$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/07FBA006084E11EF89D29620C4F9AE02.roa File: 07FBA006084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: kLrHarsAJe0BrznIqBMgdmpnUXMXpEfMItL+hhFxFSE= Subject key identifier: DD:E7:0D:5B:9D:79:EC:53:C2:CF:75:1F:E1:AB:DD:65:C5:A9:BE:8D Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 04AC Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/07FBA006084E11EF89D29620C4F9AE02.roa Signing time: Thu 02 May 2024 06:34:31 +0000 ROA not before: Thu 02 May 2024 06:34:31 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 10207 IP address blocks: 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: May 2 06:34:31 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=663333f6-4b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:af:5c:f4:d3:9b:4d:fd:33:d6:b2:71:fb: 32:1d:3a:51:9a:55:f4:e7:0c:21:42:4e:19:38:d6: 74:70:d6:aa:b6:9f:65:9b:fb:8b:f6:e9:f3:5a:18: 5a:97:bd:73:18:5c:9a:eb:09:43:31:b5:1c:3e:1b: 79:90:2d:c9:3c:33:51:41:28:46:5e:43:5d:d9:2c: 31:fd:2d:32:84:1d:7c:eb:31:71:0f:18:14:bf:1f: 59:b6:57:77:47:8e:58:0e:d3:0a:13:8a:c8:cd:e8: 3a:98:d9:ff:fa:fe:d9:f7:76:e5:72:77:77:51:b4: 52:2c:04:e8:4d:2e:15:c6:c2:69:b2:bf:9e:fd:28: d1:b0:9b:f7:64:9d:fd:b4:65:e3:a6:a8:e4:1c:b5: 5a:87:87:7b:e8:f0:b7:85:3c:2a:56:9c:7d:f3:47: 52:d2:3f:1a:b0:f9:d5:4b:32:fb:d1:6c:cf:b3:fb: e6:9a:6e:c9:f4:87:88:cb:65:7f:05:3f:bb:e3:ca: d0:e5:27:32:fc:8d:7b:2e:c4:92:ac:06:3d:3e:59: a8:de:27:fb:0c:12:bc:02:3b:d9:b1:31:56:b4:ed: 75:18:8b:c5:66:97:58:4e:60:59:49:8f:0d:73:c5: ff:8f:0c:69:13:bb:a0:86:c6:4e:3d:2e:db:74:aa: f2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E7:0D:5B:9D:79:EC:53:C2:CF:75:1F:E1:AB:DD:65:C5:A9:BE:8D X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/07FBA006084E11EF89D29620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption 78:59:d6:97:bf:83:62:29:d4:83:53:db:89:70:33:66:9b:a7: 8e:25:db:f9:4b:fd:41:9a:7d:fb:36:61:2f:41:65:b2:d0:11: ce:c8:d1:f5:67:94:aa:24:3b:c6:08:b5:a4:a3:a8:85:a7:de: 06:82:42:28:61:65:b4:a5:38:29:63:fd:5f:46:93:6a:9c:54: a5:af:8f:da:a0:65:33:b4:e4:a6:31:2f:e8:de:42:f0:80:2f: 60:cf:99:55:08:8f:f0:2a:70:c5:81:f0:df:c6:68:b1:92:71: 63:de:26:6d:45:8a:5b:fe:0f:49:81:79:72:ce:7b:be:22:27: 23:21:81:07:1c:11:d2:63:92:3b:80:56:ce:9d:ea:e4:44:3a: f8:0e:87:06:61:18:62:68:ef:49:61:b1:4a:f0:06:1f:f5:6e: a6:b6:ad:a4:cd:36:37:5d:86:11:06:bb:64:4a:76:4c:fa:68: 70:24:c2:f1:fd:91:13:46:b4:c0:d3:fe:62:f3:27:95:b5:c3: e4:b1:2e:c1:42:87:1a:6a:29:c3:65:1e:11:c2:36:07:4b:1e: 96:41:23:cc:0b:90:36:7b:19:15:3e:8e:d6:ea:9a:9b:a0:59: e6:c7:2d:39:73:a0:81:6f:0c:f0:a1:7e:23:09:ad:b7:4b:be: a0:a4:f5:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjQwNTAyMDYzNDMxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzMzNmNi00YjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0CvXPTTm039M9aycfsyHTpRmlX05wwhQk4ZONZ0cNaqtp9lm/uL9unzWhha l71zGFya6wlDMbUcPht5kC3JPDNRQShGXkNd2Swx/S0yhB186zFxDxgUvx9Ztld3 R45YDtMKE4rIzeg6mNn/+v7Z93blcnd3UbRSLAToTS4VxsJpsr+e/SjRsJv3ZJ39 tGXjpqjkHLVah4d76PC3hTwqVpx980dS0j8asPnVSzL70WzPs/vmmm7J9IeIy2V/ BT+748rQ5Scy/I17LsSSrAY9Plmo3if7DBK8AjvZsTFWtO11GIvFZpdYTmBZSY8N c8X/jwxpE7ughsZOPS7bdKry+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN3nDVud eexTws91H+Gr3WXFqb6NMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDdGQkEwMDYw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALfGeAwDQYJKoZIhvcNAQELBQADggEBAHhZ1pe/g2Ip1INT 24lwM2abp44l2/lL/UGaffs2YS9BZbLQEc7I0fVnlKokO8YItaSjqIWn3gaCQihh ZbSlOClj/V9Gk2qcVKWvj9qgZTO05KYxL+jeQvCAL2DPmVUIj/AqcMWB8N/GaLGS cWPeJm1Filv+D0mBeXLOe74iJyMhgQccEdJjkjuAVs6d6uREOvgOhwZhGGJo70lh sUrwBh/1bqa2raTNNjddhhEGu2RKdkz6aHAkwvH9kRNGtMDT/mLzJ5W1w+SxLsFC hxpqKcNlHhHCNgdLHpZBI8wLkDZ7GRU+jtbqmpugWebHLTlzoIFvDPChfiMJrbdL vqCk9Us= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:54 2024 by rpki-client on console-ams.rpki-client.org