$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/3AED95046D0111ECA5893B2BC4F9AE02.roa File: 3AED95046D0111ECA5893B2BC4F9AE02.roa (raw, json) Hash identifier: IfrvGQR6EZnxKh/ee5nDvGjpbZn9NQYw1QY+cCWCkhM= Subject key identifier: E2:71:B3:25:32:0B:6C:FA:0B:AA:17:47:90:A2:3F:EB:82:1B:9E:48 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1795 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/3AED95046D0111ECA5893B2BC4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:28 +0000 ROA not before: Tue 20 Feb 2024 17:55:28 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 18037 IP address blocks: 27.106.200.0/22 maxlen: 22 175.45.110.0/24 maxlen: 24 203.89.64.0/19 maxlen: 19 203.89.67.0/24 maxlen: 24 203.89.73.0/24 maxlen: 24 203.89.90.0/24 maxlen: 24 203.89.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6037 (0x1795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:28 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e790-f9ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:96:01:27:40:be:1e:ca:66:86:ed:7e:0f: cf:89:75:e7:53:9a:a8:d1:f4:f3:eb:df:0b:40:39: 9e:77:4f:ea:cc:26:be:5e:b0:ec:f4:d4:d1:b0:9e: 4f:d2:b5:69:0c:24:26:77:06:b7:6b:f7:85:6e:1e: d4:7a:4a:14:ad:93:13:d5:d2:bc:be:a5:73:14:dc: ab:cc:78:5e:7d:eb:be:5b:bc:cf:31:cf:6c:66:48: c6:16:94:6b:35:74:0a:f2:84:6e:3b:b9:1b:d3:41: df:b2:7c:36:4a:6c:c1:a7:56:b4:fb:de:83:a3:69: df:88:0b:9e:18:5f:1c:7e:8f:58:79:e0:f8:89:6d: c3:71:19:b2:be:f2:01:aa:36:1b:93:5c:ff:04:97: 88:b8:1e:e9:7d:6d:df:17:57:da:ea:3e:65:fb:b7: 2d:30:f6:02:e3:b0:8d:0d:e3:f9:3c:e2:9e:65:0c: f6:47:e7:bb:20:b8:e5:50:e3:7c:af:88:f8:b6:c4: 37:e7:50:b4:97:cf:9c:3c:0b:88:f0:4e:82:fb:c5: 94:47:3d:bd:a2:d5:ba:1e:27:10:96:2e:1a:3b:d9: 22:78:37:a2:61:8d:d6:69:6f:dd:ae:20:30:1c:7e: 57:31:13:3d:db:a0:c4:9e:af:a5:c7:fd:83:6c:fb: a3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:71:B3:25:32:0B:6C:FA:0B:AA:17:47:90:A2:3F:EB:82:1B:9E:48 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/3AED95046D0111ECA5893B2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.106.200.0/22 175.45.110.0/24 203.89.64.0/19 Signature Algorithm: sha256WithRSAEncryption 85:6e:d6:ea:ed:13:61:4e:e1:02:5a:bc:16:2b:c2:0d:d2:36: 14:37:2c:f3:5e:17:a8:6b:d3:7b:5c:02:8c:ea:ea:97:fd:86: 56:38:7d:f3:40:c8:6f:d2:97:b3:26:65:e2:f9:b1:6c:be:96: fe:6b:e3:7a:cd:03:6f:54:9f:e9:66:c0:84:b3:69:9f:0a:e5: 18:fe:68:1a:f5:dd:83:76:ed:b7:31:03:e9:29:b3:0c:04:85: 16:40:b1:f8:0f:bd:88:48:83:0e:43:80:78:b0:28:54:59:c5: 64:bb:e9:61:fa:f8:21:6b:72:aa:fe:a9:33:35:cb:8a:6d:fa: e7:74:97:63:ce:83:8b:9b:db:71:59:4a:6c:e1:87:be:f3:d7: 40:22:e0:b6:e5:33:fd:6b:0e:80:fb:5d:82:af:9f:a1:d9:7a: 52:53:ce:90:7f:84:36:51:91:8c:73:c1:2d:f4:f4:ec:b7:de: 1b:65:56:85:0d:a8:fe:3a:46:3e:14:d1:9c:14:b8:d3:81:cc: 3b:d5:8a:1b:8f:21:1a:29:f0:d0:23:80:25:06:23:55:83:d0: f5:ff:0b:1e:cc:5b:e4:cd:b2:ab:88:f2:80:bd:02:2d:c3:f3: 63:54:6c:92:0c:d2:b3:c7:86:a2:9a:90:18:2a:24:42:e7:62: 40:29:2e:22 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICF5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTI4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc5MC1mOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE2WASdAvh7KZobtfg/PiXXnU5qo0fTz698LQDmed0/qzCa+XrDs9NTRsJ5P 0rVpDCQmdwa3a/eFbh7UekoUrZMT1dK8vqVzFNyrzHhefeu+W7zPMc9sZkjGFpRr NXQK8oRuO7kb00Hfsnw2SmzBp1a0+96Do2nfiAueGF8cfo9YeeD4iW3DcRmyvvIB qjYbk1z/BJeIuB7pfW3fF1fa6j5l+7ctMPYC47CNDeP5POKeZQz2R+e7ILjlUON8 r4j4tsQ351C0l8+cPAuI8E6C+8WURz29otW6HicQli4aO9kieDeiYY3WaW/driAw HH5XMRM926DEnq+lx/2DbPujxQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOJxsyUy C2z6C6oXR5CiP+uCG55IMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvM0FFRDk1MDQ2 RDAxMTFFQ0E1ODkzQjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIbasgDBACvLW4DBAXLWUAwDQYJKoZIhvcNAQELBQADggEB AIVu1urtE2FO4QJavBYrwg3SNhQ3LPNeF6hr03tcAozq6pf9hlY4ffNAyG/Sl7Mm ZeL5sWy+lv5r43rNA29Un+lmwISzaZ8K5Rj+aBr13YN27bcxA+kpswwEhRZAsfgP vYhIgw5DgHiwKFRZxWS76WH6+CFrcqr+qTM1y4pt+ud0l2POg4ub23FZSmzhh77z 10Ai4LblM/1rDoD7XYKvn6HZelJTzpB/hDZRkYxzwS309Oy33htlVoUNqP46Rj4U 0ZwUuNOBzDvVihuPIRop8NAjgCUGI1WD0PX/Cx7MW+TNsquI8oC9Ai3D82NUbJIM 0rPHhqKakBgqJELnYkApLiI= -----END CERTIFICATE-----Generated at Fri May 31 19:47:54 2024 by rpki-client on console-fra.rpki-client.org