$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/7DAE5EB25AE011EFBA58F07FC4F9AE02.roa File: 7DAE5EB25AE011EFBA58F07FC4F9AE02.roa (raw, json) Hash identifier: fEssK/rdFbySAulrqFd8AKpPmu+MmmAD1cyPJC/0O8A= Subject key identifier: 85:44:30:E8:9F:87:BF:39:EC:2E:E3:AE:C2:D8:50:5E:F2:DC:FD:F6 Certificate issuer: /CN=A91A4690/serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Certificate serial: 02 Authority key identifier: 02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/7DAE5EB25AE011EFBA58F07FC4F9AE02.roa Signing time: Thu 15 Aug 2024 08:29:30 +0000 ROA not before: Thu 15 Aug 2024 08:29:30 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 26658 IP address blocks: 59.153.160.0/22 maxlen: 22 103.198.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4690/serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Validity Not Before: Aug 15 08:29:30 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bdbc6a-6622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:69:1b:19:0c:2e:61:00:6c:79:77:13:ad:78: 57:a5:e3:53:de:24:cb:aa:0e:98:6e:ef:85:2b:b5: 8b:f4:09:5e:60:34:95:88:bc:f1:7d:a1:5f:92:bf: 51:3d:93:ac:f9:f6:56:e0:87:b0:a8:a6:7c:d0:2c: b3:ee:f1:d5:85:45:c3:52:7f:e0:9e:99:84:c9:5e: 95:2b:9b:af:de:e1:ca:93:9d:85:cf:e1:fa:a1:9f: af:0e:46:4b:74:56:f5:25:85:81:3b:c3:bc:62:08: 8e:78:2f:fe:7e:b3:6a:57:1c:fd:1c:fb:4c:a0:8d: af:18:01:ca:c8:a7:f2:47:eb:37:4e:82:ce:4f:36: 77:48:d2:4b:42:b7:08:5e:0b:15:16:e2:88:e7:6d: a5:5f:5c:eb:8e:73:ea:69:b4:c2:26:52:c8:0c:ed: c3:52:d6:46:5a:5d:49:ae:0e:3b:2d:84:60:80:2e: 18:63:54:44:7d:d9:47:13:17:1c:b2:b6:4e:19:32: 1d:6b:75:8f:ae:3f:18:6a:3a:53:c3:a2:37:1e:4f: d5:06:4e:ae:bc:a5:c0:df:50:f9:a4:4d:43:5d:15: bf:55:e3:ce:2b:70:cf:eb:da:4d:a0:7d:c8:e0:e1: 31:b1:16:93:a0:dd:bc:ec:63:f5:fc:57:8c:85:b3: 4e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:44:30:E8:9F:87:BF:39:EC:2E:E3:AE:C2:D8:50:5E:F2:DC:FD:F6 X509v3 Authority Key Identifier: keyid:02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/7DAE5EB25AE011EFBA58F07FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.160.0/22 103.198.204.0/22 Signature Algorithm: sha256WithRSAEncryption 15:11:86:bc:c4:6b:c9:2a:c4:94:32:78:ce:f9:d2:b8:38:54: 73:2c:77:40:a1:df:91:bf:60:cb:ae:f0:2b:cd:49:85:93:fd: 76:dd:dd:25:19:3d:e8:e0:f4:42:c4:86:44:9f:63:a0:b7:a2: 8c:be:04:41:3d:92:80:22:62:60:33:e3:74:38:b8:b3:21:9c: 0d:9a:78:c1:4c:46:c1:b9:b5:83:ec:7c:39:ee:a2:1c:c9:ea: 76:a4:59:8f:77:c1:6d:ca:25:aa:1d:9d:3f:f5:eb:e1:28:11: c2:68:fd:10:5a:34:c1:d9:46:e0:95:ba:cc:c1:aa:b2:df:4f: 11:b1:95:24:da:56:c4:86:bb:b3:70:4f:08:dd:71:af:66:45: 3d:3e:e0:b6:37:12:e4:ec:26:38:12:17:31:f2:e1:74:42:ac: 4c:1f:11:cd:45:d4:3b:df:72:b9:72:18:1f:a1:b9:9c:41:75: a4:2d:7a:c2:9b:3e:ff:d1:e0:21:eb:5e:20:2a:4e:07:34:e6: bf:97:1b:8a:63:fb:39:a5:8d:99:8e:43:a8:70:2f:3f:1f:1e: 0f:ae:b7:4f:d8:f3:4d:29:6c:63:8e:b3:7a:17:71:b5:d1:57: 22:2d:78:52:ac:db:21:82:c3:bd:75:0f:9c:63:e3:77:b8:41: 77:87:50:3f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDY5MDExMC8GA1UEBRMoMDJDRkY3Nzk4RjA1M0U5QzgxRkRDQ0VENzk2MkVDQkI3 NkMxRDIxQTAeFw0yNDA4MTUwODI5MzBaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmRiYzZhLTY2MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMaRsZDC5hAGx5dxOteFel41PeJMuqDphu74UrtYv0CV5gNJWIvPF9oV+Sv1E9 k6z59lbgh7CopnzQLLPu8dWFRcNSf+CemYTJXpUrm6/e4cqTnYXP4fqhn68ORkt0 VvUlhYE7w7xiCI54L/5+s2pXHP0c+0ygja8YAcrIp/JH6zdOgs5PNndI0ktCtwhe CxUW4ojnbaVfXOuOc+pptMImUsgM7cNS1kZaXUmuDjsthGCALhhjVER92UcTFxyy tk4ZMh1rdY+uPxhqOlPDojceT9UGTq68pcDfUPmkTUNdFb9V484rcM/r2k2gfcjg 4TGxFpOg3bzsY/X8V4yFs04xAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUhUQw6J+H vznsLuOuwthQXvLc/fYwHwYDVR0jBBgwFoAUAs/3eY8FPpyB/czteWLsu3bB0how DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NjkwLzQwOUM5NzBBNUFF MDExRUY4NTgyNzA3RkM0RjlBRTAyL0FzXzNlWThGUHB5Ql9jenRlV0xzdTNiQjBo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXNfM2VZOEZQcHlCX2N6dGVXTHN1M2JCMGhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY5MC80MDlDOTcwQTVBRTAxMUVGODU4MjcwN0ZDNEY5QUUwMi83REFFNUVCMjVB RTAxMUVGQkE1OEYwN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAjuZoAMEAmfGzDANBgkqhkiG9w0BAQsFAAOCAQEAFRGGvMRr ySrElDJ4zvnSuDhUcyx3QKHfkb9gy67wK81JhZP9dt3dJRk96OD0QsSGRJ9joLei jL4EQT2SgCJiYDPjdDi4syGcDZp4wUxGwbm1g+x8Oe6iHMnqdqRZj3fBbcolqh2d P/Xr4SgRwmj9EFo0wdlG4JW6zMGqst9PEbGVJNpWxIa7s3BPCN1xr2ZFPT7gtjcS 5OwmOBIXMfLhdEKsTB8RzUXUO99yuXIYH6G5nEF1pC16wps+/9HgIeteICpOBzTm v5cbimP7OaWNmY5DqHAvPx8eD663T9jzTSlsY46zehdxtdFXIi14UqzbIYLDvXUP nGPjd7hBd4dQPw== -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:20 2024 by rpki-client on console-fra.rpki-client.org