$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7E42E396175111EC8D2A3722C4F9AE02.roa File: 7E42E396175111EC8D2A3722C4F9AE02.roa (raw, json) Hash identifier: Rtj2YZUzcKfkgTDcvh/sESq8bL/Thyrlj4Jg24VeLAs= Subject key identifier: 67:4C:49:90:E7:41:DE:B5:0C:09:49:71:3A:E8:FA:AE:DC:9D:A1:B2 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0531 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7E42E396175111EC8D2A3722C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:51 +0000 ROA not before: Tue 03 Sep 2024 01:14:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138475 IP address blocks: 220.101.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1329 (0x531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Sep 3 01:14:51 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6630b-becd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7a:fa:89:6a:8a:5b:e6:2e:7b:b9:37:b7:8f: 68:d3:ba:99:2a:ff:53:8a:01:e4:ec:0c:90:20:b6: e6:5c:90:fd:af:81:47:c4:fe:b6:6b:7a:24:a0:dc: f5:4a:26:b8:19:48:2a:2a:f3:6b:95:a1:39:50:5c: 46:cd:d7:e5:f2:3a:9a:a3:eb:56:e2:28:41:98:06: f2:a3:a7:47:1e:31:54:ac:bb:c6:69:19:38:fe:e6: 5b:c4:98:3f:82:38:8d:7e:2e:6a:cc:f1:67:3e:ef: 20:03:82:e2:e8:73:83:88:cd:94:a9:bd:6c:96:ce: 8f:99:f2:d1:65:b1:bf:db:5d:9f:a2:fa:b3:32:e9: cf:2d:67:e2:7a:61:98:43:d4:04:5a:2c:0c:c9:21: ba:66:ce:d0:00:a4:aa:47:84:26:9a:f2:7b:3b:16: 39:dc:1c:4c:04:d0:1e:f1:74:7f:fe:e3:4d:f3:e8: 96:ae:5f:f4:8a:ff:d1:61:e7:8e:ae:be:a1:d0:e2: 66:d3:ce:fc:ea:4e:4e:02:24:23:71:b4:17:60:5d: 9e:45:73:41:4a:1d:27:81:a0:d5:43:ea:82:ae:f2: 77:aa:8e:1d:4c:68:42:e5:7a:42:54:3d:d5:9c:c1: 9a:5a:79:35:11:ab:3d:74:fd:c9:9c:06:b2:82:1d: b9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4C:49:90:E7:41:DE:B5:0C:09:49:71:3A:E8:FA:AE:DC:9D:A1:B2 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7E42E396175111EC8D2A3722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.101.82.0/24 Signature Algorithm: sha256WithRSAEncryption 68:17:70:49:7c:2f:bc:9e:ab:a9:5c:dc:18:dd:95:4a:5d:92: 51:ae:cd:7e:ba:88:8e:b5:a6:7d:92:e7:f0:bb:fc:ec:e5:aa: bf:75:6f:c9:0c:41:6a:da:a9:6e:13:34:b1:8a:3f:93:b7:9e: ec:db:37:ee:49:0b:d4:aa:49:2d:26:ba:28:ac:ac:08:d4:9b: 09:dc:ba:6f:02:53:8b:b2:37:cb:0f:f0:1c:cc:89:f0:71:f2: 19:34:19:75:32:b9:8c:1d:32:08:b5:82:3e:a7:47:e3:41:61: 20:d0:a0:43:16:9d:f4:26:60:af:38:52:ba:91:84:42:69:ca: 9c:0e:26:7b:82:ba:cb:71:f0:20:74:bf:6c:f4:26:80:f7:78: 5f:0e:d1:9f:b6:8f:75:b7:23:02:78:e4:aa:8b:9f:37:99:02: 4e:dd:d9:ab:ec:4a:7e:43:af:b2:90:aa:c3:dc:a6:00:1a:2d: 66:9e:8e:0b:0f:c1:65:1a:73:8a:94:9b:4e:c0:e3:fe:48:2f: 27:82:8c:dc:7c:44:1a:f4:b0:50:4e:5f:cb:22:8c:c1:a8:1b: 63:b3:ca:9e:57:3f:a8:1d:63:17:67:21:65:fb:43:92:36:fb: a4:3f:54:81:a9:ff:70:43:0c:dc:f7:32:eb:6a:c8:d5:0b:3c: 12:40:4c:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjQwOTAzMDExNDUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjMwYi1iZWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Hr6iWqKW+Yue7k3t49o07qZKv9TigHk7AyQILbmXJD9r4FHxP62a3okoNz1 Sia4GUgqKvNrlaE5UFxGzdfl8jqao+tW4ihBmAbyo6dHHjFUrLvGaRk4/uZbxJg/ gjiNfi5qzPFnPu8gA4Li6HODiM2Uqb1sls6PmfLRZbG/212fovqzMunPLWfiemGY Q9QEWiwMySG6Zs7QAKSqR4QmmvJ7OxY53BxMBNAe8XR//uNN8+iWrl/0iv/RYeeO rr6h0OJm08786k5OAiQjcbQXYF2eRXNBSh0ngaDVQ+qCrvJ3qo4dTGhC5XpCVD3V nMGaWnk1Eas9dP3JnAaygh25RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGdMSZDn Qd61DAlJcTro+q7cnaGyMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvN0U0MkUzOTYx NzUxMTFFQzhEMkEzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcZVIwDQYJKoZIhvcNAQELBQADggEBAGgXcEl8L7yeq6lc 3BjdlUpdklGuzX66iI61pn2S5/C7/Ozlqr91b8kMQWraqW4TNLGKP5O3nuzbN+5J C9SqSS0muiisrAjUmwncum8CU4uyN8sP8BzMifBx8hk0GXUyuYwdMgi1gj6nR+NB YSDQoEMWnfQmYK84UrqRhEJpypwOJnuCustx8CB0v2z0JoD3eF8O0Z+2j3W3IwJ4 5KqLnzeZAk7d2avsSn5Dr7KQqsPcpgAaLWaejgsPwWUac4qUm07A4/5ILyeCjNx8 RBr0sFBOX8sijMGoG2Ozyp5XP6gdYxdnIWX7Q5I2+6Q/VIGp/3BDDNz3MutqyNUL PBJATJo= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org