$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa File: 7DAE1400175111EC8D2A3722C4F9AE02.roa (raw, json) Hash identifier: XpmSpr5uCWfAvCtnUgr0+6V19sjojcEGJkZxORON1yM= Subject key identifier: 51:16:C7:7A:68:59:34:89:E8:C6:FC:56:D4:AF:34:87:3D:2E:4A:91 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 043C Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa Signing time: Thu 03 Aug 2023 01:02:03 +0000 ROA not before: Thu 03 Aug 2023 01:02:03 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134065 IP address blocks: 220.101.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1084 (0x43c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 01:02:03 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cafc8a-8cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:c2:7d:99:f3:63:a4:07:f5:33:f1:61:ea: 96:b6:f8:ec:f1:eb:0a:a7:e6:84:98:73:52:b5:90: 6a:61:63:f5:86:e7:1b:db:6a:f8:8a:5e:57:10:04: 27:c0:d5:44:9d:ea:d8:65:5b:82:e9:42:83:c5:85: af:6f:60:6b:dd:14:99:f0:0f:df:11:17:7c:69:e5: 58:bd:57:48:72:b5:5e:e9:15:4a:fa:67:8a:7a:f2: 07:89:87:3b:27:ab:85:83:33:4f:52:54:a2:04:34: 3f:18:b8:39:96:f1:1e:db:28:29:b3:54:9f:02:e4: f3:fa:fa:16:51:16:39:9f:8b:eb:a2:c5:a6:c5:fc: 38:7b:98:cb:8a:1b:0e:26:04:d0:be:9e:f6:2a:c9: fb:9c:21:27:e0:79:13:db:03:6a:25:1b:9f:c3:dd: 7c:67:95:37:df:e4:d8:14:9a:19:31:57:f4:b9:4f: 48:c1:f0:32:70:a8:a8:a4:05:31:98:8b:f8:fc:1e: 58:cb:c7:00:c2:66:03:f4:f9:1a:81:2e:1b:75:0b: 5f:03:3d:cb:0a:68:4f:3c:4d:d0:4e:50:49:7c:10: b4:bb:f7:13:d2:8a:42:84:d0:4f:46:80:6e:2e:6f: 87:23:dc:5c:85:9d:a3:b8:9d:00:11:ad:a0:31:de: 2e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:16:C7:7A:68:59:34:89:E8:C6:FC:56:D4:AF:34:87:3D:2E:4A:91 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.101.72.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f8:4a:04:50:c5:69:36:ab:dd:be:f5:bd:b0:35:a6:f6:ba: 20:81:88:8b:c1:8a:67:88:b3:55:7f:6d:9b:f1:8b:ba:a4:df: 35:80:14:bc:bd:63:2e:06:5b:31:95:53:6f:bc:e8:8f:de:1e: 9a:e1:2f:ba:4d:35:4b:fc:59:69:c0:11:a9:01:88:cc:b5:73: 7c:d9:a7:66:5a:86:15:e8:ea:59:47:2d:d7:c0:76:1a:b1:45: 71:3e:62:09:f9:21:b2:17:c1:2c:ff:8f:cb:b9:cb:26:b8:8c: 72:aa:70:fe:a1:df:56:c0:3f:b5:2a:99:2a:c0:f7:84:a1:fb: ba:39:34:14:a3:d9:ec:09:80:9b:73:41:9f:88:4e:28:83:63: 1b:80:b5:85:89:08:80:f0:a5:f3:94:9b:a6:8b:b9:e4:6e:3a: d1:8e:eb:79:76:b8:8b:a8:be:31:d9:bc:7f:91:03:27:86:b8: 15:0a:01:e5:f4:b2:1c:cf:d2:bd:da:65:cf:65:f7:06:26:2a: eb:a7:3a:60:a8:6d:0e:77:73:3d:54:ea:a6:31:c2:b1:42:af: 09:6f:97:ab:1a:93:ab:98:54:21:3b:45:fe:27:57:27:d1:5b: 64:1a:2a:9e:6d:53:62:66:72:0e:f0:6d:8b:a5:2a:a4:c8:62: 60:74:8b:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjMwODAzMDEwMjAzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM4YS04Y2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7zCfZnzY6QH9TPxYeqWtvjs8esKp+aEmHNStZBqYWP1hucb22r4il5XEAQn wNVEnerYZVuC6UKDxYWvb2Br3RSZ8A/fERd8aeVYvVdIcrVe6RVK+meKevIHiYc7 J6uFgzNPUlSiBDQ/GLg5lvEe2ygps1SfAuTz+voWURY5n4vrosWmxfw4e5jLihsO JgTQvp72Ksn7nCEn4HkT2wNqJRufw918Z5U33+TYFJoZMVf0uU9IwfAycKiopAUx mIv4/B5Yy8cAwmYD9PkagS4bdQtfAz3LCmhPPE3QTlBJfBC0u/cT0opChNBPRoBu Lm+HI9xchZ2juJ0AEa2gMd4utQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFEWx3po WTSJ6Mb8VtSvNIc9LkqRMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvN0RBRTE0MDAx NzUxMTFFQzhEMkEzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcZUgwDQYJKoZIhvcNAQELBQADggEBAID4SgRQxWk2q92+ 9b2wNab2uiCBiIvBimeIs1V/bZvxi7qk3zWAFLy9Yy4GWzGVU2+86I/eHprhL7pN NUv8WWnAEakBiMy1c3zZp2ZahhXo6llHLdfAdhqxRXE+Ygn5IbIXwSz/j8u5yya4 jHKqcP6h31bAP7UqmSrA94Sh+7o5NBSj2ewJgJtzQZ+ITiiDYxuAtYWJCIDwpfOU m6aLueRuOtGO63l2uIuovjHZvH+RAyeGuBUKAeX0shzP0r3aZc9l9wYmKuunOmCo bQ53cz1U6qYxwrFCrwlvl6sak6uYVCE7Rf4nVyfRW2QaKp5tU2Jmcg7wbYulKqTI YmB0iwo= -----END CERTIFICATE-----Generated at Fri May 17 02:38:38 2024 by rpki-client on console-fra.rpki-client.org