$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa File: D6871FC40C5711EFBD14BD5AC4F9AE02.roa (raw, json) Hash identifier: pMueZdZNVsSO9dkMJ6HNJEYyNaRswTRPg4jNaq1x/N8= Subject key identifier: D4:75:38:9B:B4:63:B5:6E:54:5D:CB:CA:C8:11:40:09:CC:0B:CF:D3 Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 67 Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa Signing time: Fri 13 Sep 2024 10:19:54 +0000 ROA not before: Fri 13 Sep 2024 10:19:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 10103 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Sep 13 10:19:54 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e411ca-6054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:28:61:b7:76:e4:4a:c5:25:44:85:8a:b9: bc:61:2b:92:53:b4:f4:65:81:be:50:2c:33:e2:90: 63:a8:42:4e:b8:42:2a:c1:f5:b1:0f:1f:76:40:37: d7:ef:be:d8:6b:ff:bf:06:f2:b1:82:2b:3a:48:01: 00:ef:fa:2e:5b:0c:58:f8:f7:d5:59:a4:fc:8f:f7: b6:83:37:11:8a:28:0a:56:e0:50:3f:23:46:a6:cd: cf:1d:5f:78:4e:40:87:10:6a:ff:a1:c8:b2:6a:da: 26:3c:1d:90:52:e1:e2:22:1c:0f:54:6d:67:d6:fa: d1:79:0c:ff:d4:55:73:59:cc:f1:cc:ca:b9:28:5d: ef:fb:32:1c:81:93:41:90:5f:a4:d4:59:02:eb:b5: 9f:43:f4:15:b2:0b:ab:1f:b5:76:45:db:d3:a4:b3: 98:f6:bb:b2:c0:47:f6:77:84:8b:c1:f2:4b:e9:28: 9d:83:e0:d1:f8:5b:8a:c0:8c:18:6f:d9:9d:c5:c4: 00:d4:9e:8c:50:cd:de:c3:dd:43:21:02:a9:0f:dd: b1:4e:2d:f8:78:01:69:05:80:0d:1e:0d:db:fa:8c: 79:e4:73:b1:3b:18:c9:30:ba:76:f6:14:3d:0b:1a: ba:78:43:c7:d9:2b:1b:a5:7c:9a:96:f9:73:6a:34: a6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:75:38:9B:B4:63:B5:6E:54:5D:CB:CA:C8:11:40:09:CC:0B:CF:D3 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 49:6c:5a:83:19:eb:43:5a:f7:24:79:26:5a:a1:f5:0e:4f:0e: ab:8c:56:8b:97:91:25:c5:22:3b:c8:bf:15:77:c2:57:d8:83: f0:dc:1f:44:3b:5c:f1:ae:f2:00:3b:b7:af:25:51:5a:50:81: fd:d1:8a:5d:b5:90:4a:82:8b:22:2c:2c:be:e1:15:92:f4:93: 5b:b0:f0:c5:d4:d6:02:ba:30:c7:20:41:63:10:a6:8b:80:5f: 03:e1:d4:49:4d:0e:8c:77:7d:26:76:40:bd:f3:e5:79:6f:0b: 59:0a:e6:e5:44:e3:fa:7e:9d:6a:13:6d:46:5f:ee:51:33:96: e6:c2:81:bc:02:b8:0e:ef:35:f1:36:20:bf:ba:84:63:52:79: 19:ef:b7:06:5a:6f:57:67:a1:a1:f4:c7:ba:a0:7c:c7:94:b4: de:01:ac:51:20:c0:9e:f0:b0:a2:96:00:4c:bb:56:17:c9:ad: 7d:89:ee:f5:6b:46:d9:5f:7d:0c:f9:cd:29:24:71:c7:b7:de: 05:fd:9c:0a:28:71:67:15:8e:7a:79:23:b5:e9:5a:0e:d4:00: 32:37:13:ee:86:93:2c:d6:e5:04:a9:8c:fa:58:e5:22:19:72: d8:ce:85:c6:e7:a1:8e:82:78:9f:a3:2c:6e:80:99:28:bc:3e: 6a:c3:5b:5f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTNBMDExMC8GA1UEBRMoQkNCN0NGNDQzMEJCOThFQTA0ODUxQzM0MDcyNkU1ODgx NTBFMTM5RDAeFw0yNDA5MTMxMDE5NTRaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTQxMWNhLTYwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCIShht3bkSsUlRIWKubxhK5JTtPRlgb5QLDPikGOoQk64QirB9bEPH3ZAN9fv vthr/78G8rGCKzpIAQDv+i5bDFj499VZpPyP97aDNxGKKApW4FA/I0amzc8dX3hO QIcQav+hyLJq2iY8HZBS4eIiHA9UbWfW+tF5DP/UVXNZzPHMyrkoXe/7MhyBk0GQ X6TUWQLrtZ9D9BWyC6sftXZF29Oks5j2u7LAR/Z3hIvB8kvpKJ2D4NH4W4rAjBhv 2Z3FxADUnoxQzd7D3UMhAqkP3bFOLfh4AWkFgA0eDdv6jHnkc7E7GMkwunb2FD0L Grp4Q8fZKxulfJqW+XNqNKbTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1HU4m7Rj tW5UXcvKyBFACcwLz9MwHwYDVR0jBBgwFoAUvLfPRDC7mOoEhRw0BybliBUOE50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5M0EwL0E1OTU1RTU2MEM0 NTExRUY5RTdFMDUxREM0RjlBRTAyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkxmUFJEQzdtT29FaFJ3MEJ5YmxpQlVPRTUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTNBMC9BNTk1NUU1NjBDNDUxMUVGOUU3RTA1MURDNEY5QUUwMi9ENjg3MUZDNDBD NTcxMUVGQkQxNEJENUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMpGoDANBgkqhkiG9w0BAQsFAAOCAQEASWxagxnrQ1r3JHkm WqH1Dk8Oq4xWi5eRJcUiO8i/FXfCV9iD8NwfRDtc8a7yADu3ryVRWlCB/dGKXbWQ SoKLIiwsvuEVkvSTW7DwxdTWArowxyBBYxCmi4BfA+HUSU0OjHd9JnZAvfPleW8L WQrm5UTj+n6dahNtRl/uUTOW5sKBvAK4Du818TYgv7qEY1J5Ge+3BlpvV2ehofTH uqB8x5S03gGsUSDAnvCwopYATLtWF8mtfYnu9WtG2V99DPnNKSRxx7feBf2cCihx ZxWOenkjtelaDtQAMjcT7oaTLNblBKmM+ljlIhly2M6FxuehjoJ4n6MsboCZKLw+ asNbXw== -----END CERTIFICATE-----Generated at Thu Oct 17 06:46:18 2024 by rpki-client on console-fra.rpki-client.org