWHZIugTE0jIRoqt9+cIVBKdt x9W91lG/sxgyOfK+XFKAL4OJaAahnv4sl4uOBzQIZCX9StKcMLq5yT3pY2bHY470 sZIZgABjPVpToCE+cqsB8wL4fJT6FBzRniLs356jlpIGGHfOGV8Qeog0taFHpoyE 6c6CCtyMpakk5aXLRrbMD1hD/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCFeTx4q y1Evc8uUpbExiB07xtuhMB8GA1UdIwQYMBaAFDEW4HWEBWwW9Wjw7GCY59xPUEo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUYwNC85OTFFQjc1QTdB QjAxMUVCQTAyN0JCN0ZDNEY5QUUwMi9NUmJnZFlRRmJCYjFhUERzWUpqbjNFOVFT amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01SYmdkWVFGYkJiMWFQRHNZSmpuM0U5UVNqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGMDQvOTkxRUI3NUE3QUIwMTFFQkEwMjdCQjdGQzRGOUFFMDIvMjA0QjM0MkVD RUYxMTFFRDlENzE1ODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzfCQwDQYJKoZIhvcNAQELBQADggEBAFmh1aPDwJHzVsTK UL98LztB42iJxFe33PbyHx6tFgys+0KnSD/UocjFBvapPwh8qNHiGhOX5x/r2hB4 dGHJVn4DB63rX4XgjMpk55GT1WyRbxmRjDM+lhq+WEHwLRgeKWlXqTvNHsJoLFDz dCSDWHOGlLJhheMemH5dtW1pwfkkNCdWeleIHANI1uG+tqRXR5JrGMLetAZLSZ6C xItKS2yOBgwtBSYILYALclGTn8MBc3vNHjp1ivnRgeg5hz6mVz7/4jWmgSLG7sVU FI18UrQaTSKvJcdX/307mB4YOX/V6awjGhRqCXbjuYdyWX/ngrdUI3iQb1LeNpts N6/PHZs= -----END CERTIFICATE-----Generated at Tue May 7 00:53:25 2024 by rpki-client on console-ams.rpki-client.org