$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa File: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (raw, json) Hash identifier: ewiUnrO7XAgjqsA1wG//P3KoAbNdOVY4KG59Y9E54Tk= Subject key identifier: 9E:C9:A1:25:13:DD:89:1A:C2:22:00:D6:0A:04:BB:A1:FE:E0:E4:66 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 0106 Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa Signing time: Tue 23 Jul 2024 04:46:18 +0000 ROA not before: Tue 23 Jul 2024 04:46:18 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9738 IP address blocks: 203.9.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Jul 23 04:46:18 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=669f3599-361a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e3:93:3d:ec:b2:db:7e:7d:9a:1d:74:0c:9a: ef:96:ce:d1:63:82:99:4e:33:f0:4b:33:ec:76:7e: 8c:ba:86:6e:1c:cf:6f:52:78:d4:62:8a:b0:08:20: c3:9f:91:50:1c:a9:76:68:29:26:13:96:8d:da:44: f1:ae:8d:8d:73:5a:e4:5d:91:f4:a0:35:62:5f:39: a3:35:fd:44:2d:38:0b:60:b2:46:dc:0b:92:3c:c9: 5d:93:cc:21:c5:3c:3b:26:93:df:96:d7:26:86:a6: 0f:7f:be:a8:b2:b6:2a:f5:c4:b2:0b:64:ab:b0:49: 4d:f9:fa:d7:82:38:0f:8d:c7:be:52:bb:b4:a8:a5: 3c:a7:40:f5:1b:96:75:e3:89:e2:71:f1:9e:28:be: e2:e5:a2:b7:40:13:ec:f5:58:32:7c:de:f2:32:8b: 09:b9:71:85:f2:ec:69:5b:51:41:27:9c:5c:90:49: ea:b0:d0:ba:8f:ce:a4:1e:4a:64:3b:19:9d:04:55: ed:71:98:48:6b:ca:0c:92:b1:a1:3c:4c:31:92:be: e7:a3:30:dd:42:e6:bd:c7:6e:fa:c6:fd:d1:60:c6: fc:56:73:64:6c:70:37:69:f9:2b:e0:6a:d3:19:1f: b4:97:c9:37:05:f5:e9:be:9d:8d:12:6a:af:da:25: b0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C9:A1:25:13:DD:89:1A:C2:22:00:D6:0A:04:BB:A1:FE:E0:E4:66 X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.64.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:53:ab:36:c7:05:20:0f:45:f8:41:af:5a:f5:6b:d9:25:a2: 24:82:64:b1:32:18:02:86:72:e5:5f:2e:4b:8f:0b:88:77:5f: 6e:07:38:49:ac:da:38:40:a7:30:5a:1a:3c:fb:90:16:77:4b: a3:2d:94:2b:a8:fb:9b:da:32:33:f0:b0:9f:13:e1:77:7e:be: 97:c3:8a:cb:f6:b8:6c:44:88:4a:76:c0:b9:63:46:22:05:ed: a5:ff:3c:2a:3b:99:e0:fb:30:ac:43:a5:a1:ea:5b:e2:f9:d8: 1d:1e:4f:70:f4:26:22:7d:e2:c4:2a:9a:f2:ea:16:2b:95:45: 67:33:8c:b6:d1:7b:9e:65:39:e0:8a:4b:54:4c:ae:3d:17:0c: bb:2b:5c:ff:d9:59:eb:fa:3e:ec:42:2d:1c:20:ca:2f:fd:06: bc:fe:92:d8:a5:ea:bf:5b:f1:67:06:3f:e8:35:16:ee:9b:bb: a1:0e:27:03:ce:2a:8b:a4:af:ef:51:fa:bb:49:a2:d5:c6:21: be:5b:fc:83:fd:9b:b3:51:8f:91:28:e2:06:1d:dc:1d:6d:c7: a0:c5:49:ad:61:d8:5b:8e:57:b6:e8:43:39:fc:07:7b:f2:35: f7:5c:ed:80:f4:c4:d2:e5:f3:db:79:2e:a4:64:10:38:eb:11: a4:2c:8f:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjQwNzIzMDQ0NjE4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjlmMzU5OS0zNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOOTPeyy2359mh10DJrvls7RY4KZTjPwSzPsdn6MuoZuHM9vUnjUYoqwCCDD n5FQHKl2aCkmE5aN2kTxro2Nc1rkXZH0oDViXzmjNf1ELTgLYLJG3AuSPMldk8wh xTw7JpPfltcmhqYPf76osrYq9cSyC2SrsElN+frXgjgPjce+Uru0qKU8p0D1G5Z1 44nicfGeKL7i5aK3QBPs9VgyfN7yMosJuXGF8uxpW1FBJ5xckEnqsNC6j86kHkpk OxmdBFXtcZhIa8oMkrGhPEwxkr7nozDdQua9x276xv3RYMb8VnNkbHA3afkr4GrT GR+0l8k3BfXpvp2NEmqv2iWw0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ7JoSUT 3YkawiIA1goEu6H+4ORmMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE5RjgvQ0FFNkI0Q0VCQ0ExMTFFREEzNzA3ODBEQzRGOUFFMDIvNUU1REYyMDZC Q0E0MTFFREJEMzk3MzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLCUAwDQYJKoZIhvcNAQELBQADggEBAC9TqzbHBSAPRfhB r1r1a9kloiSCZLEyGAKGcuVfLkuPC4h3X24HOEms2jhApzBaGjz7kBZ3S6MtlCuo +5vaMjPwsJ8T4Xd+vpfDisv2uGxEiEp2wLljRiIF7aX/PCo7meD7MKxDpaHqW+L5 2B0eT3D0JiJ94sQqmvLqFiuVRWczjLbRe55lOeCKS1RMrj0XDLsrXP/ZWev6PuxC LRwgyi/9Brz+ktil6r9b8WcGP+g1Fu6bu6EOJwPOKoukr+9R+rtJotXGIb5b/IP9 m7NRj5Eo4gYd3B1tx6DFSa1h2FuOV7boQzn8B3vyNfdc7YD0xNLl89t5LqRkEDjr EaQsjxc= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:03 2024 by rpki-client on console-fra.rpki-client.org