$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7EACD6DEA69D11ED970A2E1EC4F9AE02.roa File: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108= Subject key identifier: 96:B0:04:61:75:6C:2B:0C:99:DB:A8:FC:25:91:62:44:53:0F:12:C5 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0620 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7EACD6DEA69D11ED970A2E1EC4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:30 +0000 ROA not before: Mon 14 Oct 2024 22:52:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45267 IP address blocks: 131.203.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 14 22:52:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0ad-ab4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4f:5f:f3:bb:65:47:84:f6:81:0c:aa:41:52: db:46:cb:2b:f6:1f:f4:e0:0a:6e:f3:b4:e9:a0:86: a2:a6:bd:46:c2:6f:c1:0c:d1:6a:3e:ec:2c:6d:4b: 4f:13:93:53:f9:19:df:3d:c7:3d:c6:fa:da:68:9c: 6c:68:e7:88:dd:74:7f:c9:0c:9f:e7:37:10:ac:74: 5d:4d:52:8e:f2:5d:75:bf:0c:3b:10:4b:93:d8:79: a3:75:cd:cf:e9:b5:55:5a:be:dd:8e:d9:e1:ff:1a: 2b:cd:3e:b4:2a:42:9b:f6:b8:cb:be:c2:57:74:95: 0d:c3:f4:61:2a:ba:c8:97:56:50:61:e2:71:13:59: b8:32:e7:76:ed:37:41:60:64:38:be:14:c7:84:ab: 6c:d8:92:9b:96:72:d3:73:ce:08:1c:3e:9d:1e:19: 5a:8f:71:19:f0:e0:f5:97:10:63:d0:b7:72:79:dc: 59:ad:f9:c0:77:8e:66:24:f9:32:99:24:11:55:26: ae:c0:e9:9f:5c:40:70:2b:81:8c:0d:5d:a4:77:11: 63:3f:14:aa:c6:f8:2b:b4:df:7a:a5:69:f1:ac:4f: c0:4a:11:6e:bc:22:14:ba:e9:b3:33:91:01:23:7c: 29:35:c2:01:5a:dc:2e:59:10:7e:18:ad:43:e9:de: 0e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B0:04:61:75:6C:2B:0C:99:DB:A8:FC:25:91:62:44:53:0F:12:C5 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7EACD6DEA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.140.0/24 Signature Algorithm: sha256WithRSAEncryption 26:e0:6e:9e:48:a2:4f:65:83:f3:0f:0f:30:cb:04:4a:03:c1: e6:1f:9e:3f:e4:c7:51:62:ff:76:b3:3a:ac:30:1c:3d:2d:63: 32:55:67:20:97:38:27:d2:d0:3f:a8:96:7f:0e:3c:ec:b5:a8: 94:36:75:6f:40:ed:cb:d1:74:c3:48:03:12:9f:8d:fa:9c:d7: b6:e2:21:f0:8e:c9:e1:ff:fe:0c:7b:92:35:67:e5:39:a0:51: 1b:ce:8e:ca:82:d0:27:45:02:a3:4d:0f:76:ac:a8:b6:25:ef: 95:ea:8b:4b:f1:7b:ca:21:c9:83:13:86:90:c7:6c:b3:53:33: db:ae:61:8e:94:54:93:17:8b:00:26:b2:5f:17:c1:4c:7b:ba: d4:f8:66:29:4d:5c:61:f2:4b:80:2e:13:f5:f1:c2:59:7e:bd: 3c:08:17:0f:ee:ea:4f:46:5c:61:9f:5a:02:0a:e7:25:df:f5: 9c:0c:51:d6:fc:bf:53:30:5b:39:18:20:86:fd:8a:f2:94:aa: 5d:68:d3:a9:35:f1:00:1c:11:4e:90:bc:29:1d:69:1b:aa:d2: 65:4b:4f:7b:6e:51:2d:c0:5d:bd:a8:8a:d7:3e:b9:34:f7:eb: 95:56:23:a3:9f:7f:97:39:ea:12:64:54:2c:ca:4b:18:ff:a0: 6b:6b:d6:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQxMDE0MjI1MjMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBhZC1hYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw09f87tlR4T2gQyqQVLbRssr9h/04Apu87TpoIaipr1Gwm/BDNFqPuwsbUtP E5NT+RnfPcc9xvraaJxsaOeI3XR/yQyf5zcQrHRdTVKO8l11vww7EEuT2Hmjdc3P 6bVVWr7djtnh/xorzT60KkKb9rjLvsJXdJUNw/RhKrrIl1ZQYeJxE1m4Mud27TdB YGQ4vhTHhKts2JKblnLTc84IHD6dHhlaj3EZ8OD1lxBj0LdyedxZrfnAd45mJPky mSQRVSauwOmfXEBwK4GMDV2kdxFjPxSqxvgrtN96pWnxrE/AShFuvCIUuumzM5EB I3wpNcIBWtwuWRB+GK1D6d4OywIDAQABo4IClTCCApEwHQYDVR0OBBYEFJawBGF1 bCsMmduo/CWRYkRTDxLFMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0VBQ0Q2REVB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDy4wwDQYJKoZIhvcNAQELBQADggEBACbgbp5Iok9lg/MP DzDLBEoDweYfnj/kx1Fi/3azOqwwHD0tYzJVZyCXOCfS0D+oln8OPOy1qJQ2dW9A 7cvRdMNIAxKfjfqc17biIfCOyeH//gx7kjVn5TmgURvOjsqC0CdFAqNND3asqLYl 75Xqi0vxe8ohyYMThpDHbLNTM9uuYY6UVJMXiwAmsl8XwUx7utT4ZilNXGHyS4Au E/Xxwll+vTwIFw/u6k9GXGGfWgIK5yXf9ZwMUdb8v1MwWzkYIIb9ivKUql1o06k1 8QAcEU6QvCkdaRuq0mVLT3tuUS3AXb2oitc+uTT365VWI6Off5c56hJkVCzKSxj/ oGtr1lI= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org