$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/0D0AE5040AE711E89D0C5071C4F9AE02.roa File: 0D0AE5040AE711E89D0C5071C4F9AE02.roa (raw, json) Hash identifier: 7gvulhymoo0memfRg/UTkfWV5Oiq5ExIUWNThD1MND8= Subject key identifier: 07:14:9E:8F:7D:1B:BC:8A:F3:6C:5A:D5:F2:AE:34:0D:33:20:75:47 Certificate issuer: /CN=A91E7363/serialNumber=A897C04DE12F0A6F59C1AD1509F0B209FA5438B3 Certificate serial: 33E0 Authority key identifier: A8:97:C0:4D:E1:2F:0A:6F:59:C1:AD:15:09:F0:B2:09:FA:54:38:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/0D0AE5040AE711E89D0C5071C4F9AE02.roa Signing time: Wed 31 Jan 2024 14:40:25 +0000 ROA not before: Wed 31 Jan 2024 14:40:25 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 131173 IP address blocks: 218.100.61.0/24 maxlen: 24 2001:de9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.crl rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13280 (0x33e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7363/serialNumber=A897C04DE12F0A6F59C1AD1509F0B209FA5438B3 Validity Not Before: Jan 31 14:40:25 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ba5bd8-22f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:48:bd:13:76:cd:00:d5:6e:c6:d1:8e:d8:5f: e1:e1:38:86:38:f1:ec:bd:9c:c1:b3:47:4f:4e:2e: 32:8e:85:bb:67:39:ef:50:d1:86:0a:4d:f8:a0:6b: 36:0f:f1:a0:da:0c:24:aa:0a:7b:9d:ec:be:72:a3: 38:65:26:6b:96:d0:82:0b:2b:23:a9:1d:74:64:89: 44:93:dc:0b:46:04:71:ab:3f:d1:fe:47:1f:94:5d: 6c:cf:cf:fd:36:13:13:15:34:17:5c:fb:ed:6c:82: 11:4f:81:cf:8f:4f:42:19:a8:9c:41:7a:21:0f:5d: 3d:f0:4d:54:33:10:80:97:5a:b9:5f:d9:76:5c:1e: 86:42:d6:aa:b1:29:21:8a:0e:49:7f:6b:b1:b4:79: 77:41:94:b1:83:04:1b:e3:8f:d6:ad:84:44:e3:18: 75:6c:58:8b:dd:92:c5:1f:09:0e:3a:0b:0c:d3:19: c2:e9:d7:1e:08:4c:d9:be:89:3d:f3:08:95:9a:9b: 71:91:f7:b2:68:e5:bc:c2:d6:29:66:9a:44:39:2b: 1f:31:7c:d0:8e:69:2e:0a:bd:68:be:6e:88:4e:1f: 53:18:60:cf:b6:65:69:46:5a:99:cc:24:c5:35:9d: c8:e0:12:bb:35:79:8a:3b:6f:56:e1:d9:b0:41:2b: 93:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:14:9E:8F:7D:1B:BC:8A:F3:6C:5A:D5:F2:AE:34:0D:33:20:75:47 X509v3 Authority Key Identifier: keyid:A8:97:C0:4D:E1:2F:0A:6F:59:C1:AD:15:09:F0:B2:09:FA:54:38:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/0D0AE5040AE711E89D0C5071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.100.61.0/24 IPv6: 2001:de9::/48 Signature Algorithm: sha256WithRSAEncryption 21:2c:9d:c3:d8:76:af:20:4c:ba:22:df:5b:3b:96:a1:db:bf: 