$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/199F588CE21711EE913F3E62C4F9AE02.roa File: 199F588CE21711EE913F3E62C4F9AE02.roa (raw, json) Hash identifier: 3MMDEbkkdNFM/djNh0ORf8UHeAKMwjP4dT3GZUmqZZQ= Subject key identifier: 52:A5:9B:2F:3A:A5:F9:A9:4A:16:64:C5:08:50:03:3C:F9:BE:AD:C9 Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: 06 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/199F588CE21711EE913F3E62C4F9AE02.roa Signing time: Thu 14 Mar 2024 15:25:34 +0000 ROA not before: Thu 14 Mar 2024 15:25:34 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139808 IP address blocks: 202.37.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: Mar 14 15:25:34 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65f316ed-cdd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:d3:24:4a:29:f5:41:ef:9f:63:68:61:cc: 92:e1:b3:96:6d:38:99:0a:59:36:4d:5e:9a:99:dc: 00:9d:ae:d3:fc:8a:8b:b2:5f:41:87:67:6f:09:9a: d5:5f:ae:63:7b:2c:30:17:e6:40:a4:20:70:07:ef: 04:b1:c5:6d:a4:fe:72:77:11:69:0e:7c:9c:e1:c3: 2a:6f:4a:f1:22:24:60:fd:be:68:64:3d:59:c5:03: 50:72:7c:d3:e7:31:16:8f:3c:41:fd:16:e7:37:92: ff:f1:67:57:1e:04:05:06:5f:ac:61:4a:f6:11:b5: 6d:33:68:ea:c5:b4:c3:fc:47:8e:52:87:58:dd:ce: ca:ab:c3:a1:12:4f:7f:91:38:d7:be:37:49:39:01: 71:62:4a:e2:9b:d5:2e:0b:f8:74:5c:7e:61:05:15: eb:9a:c6:a7:b0:20:6c:ee:1c:53:1b:ef:f3:c2:2b: 0f:21:43:9f:a3:de:3c:6f:58:05:88:72:66:e4:60: ba:96:88:50:94:ac:72:49:1a:9e:62:16:e6:bd:3a: 24:ef:44:9b:07:d2:da:74:79:37:82:b2:21:c5:df: 40:a0:ea:ea:90:a6:eb:00:44:10:e7:61:56:f5:45: 48:d7:07:cf:21:d9:e5:f0:dd:88:c2:5f:a5:3c:36: b7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A5:9B:2F:3A:A5:F9:A9:4A:16:64:C5:08:50:03:3C:F9:BE:AD:C9 X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/199F588CE21711EE913F3E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.216.0/24 Signature Algorithm: sha256WithRSAEncryption b2:6e:54:ac:b7:fc:9d:40:49:f6:e9:79:31:55:d1:2f:9f:59: ac:87:fa:52:23:00:08:eb:c5:67:ca:f4:0c:31:5e:0a:e0:d6: 5a:3d:e2:dc:ee:37:5c:f4:13:83:fe:ff:09:c8:ec:ff:29:00: 73:32:7a:0c:d7:e7:47:db:fc:52:e3:de:dd:77:6a:e6:30:cd: 49:a3:2c:80:00:92:a6:9a:13:4f:25:8b:87:d3:12:2c:e1:e4: de:7a:86:c7:41:1e:29:79:91:8e:02:d6:ba:13:5d:ed:ba:c9: 62:eb:4c:53:b7:4f:0a:32:4b:6c:5e:94:b1:e8:83:88:0c:6d: 33:7b:81:83:de:b3:9b:b7:55:57:dc:03:fb:b7:6e:a1:dc:74: b6:dc:a5:19:1c:e2:cf:93:56:8c:31:37:71:68:90:92:ca:74: e0:cd:52:fe:12:df:0f:e5:e3:d1:ed:c4:98:f7:fb:77:ed:f0: c0:65:c0:ed:05:7f:9e:b9:30:86:5f:80:a4:6b:fe:5f:45:31: 15:25:26:6c:6b:65:cc:a8:a6:96:ac:63:01:3d:78:04:5d:e4: d3:d1:b3:99:03:2c:ac:7d:95:e4:3a:7e:17:54:3e:57:4d:23: e2:88:15:45:64:b5:a1:1f:04:7f:4d:44:3b:18:4a:b7:46:b9: 22:ee:65:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjJGRDExMC8GA1UEBRMoNUYyQjU4MjFERDQzQzI5NDM5RDJCQUVFNUJEQzA0MzI5 MUM0N0JBRjAeFw0yNDAzMTQxNTI1MzRaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjMxNmVkLWNkZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsYNMkSin1Qe+fY2hhzJLhs5ZtOJkKWTZNXpqZ3ACdrtP8iouyX0GHZ28JmtVf rmN7LDAX5kCkIHAH7wSxxW2k/nJ3EWkOfJzhwypvSvEiJGD9vmhkPVnFA1ByfNPn MRaPPEH9Fuc3kv/xZ1ceBAUGX6xhSvYRtW0zaOrFtMP8R45Sh1jdzsqrw6EST3+R ONe+N0k5AXFiSuKb1S4L+HRcfmEFFeuaxqewIGzuHFMb7/PCKw8hQ5+j3jxvWAWI cmbkYLqWiFCUrHJJGp5iFua9OiTvRJsH0tp0eTeCsiHF30Cg6uqQpusARBDnYVb1 RUjXB88h2eXw3YjCX6U8NrcXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUqWbLzql +alKFmTFCFADPPm+rckwHwYDVR0jBBgwFoAUXytYId1DwpQ50rruW9wEMpHEe68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMkZELzYzOEQ2MkEwRTEx MjExRUVBQzc4NjEzOEM0RjlBRTAyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHl0WUlkMUR3cFE1MHJydVc5d0VNcEhFZTY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjJGRC82MzhENjJBMEUxMTIxMUVFQUM3ODYxMzhDNEY5QUUwMi8xOTlGNTg4Q0Uy MTcxMUVFOTEzRjNFNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMol2DANBgkqhkiG9w0BAQsFAAOCAQEAsm5UrLf8nUBJ9ul5 MVXRL59ZrIf6UiMACOvFZ8r0DDFeCuDWWj3i3O43XPQTg/7/Ccjs/ykAczJ6DNfn R9v8UuPe3Xdq5jDNSaMsgACSppoTTyWLh9MSLOHk3nqGx0EeKXmRjgLWuhNd7brJ YutMU7dPCjJLbF6UseiDiAxtM3uBg96zm7dVV9wD+7duodx0ttylGRziz5NWjDE3 cWiQksp04M1S/hLfD+Xj0e3EmPf7d+3wwGXA7QV/nrkwhl+ApGv+X0UxFSUmbGtl zKimlqxjAT14BF3k09GzmQMsrH2V5Dp+F1Q+V00j4ogVRWS1oR8Ef01EOxhKt0a5 Iu5lUg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org