$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/DB701E584E6311EEBED9743CC4F9AE02.roa File: DB701E584E6311EEBED9743CC4F9AE02.roa (raw, json) Hash identifier: oI04e+L7sfMU3Sj0iOiRw8fx6cZ5LmX2RbaxWaFzzOU= Subject key identifier: 77:F6:26:A1:1F:0F:0F:B3:8F:60:A7:1A:75:90:9E:02:72:57:55:78 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 098B Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/DB701E584E6311EEBED9743CC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:10:14 +0000 ROA not before: Tue 26 Mar 2024 21:10:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 10204 IP address blocks: 203.78.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2443 (0x98b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 21:10:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660339b6-771d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:6c:43:2b:ac:c1:91:31:06:6c:55:0b:7e:bd: aa:e8:49:fa:b1:08:4f:df:17:c0:a4:df:dc:4e:e4: 66:17:0f:ff:fb:1a:77:d3:9a:5c:43:08:33:55:bd: fd:0e:77:d4:dc:ff:64:cc:3e:d7:fe:7c:78:e8:64: ae:f1:5d:57:8d:ac:1f:91:4d:6f:89:04:d7:77:20: 44:85:7a:11:1b:8e:72:38:d9:66:37:9e:a3:a9:98: 74:d8:be:27:d5:83:58:3c:29:27:28:a3:49:12:ed: b0:b4:9e:04:4c:4c:23:b0:b1:a3:fe:9e:58:73:c4: 57:db:cc:97:54:76:e3:71:13:37:a6:1c:57:13:c5: f5:22:0e:c7:0f:03:31:fa:bc:6d:a2:9c:ea:af:d9: e6:0a:99:93:bc:b5:33:e9:90:64:b6:09:66:5a:76: 23:18:8c:5f:54:b5:b9:12:54:b8:fa:1b:a8:c8:1a: d3:29:d0:e5:a2:08:f8:19:f1:b3:9c:0a:6e:8c:c0: bf:da:ea:b5:93:d6:c6:68:69:5d:df:69:5d:aa:19: 01:43:a1:e5:51:10:86:61:ca:f3:f1:9d:27:f6:0b: c3:05:f2:8d:ea:40:45:e6:40:a2:ee:6e:d7:71:ab: 18:1f:3e:43:4f:b6:9e:8a:1e:12:62:fe:b3:12:8e: c8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F6:26:A1:1F:0F:0F:B3:8F:60:A7:1A:75:90:9E:02:72:57:55:78 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/DB701E584E6311EEBED9743CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.200.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:c4:f3:c2:c9:54:9d:39:c8:c7:21:df:65:29:4b:32:77:45: 4b:96:4c:f7:69:35:67:ce:e2:10:04:9d:0a:65:18:56:e7:6e: d8:d6:46:10:00:08:67:d0:ce:c2:b8:96:2c:ff:ca:15:cc:0b: 90:5a:70:55:c2:9e:d1:c9:38:89:da:51:fd:8d:54:7c:68:92: 44:87:85:26:b1:7c:3f:a6:c6:16:91:8a:1f:c4:23:57:5c:dc: 62:da:c5:2e:5f:97:ec:1c:43:15:3a:44:7a:02:3a:1c:f5:6b: d4:c8:b9:65:7e:97:e4:dd:41:d1:d4:e0:fd:d1:17:47:77:17: 9c:3a:75:5a:fb:07:d1:ab:ff:16:3b:d7:15:81:7d:4b:bf:d2: 0f:12:6c:bb:b7:32:44:d5:5d:23:dc:93:e1:44:c5:c5:20:53: 5d:8a:bf:02:4a:32:89:f4:f2:51:d4:f2:fa:76:00:cb:14:8d: 58:8d:f6:6a:1d:e4:6f:ca:9e:1e:12:34:ea:44:d0:37:49:82: fe:ea:2a:d7:21:32:f0:f8:b4:4e:24:05:a3:53:d0:51:3f:77: 0b:c2:ae:b8:66:4d:86:ed:99:77:0d:fc:66:a2:20:dc:f0:89: 02:de:be:3f:d5:40:e4:c1:65:86:ec:d9:bb:06:e0:ad:c1:54: 9e:07:bb:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwMzI2MjExMDE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzliNi03NzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WxDK6zBkTEGbFULfr2q6En6sQhP3xfApN/cTuRmFw//+xp305pcQwgzVb39 DnfU3P9kzD7X/nx46GSu8V1XjawfkU1viQTXdyBEhXoRG45yONlmN56jqZh02L4n 1YNYPCknKKNJEu2wtJ4ETEwjsLGj/p5Yc8RX28yXVHbjcRM3phxXE8X1Ig7HDwMx +rxtopzqr9nmCpmTvLUz6ZBktglmWnYjGIxfVLW5ElS4+huoyBrTKdDlogj4GfGz nApujMC/2uq1k9bGaGld32ldqhkBQ6HlURCGYcrz8Z0n9gvDBfKN6kBF5kCi7m7X casYHz5DT7aeih4SYv6zEo7I0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHf2JqEf Dw+zj2CnGnWQngJyV1V4MB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvREI3MDFFNTg0 RTYzMTFFRUJFRDk3NDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLTsgwDQYJKoZIhvcNAQELBQADggEBAG7E88LJVJ05yMch 32UpSzJ3RUuWTPdpNWfO4hAEnQplGFbnbtjWRhAACGfQzsK4liz/yhXMC5BacFXC ntHJOInaUf2NVHxokkSHhSaxfD+mxhaRih/EI1dc3GLaxS5fl+wcQxU6RHoCOhz1 a9TIuWV+l+TdQdHU4P3RF0d3F5w6dVr7B9Gr/xY71xWBfUu/0g8SbLu3MkTVXSPc k+FExcUgU12KvwJKMon08lHU8vp2AMsUjViN9mod5G/Knh4SNOpE0DdJgv7qKtch MvD4tE4kBaNT0FE/dwvCrrhmTYbtmXcN/GaiINzwiQLevj/VQOTBZYbs2bsG4K3B VJ4Hu+M= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:08 2024 by rpki-client on console-ams.rpki-client.org