$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7D4AEECAA69D11ED970A2E1EC4F9AE02.roa File: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o= Subject key identifier: AD:CA:A4:A9:C1:4B:47:75:26:0B:AC:0E:B8:3B:12:C2:42:74:EF:23 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 061C Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7D4AEECAA69D11ED970A2E1EC4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:26 +0000 ROA not before: Mon 14 Oct 2024 22:52:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134359 IP address blocks: 131.203.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 14 22:52:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0aa-dcb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:14:2c:7a:8d:d3:c8:3f:56:ca:f1:8a:ac:d6: ad:66:3c:ea:16:ee:96:22:6f:14:bb:16:b8:60:46: 93:16:e4:15:bb:eb:e3:ec:62:79:e5:a8:62:b4:6b: 49:1b:41:34:9d:42:04:8d:e2:c3:c7:f5:8a:ad:67: 4d:3b:2d:5f:79:29:81:3a:0c:0f:77:d1:68:f1:cf: 9e:74:b8:fc:24:c3:eb:62:62:3e:e9:a7:fa:a4:58: d2:86:df:98:3f:03:be:f3:20:fb:2d:83:42:19:f0: 2e:6f:82:0d:e8:f1:de:cf:b0:1a:e1:58:9a:4a:19: 93:c8:f6:80:b1:dd:00:d0:e8:6f:f5:44:5a:81:5a: eb:fc:ff:a9:45:49:f0:70:dc:57:59:9c:9d:1f:37: d8:e4:6b:3b:4b:c8:17:5f:c4:f2:3f:3f:ca:28:56: bd:43:30:ad:9d:08:48:02:47:a2:74:23:d2:f7:a9: 76:65:03:11:7c:1a:92:60:3a:dc:72:bc:d5:30:f7: 77:fd:93:ea:f9:bd:15:d0:9d:73:4f:26:a5:3d:91: b0:94:c6:53:73:e0:6b:88:80:0d:82:b2:0c:19:2f: 99:3a:00:7d:99:4b:cb:61:99:a2:9b:f0:96:1a:21: 3a:77:d5:aa:4d:50:f4:f4:e9:6c:97:1a:25:54:b6: 84:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CA:A4:A9:C1:4B:47:75:26:0B:AC:0E:B8:3B:12:C2:42:74:EF:23 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7D4AEECAA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.131.0/24 Signature Algorithm: sha256WithRSAEncryption af:27:34:d1:df:a1:3e:aa:cb:6d:72:d8:4e:6a:00:7d:11:c7: 55:4d:44:24:08:9d:71:95:50:f5:46:61:45:49:b1:96:8d:85: 44:73:34:7d:1e:0f:9b:3a:0a:95:0c:6e:da:29:66:be:85:c4: 1d:dd:1c:0a:6b:e9:9f:79:48:d4:8b:4f:37:e4:02:23:5e:89: 2b:ba:1f:a7:0b:cb:65:38:d1:90:94:09:ce:37:9e:4c:99:1a: b0:2c:fd:18:69:17:d2:54:52:fb:63:f5:39:88:13:d6:21:ec: 43:ca:0d:62:0a:9f:05:2f:47:d5:16:99:e1:cc:15:6f:54:d2: 31:57:54:8f:39:8f:43:9b:92:ae:fb:b8:53:73:9b:d9:f7:f1: c7:c8:3f:a3:08:3c:3b:8f:a5:36:2e:f3:c6:98:1a:be:ca:09: c5:3e:73:a4:8b:14:83:f4:cd:52:35:3a:e3:bc:62:fe:ee:71: 3f:06:1c:0f:68:83:e7:90:f5:d0:55:fe:81:de:ea:45:dd:5a: 0a:f7:21:8a:02:36:29:49:82:7b:e4:ba:ec:8a:32:a5:58:93: 28:f7:c0:a2:89:50:3d:32:7f:a2:ee:c4:2c:99:b0:cf:14:af: 77:65:9a:18:3c:b5:5a:15:06:f2:f8:c9:11:58:48:ed:f4:69: 6d:f1:b8:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQxMDE0MjI1MjI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBhYS1kY2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxQseo3TyD9WyvGKrNatZjzqFu6WIm8Uuxa4YEaTFuQVu+vj7GJ55ahitGtJ G0E0nUIEjeLDx/WKrWdNOy1feSmBOgwPd9Fo8c+edLj8JMPrYmI+6af6pFjSht+Y PwO+8yD7LYNCGfAub4IN6PHez7Aa4ViaShmTyPaAsd0A0Ohv9URagVrr/P+pRUnw cNxXWZydHzfY5Gs7S8gXX8TyPz/KKFa9QzCtnQhIAkeidCPS96l2ZQMRfBqSYDrc crzVMPd3/ZPq+b0V0J1zTyalPZGwlMZTc+BriIANgrIMGS+ZOgB9mUvLYZmim/CW GiE6d9WqTVD09OlslxolVLaEtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK3KpKnB S0d1JgusDrg7EsJCdO8jMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0Q0QUVFQ0FB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDy4MwDQYJKoZIhvcNAQELBQADggEBAK8nNNHfoT6qy21y 2E5qAH0Rx1VNRCQInXGVUPVGYUVJsZaNhURzNH0eD5s6CpUMbtopZr6FxB3dHApr 6Z95SNSLTzfkAiNeiSu6H6cLy2U40ZCUCc43nkyZGrAs/RhpF9JUUvtj9TmIE9Yh 7EPKDWIKnwUvR9UWmeHMFW9U0jFXVI85j0Obkq77uFNzm9n38cfIP6MIPDuPpTYu 88aYGr7KCcU+c6SLFIP0zVI1OuO8Yv7ucT8GHA9og+eQ9dBV/oHe6kXdWgr3IYoC NilJgnvkuuyKMqVYkyj3wKKJUD0yf6LuxCyZsM8Ur3dlmhg8tVoVBvL4yRFYSO30 aW3xuPc= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org