$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/8093CCBA13F611EF8ED7D71EC4F9AE02.roa File: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (raw, json) Hash identifier: XL79ufKKtjs3RC/HFtRum1LG/m0heNTfnq14ISz+Hk4= Subject key identifier: DB:52:E6:B5:A8:E3:99:4E:A6:DF:FD:47:24:17:CB:A6:21:15:97:69 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: 02 Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/8093CCBA13F611EF8ED7D71EC4F9AE02.roa Signing time: Fri 17 May 2024 02:38:11 +0000 ROA not before: Fri 17 May 2024 02:38:11 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38022 IP address blocks: 202.27.240.0/23 maxlen: 23 202.27.242.0/24 maxlen: 24 202.27.243.0/24 maxlen: 24 202.36.85.0/24 maxlen: 24 202.36.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: May 17 02:38:11 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6646c313-6d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0e:39:3a:a9:d5:ee:37:05:55:a6:fb:c0:46: 52:55:5e:1f:df:41:68:8e:73:b7:16:a7:8d:f7:e7: 9e:7d:1a:13:73:c3:f3:76:f7:1f:a9:01:f0:70:c6: 1c:24:eb:a9:8d:52:cc:91:0f:00:8e:9c:34:0b:7f: 07:27:57:ae:99:fa:ff:d9:26:52:41:18:e0:e6:66: 4d:4e:60:19:6d:71:b5:31:cf:b3:07:28:31:43:0d: e7:18:82:35:cb:a7:c2:2e:e5:35:42:53:e8:f1:51: 70:44:99:24:8f:9b:7d:c7:12:4c:5d:dd:8e:fc:26: 96:63:70:6e:86:41:1a:93:3d:a7:28:6e:12:bd:98: 27:6f:f7:43:78:e0:59:40:2b:a3:79:3b:f8:14:12: b4:c0:4d:87:2a:9e:56:b7:33:5f:6f:3a:2e:92:28: 82:99:ee:e8:91:23:0b:73:e3:d8:a0:ec:f8:d1:71: 4c:43:44:ca:a1:d7:ee:df:c5:86:a0:45:19:27:a3: df:90:12:0c:71:77:31:77:a2:1a:e3:2d:4b:78:53: 4e:4d:4e:10:eb:bf:86:1a:07:8f:8f:81:91:26:1f: 75:81:c1:8c:49:ab:fc:94:a5:5d:ad:89:61:5d:24: 0d:32:f5:64:32:b6:33:5b:ee:30:2a:8a:89:02:2a: 09:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:52:E6:B5:A8:E3:99:4E:A6:DF:FD:47:24:17:CB:A6:21:15:97:69 X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/8093CCBA13F611EF8ED7D71EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.240.0/22 202.36.85.0-202.36.86.255 Signature Algorithm: sha256WithRSAEncryption 1e:e0:0a:a4:b7:ba:f8:4c:95:61:78:0c:1c:70:8a:ed:eb:e3: 18:e8:88:2a:54:4f:63:ef:67:dc:e8:33:4d:7a:75:37:71:3a: b3:c6:16:b9:df:29:3f:d4:eb:44:ed:ce:86:ae:7c:9c:f6:e0: 3a:a1:cc:10:a8:00:49:e4:22:a3:fb:de:f8:88:4d:01:67:5b: 2e:25:51:3f:e3:82:d1:88:ae:0f:48:13:eb:33:46:aa:13:8a: 25:a0:00:20:c0:0a:29:e6:c8:31:22:eb:eb:e2:45:4b:d3:c7: 68:bd:b7:9d:05:ba:06:9b:90:20:08:95:7c:b7:2d:51:bf:5c: 2b:60:75:0c:1f:1d:81:e0:50:77:5b:21:70:9b:5a:aa:68:e0: 82:68:bd:74:e5:3f:64:e9:b0:44:5e:ab:23:91:ce:0d:dc:0c: 8a:18:2b:d1:98:f8:23:8b:29:5c:05:c5:53:fa:34:0e:31:62: 9c:13:3e:53:86:94:b1:b9:ce:55:be:83:92:87:c8:ea:af:18: c4:b3:fa:b3:54:0b:1c:12:26:0a:46:49:ef:14:73:7d:d3:40: be:4b:bb:e1:27:97:43:c6:f9:ab:5a:74:bd:a1:ba:19:09:32: 48:11:7e:e1:7e:36:cd:38:46:2d:27:e7:e7:30:e3:8b:be:29: 82:4b:17:0d -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjZEMjExMC8GA1UEBRMoNkMzQjdGMUMxMzNEQTlDNTFENDQ0REE4NUU2MDJBOTY4 NDUxRkU1NDAeFw0yNDA1MTcwMjM4MTFaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDZjMzEzLTZkOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqDjk6qdXuNwVVpvvARlJVXh/fQWiOc7cWp4335559GhNzw/N29x+pAfBwxhwk 66mNUsyRDwCOnDQLfwcnV66Z+v/ZJlJBGODmZk1OYBltcbUxz7MHKDFDDecYgjXL p8Iu5TVCU+jxUXBEmSSPm33HEkxd3Y78JpZjcG6GQRqTPacobhK9mCdv90N44FlA K6N5O/gUErTATYcqnla3M19vOi6SKIKZ7uiRIwtz49ig7PjRcUxDRMqh1+7fxYag RRkno9+QEgxxdzF3ohrjLUt4U05NThDrv4YaB4+PgZEmH3WBwYxJq/yUpV2tiWFd JA0y9WQytjNb7jAqiokCKgmzAgMBAAGjggKjMIICnzAdBgNVHQ4EFgQU21Lmtajj mU6m3/1HJBfLpiEVl2kwHwYDVR0jBBgwFoAUbDt/HBM9qcUdRE2oXmAqloRR/lQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyNkQyL0FGMjA4MzRFMTNG NTExRUZBMDlEMzIxQkM0RjlBRTAyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9s US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkR0X0hCTTlxY1VkUkUyb1htQXFsb1JSX2xRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi84MDkzQ0NCQTEz RjYxMUVGOEVEN0Q3MUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQe MBwwGgQCAAEwFAMEAsob8DAMAwQAyiRVAwQAyiRWMA0GCSqGSIb3DQEBCwUAA4IB AQAe4Aqkt7r4TJVheAwccIrt6+MY6IgqVE9j72fc6DNNenU3cTqzxha53yk/1OtE 7c6Grnyc9uA6ocwQqABJ5CKj+974iE0BZ1suJVE/44LRiK4PSBPrM0aqE4oloAAg wAop5sgxIuvr4kVL08dovbedBboGm5AgCJV8ty1Rv1wrYHUMHx2B4FB3WyFwm1qq aOCCaL105T9k6bBEXqsjkc4N3AyKGCvRmPgjiylcBcVT+jQOMWKcEz5ThpSxuc5V voOSh8jqrxjEs/qzVAscEiYKRknvFHN900C+S7vhJ5dDxvmrWnS9oboZCTJIEX7h fjbNOEYtJ+fnMOOLvimCSxcN -----END CERTIFICATE-----Generated at Thu Nov 7 07:56:37 2024 by rpki-client on console-fra.rpki-client.org