$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2EEE5866DAAE11E9A0D2D77BC4F9AE02.roa File: 2EEE5866DAAE11E9A0D2D77BC4F9AE02.roa (raw, json) Hash identifier: nL6wEW9pLomfYHclEU8sPpPRG0B+AMu68rYHS2BYRDE= Subject key identifier: E5:3D:9B:A5:49:E5:A4:BE:3C:46:9A:31:2A:DD:27:6C:99:5B:2E:83 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1799 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2EEE5866DAAE11E9A0D2D77BC4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:32 +0000 ROA not before: Tue 20 Feb 2024 17:55:32 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 24346 IP address blocks: 203.12.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6041 (0x1799) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:32 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e793-6d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a5:f2:72:39:45:98:f7:3e:6b:75:ca:a3:d0: ba:96:40:2c:bf:8f:57:15:f5:63:07:9d:12:d7:ab: 1f:e7:14:af:0a:b6:0e:d4:d1:1d:da:df:9f:8e:ce: 69:e3:82:20:49:53:b5:59:d3:15:15:8e:16:af:c3: 4d:8c:a1:d0:9a:60:32:fe:23:94:25:e7:8a:f9:c0: 4d:c7:ed:83:94:28:3b:5d:b1:26:9b:4f:e4:2e:de: d0:91:32:5c:af:32:55:df:67:e4:ae:d3:4a:fa:93: f1:ce:17:77:24:25:4c:3b:26:6f:13:2f:7a:30:51: 01:5c:a5:e5:ef:c7:f2:8a:c3:4e:6d:5c:01:a6:c5: f0:1f:6b:fb:81:d9:04:ee:79:83:ff:d2:4f:b4:3b: 79:00:8b:63:2b:66:9e:6f:86:9b:f4:b4:f3:66:07: 18:9e:20:34:a8:49:4e:cd:6b:19:c3:85:2c:fc:1b: be:9d:60:ee:ad:71:9f:a9:d1:5c:30:a8:4a:99:58: 7e:15:be:cf:56:23:d3:1c:82:b1:ef:54:51:0f:aa: 46:61:26:f0:bf:8c:c3:67:a9:69:83:e3:71:16:7d: 9f:c9:fb:03:cf:7b:53:9c:f1:bf:a3:a2:a6:f2:6f: c2:9e:74:62:63:7a:13:91:71:f2:fd:ac:72:d7:f4: 48:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3D:9B:A5:49:E5:A4:BE:3C:46:9A:31:2A:DD:27:6C:99:5B:2E:83 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2EEE5866DAAE11E9A0D2D77BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.119.0/24 Signature Algorithm: sha256WithRSAEncryption 63:17:e3:90:bc:49:32:51:fb:0f:82:e2:46:f4:70:03:f3:6b: 9d:84:3a:0d:c9:3c:a1:15:48:e9:0f:db:af:4c:1f:0b:07:0d: 9e:a2:9b:ec:46:1e:b5:f3:d5:8b:71:fb:1d:d3:bf:6b:d1:6b: 04:c1:cf:c9:61:1a:c5:25:54:f1:32:2e:ef:18:dd:b0:ff:b6: 58:41:39:23:14:66:63:7c:d2:57:e9:92:5e:b0:83:ea:c6:87: 24:5a:7c:9f:02:a3:35:29:f1:64:d6:67:f6:ab:1d:55:26:60: 4d:dc:d1:7f:7a:02:d0:81:04:b8:12:3e:64:d3:28:13:92:3a: eb:96:53:98:80:17:e9:87:d0:93:46:2e:f8:de:45:df:e0:f7: e9:35:c0:48:71:13:18:aa:49:c9:40:d8:fa:1e:51:4e:54:47: 14:9b:71:bb:be:88:2c:95:5c:37:52:e1:0e:e9:ea:32:b7:81: 4e:23:18:b0:18:f6:e9:96:bf:b2:3e:74:50:3a:9b:93:46:df: b6:3a:bd:83:d9:d4:fd:ee:6d:bc:e3:3d:33:1f:4e:b3:6e:43: 70:91:56:81:a6:82:b0:f6:13:e0:ad:d4:26:93:46:0b:d6:93: 85:95:27:41:e8:9c:fd:bc:04:16:14:3c:3e:df:8c:98:c6:20: 1b:ba:fc:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTMyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5My02ZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqXycjlFmPc+a3XKo9C6lkAsv49XFfVjB50S16sf5xSvCrYO1NEd2t+fjs5p 44IgSVO1WdMVFY4Wr8NNjKHQmmAy/iOUJeeK+cBNx+2DlCg7XbEmm0/kLt7QkTJc rzJV32fkrtNK+pPxzhd3JCVMOyZvEy96MFEBXKXl78fyisNObVwBpsXwH2v7gdkE 7nmD/9JPtDt5AItjK2aeb4ab9LTzZgcYniA0qElOzWsZw4Us/Bu+nWDurXGfqdFc MKhKmVh+Fb7PViPTHIKx71RRD6pGYSbwv4zDZ6lpg+NxFn2fyfsDz3tTnPG/o6Km 8m/CnnRiY3oTkXHy/axy1/RIuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOU9m6VJ 5aS+PEaaMSrdJ2yZWy6DMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMkVFRTU4NjZE QUFFMTFFOUEwRDJENzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLDHcwDQYJKoZIhvcNAQELBQADggEBAGMX45C8STJR+w+C 4kb0cAPza52EOg3JPKEVSOkP269MHwsHDZ6im+xGHrXz1Ytx+x3Tv2vRawTBz8lh GsUlVPEyLu8Y3bD/tlhBOSMUZmN80lfpkl6wg+rGhyRafJ8CozUp8WTWZ/arHVUm YE3c0X96AtCBBLgSPmTTKBOSOuuWU5iAF+mH0JNGLvjeRd/g9+k1wEhxExiqSclA 2PoeUU5URxSbcbu+iCyVXDdS4Q7p6jK3gU4jGLAY9umWv7I+dFA6m5NG37Y6vYPZ 1P3ubbzjPTMfTrNuQ3CRVoGmgrD2E+Ct1CaTRgvWk4WVJ0HonP28BBYUPD7fjJjG IBu6/Bo= -----END CERTIFICATE-----Generated at Fri May 31 19:47:54 2024 by rpki-client on console-fra.rpki-client.org