$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa File: 7DAE1400175111EC8D2A3722C4F9AE02.roa (raw, json) Hash identifier: P9HR6alaLKKcvAvinbQN/9aMjtdjm5ZAoDIUPrfljRg= Subject key identifier: 50:25:0A:A3:25:A4:06:8F:9A:69:7F:F4:8A:F3:23:C0:1A:1F:E8:10 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 052F Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:49 +0000 ROA not before: Tue 03 Sep 2024 01:14:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134065 IP address blocks: 220.101.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Sep 3 01:14:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d66309-d51d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4f:8d:1c:6a:e8:d0:95:4b:05:04:fa:a7:64: 9c:b5:d7:ca:a1:a2:40:79:57:4a:49:26:de:2a:61: 6e:c7:df:0d:c7:8e:fc:c2:ce:5e:2a:1a:bc:87:c4: de:1a:23:57:45:41:76:7b:2e:fa:3c:d6:43:95:6a: d5:79:7a:af:a0:d9:3a:cc:5f:a6:34:57:5e:4a:02: c7:de:8b:12:2d:5b:90:fb:c5:c5:17:2b:3c:16:e5: 5a:54:f5:f2:1f:6a:20:7c:19:f5:f3:a9:2b:f4:7b: 60:b0:08:6d:0a:d8:2d:5c:32:48:b5:cd:a4:1b:58: 07:b1:f6:95:5b:f3:8d:5c:09:6b:30:d6:23:87:56: a1:79:c8:6f:cc:2c:f6:90:20:9a:08:d9:8a:22:94: d5:df:73:ab:86:e2:f8:6e:bf:01:e8:f6:b8:24:da: 4d:76:61:cf:e8:c2:1f:4c:63:a6:b7:8d:cf:45:08: 79:7f:8e:96:e1:1e:60:76:71:61:29:35:c3:dd:df: 52:93:b4:65:77:d5:af:93:4e:66:5c:c9:f9:8e:ad: 70:5f:76:03:39:98:89:35:33:cc:f9:fc:aa:0d:3b: 9e:cb:88:63:7c:c3:f2:29:10:87:71:85:7b:0e:ed: cb:07:b1:d7:6b:68:f6:95:04:71:61:c9:48:78:9e: 68:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:25:0A:A3:25:A4:06:8F:9A:69:7F:F4:8A:F3:23:C0:1A:1F:E8:10 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.101.72.0/24 Signature Algorithm: sha256WithRSAEncryption 72:6d:0f:5e:42:ae:a6:f9:35:af:01:01:d6:ac:07:e5:fe:50: c3:28:41:9a:64:57:ec:0a:72:c0:2a:9c:11:f1:9c:a3:26:67: 7b:01:df:fe:7e:69:80:96:2d:e4:db:e1:5d:19:d7:4f:ae:df: 12:99:e8:ec:3a:c8:a7:fd:09:bc:4c:8b:5f:e0:43:5a:5c:9e: 99:4b:e3:57:f2:94:d8:fb:dd:f0:d3:0e:91:51:84:fe:67:b9: 83:bb:e0:92:45:8c:d0:0f:f9:2a:32:cf:7d:9b:92:38:49:d7: 55:ce:9a:d4:ee:fd:c7:87:e7:b0:a4:b1:1e:ae:1a:fa:ae:fe: 7e:7f:9b:6a:7e:33:3d:58:18:12:82:f7:05:34:85:12:c0:ca: 30:79:40:26:98:dc:4a:a4:00:72:96:ab:0b:da:de:5a:88:ee: cb:6b:32:7c:eb:17:0d:d2:a5:97:c6:33:83:38:14:2c:0d:ee: 88:e3:66:cc:c2:e0:43:55:24:e6:7c:9a:00:c9:f0:27:da:35: 88:42:a2:8a:5c:90:1e:69:b2:d0:16:0e:65:db:88:fa:c6:dc: 06:fa:36:ad:53:95:ff:1f:cd:ad:21:1d:49:74:4e:94:f9:0f: 5e:bf:54:68:aa:e7:0a:61:84:2b:7b:38:8b:df:58:05:fa:01: 49:37:81:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwOS1kNTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7E+NHGro0JVLBQT6p2SctdfKoaJAeVdKSSbeKmFux98Nx478ws5eKhq8h8Te GiNXRUF2ey76PNZDlWrVeXqvoNk6zF+mNFdeSgLH3osSLVuQ+8XFFys8FuVaVPXy H2ogfBn186kr9HtgsAhtCtgtXDJItc2kG1gHsfaVW/ONXAlrMNYjh1ahechvzCz2 kCCaCNmKIpTV33OrhuL4br8B6Pa4JNpNdmHP6MIfTGOmt43PRQh5f46W4R5gdnFh KTXD3d9Sk7Rld9Wvk05mXMn5jq1wX3YDOZiJNTPM+fyqDTuey4hjfMPyKRCHcYV7 Du3LB7HXa2j2lQRxYclIeJ5o0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFAlCqMl pAaPmml/9IrzI8AaH+gQMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvN0RBRTE0MDAx NzUxMTFFQzhEMkEzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcZUgwDQYJKoZIhvcNAQELBQADggEBAHJtD15Crqb5Na8B AdasB+X+UMMoQZpkV+wKcsAqnBHxnKMmZ3sB3/5+aYCWLeTb4V0Z10+u3xKZ6Ow6 yKf9CbxMi1/gQ1pcnplL41fylNj73fDTDpFRhP5nuYO74JJFjNAP+Soyz32bkjhJ 11XOmtTu/ceH57CksR6uGvqu/n5/m2p+Mz1YGBKC9wU0hRLAyjB5QCaY3EqkAHKW qwva3lqI7strMnzrFw3SpZfGM4M4FCwN7ojjZszC4ENVJOZ8mgDJ8CfaNYhCoopc kB5pstAWDmXbiPrG3Ab6Nq1Tlf8fza0hHUl0TpT5D16/VGiq5wphhCt7OIvfWAX6 AUk3gXQ= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org