$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/7EA856A6C3F511EEB2610F2FC4F9AE02.roa File: 7EA856A6C3F511EEB2610F2FC4F9AE02.roa (raw, json) Hash identifier: 3yC7OemuZRPNNEdNgmdDR23BQyMkj5NMRORnrcAntP4= Subject key identifier: 0D:6A:F1:BA:A3:CE:56:E5:EF:BA:7F:8A:1B:1A:B6:1A:2C:A2:0E:36 Certificate issuer: /CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0 Certificate serial: 0E36 Authority key identifier: BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/7EA856A6C3F511EEB2610F2FC4F9AE02.roa Signing time: Mon 05 Feb 2024 07:17:18 +0000 ROA not before: Mon 05 Feb 2024 07:17:18 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4767 IP address blocks: 202.8.65.0/24 maxlen: 24 202.8.66.0/23 maxlen: 24 202.8.68.0/22 maxlen: 24 203.159.0.0/18 maxlen: 20 2403:e240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.crl rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0 Validity Not Before: Feb 5 07:17:18 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65c08b7e-1eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:a6:c8:9a:ea:3b:cd:4f:31:7a:c7:48:50: 52:51:28:9c:5b:f5:a5:f9:44:7f:e2:8e:ea:4b:66: 0c:f4:5a:80:09:88:b0:0c:35:97:e7:e5:91:d1:ca: 5e:25:4c:bd:9f:3e:e2:2a:df:cd:57:ad:08:da:68: a8:07:f0:88:bf:f8:76:96:f4:77:b7:23:01:f8:b0: 88:70:c2:16:1f:9a:64:d3:da:15:91:b0:34:f2:a6: 4f:54:69:71:ca:fc:eb:a6:54:09:9c:fd:78:3a:7a: 3e:4a:cc:b5:19:ee:3f:55:6c:65:dc:17:83:f2:30: 4a:98:38:68:96:31:9d:4b:2e:11:a7:c4:87:c7:54: aa:e1:76:6a:0e:69:0e:88:f5:c5:91:2f:bb:c1:83: 42:54:c4:0b:f1:52:6a:d5:5c:2f:3e:bf:45:36:0f: a8:46:69:e3:1e:c5:c7:a9:f9:93:6a:25:d9:b2:91: df:fe:cc:f9:00:ae:2f:ff:e3:e5:45:7f:ea:ff:30: 66:ee:25:84:7b:bd:5c:ac:17:af:7d:a0:9c:a8:be: 3f:bc:37:39:aa:d6:e8:6e:a9:b0:1b:93:c6:7e:41: 16:dc:1a:f6:9c:41:ca:4f:0f:27:03:1f:8e:cf:23: 06:04:93:6e:8e:94:02:08:7f:41:0f:1d:4d:6b:1b: 51:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6A:F1:BA:A3:CE:56:E5:EF:BA:7F:8A:1B:1A:B6:1A:2C:A2:0E:36 X509v3 Authority Key Identifier: keyid:BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/7EA856A6C3F511EEB2610F2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.8.65.0-202.8.71.255 203.159.0.0/18 IPv6: 2403:e240::/32 Signature Algorithm: sha256WithRSAEncryption 93:ad:25:f3:0b:95:f7:be:18:0b:dc:0f:57:45:94:89:39:dc: ea:93:20:59:22:e7:64:65:fd:b6:8f:04:fd:d6:cb:16:16:69: 1a:4e:45:b4:c4:a8:21:74:97:7f:df:cb:94:93:e5:31:cf:77: cf:a9:22:31:3f:64:c5:ac:b2:1d:5a:87:f0:8e:13:59:1c:81: 5e:f5:5f:e5:ab:50:2d:d8:5f:33:84:7d:97:9f:41:a3:28:a1: 94:c9:56:8e:aa:d8:9c:c4:e0:ac:84:ba:73:b5:c6:02:a7:f3: 68:4c:8c:d8:99:a3:13:dd:94:19:9e:41:4f:60:cc:7f:ef:50: 78:82:fe:7b:6a:04:09:18:a6:02:e8:a0:0d:78:70:df:4c:da: 0e:a1:c9:8a:ac:c6:a3:00:af:26:4c:f4:cb:b8:04:84:2e:c1: e1:73:f2:00:c9:03:dd:dc:d3:9f:77:84:e5:50:5f:55:fe:0b: 40:9f:cc:62:33:e2:7e:bf:f3:22:4b:d7:cc:0b:92:19:d3:eb: 81:26:37:da:d6:02:72:29:b2:a9:90:f5:cb:a4:41:a8:4b:cb: 31:29:3f:f6:8a:83:5b:a6:bc:d5:2b:7b:9e:5d:a2:29:b5:9e: 29:ba:a0:7e:ea:ef:1c:2f:7b:16:ed:b7:56:17:07:6f:0a:e5: 94:37:c7:d1 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKEJBOEQ2RkU1RDgyOEMwNTM5OUIzRTFBQTY1OEZDMDU4 ODYxRkRDRTAwHhcNMjQwMjA1MDcxNzE4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwOGI3ZS0xZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZqmyJrqO81PMXrHSFBSUSicW/Wl+UR/4o7qS2YM9FqACYiwDDWX5+WR0cpe JUy9nz7iKt/NV60I2mioB/CIv/h2lvR3tyMB+LCIcMIWH5pk09oVkbA08qZPVGlx yvzrplQJnP14Ono+Ssy1Ge4/VWxl3BeD8jBKmDholjGdSy4Rp8SHx1Sq4XZqDmkO iPXFkS+7wYNCVMQL8VJq1VwvPr9FNg+oRmnjHsXHqfmTaiXZspHf/sz5AK4v/+Pl RX/q/zBm7iWEe71crBevfaCcqL4/vDc5qtbobqmwG5PGfkEW3Br2nEHKTw8nAx+O zyMGBJNujpQCCH9BDx1NaxtRwQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFA1q8bqj zlbl77p/ihsathosog42MB8GA1UdIwQYMBaAFLqNb+XYKMBTmbPhqmWPwFiGH9zg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi9FQUNENDg3Njc2 NEExMUU5OEM4N0I1ODJDNEY5QUUwMi91bzF2NWRnb3dGT1pzLUdxWllfQVdJWWYz T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VvMXY1ZGdvd0ZPWnMtR3FaWV9BV0lZZjNPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFGMDIvRUFDRDQ4NzY3NjRBMTFFOThDODdCNTgyQzRGOUFFMDIvN0VBODU2QTZD M0Y1MTFFRUIyNjEwRjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQwDAMEAMoIQQMEA8oIQAMEBsufADANBAIAAjAHAwUAJAPiQDAN BgkqhkiG9w0BAQsFAAOCAQEAk60l8wuV974YC9wPV0WUiTnc6pMgWSLnZGX9to8E /dbLFhZpGk5FtMSoIXSXf9/LlJPlMc93z6kiMT9kxayyHVqH8I4TWRyBXvVf5atQ LdhfM4R9l59BoyihlMlWjqrYnMTgrIS6c7XGAqfzaEyM2JmjE92UGZ5BT2DMf+9Q eIL+e2oECRimAuigDXhw30zaDqHJiqzGowCvJkz0y7gEhC7B4XPyAMkD3dzTn3eE 5VBfVf4LQJ/MYjPifr/zIkvXzAuSGdPrgSY32tYCcimyqZD1y6RBqEvLMSk/9oqD W6a81St7nl2iKbWeKbqgfurvHC97Fu23VhcHbwrllDfH0Q== -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:03 2024 by rpki-client on console-fra.rpki-client.org