$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/328C9E7CDC1A11EC89244C2FC4F9AE02.roa File: 328C9E7CDC1A11EC89244C2FC4F9AE02.roa (raw, json) Hash identifier: tdNvvtBtSkEXNP3bq9ounB53zb+u6cTArykXyU3hS/M= Subject key identifier: ED:92:C7:08:3B:33:B9:22:06:63:44:36:A1:30:A4:DE:9B:ED:43:C4 Certificate issuer: /CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608 Certificate serial: 0274 Authority key identifier: 6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/328C9E7CDC1A11EC89244C2FC4F9AE02.roa Signing time: Wed 05 Jun 2024 04:31:46 +0000 ROA not before: Wed 05 Jun 2024 04:31:46 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 8943 IP address blocks: 203.11.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 03:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608 Validity Not Before: Jun 5 04:31:46 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665fea31-f87a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d8:75:06:11:7c:42:b5:c9:38:7c:49:5e:05: d0:e3:36:90:6b:3a:2a:3e:47:15:b2:96:77:ed:5d: 94:a0:76:e9:51:97:8c:7d:ad:4e:30:03:ea:83:1e: 37:eb:c3:9f:9e:01:7d:9b:9b:4d:88:ce:fb:63:ad: 00:b2:34:be:71:91:b0:56:18:51:fe:85:34:70:18: ac:da:61:60:83:4c:60:06:54:b3:b6:2e:ee:05:84: 4d:d3:81:2d:ad:1f:65:8d:11:c7:a0:55:1e:3e:a8: a5:b6:33:bc:0e:30:85:db:11:cc:fe:7d:28:b4:52: f2:8c:2e:08:2f:12:10:5a:4f:b9:b2:ed:72:c4:2e: 88:44:bf:cc:c0:44:0e:f6:9d:21:ed:7c:38:71:ae: 25:c7:62:14:7b:9d:0a:91:82:f5:0b:1d:7e:e8:78: 78:00:03:64:df:ce:39:5e:de:fa:0b:54:19:b0:c5: e3:4c:0d:c7:02:a0:d6:ea:ef:8a:58:af:e1:ad:22: 4a:11:08:14:8a:0f:9d:57:f3:5a:91:88:d0:65:9e: f0:06:44:4e:59:e6:c4:00:f4:50:3a:e7:81:13:38: 07:ef:37:d9:b3:53:73:c9:1f:f5:eb:d5:31:dd:55: 39:31:9a:7f:1f:0f:a3:ac:4b:58:a0:a7:44:0b:44: 94:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:92:C7:08:3B:33:B9:22:06:63:44:36:A1:30:A4:DE:9B:ED:43:C4 X509v3 Authority Key Identifier: keyid:6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/328C9E7CDC1A11EC89244C2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.11.114.0/24 Signature Algorithm: sha256WithRSAEncryption 50:1c:47:eb:2e:12:5e:f4:eb:e1:fd:82:a4:ee:ce:d7:33:b7: 33:c4:61:c8:df:6f:dd:07:5a:37:5f:ac:2e:9d:e3:f2:ad:75: 46:b7:eb:8b:c0:3e:17:f0:c5:0b:90:23:d8:ba:7b:e6:37:e3: a4:2a:58:e4:c8:69:60:8b:ca:fc:28:18:e9:a8:22:63:6a:1f: 5b:e5:60:b2:e3:92:fe:2b:42:a5:55:d6:af:f4:1d:de:5a:b9: 70:52:d6:67:10:ac:1e:f8:17:0b:e5:cf:14:3f:d3:64:d9:1d: 03:ef:2d:56:54:c8:a1:00:d0:d5:f3:03:44:a0:50:bf:3a:b5: 54:15:d7:fd:49:0c:a7:f5:d5:bf:01:18:b0:e4:59:b9:c4:ca: 85:9a:01:3c:ee:86:49:c7:de:88:ad:46:82:2d:14:9f:98:e0: c1:e2:45:25:46:80:94:a3:82:da:9a:2d:94:89:f5:fc:4c:87: 8d:a1:b3:e0:ec:59:71:f9:0f:96:cb:38:14:04:5a:c5:b3:3b: e4:0d:1b:ce:5a:63:fd:c2:9e:e1:79:90:6e:26:c2:56:3c:3b: a0:cf:96:84:55:df:11:b7:3b:37:8a:4b:38:9e:b6:f8:4e:70: f2:ff:21:1f:4a:4b:f8:cf:70:3d:a5:c0:50:ce:2f:3b:68:59: fe:0b:dc:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDZENUQ1MEU4OEI5RDY1RThBRkRBMjhDMkNFQTYxNTAx MjcwMzg2MDgwHhcNMjQwNjA1MDQzMTQ2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmZWEzMS1mODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09h1BhF8QrXJOHxJXgXQ4zaQazoqPkcVspZ37V2UoHbpUZeMfa1OMAPqgx43 68OfngF9m5tNiM77Y60AsjS+cZGwVhhR/oU0cBis2mFgg0xgBlSzti7uBYRN04Et rR9ljRHHoFUePqiltjO8DjCF2xHM/n0otFLyjC4ILxIQWk+5su1yxC6IRL/MwEQO 9p0h7Xw4ca4lx2IUe50KkYL1Cx1+6Hh4AANk3845Xt76C1QZsMXjTA3HAqDW6u+K WK/hrSJKEQgUig+dV/NakYjQZZ7wBkROWebEAPRQOueBEzgH7zfZs1NzyR/169Ux 3VU5MZp/Hw+jrEtYoKdEC0SUAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO2Sxwg7 M7kiBmNENqEwpN6b7UPEMB8GA1UdIwQYMBaAFG1dUOiLnWXor9oows6mFQEnA4YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BRTQ0RDI0QURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9iVjFRNkl1ZFplaXYyaWpDenFZVkFTY0Ro Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JWMVE2SXVkWmVpdjJpakN6cVlWQVNjRGhnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkxQkMvQUU0NEQyNEFEQkU5MTFFQzk1MTEwNTE1QzRGOUFFMDIvMzI4QzlFN0NE QzFBMTFFQzg5MjQ0QzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLC3IwDQYJKoZIhvcNAQELBQADggEBAFAcR+suEl706+H9 gqTuztcztzPEYcjfb90HWjdfrC6d4/KtdUa364vAPhfwxQuQI9i6e+Y346QqWOTI aWCLyvwoGOmoImNqH1vlYLLjkv4rQqVV1q/0Hd5auXBS1mcQrB74FwvlzxQ/02TZ HQPvLVZUyKEA0NXzA0SgUL86tVQV1/1JDKf11b8BGLDkWbnEyoWaATzuhknH3oit RoItFJ+Y4MHiRSVGgJSjgtqaLZSJ9fxMh42hs+DsWXH5D5bLOBQEWsWzO+QNG85a Y/3CnuF5kG4mwlY8O6DPloRV3xG3OzeKSzietvhOcPL/IR9KS/jPcD2lwFDOLzto Wf4L3JA= -----END CERTIFICATE-----Generated at Mon Jun 17 04:54:46 2024 by rpki-client on console-fra.rpki-client.org