$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF793/0F6BD3E00DD211EF9181113AC4F9AE02/ABF1B4E60DD211EF8903F07AC4F9AE02.roa File: ABF1B4E60DD211EF8903F07AC4F9AE02.roa (raw, json) Hash identifier: iAqTeq7DYC2XzKkxp4XaSsZwdjNAq/KDqtcN89ShlXg= Subject key identifier: A1:AA:26:1F:88:77:1B:CC:B0:3D:EE:A2:F2:FC:6B:69:BF:B0:F4:75 Certificate issuer: /CN=A91BF793/serialNumber=F062F503EC9223FAF681E6A4DCD898491A26E494 Certificate serial: 02 Authority key identifier: F0:62:F5:03:EC:92:23:FA:F6:81:E6:A4:DC:D8:98:49:1A:26:E4:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8GL1A-ySI_r2geak3NiYSRom5JQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF793/0F6BD3E00DD211EF9181113AC4F9AE02/ABF1B4E60DD211EF8903F07AC4F9AE02.roa Signing time: Thu 09 May 2024 07:06:35 +0000 ROA not before: Thu 09 May 2024 07:06:35 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152733 IP address blocks: 202.50.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF793/0F6BD3E00DD211EF9181113AC4F9AE02/8GL1A-ySI_r2geak3NiYSRom5JQ.crl rsync://rpki.apnic.net/member_repository/A91BF793/0F6BD3E00DD211EF9181113AC4F9AE02/8GL1A-ySI_r2geak3NiYSRom5JQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8GL1A-ySI_r2geak3NiYSRom5JQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF793/serialNumber=F062F503EC9223FAF681E6A4DCD898491A26E494 Validity Not Before: May 9 07:06:35 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663c75fb-b4bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1e:a9:db:88:9c:cd:3c:f8:57:2f:bc:c9:85: fc:a6:8e:9b:10:f9:f8:dd:dc:91:20:a2:46:62:b8: 7d:07:f0:11:6e:d3:92:52:12:f6:ed:92:31:6e:d5: a4:4d:47:10:26:ef:10:5c:1f:db:e0:19:1a:ac:8b: a8:d3:e7:65:90:27:58:22:ac:11:d8:52:99:fa:6d: d8:1e:a1:17:c5:65:62:ce:87:a5:95:98:56:44:4c: ec:9a:13:98:5f:0a:13:e7:17:34:65:67:3a:df:b3: b7:f7:b1:e8:e5:1e:05:55:35:ba:12:d4:e7:dd:f5: 80:69:a4:b0:99:da:06:32:1f:90:70:25:7d:65:08: c2:6b:cb:53:80:2e:14:4f:33:8a:3a:73:e4:0f:20: 54:22:2d:0f:a2:c2:45:87:6a:37:b8:18:ed:b5:45: 39:51:3c:fe:b6:3e:b1:41:94:c9:51:de:e3:30:62: 04:22:57:06:f1:41:40:02:c8:38:29:13:5b:38:c1: 5f:6e:7d:20:b5:b8:08:d3:fb:45:2d:3d:0a:2b:4c: 34:aa:db:eb:c8:6e:92:ff:69:3d:ae:84:1b:56:de: 63:5b:d3:fe:d9:12:82:02:dc:a5:f2:7c:fd:40:8b: 5f:9c:81:55:c8:03:82:2a:a5:79:43:14:67:fb:91: ef:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AA:26:1F:88:77:1B:CC:B0:3D:EE:A2:F2:FC:6B:69:BF:B0:F4:75 X509v3 Authority Key Identifier: keyid:F0:62:F5:03:EC:92:23:FA:F6:81:E6:A4:DC:D8:98:49:1A:26:E4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF793/0F6BD3E00DD211EF9181113AC4F9AE02/8GL1A-ySI_r2geak3NiYSRom5JQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8GL1A-ySI_r2geak3NiYSRom5JQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF793/0F6BD3E00DD211EF9181113AC4F9AE02/ABF1B4E60DD211EF8903F07AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.138.0/24 