$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/A6C3D8721A9711EC88A50A2CC4F9AE02.roa File: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (raw, json) Hash identifier: fZc9o03yVNykp/Mnk1OWBeWcJqnv+GW9pYxj1fG6RDY= Subject key identifier: 25:C8:8D:90:B5:CD:1D:3E:B6:8D:64:9C:E3:4B:76:98:C0:90:01:3D Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 041D Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/A6C3D8721A9711EC88A50A2CC4F9AE02.roa Signing time: Wed 17 Jan 2024 01:43:35 +0000 ROA not before: Wed 17 Jan 2024 01:43:35 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 4058 IP address blocks: 202.88.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Validity Not Before: Jan 17 01:43:35 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a730c7-0209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:3b:76:27:6e:a2:98:6a:12:f4:54:98:83:68: 11:5e:4e:4c:5d:86:c8:56:30:23:98:3d:71:62:08: 1b:4e:a9:d0:e6:20:58:1b:90:85:34:f1:c8:09:8e: c1:68:e0:e3:02:ea:d7:20:c3:3c:57:a2:53:06:62: 42:62:e8:6c:d4:bc:54:78:7d:e5:7f:bf:41:4d:81: ca:29:1f:0d:5d:60:35:f8:6e:d7:1d:3e:c0:0b:05: f0:67:5a:ee:a1:76:e1:95:4d:a0:80:07:8a:a6:fd: ba:b6:d8:f1:55:6f:14:f9:c4:70:44:31:a2:79:8b: 2f:1f:60:53:a6:03:17:8c:ba:4d:ad:a7:b5:a2:83: b0:b8:6e:1d:69:22:f6:7e:29:d2:a9:41:e5:62:32: 21:bc:d0:64:9a:87:ab:e3:8e:9a:2d:b0:36:a5:55: 92:81:00:3d:9f:a9:11:9d:bc:06:5b:bc:72:3f:c7: 79:f4:d6:c2:ee:d6:ae:28:40:45:82:e6:58:00:9d: 21:01:9a:8e:36:30:8b:21:8e:c1:25:2f:bf:e3:90: 5e:5b:34:84:0c:7b:42:16:97:47:94:98:e4:30:03: 5f:88:e3:42:5b:e2:ee:78:f1:83:f9:0e:6c:39:8c: 13:fb:7e:0e:ae:45:1d:44:7f:64:be:f2:c9:94:ac: cd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C8:8D:90:B5:CD:1D:3E:B6:8D:64:9C:E3:4B:76:98:C0:90:01:3D X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/A6C3D8721A9711EC88A50A2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.88.8.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:bb:d7:e7:07:14:4d:ce:f8:c4:35:97:62:5e:b5:a3:55:c4: 63:bb:55:8c:9e:8a:15:2c:e3:03:64:f6:5d:c3:c4:e1:37:68: ff:36:ac:99:69:5c:e1:79:e2:e2:49:83:75:c9:b8:d1:ad:ac: e8:d5:dd:2d:62:21:5a:02:b3:f9:4d:a3:64:ec:47:93:e2:69: 19:78:42:aa:6c:1e:41:b3:2d:20:0c:c7:b6:32:30:e5:ba:70: 39:9f:8b:6d:7b:ed:fc:74:dc:38:eb:13:92:b0:09:41:d8:58: 26:fa:7a:c9:ea:80:8e:eb:ae:51:80:a0:95:0b:63:87:21:88: 35:4b:ca:47:81:c5:37:c7:ee:18:31:9d:31:96:f1:31:be:24: 29:ab:d5:ed:98:c6:bf:4f:41:df:71:07:f4:e9:f5:3b:9e:eb: d8:3a:5e:d9:cb:12:5f:84:56:5b:ff:e0:53:fe:87:71:d3:19: 87:57:f7:3c:30:9e:d4:29:b1:b7:dd:96:ae:ed:a9:8e:af:0f: 00:b3:bb:72:01:7b:dd:b5:f5:19:ce:19:27:33:19:7f:83:6f: 77:8d:04:cb:b6:d6:8b:a6:fb:8a:66:65:4a:a4:ee:28:78:f3: c2:1f:f5:0b:cc:7c:19:86:03:0d:fa:66:3b:2a:20:5e:1d:fa: 1d:91:30:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjQwMTE3MDE0MzM1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MzBjNy0wMjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9zt2J26imGoS9FSYg2gRXk5MXYbIVjAjmD1xYggbTqnQ5iBYG5CFNPHICY7B aODjAurXIMM8V6JTBmJCYuhs1LxUeH3lf79BTYHKKR8NXWA1+G7XHT7ACwXwZ1ru oXbhlU2ggAeKpv26ttjxVW8U+cRwRDGieYsvH2BTpgMXjLpNrae1ooOwuG4daSL2 finSqUHlYjIhvNBkmoer446aLbA2pVWSgQA9n6kRnbwGW7xyP8d59NbC7tauKEBF guZYAJ0hAZqONjCLIY7BJS+/45BeWzSEDHtCFpdHlJjkMANfiONCW+LuePGD+Q5s OYwT+34OrkUdRH9kvvLJlKzNcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCXIjZC1 zR0+to1knONLdpjAkAE9MB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE2MjMvREQ2Qjc1MjgwNjBDMTFFQ0FGNjc1MDQzQzRGOUFFMDIvQTZDM0Q4NzIx QTk3MTFFQzg4QTUwQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKWAgwDQYJKoZIhvcNAQELBQADggEBAA271+cHFE3O+MQ1 l2JetaNVxGO7VYyeihUs4wNk9l3DxOE3aP82rJlpXOF54uJJg3XJuNGtrOjV3S1i IVoCs/lNo2TsR5PiaRl4QqpsHkGzLSAMx7YyMOW6cDmfi2177fx03DjrE5KwCUHY WCb6esnqgI7rrlGAoJULY4chiDVLykeBxTfH7hgxnTGW8TG+JCmr1e2Yxr9PQd9x B/Tp9Tue69g6XtnLEl+EVlv/4FP+h3HTGYdX9zwwntQpsbfdlq7tqY6vDwCzu3IB e9219RnOGSczGX+Db3eNBMu21oum+4pmZUqk7ih488If9QvMfBmGAw36ZjsqIF4d +h2RMMo= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org