$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/71F2B10843B611EB9FB8597CC4F9AE02.roa File: 71F2B10843B611EB9FB8597CC4F9AE02.roa (raw, json) Hash identifier: DR5qaMSL4564H0nya+S0/xchH7Yi3cgTTW4HlyMJu4c= Subject key identifier: F2:4D:9D:35:73:CF:43:41:9D:C7:3A:04:65:41:C8:9C:6E:2E:78:A3 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3478 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/71F2B10843B611EB9FB8597CC4F9AE02.roa Signing time: Thu 04 Jan 2024 14:50:41 +0000 ROA not before: Thu 04 Jan 2024 14:50:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38193 IP address blocks: 202.69.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13432 (0x3478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Jan 4 14:50:41 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6596c5c1-053b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:32:ba:2b:c8:68:89:f0:44:cb:80:0c:c6:31: 81:eb:33:1e:f7:34:e7:9b:67:28:bf:f7:57:e2:1a: 67:77:d7:ea:30:20:bf:e7:55:8c:bd:16:b5:40:50: 0d:b8:1a:33:2e:b3:3b:d7:47:77:cb:93:14:f9:ee: 81:a0:7c:7f:04:ab:bd:ed:f0:55:74:5c:04:d6:1f: 16:c4:78:f0:0c:cf:e0:7d:c0:ac:82:d2:d7:5b:90: 97:b4:a0:8b:e2:d8:58:65:83:38:9d:5d:38:bf:96: ca:32:e3:9c:df:58:b1:d0:73:c8:07:64:69:3e:58: 11:e0:cd:50:5e:e3:ba:cc:ea:ad:25:84:ec:4a:d6: 23:42:4d:8c:04:c2:97:d9:02:0b:9b:77:f3:de:96: 1a:57:ab:42:1e:e8:82:36:69:bc:cd:be:19:0f:0f: 69:1e:5f:4f:ac:8b:5f:b7:68:d6:40:87:f1:e7:fe: 70:eb:e5:ee:93:8d:8f:e1:e2:04:aa:35:93:84:c2: ac:57:f0:93:47:5a:64:47:16:1c:56:1c:ec:03:61: 2a:40:a6:76:14:16:54:1e:e8:55:c0:4f:42:b9:6a: 4b:49:0b:1b:f8:1d:49:3a:b7:03:96:d7:94:83:28: f0:be:28:17:60:d8:fb:fc:18:71:be:d5:91:ae:ed: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4D:9D:35:73:CF:43:41:9D:C7:3A:04:65:41:C8:9C:6E:2E:78:A3 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/71F2B10843B611EB9FB8597CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.69.58.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:b5:f5:4f:be:d1:ed:4d:d1:3f:bc:65:be:b3:6d:32:8d:38: 75:a8:7e:4a:3f:b1:43:b3:cf:0b:87:29:1e:93:21:3d:63:83: 23:98:52:0f:3a:7a:6d:ba:df:2b:55:31:7f:c1:56:35:04:b4: 6d:9c:c5:03:40:ea:06:e3:20:89:48:e8:3d:86:6d:9e:94:e8: 2a:6b:0a:b1:f1:ac:7c:26:fa:6e:36:42:b3:ed:79:8a:76:c7: 27:66:5d:21:7d:1d:6a:41:70:10:dc:68:4e:06:5b:bc:32:df: d2:4e:17:88:c4:46:dd:cc:d2:83:5f:6f:0f:cc:31:c8:92:18: f4:3b:9f:d4:90:92:cd:23:0e:b2:d4:67:49:41:40:47:1a:c5: 0c:c7:a7:de:0d:59:48:8c:d0:78:cb:ad:81:08:d4:f0:6f:65: 6d:c9:0e:32:d6:81:4f:50:f9:40:d4:02:24:0e:88:16:42:47: 50:d9:e4:55:56:59:b1:34:87:27:32:66:f1:de:61:c5:97:fb: d1:54:41:d8:a9:ea:f7:a0:c7:c5:60:79:5d:b2:8a:31:d5:d0: 9e:ac:f2:a6:bb:87:8a:2a:f8:7a:42:74:50:d7:94:98:0e:5e: 21:9c:df:c4:64:89:61:a3:da:72:90:f0:2f:82:2d:b5:1a:31: fc:d3:ca:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwMTA0MTQ1MDQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk2YzVjMS0wNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jK6K8hoifBEy4AMxjGB6zMe9zTnm2cov/dX4hpnd9fqMCC/51WMvRa1QFAN uBozLrM710d3y5MU+e6BoHx/BKu97fBVdFwE1h8WxHjwDM/gfcCsgtLXW5CXtKCL 4thYZYM4nV04v5bKMuOc31ix0HPIB2RpPlgR4M1QXuO6zOqtJYTsStYjQk2MBMKX 2QILm3fz3pYaV6tCHuiCNmm8zb4ZDw9pHl9PrItft2jWQIfx5/5w6+Xuk42P4eIE qjWThMKsV/CTR1pkRxYcVhzsA2EqQKZ2FBZUHuhVwE9CuWpLSQsb+B1JOrcDlteU gyjwvigXYNj7/BhxvtWRru3y6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPJNnTVz z0NBncc6BGVByJxuLnijMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNzFGMkIxMDg0 M0I2MTFFQjlGQjg1OTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKRTowDQYJKoZIhvcNAQELBQADggEBAF619U++0e1N0T+8 Zb6zbTKNOHWofko/sUOzzwuHKR6TIT1jgyOYUg86em263ytVMX/BVjUEtG2cxQNA 6gbjIIlI6D2GbZ6U6CprCrHxrHwm+m42QrPteYp2xydmXSF9HWpBcBDcaE4GW7wy 39JOF4jERt3M0oNfbw/MMciSGPQ7n9SQks0jDrLUZ0lBQEcaxQzHp94NWUiM0HjL rYEI1PBvZW3JDjLWgU9Q+UDUAiQOiBZCR1DZ5FVWWbE0hycyZvHeYcWX+9FUQdip 6vegx8VgeV2yijHV0J6s8qa7h4oq+HpCdFDXlJgOXiGc38RkiWGj2nKQ8C+CLbUa MfzTyjM= -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org