$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/43441626860111EF8B4DF50DC4F9AE02.roa File: 43441626860111EF8B4DF50DC4F9AE02.roa (raw, json) Hash identifier: zb3/lrLeRlJmKw7JTV9NgzGdwRwswYT+OX1DDSNNgHc= Subject key identifier: 96:D0:DB:D6:33:60:32:F9:9A:98:59:85:DB:AC:DD:1E:E2:72:E3:30 Certificate issuer: /CN=A91E1F31/serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Certificate serial: 75 Authority key identifier: 69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/43441626860111EF8B4DF50DC4F9AE02.roa Signing time: Wed 09 Oct 2024 05:42:26 +0000 ROA not before: Wed 09 Oct 2024 05:42:26 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152304 IP address blocks: 202.37.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1F31/serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Validity Not Before: Oct 9 05:42:26 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=670617c1-18ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:79:86:90:58:3f:f3:3b:ca:66:12:99:b8: 18:06:3b:9f:f2:54:07:fd:b8:fb:fe:f3:a2:e8:15: 90:b5:14:f9:2b:18:72:db:80:54:cc:10:78:e9:f6: e0:1e:81:94:59:74:11:ea:96:ea:c1:68:7b:c0:ab: a5:43:cd:8b:21:80:46:23:0d:0c:47:00:40:ec:04: 9f:c7:26:18:7a:df:aa:7d:c4:cd:ab:5a:d1:cf:6d: 79:fd:4a:a5:20:75:fb:7d:37:b6:eb:a8:1c:f6:dc: 79:27:2f:be:b9:a1:d5:68:ec:42:57:31:7d:a7:32: 66:16:69:7b:90:f7:66:6c:1e:d7:b0:56:a5:9c:7f: 3c:07:b1:43:06:51:fe:2d:79:a5:2a:cb:34:d7:38: 07:47:d4:7e:6d:19:60:63:d9:8d:56:35:92:70:60: 0e:f9:67:75:e0:7b:21:f7:87:63:e9:fe:f9:bb:c7: 87:d5:01:e6:48:32:f7:82:d4:93:4b:a7:8d:97:9b: 7a:8c:55:6a:8f:2e:e6:fd:c4:df:96:b8:6b:82:8a: 26:12:c7:10:21:36:5a:d8:3a:d8:62:1c:2d:ff:0d: a5:19:d7:08:84:19:5d:6b:f8:5d:c2:9b:d4:2d:56: eb:21:6a:72:48:f1:a9:02:a3:d2:2c:a6:e4:49:ed: 33:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D0:DB:D6:33:60:32:F9:9A:98:59:85:DB:AC:DD:1E:E2:72:E3:30 X509v3 Authority Key Identifier: keyid:69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/43441626860111EF8B4DF50DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.47.0/24 Signature Algorithm: sha256WithRSAEncryption a3:da:23:e2:a2:b4:c8:82:a1:6f:2f:96:23:b0:56:06:bd:cd: 5a:f6:36:93:a6:d9:4e:ae:11:0a:4c:78:07:1c:d4:6b:64:b3: 68:3e:e6:43:7e:58:02:26:c4:b2:d3:a1:31:ea:35:e3:4b:f7: b4:f8:c8:2d:ef:5b:32:67:aa:33:18:3b:e5:6a:ae:5c:b5:f4: 07:c4:03:9f:8a:07:43:a0:55:7e:2c:81:d0:45:89:97:21:73: 80:60:bb:c1:f5:a9:9f:69:5e:66:23:f1:4d:d3:bb:ab:66:27: fc:34:81:d3:2d:ca:0b:79:fb:1a:bf:f3:3d:0a:ef:ba:e7:d4: 8d:44:2f:a1:31:ce:23:bd:7d:b3:f2:4b:15:ae:0e:00:9a:f6: 9c:ff:c2:e3:37:06:28:1b:f4:27:8f:03:81:d9:cb:cb:cc:34: 5c:58:25:14:2a:c5:00:fe:96:7e:24:85:49:ea:6c:b3:19:80: 1c:4f:8f:d1:7f:b5:c3:92:30:3b:8b:77:f0:41:67:cc:b5:c5: c8:54:fb:b3:f4:f3:0b:65:35:6d:d5:1e:6b:42:a2:cb:fc:fa: 38:9d:1b:90:06:fb:a0:9e:4b:b0:2a:26:00:c8:36:b3:c8:07: 42:9d:a2:d7:25:4a:71:37:ae:40:8b:28:98:6e:e9:f7:ed:48: bf:2b:86:0d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUYzMTExMC8GA1UEBRMoNjlBMzJENzNFMDM4QTMwRDQ3QUNBQ0VCODFDRDczMTJB Rjc1M0FCOTAeFw0yNDEwMDkwNTQyMjZaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYxN2MxLTE4ZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIyHmGkFg/8zvKZhKZuBgGO5/yVAf9uPv+86LoFZC1FPkrGHLbgFTMEHjp9uAe gZRZdBHqlurBaHvAq6VDzYshgEYjDQxHAEDsBJ/HJhh636p9xM2rWtHPbXn9SqUg dft9N7brqBz23HknL765odVo7EJXMX2nMmYWaXuQ92ZsHtewVqWcfzwHsUMGUf4t eaUqyzTXOAdH1H5tGWBj2Y1WNZJwYA75Z3XgeyH3h2Pp/vm7x4fVAeZIMveC1JNL p42Xm3qMVWqPLub9xN+WuGuCiiYSxxAhNlrYOthiHC3/DaUZ1wiEGV1r+F3Cm9Qt VushanJI8akCo9IspuRJ7TMBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUltDb1jNg MvmamFmF26zdHuJy4zAwHwYDVR0jBBgwFoAUaaMtc+A4ow1HrKzrgc1zEq91Orkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxRjMxL0EwRjRFMEQwRTFC RTExRUVCMDQ1RUIyNkM0RjlBRTAyL2FhTXRjLUE0b3cxSHJLenJnYzF6RXE5MU9y ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWFNdGMtQTRvdzFIckt6cmdjMXpFcTkxT3JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUYzMS9BMEY0RTBEMEUxQkUxMUVFQjA0NUVCMjZDNEY5QUUwMi80MzQ0MTYyNjg2 MDExMUVGOEI0REY1MERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMolLzANBgkqhkiG9w0BAQsFAAOCAQEAo9oj4qK0yIKhby+W I7BWBr3NWvY2k6bZTq4RCkx4BxzUa2SzaD7mQ35YAibEstOhMeo140v3tPjILe9b MmeqMxg75WquXLX0B8QDn4oHQ6BVfiyB0EWJlyFzgGC7wfWpn2leZiPxTdO7q2Yn /DSB0y3KC3n7Gr/zPQrvuufUjUQvoTHOI719s/JLFa4OAJr2nP/C4zcGKBv0J48D gdnLy8w0XFglFCrFAP6WfiSFSepssxmAHE+P0X+1w5IwO4t38EFnzLXFyFT7s/Tz C2U1bdUea0Kiy/z6OJ0bkAb7oJ5LsComAMg2s8gHQp2i1yVKcTeuQIsomG7p9+1I vyuGDQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org