$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BBDA9B429E6311ECA6EC8071C4F9AE02.roa File: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (raw, json) Hash identifier: aqlNHvLsowrNCshV5huaECQwhT+7ps3G55fqOA8lWJY= Subject key identifier: 81:D1:BB:06:A1:43:6C:4A:83:9A:00:4B:B1:65:43:B7:6D:23:FD:39 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0425 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BBDA9B429E6311ECA6EC8071C4F9AE02.roa Signing time: Mon 01 Jan 2024 02:03:44 +0000 ROA not before: Mon 01 Jan 2024 02:03:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 64267 IP address blocks: 202.43.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 1 02:03:44 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65921d80-75ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:da:b1:35:44:de:b9:00:27:bf:2a:ac:9c:18: 7c:b7:16:a5:ac:10:27:72:84:3a:04:f1:be:d6:e0: 10:21:ed:4c:75:a6:fd:61:e8:bd:ae:2f:77:a5:c0: bf:df:a3:0a:4c:85:75:ef:2e:79:82:6e:f1:1a:af: 1a:0d:42:d6:3c:a4:6d:31:11:21:78:98:f5:66:16: aa:6d:45:97:26:2b:15:d2:77:c1:3f:4e:f1:68:f5: 07:95:21:82:02:9a:f2:a5:15:c7:31:c3:77:df:c1: 72:31:00:3b:5f:18:df:22:8f:db:2c:e8:c3:a5:a9: 8e:2c:84:7e:89:7f:2f:01:a4:73:e9:a0:a6:6d:94: 77:61:3f:b4:47:6b:10:c6:91:fa:a8:90:6f:6e:28: eb:94:f8:a2:36:ea:0f:40:fc:28:a7:57:c2:1f:57: 47:52:ae:e1:32:c3:35:99:e3:1d:88:78:ff:e3:f5: 00:f5:1d:01:ac:06:65:b3:5a:f5:d8:f0:9c:13:2b: cb:aa:46:45:77:0e:65:49:4e:8b:cc:0c:5b:da:28: fa:78:1f:24:09:75:67:d0:25:35:f4:30:56:30:40: 6e:ea:ed:80:d5:f5:2d:1c:5f:6b:05:14:37:4a:a6: 77:dd:d5:b6:3c:1c:b0:92:c2:ea:46:ba:19:78:f9: 95:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D1:BB:06:A1:43:6C:4A:83:9A:00:4B:B1:65:43:B7:6D:23:FD:39 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/BBDA9B429E6311ECA6EC8071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.5.0/24 Signature Algorithm: sha256WithRSAEncryption c8:18:cf:bd:ce:cf:40:bb:3b:c7:c1:d8:72:88:82:be:96:64: 94:45:ba:90:19:3a:04:9a:dc:0d:d2:c2:c4:1c:b4:cb:50:ee: 39:f4:65:d1:8c:be:58:52:b2:60:8b:26:dd:17:bb:5e:2e:32: b7:5b:34:5c:2c:1a:48:46:54:4e:07:ee:fa:8c:cd:6e:1f:14: e5:42:73:1f:9e:4c:b2:3e:6e:3f:48:e5:10:29:bc:71:9c:a7: 64:17:ac:cf:9f:1a:20:22:70:8b:cd:34:ce:3f:38:73:0b:c4: 99:9e:59:a1:a2:9f:a1:5b:11:cf:30:34:fd:08:1b:6f:97:ee: 7c:8a:82:e3:47:0a:bd:ec:28:39:09:d7:f3:e7:a9:d0:e3:ed: 95:50:85:a9:55:ff:38:cb:a3:61:78:13:23:00:46:38:2e:6c: 8e:b6:e9:a2:10:6b:1e:9d:42:01:bd:5b:99:a6:6d:99:91:14: b5:aa:0e:b6:a1:56:ea:c4:d2:4f:25:42:58:10:37:38:1f:62: ff:4f:79:4a:d3:c2:fd:69:e8:4c:12:2b:2e:af:f0:d4:f5:c7: 0d:1b:dc:12:79:f9:c7:2b:36:39:a1:a2:19:4d:d5:ad:5c:90: e7:3f:a7:b2:7b:d0:37:38:52:00:92:56:24:61:20:c1:9b:cd: d7:8d:eb:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQwMTAxMDIwMzQ0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyMWQ4MC03NWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tqxNUTeuQAnvyqsnBh8txalrBAncoQ6BPG+1uAQIe1Mdab9Yei9ri93pcC/ 36MKTIV17y55gm7xGq8aDULWPKRtMREheJj1ZhaqbUWXJisV0nfBP07xaPUHlSGC AprypRXHMcN338FyMQA7XxjfIo/bLOjDpamOLIR+iX8vAaRz6aCmbZR3YT+0R2sQ xpH6qJBvbijrlPiiNuoPQPwop1fCH1dHUq7hMsM1meMdiHj/4/UA9R0BrAZls1r1 2PCcEyvLqkZFdw5lSU6LzAxb2ij6eB8kCXVn0CU19DBWMEBu6u2A1fUtHF9rBRQ3 SqZ33dW2PBywksLqRroZePmVTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIHRuwah Q2xKg5oAS7FlQ7dtI/05MB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvQkJEQTlCNDI5 RTYzMTFFQ0E2RUM4MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKwUwDQYJKoZIhvcNAQELBQADggEBAMgYz73Oz0C7O8fB 2HKIgr6WZJRFupAZOgSa3A3SwsQctMtQ7jn0ZdGMvlhSsmCLJt0Xu14uMrdbNFws GkhGVE4H7vqMzW4fFOVCcx+eTLI+bj9I5RApvHGcp2QXrM+fGiAicIvNNM4/OHML xJmeWaGin6FbEc8wNP0IG2+X7nyKguNHCr3sKDkJ1/PnqdDj7ZVQhalV/zjLo2F4 EyMARjgubI626aIQax6dQgG9W5mmbZmRFLWqDrahVurE0k8lQlgQNzgfYv9PeUrT wv1p6EwSKy6v8NT1xw0b3BJ5+ccrNjmhohlN1a1ckOc/p7J70Dc4UgCSViRhIMGb zdeN60I= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org