$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/FAE7339CF7B911EA91318653C4F9AE02.roa File: FAE7339CF7B911EA91318653C4F9AE02.roa (raw, json) Hash identifier: AWPlkT/VPOlTrND3SaqX87pYECk2GQcIiP0u70mzoFk= Subject key identifier: 0C:F7:4D:49:A5:15:75:60:F3:32:13:71:1C:22:52:A6:AC:63:4F:91 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0757 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/FAE7339CF7B911EA91318653C4F9AE02.roa Signing time: Thu 10 Oct 2024 21:30:20 +0000 ROA not before: Thu 10 Oct 2024 21:30:20 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133105 IP address blocks: 202.1.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Oct 10 21:30:20 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6708476c-d480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:12:af:81:09:ee:7d:8d:4c:6d:6b:9c:3f: 73:e6:e5:bf:5c:10:e3:3b:6c:fc:e5:b7:49:e8:43: 5d:92:2e:6c:dd:05:b5:eb:13:f4:82:da:07:0f:ce: 5c:9d:51:31:09:54:56:bf:db:c1:0c:20:f6:f7:60: ed:a0:1f:ab:c0:25:c1:fc:35:9b:60:a7:04:94:38: f4:25:a4:1b:cf:90:1e:2a:41:96:87:70:5f:aa:35: ca:70:db:78:41:0e:a7:8e:2b:25:7a:be:39:e4:d0: 22:dd:4b:a4:38:d6:dd:6f:fc:73:e9:0d:49:09:09: a7:3c:5d:4f:dd:c5:65:6f:11:f9:d9:5f:2e:c7:ee: 2f:22:1b:96:48:b8:26:e3:0a:6a:09:b2:b1:27:8d: 29:a2:4f:08:5b:f4:97:0f:2e:27:58:71:73:74:53: ff:d4:83:01:c5:3e:ab:ff:4a:52:d5:ca:0c:f9:2c: 02:fa:0b:87:df:f9:2f:72:c2:fe:58:b4:69:d6:96: f7:08:29:1a:3f:96:be:c3:2e:56:e4:b5:58:e5:c4: 14:3e:e7:45:95:31:d2:84:31:b8:a2:e2:a6:27:d2: 92:60:71:04:f5:5f:9f:5c:d2:8e:4f:f9:8e:96:d6: a1:d0:4c:d9:c6:e6:af:0c:cf:b8:81:82:1a:0e:00: 29:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F7:4D:49:A5:15:75:60:F3:32:13:71:1C:22:52:A6:AC:63:4F:91 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/FAE7339CF7B911EA91318653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.237.0/24 Signature Algorithm: sha256WithRSAEncryption 71:b5:66:da:2d:af:a3:c1:1a:04:a4:a1:4b:f2:51:a9:d1:28: a7:d4:4d:2a:6e:9c:bf:3a:ba:c3:91:47:18:a4:72:fc:54:05: 69:78:ce:25:1e:93:d7:58:66:60:ad:cd:1c:f3:57:1b:bc:4e: 2a:b5:86:a4:f1:db:c3:16:63:9c:96:86:e7:d4:15:29:b3:ca: 58:97:66:3d:0e:34:4f:f3:1d:dd:21:3b:bd:70:15:14:f1:93: 06:7c:51:83:26:d7:8d:ca:de:a6:9a:d6:bc:5e:d6:8e:4a:f8: 2b:3e:9a:87:e3:03:33:65:bb:f4:84:41:d7:a6:61:a1:d7:d5: 4e:ea:31:29:fe:73:67:95:ff:3f:ed:46:ca:1b:65:4b:09:ae: 93:26:18:9d:9b:07:ec:78:60:56:d0:ec:39:ff:a8:71:8e:eb: 5a:7c:d2:52:5d:77:4f:cc:fb:53:6d:47:0b:14:7e:a8:41:82: f8:8d:28:ab:75:d3:f9:6a:f0:bb:49:3b:af:65:d8:45:54:b5: 1a:09:1d:c7:ee:e4:2d:e4:f0:56:5e:f8:2c:ee:3c:c7:c8:9e: 25:76:39:d3:c1:4a:79:ed:bc:79:d2:4e:2a:82:d1:d8:27:28: 18:cc:e0:b1:3d:0a:92:f1:4b:90:5d:82:1b:c3:64:65:8b:4e: 3a:7f:33:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjQxMDEwMjEzMDIwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4NDc2Yy1kNDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA8Sr4EJ7n2NTG1rnD9z5uW/XBDjO2z85bdJ6ENdki5s3QW16xP0gtoHD85c nVExCVRWv9vBDCD292DtoB+rwCXB/DWbYKcElDj0JaQbz5AeKkGWh3BfqjXKcNt4 QQ6njisler455NAi3UukONbdb/xz6Q1JCQmnPF1P3cVlbxH52V8ux+4vIhuWSLgm 4wpqCbKxJ40pok8IW/SXDy4nWHFzdFP/1IMBxT6r/0pS1coM+SwC+guH3/kvcsL+ WLRp1pb3CCkaP5a+wy5W5LVY5cQUPudFlTHShDG4ouKmJ9KSYHEE9V+fXNKOT/mO ltah0EzZxuavDM+4gYIaDgAp2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAz3TUml FXVg8zITcRwiUqasY0+RMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg0NTgvRjhBRjEyMDJGNjE1MTFFQTgzNzcwMDZDQzRGOUFFMDIvRkFFNzMzOUNG N0I5MTFFQTkxMzE4NjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKAe0wDQYJKoZIhvcNAQELBQADggEBAHG1Ztotr6PBGgSk oUvyUanRKKfUTSpunL86usORRxikcvxUBWl4ziUek9dYZmCtzRzzVxu8Tiq1hqTx 28MWY5yWhufUFSmzyliXZj0ONE/zHd0hO71wFRTxkwZ8UYMm143K3qaa1rxe1o5K +Cs+mofjAzNlu/SEQdemYaHX1U7qMSn+c2eV/z/tRsobZUsJrpMmGJ2bB+x4YFbQ 7Dn/qHGO61p80lJdd0/M+1NtRwsUfqhBgviNKKt10/lq8LtJO69l2EVUtRoJHcfu 5C3k8FZe+CzuPMfIniV2OdPBSnntvHnSTiqC0dgnKBjM4LE9CpLxS5BdghvDZGWL Tjp/Mzc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org