$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BD5B75800C4E11EF85EEFC1FC4F9AE02.roa File: BD5B75800C4E11EF85EEFC1FC4F9AE02.roa (raw, json) Hash identifier: nV0vvomgUuYAvIzu+zUsDjepnjclen17WArrRDCOOcE= Subject key identifier: E9:F3:78:A2:78:DF:04:A8:F0:8B:E8:2B:66:65:4C:3D:3F:99:25:4C Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 69 Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BD5B75800C4E11EF85EEFC1FC4F9AE02.roa Signing time: Fri 13 Sep 2024 10:19:57 +0000 ROA not before: Fri 13 Sep 2024 10:19:57 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 3491 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Sep 13 10:19:57 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e411cc-2dd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:06:0e:69:78:2c:c1:93:7f:ba:fc:eb:ba: 44:3b:d6:d0:3c:fc:2f:fa:7f:22:db:78:ec:74:48: 15:8f:06:79:17:e5:60:c0:9f:61:17:eb:d9:3b:ae: d6:69:07:79:39:2e:eb:33:fa:d5:c8:2f:96:c0:f0: f0:9c:fa:b5:65:5d:de:4e:c9:b9:80:c8:72:e2:d4: 03:3b:13:13:14:35:cc:c0:0d:30:09:35:29:df:36: 98:76:36:04:69:79:64:09:6c:07:18:b2:6c:19:b9: 1f:8a:5e:61:fc:c4:54:ea:85:2e:0a:5e:10:b1:ae: 6d:10:1a:32:66:a8:51:c0:1d:f3:2b:69:8a:2a:7c: 55:ab:54:1b:07:8f:a4:89:66:1a:a4:d5:31:3a:15: e7:a1:da:a6:a8:86:3e:03:37:4a:4b:4e:df:03:86: c7:ce:15:00:75:fe:83:a0:c7:af:c4:18:dd:d9:9a: 88:f9:f7:67:5f:f9:01:37:0c:da:dc:6b:67:70:11: 43:86:da:bf:63:bb:2b:a5:87:3b:63:a5:85:4d:e5: 89:2d:a0:1f:bb:00:c2:6a:ca:5e:13:a3:99:fa:7b: 9d:4e:3b:1c:61:b5:02:3a:28:03:71:0a:87:57:b4: 97:ad:fc:41:5d:0d:3b:bd:5d:eb:de:fc:d6:54:98: 7c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F3:78:A2:78:DF:04:A8:F0:8B:E8:2B:66:65:4C:3D:3F:99:25:4C X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BD5B75800C4E11EF85EEFC1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:19:2c:c3:cb:e5:52:8c:bf:92:5f:4c:0f:8b:94:91:fa:de: ab:85:98:2c:97:9a:b7:38:7c:a9:e3:41:5c:01:ef:65:b4:dd: cf:21:8a:ca:bc:d8:62:7e:f3:c0:bc:87:17:1a:d9:c4:7e:3b: d0:d7:07:f2:7c:40:c0:71:4a:c3:65:78:65:98:df:65:95:39: bf:83:76:73:05:77:f7:d2:ce:0f:f0:96:76:2b:0e:25:45:d5: e3:37:bf:7e:69:a6:4c:69:92:e1:d8:00:aa:cb:02:86:6a:5a: 18:bd:6a:b9:91:de:a9:fd:78:2e:76:ce:c5:bc:ac:19:5b:91: 94:82:ea:22:1e:82:34:99:cc:07:fd:bf:3b:67:7d:3a:a5:be: 5b:9d:59:6d:d3:32:9c:2b:7d:43:4b:d5:38:b6:bb:8b:af:a4: b1:dc:18:cc:6c:9b:86:7b:a6:43:3f:28:8c:bd:29:8c:f0:08: a4:ed:58:bf:95:87:e0:ab:f6:ac:c4:06:c4:50:df:bc:9b:80: 62:ae:2e:8b:57:d6:1e:0d:89:5e:17:30:db:9e:87:11:04:e0: a3:0e:21:44:13:98:05:86:5b:68:61:29:72:63:9a:cf:00:c0: 49:7c:9b:24:4d:dc:08:2b:61:9c:df:b3:5d:6a:3c:b4:1a:bf: 99:a2:61:40 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTNBMDExMC8GA1UEBRMoQkNCN0NGNDQzMEJCOThFQTA0ODUxQzM0MDcyNkU1ODgx NTBFMTM5RDAeFw0yNDA5MTMxMDE5NTdaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTQxMWNjLTJkZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl8wYOaXgswZN/uvzrukQ71tA8/C/6fyLbeOx0SBWPBnkX5WDAn2EX69k7rtZp B3k5Lusz+tXIL5bA8PCc+rVlXd5OybmAyHLi1AM7ExMUNczADTAJNSnfNph2NgRp eWQJbAcYsmwZuR+KXmH8xFTqhS4KXhCxrm0QGjJmqFHAHfMraYoqfFWrVBsHj6SJ Zhqk1TE6Feeh2qaohj4DN0pLTt8DhsfOFQB1/oOgx6/EGN3Zmoj592df+QE3DNrc a2dwEUOG2r9juyulhztjpYVN5YktoB+7AMJqyl4To5n6e51OOxxhtQI6KANxCodX tJet/EFdDTu9Xeve/NZUmHydAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6fN4onjf BKjwi+grZmVMPT+ZJUwwHwYDVR0jBBgwFoAUvLfPRDC7mOoEhRw0BybliBUOE50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5M0EwL0E1OTU1RTU2MEM0 NTExRUY5RTdFMDUxREM0RjlBRTAyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkxmUFJEQzdtT29FaFJ3MEJ5YmxpQlVPRTUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTNBMC9BNTk1NUU1NjBDNDUxMUVGOUU3RTA1MURDNEY5QUUwMi9CRDVCNzU4MDBD NEUxMUVGODVFRUZDMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMpGoDANBgkqhkiG9w0BAQsFAAOCAQEATBksw8vlUoy/kl9M D4uUkfreq4WYLJeatzh8qeNBXAHvZbTdzyGKyrzYYn7zwLyHFxrZxH470NcH8nxA wHFKw2V4ZZjfZZU5v4N2cwV399LOD/CWdisOJUXV4ze/fmmmTGmS4dgAqssChmpa GL1quZHeqf14LnbOxbysGVuRlILqIh6CNJnMB/2/O2d9OqW+W51ZbdMynCt9Q0vV OLa7i6+ksdwYzGybhnumQz8ojL0pjPAIpO1Yv5WH4Kv2rMQGxFDfvJuAYq4ui1fW Hg2JXhcw256HEQTgow4hRBOYBYZbaGEpcmOazwDASXybJE3cCCthnN+zXWo8tBq/ maJhQA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:35 2024 by rpki-client on console-ams.rpki-client.org