$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/09E2DC32B12B11E59337F35AC4F9AE02.roa File: 09E2DC32B12B11E59337F35AC4F9AE02.roa (raw, json) Hash identifier: 8FFLZzcqxB9olqH/wxHcdyGypFHaehu5WrrAFHlsuD4= Subject key identifier: 5D:E5:6C:AB:53:C5:35:E2:0A:F6:5D:B7:A2:5B:8F:4B:84:F9:77:80 Certificate issuer: /CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Certificate serial: 33DA Authority key identifier: 70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/09E2DC32B12B11E59337F35AC4F9AE02.roa Signing time: Wed 10 Jan 2024 14:30:09 +0000 ROA not before: Wed 10 Jan 2024 14:30:09 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 23905 IP address blocks: 202.36.141.0/24 maxlen: 24 2404:2000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:18:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13274 (0x33da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Validity Not Before: Jan 10 14:30:09 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659ea9f0-dab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:0f:60:85:7f:11:cb:5d:d2:92:e8:30:cf: 47:a4:ae:d6:3e:ce:69:a3:5d:db:6e:7d:53:a8:12: f9:f2:02:89:88:2f:3d:85:a1:46:dd:8c:6e:39:65: c9:66:df:fe:29:eb:a1:4b:84:c5:c1:d6:59:cf:3c: 3b:03:87:ec:64:8c:d7:93:37:94:8a:2a:e0:67:f1: 59:58:c6:15:88:3a:ef:0f:6b:ba:f3:b8:a9:4e:aa: 7e:7a:d4:0b:e8:b1:9f:51:40:79:26:00:65:b5:22: a8:22:b2:67:13:5d:ba:46:31:dd:9f:d2:66:7f:78: 96:bb:82:de:42:08:0c:2a:d3:33:71:e0:6e:e8:bc: 77:40:39:18:3d:f9:ac:e3:c9:f4:21:fb:e9:6d:c2: 16:21:bf:a1:40:4f:4d:f4:44:b6:c6:4a:6b:57:47: 7d:dd:03:65:7e:2c:ae:fc:ae:ee:b6:bd:73:09:6b: 4e:d0:4e:3b:8e:2e:55:cd:0a:c7:5b:ab:dd:8d:d1: 87:5a:57:bd:9d:a5:68:c8:cd:e9:f4:7a:c2:b7:60: 83:9a:ed:9b:f3:86:10:79:d1:3e:98:a1:8b:6a:6d: 42:38:39:75:66:08:4c:86:39:5a:98:e4:5f:be:c7: 40:aa:92:e6:d4:d9:a3:53:83:05:9b:79:2b:37:93: cb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E5:6C:AB:53:C5:35:E2:0A:F6:5D:B7:A2:5B:8F:4B:84:F9:77:80 X509v3 Authority Key Identifier: keyid:70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/09E2DC32B12B11E59337F35AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.141.0/24 IPv6: 2404:2000::/32 Signature Algorithm: sha256WithRSAEncryption 29:89:d0:da:57:48:a1:3e:7a:2e:3d:a6:40:e3:db:61:5f:da: d4:16:f9:85:fa:84:48:9b:31:64:6d:72:59:2f:68:42:6d:6c: fd:73:d8:07:89:7a:b7:01:ca:66:9f:7c:2d:b0:db:0c:b1:f5: e9:ae:86:c6:ab:22:fa:64:0d:a3:b0:cd:32:80:f7:04:89:5a: 80:09:b2:5d:a0:61:20:55:84:51:56:ea:a5:23:49:7a:f5:c0: 14:20:6c:0c:b4:e3:26:7f:ba:2b:34:31:aa:16:4d:2b:fe:d2: d1:aa:7a:b8:72:e9:2a:dd:42:5b:0c:d7:77:18:57:f1:cd:d3: 9c:d5:ad:f6:fb:39:fa:59:4d:7b:bd:1d:3b:44:76:72:5b:c1: 73:09:4f:a2:33:d8:76:eb:fd:80:29:c3:78:5b:f1:6c:98:9e: 57:9b:74:2c:d4:44:c4:a2:ab:85:48:34:04:16:88:ff:6f:a1: ac:1b:38:d8:2a:11:5d:ac:76:16:06:fa:18:94:bc:48:62:01: b0:76:de:b0:f7:9d:be:08:2a:b1:a5:56:63:48:73:50:ac:f2: 98:f4:ac:f6:c3:45:15:52:a4:bb:e1:f9:35:cb:58:56:c3:30: 1d:ea:c9:51:c7:4e:9a:e9:86:b8:e3:bf:d5:88:e6:52:43:08: 76:c4:95:56 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDcwOTc2NUM3RDREMzMxRjRDMzZBQzZCRTM0N0ZBNjZB MUYwMjM0OTAwHhcNMjQwMTEwMTQzMDA5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllYTlmMC1kYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc8PYIV/Ectd0pLoMM9HpK7WPs5po13bbn1TqBL58gKJiC89haFG3YxuOWXJ Zt/+KeuhS4TFwdZZzzw7A4fsZIzXkzeUiirgZ/FZWMYViDrvD2u687ipTqp+etQL 6LGfUUB5JgBltSKoIrJnE126RjHdn9Jmf3iWu4LeQggMKtMzceBu6Lx3QDkYPfms 48n0IfvpbcIWIb+hQE9N9ES2xkprV0d93QNlfiyu/K7utr1zCWtO0E47ji5VzQrH W6vdjdGHWle9naVoyM3p9HrCt2CDmu2b84YQedE+mKGLam1CODl1ZghMhjlamORf vsdAqpLm1NmjU4MFm3krN5PLxQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF3lbKtT xTXiCvZdt6Jbj0uE+XeAMB8GA1UdIwQYMBaAFHCXZcfU0zH0w2rGvjR/pmofAjSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8wQkVEMzUyNjFE NkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1mVERhc2EtTkgtbWFoOENO SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKZGx4OVRUTWZURGFzYS1OSC1tYWg4Q05KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU4NUUvMEJFRDM1MjYxRDZFMTFFMkIwNEE2MUFGMDhCMDJDRDIvMDlFMkRDMzJC MTJCMTFFNTkzMzdGMzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADKJI0wDQQCAAIwBwMFACQEIAAwDQYJKoZIhvcNAQELBQAD ggEBACmJ0NpXSKE+ei49pkDj22Ff2tQW+YX6hEibMWRtclkvaEJtbP1z2AeJercB ymaffC2w2wyx9emuhsarIvpkDaOwzTKA9wSJWoAJsl2gYSBVhFFW6qUjSXr1wBQg bAy04yZ/uis0MaoWTSv+0tGqerhy6SrdQlsM13cYV/HN05zVrfb7OfpZTXu9HTtE dnJbwXMJT6Iz2Hbr/YApw3hb8WyYnlebdCzURMSiq4VINAQWiP9voawbONgqEV2s dhYG+hiUvEhiAbB23rD3nb4IKrGlVmNIc1Cs8pj0rPbDRRVSpLvh+TXLWFbDMB3q yVHHTprphrjjv9WI5lJDCHbElVY= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:43 2024 by rpki-client on console-fra.rpki-client.org