$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/A7A77B96911111EBA69D2641C4F9AE02.roa File: A7A77B96911111EBA69D2641C4F9AE02.roa (raw, json) Hash identifier: GeZswpwVwmpN5JkYUADU3m9LKzzMiHleESILy/kILG8= Subject key identifier: B6:9A:F5:4D:D1:4F:14:8D:28:27:7B:FC:A8:52:FF:21:33:65:DC:F1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 05B2 Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/A7A77B96911111EBA69D2641C4F9AE02.roa Signing time: Tue 20 Aug 2024 23:51:59 +0000 ROA not before: Tue 20 Aug 2024 23:51:59 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9723 IP address blocks: 203.31.82.0/24 maxlen: 24 210.56.152.0/24 maxlen: 24 210.56.153.0/24 maxlen: 24 210.56.154.0/24 maxlen: 24 210.56.155.0/24 maxlen: 24 210.56.156.0/24 maxlen: 24 210.56.157.0/24 maxlen: 24 210.56.158.0/24 maxlen: 24 210.56.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1458 (0x5b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Validity Not Before: Aug 20 23:51:59 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c52c1f-be04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:db:3e:80:ac:99:b8:fc:8f:f9:8d:0f:aa:c3: d3:5c:a4:e5:b1:5a:4f:ae:a4:cf:de:5a:32:43:98: 42:1f:d1:bb:94:ee:1b:80:21:41:9f:8f:3c:1c:83: 1d:46:01:7f:95:29:c1:bc:d9:87:c6:db:a5:bf:7f: b7:4b:99:68:dd:14:53:7d:e7:60:83:cf:f7:48:b4: 02:00:c0:e7:eb:cd:e1:01:0d:93:7f:18:ab:f2:83: 25:bf:62:2f:7c:a4:78:cc:8c:f6:7c:34:33:d2:0f: 22:2a:1d:4d:13:1d:0e:43:db:cf:b6:d4:e3:5a:cb: cf:5f:70:17:0f:e2:22:2b:37:ab:5b:c1:bf:e2:09: 73:de:7e:56:58:68:ee:ac:43:a9:12:e9:d5:cb:df: 53:6f:43:4b:39:04:1d:87:a9:0a:ec:3c:9b:7c:06: cf:db:d8:c1:fc:84:c5:82:4a:63:fd:b0:22:b9:d6: 3f:73:98:8e:fa:b0:d2:d2:62:c3:e5:6f:23:1e:81: 86:cd:cf:53:b8:1d:a5:ee:87:8f:a9:f4:d6:53:e4: 03:bc:b5:4b:a0:4d:fb:49:84:bb:4b:57:7f:48:52: a7:3c:d5:66:18:56:ad:fc:d2:57:e9:e0:6e:f8:08: c5:84:ea:9d:16:38:ba:26:7f:40:a5:41:0c:c0:e8: fd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9A:F5:4D:D1:4F:14:8D:28:27:7B:FC:A8:52:FF:21:33:65:DC:F1 X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/A7A77B96911111EBA69D2641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.31.82.0/24 210.56.152.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:06:d6:1c:77:1f:dd:e8:3c:0d:6a:28:fc:21:32:d8:d3:b5: 00:09:f3:03:c7:66:16:84:b3:76:ea:21:aa:3e:03:63:f2:af: f3:56:b2:0d:9a:38:b0:4a:eb:e9:6f:76:35:88:e4:43:78:1c: 64:03:55:bb:e5:f1:bc:5e:47:0e:e5:e3:84:62:a5:01:c2:f2: 0e:09:bd:6c:7e:d1:e3:f2:49:db:c3:41:be:1e:1c:86:dd:9f: 15:9b:c6:a6:86:97:92:e6:53:09:01:9b:85:7b:41:ee:52:cf: e2:c0:45:2d:eb:c0:1e:86:42:63:69:ac:55:b8:06:65:da:74: ed:88:e9:9f:4a:cf:d4:3e:dd:e6:fa:8d:21:7e:0e:7c:d2:62: 4c:65:ed:2d:fa:4f:09:0a:bc:90:29:1d:50:d7:b0:70:95:5e: b3:5b:1c:ea:25:26:62:3b:6a:91:1b:a6:eb:ac:54:b6:f4:e8: 92:0f:5d:a7:4e:8a:77:5f:d4:e7:7b:8e:11:e8:e7:fc:42:af: fd:d5:8f:81:4c:55:17:10:a5:66:23:4a:2e:77:be:08:0e:74: 40:04:b6:b7:46:e9:4b:8b:97:d2:91:ae:c8:ce:11:7a:ad:bd: 1c:c3:d0:43:4b:b3:a5:98:27:26:ce:60:27:c7:b4:40:6e:2c: 0d:67:8d:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjQwODIwMjM1MTU5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MmMxZi1iZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ts+gKyZuPyP+Y0PqsPTXKTlsVpPrqTP3loyQ5hCH9G7lO4bgCFBn488HIMd RgF/lSnBvNmHxtulv3+3S5lo3RRTfedgg8/3SLQCAMDn683hAQ2Tfxir8oMlv2Iv fKR4zIz2fDQz0g8iKh1NEx0OQ9vPttTjWsvPX3AXD+IiKzerW8G/4glz3n5WWGju rEOpEunVy99Tb0NLOQQdh6kK7DybfAbP29jB/ITFgkpj/bAiudY/c5iO+rDS0mLD 5W8jHoGGzc9TuB2l7oePqfTWU+QDvLVLoE37SYS7S1d/SFKnPNVmGFat/NJX6eBu +AjFhOqdFji6Jn9ApUEMwOj9rQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLaa9U3R TxSNKCd7/KhS/yEzZdzxMB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDk4QTQvRUNGMzBBOUU5MDUzMTFFQjlDQTg3MjFEQzRGOUFFMDIvQTdBNzdCOTY5 MTExMTFFQkE2OUQyNjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLH1IDBAPSOJgwDQYJKoZIhvcNAQELBQADggEBAC0G1hx3 H93oPA1qKPwhMtjTtQAJ8wPHZhaEs3bqIao+A2Pyr/NWsg2aOLBK6+lvdjWI5EN4 HGQDVbvl8bxeRw7l44RipQHC8g4JvWx+0ePySdvDQb4eHIbdnxWbxqaGl5LmUwkB m4V7Qe5Sz+LARS3rwB6GQmNprFW4BmXadO2I6Z9Kz9Q+3eb6jSF+DnzSYkxl7S36 TwkKvJApHVDXsHCVXrNbHOolJmI7apEbpuusVLb06JIPXadOindf1Od7jhHo5/xC r/3Vj4FMVRcQpWYjSi53vggOdEAEtrdG6UuLl9KRrsjOEXqtvRzD0ENLs6WYJybO YCfHtEBuLA1njRE= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:44 2024 by rpki-client on console-fra.rpki-client.org