$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa File: B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa (raw, json) Hash identifier: KhB6nDRjxiARxeV5hELlMRp9BJkBhRrn2BQg6Mw4jbM= Subject key identifier: EA:28:CC:1D:E1:A4:2A:5D:70:D8:15:A1:9A:DA:88:CE:B6:6A:21:8E Certificate issuer: /CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Certificate serial: 38 Authority key identifier: D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa Signing time: Sat 09 Dec 2023 06:16:30 +0000 ROA not before: Sat 09 Dec 2023 06:16:30 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134783 IP address blocks: 202.6.120.0/22 maxlen: 24 202.58.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Validity Not Before: Dec 9 06:16:30 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6574063e-c0b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a3:20:ee:7b:3a:4d:cb:46:49:18:78:7c:36: ea:b3:41:02:8d:d9:5a:3f:d3:d3:98:6d:98:15:f6: 62:d0:8a:1b:3f:28:ad:14:ec:67:80:1f:62:f8:35: 3c:94:2a:71:4a:06:8e:38:a6:c8:3a:54:7d:7e:f7: 30:3e:98:02:34:da:8c:bf:56:3e:bc:c0:b8:15:1d: eb:ba:de:e6:28:c8:96:89:7c:59:b6:88:fb:f1:2d: c5:97:10:99:d8:d1:16:34:ba:b7:e1:cf:cb:4a:85: a5:d8:95:d5:95:6d:a3:03:a5:57:a5:93:5a:83:10: 56:18:68:21:45:e1:41:82:ae:20:1f:6b:07:eb:99: 53:91:50:92:ae:5e:45:54:31:f7:d5:ee:58:6a:c8: 48:21:93:d5:94:7c:6e:8a:a6:e3:53:47:b0:4d:8b: db:5d:ef:a8:d6:ef:3b:20:a4:b2:84:ae:51:fc:57: a7:4a:5b:2a:e8:91:5f:d1:72:fc:d4:eb:24:5b:09: a2:6f:53:71:4a:07:b4:bb:58:7c:fe:04:d6:e7:25: 32:3e:47:44:92:5e:67:1a:34:bd:93:86:80:72:34: 30:ba:af:7e:cc:70:9f:01:f5:8d:f0:05:46:ec:5e: 83:ef:a2:27:f4:9b:a2:ac:e2:3e:d7:05:9f:eb:91: 2d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:28:CC:1D:E1:A4:2A:5D:70:D8:15:A1:9A:DA:88:CE:B6:6A:21:8E X509v3 Authority Key Identifier: keyid:D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.6.120.0/22 202.58.248.0/22 Signature Algorithm: sha256WithRSAEncryption d1:24:89:20:80:9b:21:ce:6e:6b:d1:ad:42:66:44:da:f2:14: 01:08:c2:35:d9:b4:4e:99:28:c3:2b:0b:d5:bc:7c:bd:d2:4e: 7a:d3:83:db:5f:04:a1:c9:4e:57:0a:ff:9a:1e:ae:c2:64:df: ee:59:c7:5d:3e:15:9c:eb:73:55:21:0b:7c:27:31:71:c3:ae: 9c:98:1a:94:30:df:06:c2:86:e7:9c:35:f4:eb:30:4a:38:2b: d5:b0:09:5d:fa:bd:24:20:cc:8c:89:3b:df:d2:f3:b3:bc:62: f3:39:29:3b:96:b5:11:65:0c:a5:2d:63:3a:7c:30:62:ba:07: 7e:d6:e7:8e:45:e0:92:47:b2:fc:a1:0d:55:89:07:ba:42:c4: 17:c3:cf:42:95:d0:5f:bd:81:d9:9e:fa:26:7c:e0:08:8f:ac: 2b:cc:4d:8a:47:65:eb:c5:5c:c9:97:ba:86:de:b6:ea:b7:b6: 50:51:74:86:75:92:f5:1f:da:7b:12:49:d3:f9:e7:6b:81:f2: 21:36:c6:fc:de:85:f7:b3:26:b5:53:30:c1:00:58:b9:c5:3a: e2:d8:12:f7:cd:fa:27:c7:4c:67:f7:d4:bf:7b:97:8a:3a:5c: 4e:d3:6f:6f:83:c4:53:ab:60:55:8e:15:92:ce:70:0a:9f:bd: 08:07:b4:c9 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OEE0OTExMC8GA1UEBRMoRDU4NzFFOUZDNkZCREU3REM3MUI3RTg5NUM4QTA0QzNE MDAyMUQ4NTAeFw0yMzEyMDkwNjE2MzBaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NzQwNjNlLWMwYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4oyDuezpNy0ZJGHh8NuqzQQKN2Vo/09OYbZgV9mLQihs/KK0U7GeAH2L4NTyU KnFKBo44psg6VH1+9zA+mAI02oy/Vj68wLgVHeu63uYoyJaJfFm2iPvxLcWXEJnY 0RY0urfhz8tKhaXYldWVbaMDpVelk1qDEFYYaCFF4UGCriAfawfrmVORUJKuXkVU MffV7lhqyEghk9WUfG6KpuNTR7BNi9td76jW7zsgpLKErlH8V6dKWyrokV/RcvzU 6yRbCaJvU3FKB7S7WHz+BNbnJTI+R0SSXmcaNL2ThoByNDC6r37McJ8B9Y3wBUbs XoPvoif0m6Ks4j7XBZ/rkS0HAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU6ijMHeGk Kl1w2BWhmtqIzrZqIY4wHwYDVR0jBBgwFoAU1Ycen8b73n3HG36JXIoEw9ACHYUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4QTQ5LzQ3RDA0NDY0NDdC NzExRUU4QTBBOUM0M0M0RjlBRTAyLzFZY2VuOGI3M24zSEczNkpYSW9FdzlBQ0hZ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVljZW44YjczbjNIRzM2SlhJb0V3OUFDSFlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEE0OS80N0QwNDQ2NDQ3QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi9CNzhDQ0E0RTRD NTcxMUVFOUZFMkVBMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAsoGeAMEAso6+DANBgkqhkiG9w0BAQsFAAOCAQEA0SSJIICb Ic5ua9GtQmZE2vIUAQjCNdm0TpkowysL1bx8vdJOetOD218EoclOVwr/mh6uwmTf 7lnHXT4VnOtzVSELfCcxccOunJgalDDfBsKG55w19OswSjgr1bAJXfq9JCDMjIk7 39Lzs7xi8zkpO5a1EWUMpS1jOnwwYroHftbnjkXgkkey/KENVYkHukLEF8PPQpXQ X72B2Z76JnzgCI+sK8xNikdl68VcyZe6ht626re2UFF0hnWS9R/aexJJ0/nna4Hy ITbG/N6F97MmtVMwwQBYucU64tgS9836J8dMZ/fUv3uXijpcTtNvb4PEU6tgVY4V ks5wCp+9CAe0yQ== -----END CERTIFICATE-----Generated at Fri Jun 7 08:57:16 2024 by rpki-client on console-fra.rpki-client.org