$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa File: 2D478AFED02011ECB021972BC4F9AE02.roa (raw, json) Hash identifier: KiWMfnaqo/tfw5gCcea55F0jBNiA0r/0TcX17r/8cvk= Subject key identifier: E1:54:ED:B4:15:81:45:8E:C4:43:A5:C3:35:7C:9D:0F:89:2D:D2:33 Certificate issuer: /CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Certificate serial: 0265 Authority key identifier: 02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa Signing time: Mon 03 Jun 2024 04:32:32 +0000 ROA not before: Mon 03 Jun 2024 04:32:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38549 IP address blocks: 203.21.76.0/24 maxlen: 24 203.21.77.0/24 maxlen: 24 2001:df0:20b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 613 (0x265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Validity Not Before: Jun 3 04:32:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d4760-ca5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2b:53:a8:cd:80:0e:1e:de:9e:a6:6d:74:5b: 72:76:99:03:71:6e:32:33:a5:36:b7:c8:9c:57:db: 4c:32:50:cf:46:d7:28:29:3c:19:6e:e1:3a:cf:0f: 02:32:8e:aa:20:7d:77:ec:e9:cd:0f:f6:dc:b6:0c: 5e:08:fa:54:05:73:ec:02:6a:45:7e:87:cc:20:56: 94:7e:41:a7:e7:2b:a1:08:24:8e:fe:5a:89:03:dd: 55:18:fc:48:b6:88:0c:43:d9:86:91:93:4a:d3:41: a9:59:e6:de:8f:4a:e9:8b:9a:70:55:e8:71:f9:a9: 2c:1e:63:fe:eb:f3:20:69:77:dd:2c:4c:07:5c:d9: 42:21:ee:12:1e:64:da:a5:9c:69:1a:d9:ab:43:09: 50:77:93:42:05:e2:35:8a:6e:85:41:e7:e1:20:e6: 7f:3b:2c:9d:bf:b6:c0:aa:e2:b7:d5:8c:05:71:3e: fc:24:d5:0a:ec:b8:be:3c:2b:f0:3b:f6:ab:b5:e5: f8:9c:8a:b8:16:d6:76:fe:2d:10:78:c1:3e:d6:0a: 14:ff:7d:fd:9b:4e:a2:dc:0b:4a:8d:95:45:f5:3e: 82:67:96:b3:c6:37:98:cc:86:a4:19:1d:24:fc:e1: d7:a2:81:b3:d5:44:72:b3:6e:d6:e1:be:ba:55:40: c6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:54:ED:B4:15:81:45:8E:C4:43:A5:C3:35:7C:9D:0F:89:2D:D2:33 X509v3 Authority Key Identifier: keyid:02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.76.0/23 IPv6: 2001:df0:20b::/48 Signature Algorithm: sha256WithRSAEncryption 91:d5:6c:08:6e:3b:d2:74:de:de:58:19:f9:23:18:94:8c:7b: b1:fe:ee:98:a0:66:07:89:0a:25:6a:42:b2:fe:52:be:ff:8c: 59:d5:c0:46:3f:06:72:2b:0a:0b:d2:98:10:9e:f1:f0:ee:f2: c0:f1:28:f2:ec:fd:79:43:db:82:6b:fa:03:66:1a:3b:38:5f: 7a:76:40:1a:41:80:1a:8a:78:49:05:bc:fd:a0:6f:22:a9:6d: a9:23:05:7a:9c:13:20:1c:c5:8b:46:00:a8:f4:35:30:9d:c0: 52:68:00:04:dd:35:23:bb:75:89:63:1a:bf:04:a0:2c:71:3f: 51:db:34:23:ec:fa:55:85:23:fb:83:86:61:c0:3b:79:fb:c5: 03:d8:6b:19:1e:da:eb:cf:67:d2:3a:15:a9:a9:e6:fe:89:70: 05:bb:b5:55:56:36:07:04:5d:f7:f6:61:79:5d:21:81:26:96: 60:05:f2:61:d1:74:a1:94:51:7f:1a:d2:81:8a:7f:3b:e5:bb: a0:e9:90:4f:f7:7b:66:5f:02:4b:3d:eb:5f:c6:dd:e1:d0:b1: ba:44:6b:8b:95:d1:d1:6b:f0:a7:f2:33:02:ad:ca:cf:a4:2d: 8f:2c:e6:b8:6c:40:bd:49:06:45:ae:7f:94:f2:77:6a:14:33: 58:1f:94:43 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxMDgxMTAvBgNVBAUTKDAyQkI5N0ZEOEIxRjYyMEUwMkExRTJDQURCNTlENjU2 RjAxQURBNDUwHhcNMjQwNjAzMDQzMjMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkNDc2MC1jYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCtTqM2ADh7enqZtdFtydpkDcW4yM6U2t8icV9tMMlDPRtcoKTwZbuE6zw8C Mo6qIH137OnND/bctgxeCPpUBXPsAmpFfofMIFaUfkGn5yuhCCSO/lqJA91VGPxI togMQ9mGkZNK00GpWebej0rpi5pwVehx+aksHmP+6/MgaXfdLEwHXNlCIe4SHmTa pZxpGtmrQwlQd5NCBeI1im6FQefhIOZ/Oyydv7bAquK31YwFcT78JNUK7Li+PCvw O/arteX4nIq4FtZ2/i0QeME+1goU/339m06i3AtKjZVF9T6CZ5azxjeYzIakGR0k /OHXooGz1URys27W4b66VUDGzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOFU7bQV gUWOxEOlwzV8nQ+JLdIzMB8GA1UdIwQYMBaAFAK7l/2LH2IOAqHiyttZ1lbwGtpF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTEwOC9FM0IwNDZDQ0Qw MUMxMUVDQjM1NEFGMjRDNEY5QUUwMi9BcnVYX1lzZllnNENvZUxLMjFuV1Z2QWEy a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FydVhfWXNmWWc0Q29lTEsyMW5XVnZBYTJrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUxMDgvRTNCMDQ2Q0NEMDFDMTFFQ0IzNTRBRjI0QzRGOUFFMDIvMkQ0NzhBRkVE MDIwMTFFQ0IwMjE5NzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHLFUwwDwQCAAIwCQMHACABDfACCzANBgkqhkiG9w0BAQsF AAOCAQEAkdVsCG470nTe3lgZ+SMYlIx7sf7umKBmB4kKJWpCsv5Svv+MWdXARj8G cisKC9KYEJ7x8O7ywPEo8uz9eUPbgmv6A2YaOzhfenZAGkGAGop4SQW8/aBvIqlt qSMFepwTIBzFi0YAqPQ1MJ3AUmgABN01I7t1iWMavwSgLHE/Uds0I+z6VYUj+4OG YcA7efvFA9hrGR7a689n0joVqanm/olwBbu1VVY2BwRd9/ZheV0hgSaWYAXyYdF0 oZRRfxrSgYp/O+W7oOmQT/d7Zl8CSz3rX8bd4dCxukRri5XR0Wvwp/IzAq3Kz6Qt jyzmuGxAvUkGRa5/lPJ3ahQzWB+UQw== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org