$ rpki-client -vvf rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/E80DBA929D7511EEB6B07711C4F9AE02.roa File: E80DBA929D7511EEB6B07711C4F9AE02.roa (raw, json) Hash identifier: BNCeXSrcyNRbjekWAcxLZ7EGOcrwbkCdcjDunnmHR3Y= Subject key identifier: 77:BB:58:B7:1F:37:3E:AF:A3:CD:EE:68:C3:E3:40:E6:4F:58:27:64 Certificate issuer: /CN=A91268DC/serialNumber=C1B440EAB44AA587908016E9BD4B32FDE13F44CC Certificate serial: 42 Authority key identifier: C1:B4:40:EA:B4:4A:A5:87:90:80:16:E9:BD:4B:32:FD:E1:3F:44:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbRA6rRKpYeQgBbpvUsy_eE_RMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/E80DBA929D7511EEB6B07711C4F9AE02.roa Signing time: Mon 18 Dec 2023 07:20:23 +0000 ROA not before: Mon 18 Dec 2023 07:20:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135381 IP address blocks: 203.130.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/wbRA6rRKpYeQgBbpvUsy_eE_RMw.crl rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/wbRA6rRKpYeQgBbpvUsy_eE_RMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbRA6rRKpYeQgBbpvUsy_eE_RMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 06:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91268DC/serialNumber=C1B440EAB44AA587908016E9BD4B32FDE13F44CC Validity Not Before: Dec 18 07:20:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=657ff2b6-1bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f7:68:f9:11:e6:d8:2b:8b:f4:0e:ed:63:22: 7f:fd:44:e4:c6:cb:41:0a:e3:7f:8c:7d:b5:f4:bd: 37:b3:a4:9a:bd:bb:87:dc:f8:63:05:8b:4c:57:4b: 76:b3:10:4c:df:24:cd:ba:49:ca:b9:83:f0:64:f1: 0e:c6:ba:78:8f:35:67:4b:20:00:fc:d4:3e:18:c3: c0:0a:ee:42:00:f0:2e:a7:b9:73:cf:10:2f:cc:7d: 87:0c:9b:05:b4:46:13:09:ca:e4:34:6d:03:6a:98: a5:6b:3f:68:25:d2:1d:59:9d:61:46:8e:dd:35:4e: f8:7f:ec:7c:ac:1d:82:09:a4:18:85:48:7f:37:96: 21:25:ca:3c:04:94:04:f4:95:4b:50:d0:bd:f6:92: f4:4b:4b:32:ed:64:e9:26:b7:12:0d:f7:0b:95:93: c3:b7:2a:7c:7b:0e:07:fb:c5:b9:84:f2:49:f4:02: 2b:f5:fb:62:f6:e1:36:fc:80:ee:70:5f:be:ff:4a: e0:69:f2:60:c3:27:9f:0b:d5:e5:0f:66:e9:4a:14: 4d:cf:57:29:56:59:18:c1:d2:79:d4:58:78:5d:cb: 34:56:6c:06:40:b1:f0:a0:8b:53:8d:d3:5f:fa:ae: bb:23:2f:57:e7:a6:4e:8a:3a:83:2f:9d:51:6b:b6: 6d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BB:58:B7:1F:37:3E:AF:A3:CD:EE:68:C3:E3:40:E6:4F:58:27:64 X509v3 Authority Key Identifier: keyid:C1:B4:40:EA:B4:4A:A5:87:90:80:16:E9:BD:4B:32:FD:E1:3F:44:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/wbRA6rRKpYeQgBbpvUsy_eE_RMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbRA6rRKpYeQgBbpvUsy_eE_RMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91268DC/D438C2EC461211EEBDF7946CC4F9AE02/E80DBA929D7511EEB6B07711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.130.151.