Signature Algorithm: sha256WithRSAEncryption 89:aa:ab:63:4b:ee:f9:14:d2:2d:2e:9e:77:c1:98:55:20:0a: 61:34:35:f2:94:aa:9e:03:82:fd:43:5d:32:37:46:ce:0e:19: ab:b4:d5:99:d7:9a:de:4d:73:a7:08:8d:fc:ea:71:7b:42:57: 39:9f:d7:60:44:df:1d:64:22:ae:37:67:a1:f8:df:e6:75:7e: ed:6b:5c:43:04:be:b3:5e:76:78:86:ae:e1:f1:a8:2c:cc:04: 56:1c:cf:cc:34:34:45:0a:08:ef:6b:05:ff:01:22:59:5d:bc: ba:69:f3:69:1e:4e:53:f4:ec:2d:e1:e6:6c:15:b3:2f:00:39: f6:8e:74:53:c3:26:6a:96:79:f0:fb:74:66:44:aa:5b:13:9d: b1:87:ff:a5:95:53:bd:9c:bd:34:bc:8c:7a:db:4d:0a:45:34: 46:10:64:ea:07:d3:11:41:53:77:dd:bf:72:32:51:7d:a5:72: b1:3d:a5:f7:85:c3:b5:fb:59:60:a7:f5:18:38:8c:97:b3:c5: 10:03:76:12:9c:64:42:80:47:84:09:ea:a9:75:c2:8b:5e:81: 22:27:d0:0a:b1:2f:74:8e:b9:71:c7:8b:60:83:33:f3:a4:2c: bb:a1:99:12:f5:2a:ef:1a:1b:72:05:89:7c:37:4c:f3:a1:5d: 6e:ae:ac:41 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Rjc5MzExMC8GA1UEBRMoRjA2MkY1MDNFQzkyMjNGQUY2ODFFNkE0RENEODk4NDkx QTI2RTQ5NDAeFw0yNDA1MDkwNzA2MzVaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2M3NWZiLWI0YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtHqnbiJzNPPhXL7zJhfymjpsQ+fjd3JEgokZiuH0H8BFu05JSEvbtkjFu1aRN RxAm7xBcH9vgGRqsi6jT52WQJ1girBHYUpn6bdgeoRfFZWLOh6WVmFZETOyaE5hf ChPnFzRlZzrfs7f3sejlHgVVNboS1Ofd9YBppLCZ2gYyH5BwJX1lCMJry1OALhRP M4o6c+QPIFQiLQ+iwkWHaje4GO21RTlRPP62PrFBlMlR3uMwYgQiVwbxQUACyDgp E1s4wV9ufSC1uAjT+0UtPQorTDSq2+vIbpL/aT2uhBtW3mNb0/7ZEoIC3KXyfP1A i1+cgVXIA4IqpXlDFGf7ke99AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoaomH4h3 G8ywPe6i8vxrab+w9HUwHwYDVR0jBBgwFoAU8GL1A+ySI/r2geak3NiYSRom5JQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGNzkzLzBGNkJEM0UwMERE MjExRUY5MTgxMTEzQUM0RjlBRTAyLzhHTDFBLXlTSV9yMmdlYWszTmlZU1JvbTVK US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOEdMMUEteVNJX3IyZ2VhazNOaVlTUm9tNUpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Rjc5My8wRjZCRDNFMDBERDIxMUVGOTE4MTExM0FDNEY5QUUwMi9BQkYxQjRFNjBE RDIxMUVGODkwM0YwN0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoyijANBgkqhkiG9w0BAQsFAAOCAQEAiaqrY0vu+RTSLS6e d8GYVSAKYTQ18pSqngOC/UNdMjdGzg4Zq7TVmdea3k1zpwiN/Opxe0JXOZ/XYETf HWQirjdnofjf5nV+7WtcQwS+s152eIau4fGoLMwEVhzPzDQ0RQoI72sF/wEiWV28 umnzaR5OU/TsLeHmbBWzLwA59o50U8MmapZ58Pt0ZkSqWxOdsYf/pZVTvZy9NLyM ettNCkU0RhBk6gfTEUFTd92/cjJRfaVysT2l94XDtftZYKf1GDiMl7PFEAN2Epxk QoBHhAnqqXXCi16BIifQCrEvdI65cceLYIMz86Qsu6GZEvUq7xobcgWJfDdM86Fd bq6sQQ== -----END CERTIFICATE-----Generated at Thu Oct 17 06:46:21 2024 by rpki-client on console-fra.rpki-client.org