$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa File: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI= Subject key identifier: E7:5F:BF:52:79:9A:95:EA:0C:EC:06:A8:73:CD:A0:36:42:AC:12:3B Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 061A Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:24 +0000 ROA not before: Mon 14 Oct 2024 22:52:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132264 IP address blocks: 131.203.8.0/21 maxlen: 24 131.203.16.0/22 maxlen: 24 131.203.20.0/22 maxlen: 24 131.203.24.0/22 maxlen: 24 131.203.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 14 22:52:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0a8-39e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:58:38:5b:44:25:bb:5e:fe:67:ef:63:83:8e: ad:e3:8d:e7:27:8d:84:a2:28:cf:d3:9b:53:82:5f: f4:b7:f9:3c:10:e4:84:11:30:ba:dc:3f:50:72:81: 1f:b8:7b:97:1f:ed:15:53:1e:d2:68:0a:f4:02:2d: e2:a0:7c:5b:0e:77:0f:36:fb:36:06:71:12:5b:4f: 13:b4:3e:91:24:d8:64:d1:91:28:69:11:87:dc:70: 1d:a8:d5:ac:cd:ef:fc:fc:b5:a0:55:14:8b:42:9b: 1f:b3:cb:3f:b7:ef:ed:f7:85:b2:b7:24:a3:51:bc: 03:a0:79:36:d1:f6:df:31:b5:28:c9:7e:e6:e8:2b: 14:cd:ff:47:d0:53:14:33:b6:2c:32:b3:2d:04:a7: 58:d0:03:3b:50:49:9d:c2:7d:59:90:9f:dd:81:0f: 95:58:80:3e:e5:eb:76:db:30:ff:9a:e2:45:a3:ce: 9e:47:7c:64:9d:96:88:b8:e5:d9:dc:18:b7:6e:73: a4:ce:c4:c9:f6:5a:db:d5:7c:f0:79:8b:7e:3f:7d: 25:d6:fa:e5:cc:f2:e5:5f:93:4e:ad:3d:dc:60:a7: af:d5:ee:be:bf:79:34:1a:81:b2:36:82:c7:40:00: 9a:cd:ba:06:5f:25:65:10:a1:ed:72:56:a8:a8:59: 29:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5F:BF:52:79:9A:95:EA:0C:EC:06:A8:73:CD:A0:36:42:AC:12:3B X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.8.0-131.203.27.255 131.203.160.0/21 Signature Algorithm: sha256WithRSAEncryption 47:e6:8b:57:c9:52:be:e5:ae:c0:81:c7:30:05:b0:3e:6f:a5: 7d:56:89:50:b3:a0:9b:d6:5b:ab:a4:e3:d2:94:17:25:53:e3: be:bd:13:df:9e:21:c4:4b:51:7f:3c:39:86:ac:49:08:04:9d: c6:da:2e:0c:8e:67:69:21:0b:f4:75:b5:f6:0b:fb:67:b0:30: 1e:51:12:89:c4:9b:7d:2c:3f:1b:14:fd:1b:34:2e:6a:ee:91: 9d:97:f8:a0:a4:38:1f:8d:c5:ea:bc:06:4a:ac:db:4a:58:ed: 99:81:df:ee:86:64:26:fe:d0:7f:7d:4a:63:40:8e:c4:c7:f1: a8:2e:da:8d:e3:f5:af:f5:5f:c5:9b:87:8d:89:a4:f9:96:c9: a4:0a:d5:89:6d:24:72:5c:ea:fc:1b:c2:a6:31:11:3d:68:b6: f4:f0:d6:3b:a5:b8:d0:90:cc:2a:ed:f3:62:66:c9:73:15:19: c0:ba:e4:47:59:d2:84:b9:d9:25:15:a6:50:ef:77:e4:61:1e: a4:71:b0:dd:73:14:6d:a3:61:a0:0c:4f:49:37:f9:55:d2:2c: 54:5c:3f:31:56:18:6e:a0:ee:f5:2a:2a:d1:8e:af:f5:f2:b7: a9:72:5d:f6:99:4a:2f:a0:3f:00:a3:b7:e8:11:3a:5a:96:c8: 73:9e:37:12 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQxMDE0MjI1MjI0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBhOC0zOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Fg4W0Qlu17+Z+9jg46t443nJ42EoijP05tTgl/0t/k8EOSEETC63D9QcoEf uHuXH+0VUx7SaAr0Ai3ioHxbDncPNvs2BnESW08TtD6RJNhk0ZEoaRGH3HAdqNWs ze/8/LWgVRSLQpsfs8s/t+/t94WytySjUbwDoHk20fbfMbUoyX7m6CsUzf9H0FMU M7YsMrMtBKdY0AM7UEmdwn1ZkJ/dgQ+VWIA+5et22zD/muJFo86eR3xknZaIuOXZ 3Bi3bnOkzsTJ9lrb1XzweYt+P30l1vrlzPLlX5NOrT3cYKev1e6+v3k0GoGyNoLH QACazboGXyVlEKHtclaoqFkpeQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOdfv1J5 mpXqDOwGqHPNoDZCrBI7MB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0JEMThCOUVB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEA4PLCAMEAoPLGAMEA4PLoDANBgkqhkiG9w0BAQsFAAOC AQEAR+aLV8lSvuWuwIHHMAWwPm+lfVaJULOgm9Zbq6Tj0pQXJVPjvr0T354hxEtR fzw5hqxJCASdxtouDI5naSEL9HW19gv7Z7AwHlESicSbfSw/GxT9GzQuau6RnZf4 oKQ4H43F6rwGSqzbSljtmYHf7oZkJv7Qf31KY0COxMfxqC7ajeP1r/VfxZuHjYmk +ZbJpArViW0kclzq/BvCpjERPWi29PDWO6W40JDMKu3zYmbJcxUZwLrkR1nShLnZ JRWmUO935GEepHGw3XMUbaNhoAxPSTf5VdIsVFw/MVYYbqDu9Soq0Y6v9fK3qXJd 9plKL6A/AKO36BE6WpbIc543Eg== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org