$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/E756D48AB7A911EBB5A9A810C4F9AE02.roa File: E756D48AB7A911EBB5A9A810C4F9AE02.roa (raw, json) Hash identifier: xTtn/tFypxeRL2x4WUeHhca8V7kf2TvsALHvGkxyqtA= Subject key identifier: 6B:BC:88:46:A4:3A:A9:DA:E6:98:E6:3C:79:FA:D5:F0:F2:F3:E6:D3 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1794 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/E756D48AB7A911EBB5A9A810C4F9AE02.roa Signing time: Tue 20 Feb 2024 17:55:27 +0000 ROA not before: Tue 20 Feb 2024 17:55:27 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 16740 IP address blocks: 124.254.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 17:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6036 (0x1794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:55:27 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d4e78f-514d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:fb:37:aa:11:07:0d:b1:e1:1e:f3:88:82: 97:97:7d:80:34:1f:4d:ba:6e:10:88:b4:19:90:13: 3d:cb:ad:81:a5:f3:94:4e:d6:1f:fa:11:f3:a5:6a: d1:cd:b2:10:c5:0b:f2:12:27:90:93:66:7b:db:a4: 41:a1:fb:33:48:ea:15:f4:16:77:e0:0a:8d:03:56: 31:29:01:3a:96:fe:7b:90:e7:4a:3f:cb:80:f2:02: 39:bc:92:1d:a1:de:d8:ca:a4:39:77:09:4e:cd:f2: 72:a4:32:70:1f:03:8d:6a:c8:7f:f7:f4:14:a8:55: a3:d6:7d:d1:fc:84:b6:f0:e2:cd:3f:23:3f:db:0b: b5:c3:00:c2:20:e9:a3:fb:61:32:e9:6f:d2:60:22: 8a:35:a8:a4:ac:4e:6c:28:41:64:3b:b3:88:05:f2: 6c:19:69:a8:5f:ed:70:34:61:07:3e:0f:ea:ff:89: e2:9d:ea:44:c5:41:ad:de:e2:22:08:5a:47:00:45: 9a:ef:e3:be:83:51:16:08:cb:76:4e:df:21:4a:a1: 71:88:fe:82:d6:14:64:a2:e7:77:7d:d1:02:7f:25: f1:98:0d:a6:dd:44:64:0c:2a:7d:43:fe:2a:1f:90: 06:ac:bd:21:4d:8e:99:c5:8d:b4:9e:0a:49:ad:fe: 46:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BC:88:46:A4:3A:A9:DA:E6:98:E6:3C:79:FA:D5:F0:F2:F3:E6:D3 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/E756D48AB7A911EBB5A9A810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.254.90.0/24 Signature Algorithm: sha256WithRSAEncryption 23:4b:f6:55:89:1c:d1:a4:3d:29:ca:f9:51:f4:9b:1b:70:2b: b9:c5:15:4c:2d:52:b8:91:c1:ee:67:ff:4d:8a:ad:d5:8d:f1: 00:7b:81:f1:f2:72:ac:4f:bf:ed:64:1f:a2:15:c5:f3:26:09: a1:16:e0:36:67:af:fb:cb:6b:a0:02:a1:cf:9d:61:de:7b:5e: 6e:9a:9a:94:e0:70:8c:83:09:d1:30:cd:be:b8:d1:81:6b:f8: 8e:fe:5b:c5:a4:8f:3a:d6:a2:12:ca:70:90:8f:b7:89:40:d9: 02:eb:fc:a3:de:d0:90:cc:48:c0:ab:58:c3:54:2e:94:5e:80: 61:69:7a:60:4b:c7:5c:69:a9:55:e6:4d:67:18:ba:06:6d:81: 89:a6:df:6b:1f:e3:1e:46:59:be:95:b1:17:fe:83:af:f8:78: 76:96:af:2b:ab:63:51:a4:c7:c7:7d:fa:8a:e4:58:a6:ae:ba: 69:a2:13:8c:d5:d8:c2:91:48:f2:f7:44:fd:97:f5:82:b3:8b: bc:97:83:01:35:41:5d:6a:44:3e:99:00:63:e7:16:7c:e6:a8: 2d:bd:c9:5e:f3:83:02:88:61:bc:8f:cf:76:8a:bd:de:10:35: ae:57:89:71:fe:20:32:b2:b4:00:a5:ea:30:b5:d6:e9:4b:22: e1:3f:c4:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQwMjIwMTc1NTI3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ0ZTc4Zi01MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7L7N6oRBw2x4R7ziIKXl32ANB9Num4QiLQZkBM9y62BpfOUTtYf+hHzpWrR zbIQxQvyEieQk2Z726RBofszSOoV9BZ34AqNA1YxKQE6lv57kOdKP8uA8gI5vJId od7YyqQ5dwlOzfJypDJwHwONash/9/QUqFWj1n3R/IS28OLNPyM/2wu1wwDCIOmj +2Ey6W/SYCKKNaikrE5sKEFkO7OIBfJsGWmoX+1wNGEHPg/q/4ninepExUGt3uIi CFpHAEWa7+O+g1EWCMt2Tt8hSqFxiP6C1hRkoud3fdECfyXxmA2m3URkDCp9Q/4q H5AGrL0hTY6ZxY20ngpJrf5GwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGu8iEak Oqna5pjmPHn61fDy8+bTMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvRTc1NkQ0OEFC N0E5MTFFQkI1QTlBODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB8/lowDQYJKoZIhvcNAQELBQADggEBACNL9lWJHNGkPSnK +VH0mxtwK7nFFUwtUriRwe5n/02KrdWN8QB7gfHycqxPv+1kH6IVxfMmCaEW4DZn r/vLa6ACoc+dYd57Xm6ampTgcIyDCdEwzb640YFr+I7+W8WkjzrWohLKcJCPt4lA 2QLr/KPe0JDMSMCrWMNULpRegGFpemBLx1xpqVXmTWcYugZtgYmm32sf4x5GWb6V sRf+g6/4eHaWryurY1Gkx8d9+orkWKauummiE4zV2MKRSPL3RP2X9YKzi7yXgwE1 QV1qRD6ZAGPnFnzmqC29yV7zgwKIYbyPz3aKvd4QNa5XiXH+IDKytACl6jC11ulL IuE/xME= -----END CERTIFICATE-----Generated at Fri Jun 14 18:52:14 2024 by rpki-client on console-fra.rpki-client.org