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:9d:07:d0:30:c3:a5:7a:ec:ed:c8:7c:01:2a:99:d3:ce:29: 84:d1:d7:c1:2a:18:02:11:12:dd:e0:b0:96:c6:bd:90:1f:99: 1f:ff:e3:f7:af:90:c2:bb:b5:1c:71:66:b0:e5:8e:e4:db:2f: 99:4b:35:19:b5:6d:d7:19:5e:eb:39:f6:dc:25:35:72:f0:85: 96:64:5e:21:41:eb:d5:4c:bd:c4:2d:85:c7:d5:3f:99:dc:95: 98:5d:d3:7f:e6:e0:f9:67:87:fd:45:81:3f:79:01:2b:2d:22: e0:ad:70:22:60:7b:74:a0:a1:82:73:9d:86:7b:20:16:0b:5e: ed:5a:27:0c:76:c6:be:15:e1:40:00:d2:0a:00:33:45:62:56: 26:b6:74:03:8c:94:42:b9:6d:49:4a:28:e0:e3:95:da:86:ca: 8a:92:ce:58:76:25:fe:80:38:7d:e6:b1:81:3c:e8:5f:45:30: 1c:75:dc:9f:d6:e5:d8:06:43:9a:b0:9b:d2:8b:b6:50:c0:f6: 31:d7:26:e2:ec:da:4e:9f:ad:4f:74:80:58:87:b8:a4:f0:a4: 38:b4:36:92:18:ae:d9:02:54:c6:83:90:bb:3c:20:51:b4:b4: 41:6e:88:46:d6:7d:1b:ab:75:05:e5:3e:09:73:fd:5f:e3:0d: e3:ad:f5:82 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NjhEQzExMC8GA1UEBRMoQzFCNDQwRUFCNDRBQTU4NzkwODAxNkU5QkQ0QjMyRkRF MTNGNDRDQzAeFw0yMzEyMTgwNzIwMjNaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1N2ZmMmI2LTFiZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE92j5EebYK4v0Du1jIn/9ROTGy0EK43+MfbX0vTezpJq9u4fc+GMFi0xXS3az EEzfJM26Scq5g/Bk8Q7GuniPNWdLIAD81D4Yw8AK7kIA8C6nuXPPEC/MfYcMmwW0 RhMJyuQ0bQNqmKVrP2gl0h1ZnWFGjt01Tvh/7HysHYIJpBiFSH83liElyjwElAT0 lUtQ0L32kvRLSzLtZOkmtxIN9wuVk8O3Knx7Dgf7xbmE8kn0Aiv1+2L24Tb8gO5w X77/SuBp8mDDJ58L1eUPZulKFE3PVylWWRjB0nnUWHhdyzRWbAZAsfCgi1ON01/6 rrsjL1fnpk6KOoMvnVFrtm29AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUd7tYtx83 Pq+jze5ow+NA5k9YJ2QwHwYDVR0jBBgwFoAUwbRA6rRKpYeQgBbpvUsy/eE/RMww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2OERDL0Q0MzhDMkVDNDYx MjExRUVCREY3OTQ2Q0M0RjlBRTAyL3diUkE2clJLcFllUWdCYnB2VXN5X2VFX1JN dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2JSQTZyUktwWWVRZ0JicHZVc3lfZUVfUk13LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjhEQy9ENDM4QzJFQzQ2MTIxMUVFQkRGNzk0NkNDNEY5QUUwMi9FODBEQkE5MjlE NzUxMUVFQjZCMDc3MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMuClzANBgkqhkiG9w0BAQsFAAOCAQEAj50H0DDDpXrs7ch8 ASqZ084phNHXwSoYAhES3eCwlsa9kB+ZH//j96+Qwru1HHFmsOWO5NsvmUs1GbVt 1xle6zn23CU1cvCFlmReIUHr1Uy9xC2Fx9U/mdyVmF3Tf+bg+WeH/UWBP3kBKy0i 4K1wImB7dKChgnOdhnsgFgte7VonDHbGvhXhQADSCgAzRWJWJrZ0A4yUQrltSUoo 4OOV2obKipLOWHYl/oA4feaxgTzoX0UwHHXcn9bl2AZDmrCb0ou2UMD2Mdcm4uza Tp+tT3SAWIe4pPCkOLQ2khiu2QJUxoOQuzwgUbS0QW6IRtZ9G6t1BeU+CXP9X+MN 4631gg== -----END CERTIFICATE-----Generated at Thu Jun 13 07:42:37 2024 by rpki-client on console-fra.rpki-client.org