$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/D6C060C27E1811EEB9B4FE4AC4F9AE02.roa File: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (raw, json) Hash identifier: wiIyYyxWUkr+Ordrgxj8/xP4tlK+/DrPM/peLpho1gM= Subject key identifier: F6:FA:37:04:A1:E6:B3:0D:C2:5B:87:6B:8A:61:E5:04:D9:C6:DE:C1 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 0424 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/D6C060C27E1811EEB9B4FE4AC4F9AE02.roa Signing time: Mon 01 Jan 2024 02:03:43 +0000 ROA not before: Mon 01 Jan 2024 02:03:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 61317 IP address blocks: 202.43.6.0/24 maxlen: 24 202.43.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 1 02:03:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65921d7f-04ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:49:ba:69:b9:9f:a4:4b:ab:c7:8e:f9:ff: eb:8d:c4:52:c0:37:ad:64:a9:b7:86:1f:94:70:8c: 96:66:c1:4d:66:48:d0:86:e3:4c:96:01:6c:cb:1d: 9c:36:9a:65:8e:f8:cb:72:de:67:5c:4d:95:7b:41: 29:ff:4e:a6:da:49:81:11:3c:c1:31:6d:08:f7:91: c5:05:97:cf:24:e5:e4:14:7c:ca:2f:70:8d:9d:5f: 87:71:cf:3b:d1:d9:01:75:62:7d:cf:fd:c9:63:88: 29:17:39:4d:27:cb:ac:c9:85:51:cc:f9:0a:5d:33: b2:0e:89:81:29:cc:95:ce:a0:f7:9c:b0:3e:5d:3b: f0:4c:ec:be:ad:56:80:53:23:d6:03:50:e7:ed:a9: 5f:83:5a:dd:ce:9d:b4:3e:72:52:93:89:a2:2c:81: df:55:82:f2:54:a1:1c:d1:c0:eb:bd:55:64:25:ea: 38:9e:10:a8:b9:af:89:66:ea:a3:7d:eb:97:c8:be: 1f:06:59:d7:cd:61:b5:d2:f0:cf:c5:7c:b7:db:2b: 3d:90:03:f7:4c:49:cf:92:e3:f3:3b:0a:46:ce:32: 53:14:56:af:e2:69:16:ee:18:cb:15:b7:75:b5:85: 70:d7:5f:4d:f8:83:9f:32:10:c1:25:4e:20:38:b5: 70:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FA:37:04:A1:E6:B3:0D:C2:5B:87:6B:8A:61:E5:04:D9:C6:DE:C1 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/D6C060C27E1811EEB9B4FE4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.6.0/23 Signature Algorithm: sha256WithRSAEncryption d5:63:9b:d2:70:45:d8:2c:cf:c7:1d:eb:24:d2:cb:9b:41:42: 9e:49:84:52:58:91:51:ad:c5:8e:e7:c1:bd:f7:5d:81:54:b4: 37:59:24:86:6a:2d:fe:36:14:48:45:f8:25:66:00:40:36:f5: 98:6b:87:59:3c:8b:55:24:13:a0:50:ea:93:86:78:3a:c8:e5: ad:25:77:97:bc:7b:43:22:be:64:b6:16:e7:d0:6b:36:fa:9b: b8:a8:06:41:7b:00:93:64:0e:18:ad:d2:d6:19:10:56:cd:c9: a2:68:e0:fc:70:a8:62:1a:0b:e3:37:b5:cc:d3:60:af:19:fa: 2a:17:13:8f:ee:cb:b2:bc:bd:dd:d7:b0:e5:77:79:9b:80:4e: cb:a4:e7:bc:0d:f7:be:01:71:8e:2c:99:29:3e:26:fd:ef:06: 62:a7:b6:c3:90:d6:46:f9:7f:4d:8e:13:86:e4:18:3d:36:1c: 9f:82:92:09:f6:13:86:0f:0d:c8:e3:56:45:48:da:81:b4:3c: 2f:6c:08:4c:45:88:3d:97:0b:1f:51:35:0a:2b:db:1f:30:cd: d5:ce:8d:d3:f4:03:ec:b4:b3:84:bb:11:f9:76:5c:ea:cb:e1: ab:06:52:db:61:ea:7b:e6:41:c8:1c:5e:5e:29:a3:cf:6e:23: 61:09:49:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjQwMTAxMDIwMzQzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkyMWQ3Zi0wNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC9Jumm5n6RLq8eO+f/rjcRSwDetZKm3hh+UcIyWZsFNZkjQhuNMlgFsyx2c NppljvjLct5nXE2Ve0Ep/06m2kmBETzBMW0I95HFBZfPJOXkFHzKL3CNnV+Hcc87 0dkBdWJ9z/3JY4gpFzlNJ8usyYVRzPkKXTOyDomBKcyVzqD3nLA+XTvwTOy+rVaA UyPWA1Dn7alfg1rdzp20PnJSk4miLIHfVYLyVKEc0cDrvVVkJeo4nhCoua+JZuqj feuXyL4fBlnXzWG10vDPxXy32ys9kAP3TEnPkuPzOwpGzjJTFFav4mkW7hjLFbd1 tYVw119N+IOfMhDBJU4gOLVw0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPb6NwSh 5rMNwluHa4ph5QTZxt7BMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvRDZDMDYwQzI3 RTE4MTFFRUI5QjRGRTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKKwYwDQYJKoZIhvcNAQELBQADggEBANVjm9JwRdgsz8cd 6yTSy5tBQp5JhFJYkVGtxY7nwb33XYFUtDdZJIZqLf42FEhF+CVmAEA29Zhrh1k8 i1UkE6BQ6pOGeDrI5a0ld5e8e0MivmS2FufQazb6m7ioBkF7AJNkDhit0tYZEFbN yaJo4PxwqGIaC+M3tczTYK8Z+ioXE4/uy7K8vd3XsOV3eZuATsuk57wN974BcY4s mSk+Jv3vBmKntsOQ1kb5f02OE4bkGD02HJ+Ckgn2E4YPDcjjVkVI2oG0PC9sCExF iD2XCx9RNQor2x8wzdXOjdP0A+y0s4S7Efl2XOrL4asGUtth6nvmQcgcXl4po89u I2EJScE= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:31 2024 by rpki-client on console-ams.rpki-client.org