09:42:8e:3d:f9:e9:17:54:08:d2:56:5c:05:3c:47:10:53:6e: b5:90:51:e0:d0:5e:db:6e:24:8b:6c:14:fe:7d:65:74:e8:8c: 9e:ff:e5:8c:7c:b6:92:ef:35:e7:42:0a:1d:42:77:61:93:c0: 96:9c:ae:f0:63:fd:63:81:23:92:14:4a:5a:24:52:85:35:95: c5:49:1c:78:a7:c4:94:4a:22:83:9f:c0:dc:84:e1:e9:d2:37: 1e:34:99:78:f9:2e:59:38:05:c8:b5:47:57:7f:83:3a:21:e9: 27:6a:f6:82:de:55:13:f5:ab:cd:6f:68:22:53:a1:3c:67:8f: 19:f3:4c:af:21:df:32:e5:44:75:19:f7:9d:9c:f6:95:87:94: 31:f0:11:6a:aa:58:0d:a6:9d:5d:1e:23:cb:20:fb:cb:0f:1a: 63:d6:be:5c:b1:b0:cf:1c:6a:d7:f5:9b:ed:65:46:40:ce:73: 1b:92:b7:34:6c:89:70:16:6d:c5:8d:fb:f2:1b:55:9f:c6:5b: 5d:76:2d:38:d1:2b:cd:82:05:e1:68:c7:e8:9d:65:26:b5:e9: 65:1f:c9:c3:ae:f7:ba:4d:21:fe:2a:e0:e4:07:58:e6:38:db: cd:c4:1d:da -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICM+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNjMxMTAvBgNVBAUTKEE4OTdDMDRERTEyRjBBNkY1OUMxQUQxNTA5RjBCMjA5 RkE1NDM4QjMwHhcNMjQwMTMxMTQ0MDI1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhNWJkOC0yMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ki9E3bNANVuxtGO2F/h4TiGOPHsvZzBs0dPTi4yjoW7ZznvUNGGCk34oGs2 D/Gg2gwkqgp7ney+cqM4ZSZrltCCCysjqR10ZIlEk9wLRgRxqz/R/kcflF1sz8/9 NhMTFTQXXPvtbIIRT4HPj09CGaicQXohD1098E1UMxCAl1q5X9l2XB6GQtaqsSkh ig5Jf2uxtHl3QZSxgwQb44/WrYRE4xh1bFiL3ZLFHwkOOgsM0xnC6dceCEzZvok9 8wiVmptxkfeyaOW8wtYpZppEOSsfMXzQjmkuCr1ovm6ITh9TGGDPtmVpRlqZzCTF NZ3I4BK7NXmKO29W4dmwQSuTfwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAcUno99 G7yK82xa1fKuNA0zIHVHMB8GA1UdIwQYMBaAFKiXwE3hLwpvWcGtFQnwsgn6VDiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM2My9GRjhCNEI2QzFE ODQxMUUyOENEMzNEREIwOEIwMkNEMi9xSmZBVGVFdkNtOVp3YTBWQ2ZDeUNmcFVP TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKZkFUZUV2Q205WndhMFZDZkN5Q2ZwVU9MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNjMvRkY4QjRCNkMxRDg0MTFFMjhDRDMzRERCMDhCMDJDRDIvMEQwQUU1MDQw QUU3MTFFODlEMEM1MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADaZD0wDwQCAAIwCQMHACABDekAADANBgkqhkiG9w0BAQsF AAOCAQEAISydw9h2ryBMuiLfWzuWodu/CUKOPfnpF1QI0lZcBTxHEFNutZBR4NBe 224ki2wU/n1ldOiMnv/ljHy2ku8150IKHUJ3YZPAlpyu8GP9Y4EjkhRKWiRShTWV xUkceKfElEoig5/A3ITh6dI3HjSZePkuWTgFyLVHV3+DOiHpJ2r2gt5VE/WrzW9o IlOhPGePGfNMryHfMuVEdRn3nZz2lYeUMfARaqpYDaadXR4jyyD7yw8aY9a+XLGw zxxq1/Wb7WVGQM5zG5K3NGyJcBZtxY378htVn8ZbXXYtONErzYIF4WjH6J1lJrXp ZR/Jw673uk0h/irg5AdY5jjbzcQd2g== -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:44 2024 by rpki-client on console-fra.rpki-client.org