$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BE3E0EE00C4E11EF85EEFC1FC4F9AE02.roa File: BE3E0EE00C4E11EF85EEFC1FC4F9AE02.roa (raw, json) Hash identifier: kU3sDSAugxDvj2jONja3ZA3jP5BMAHMZw6R2ums+q7s= Subject key identifier: 35:2C:69:44:6B:72:FE:EE:F2:CB:3E:FC:5F:DB:E1:28:27:8E:A2:95 Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 6A Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BE3E0EE00C4E11EF85EEFC1FC4F9AE02.roa Signing time: Fri 13 Sep 2024 10:19:58 +0000 ROA not before: Fri 13 Sep 2024 10:19:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4635 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Sep 13 10:19:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e411cd-eb5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:23:41:99:42:e7:f0:53:90:d5:a3:22:45:6e: 3d:e3:54:f5:1e:1f:17:8e:a4:30:3b:02:41:61:d8: 95:5a:b4:a0:dd:a2:fb:d7:29:54:b9:d9:4a:be:7b: 5f:e7:0f:ea:51:91:0a:23:12:1f:a2:af:0c:e2:41: cf:36:c3:55:43:f9:24:b5:98:af:21:d6:87:b7:54: 45:d5:01:b7:45:48:22:53:12:b8:38:2e:2b:16:c3: fc:c0:b8:a7:2b:f5:5f:d0:23:ec:39:6f:bc:1d:cc: 25:5b:c6:4a:00:d0:4b:14:81:be:8c:91:c4:d0:85: e2:a3:d3:51:4c:35:94:8e:24:84:44:99:7f:f2:8d: ec:4e:6d:5b:65:10:54:a0:81:af:c6:3d:fd:e5:29: b0:cc:79:25:a7:6d:b0:d5:fe:11:57:3e:b7:dd:9a: 2c:92:fe:e7:b7:54:1e:b4:c0:1e:12:65:8a:07:70: 27:0e:e5:f3:b1:4f:9f:92:36:37:dd:da:7d:9d:25: a6:6c:58:74:ae:d9:55:15:7d:ab:bf:ae:5e:27:52: 14:40:30:66:5c:37:af:2f:5e:ae:0a:49:09:34:07: 80:36:da:f5:3c:0c:15:4a:ae:9c:b5:4c:4b:f7:3c: 6c:6f:75:81:b7:2a:d9:ef:92:43:14:18:21:61:b4: df:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2C:69:44:6B:72:FE:EE:F2:CB:3E:FC:5F:DB:E1:28:27:8E:A2:95 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/BE3E0EE00C4E11EF85EEFC1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 6a:ca:b4:81:4d:a2:d4:84:00:2c:e5:ad:38:e8:90:d9:cd:6a: b2:b0:4b:6c:b8:9b:e6:ce:1b:fd:d9:2d:9d:3a:8c:03:85:9a: c7:5e:d0:23:04:5a:2d:79:b8:f5:5f:b3:ed:fa:d4:01:74:9d: d9:ec:08:ee:d3:ef:86:48:81:d6:d6:38:36:ea:78:36:f0:13: 27:b6:c8:33:2a:f9:df:77:55:23:8d:a7:4a:7e:31:51:35:06: db:cf:16:c2:78:28:42:b7:ba:35:93:70:39:1d:97:72:c1:36: 84:a1:9c:f9:69:e1:56:9b:5d:f9:37:ee:84:62:12:6a:1e:31: 35:3c:d3:83:73:07:03:f8:db:df:00:79:15:a7:22:cb:dd:6d: 0c:a6:e3:fa:2a:28:0a:de:2a:b0:a5:c2:59:05:db:08:d2:19: 21:6e:7c:0a:f8:0f:ee:2b:82:2b:be:71:32:36:b3:99:e1:fd: a2:5f:f4:e0:26:a0:e0:01:e2:29:9f:1b:44:73:78:fc:ac:32: 64:3a:cb:d2:9a:af:b6:0d:2d:6a:bc:ea:e2:f5:56:83:1b:f8: f2:b0:c6:03:b7:7f:11:21:25:a5:45:ec:7d:7c:08:bd:67:4b: a4:8d:db:0a:2d:b5:b6:65:a5:f1:88:47:4d:dd:31:cd:78:d3: 26:7e:b5:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTNBMDExMC8GA1UEBRMoQkNCN0NGNDQzMEJCOThFQTA0ODUxQzM0MDcyNkU1ODgx NTBFMTM5RDAeFw0yNDA5MTMxMDE5NThaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTQxMWNkLWViNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmI0GZQufwU5DVoyJFbj3jVPUeHxeOpDA7AkFh2JVatKDdovvXKVS52Uq+e1/n D+pRkQojEh+irwziQc82w1VD+SS1mK8h1oe3VEXVAbdFSCJTErg4LisWw/zAuKcr 9V/QI+w5b7wdzCVbxkoA0EsUgb6MkcTQheKj01FMNZSOJIREmX/yjexObVtlEFSg ga/GPf3lKbDMeSWnbbDV/hFXPrfdmiyS/ue3VB60wB4SZYoHcCcO5fOxT5+SNjfd 2n2dJaZsWHSu2VUVfau/rl4nUhRAMGZcN68vXq4KSQk0B4A22vU8DBVKrpy1TEv3 PGxvdYG3KtnvkkMUGCFhtN8/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNSxpRGty /u7yyz78X9vhKCeOopUwHwYDVR0jBBgwFoAUvLfPRDC7mOoEhRw0BybliBUOE50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5M0EwL0E1OTU1RTU2MEM0 NTExRUY5RTdFMDUxREM0RjlBRTAyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkxmUFJEQzdtT29FaFJ3MEJ5YmxpQlVPRTUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTNBMC9BNTk1NUU1NjBDNDUxMUVGOUU3RTA1MURDNEY5QUUwMi9CRTNFMEVFMDBD NEUxMUVGODVFRUZDMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMpGoDANBgkqhkiG9w0BAQsFAAOCAQEAasq0gU2i1IQALOWt OOiQ2c1qsrBLbLib5s4b/dktnTqMA4Wax17QIwRaLXm49V+z7frUAXSd2ewI7tPv hkiB1tY4Nup4NvATJ7bIMyr533dVI42nSn4xUTUG288WwngoQre6NZNwOR2XcsE2 hKGc+WnhVptd+TfuhGISah4xNTzTg3MHA/jb3wB5Faciy91tDKbj+iooCt4qsKXC WQXbCNIZIW58CvgP7iuCK75xMjazmeH9ol/04Cag4AHiKZ8bRHN4/KwyZDrL0pqv tg0tarzq4vVWgxv48rDGA7d/ESElpUXsfXwIvWdLpI3bCi21tmWl8YhHTd0xzXjT Jn61dg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org