$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa File: C85D80CE43F611EF84151D6FC4F9AE02.roa (raw, json) Hash identifier: TxxXs+lTVXPqMW17NmL2mebSUiWOxU2SvP1uJGvuz/s= Subject key identifier: 4E:07:02:1E:4D:22:A2:37:3F:83:19:C2:82:AF:B5:1D:BA:04:C6:A9 Certificate issuer: /CN=A91C0D37/serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Certificate serial: A0 Authority key identifier: CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa Signing time: Wed 17 Jul 2024 04:41:07 +0000 ROA not before: Wed 17 Jul 2024 04:41:07 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 18119 IP address blocks: 202.36.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37/serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Validity Not Before: Jul 17 04:41:07 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66974b63-705c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5e:50:01:35:65:8b:9e:57:b9:52:50:9e:7a: c4:25:28:89:be:1e:cc:dd:ff:d2:96:24:06:e7:5e: 3c:e3:41:b2:f7:e0:56:4c:04:a5:10:0f:78:75:e3: 22:3c:75:5c:c6:46:13:82:db:09:18:53:33:45:7a: a9:31:88:6c:1a:9a:e8:0a:64:8e:a5:61:2f:91:4d: 2d:c7:42:55:27:0c:a2:27:5d:e8:cd:4c:08:49:ed: 91:7f:aa:ec:db:af:aa:d3:b9:5a:92:f6:16:90:6b: 55:ff:e0:f4:97:69:29:62:17:77:2f:64:51:fb:14: 18:02:25:d3:00:17:36:08:63:e7:e6:72:b2:5d:98: b0:9c:c6:9f:86:f3:88:04:49:19:ef:89:6a:aa:2d: bd:2c:e0:7f:7a:ed:17:a3:de:7e:46:51:be:10:7e: 3a:dc:28:77:c1:ff:82:46:23:23:6c:cc:93:df:a7: 92:27:e8:bd:fb:4e:a6:0f:06:cd:b3:c5:6e:12:be: 3d:58:ca:17:fb:ee:a9:45:e4:16:19:f9:7b:ce:51: 89:4f:ea:8f:4a:ea:c3:dc:29:c7:f6:b2:a4:18:76: f8:80:47:ba:91:ed:4f:a7:37:7b:96:c9:c1:b9:25: 2e:57:7b:0e:1f:32:3d:6f:00:59:82:1d:83:70:22: 71:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:07:02:1E:4D:22:A2:37:3F:83:19:C2:82:AF:B5:1D:BA:04:C6:A9 X509v3 Authority Key Identifier: keyid:CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/C85D80CE43F611EF84151D6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.44.0/24 Signature Algorithm: sha256WithRSAEncryption 77:25:b6:f1:35:77:2d:6a:02:e6:31:8d:9f:75:aa:b2:41:fa: 2b:a7:66:dc:03:1d:fa:de:61:49:22:ff:09:60:98:fb:73:a1: 21:42:84:e3:bb:4e:fa:b7:bd:e4:f6:09:8b:8c:24:73:8a:c6: fb:c1:16:c9:a7:4b:00:4c:e7:17:19:c6:7a:15:0a:8e:88:67: 53:32:b9:90:ab:1f:83:a4:08:1a:df:fd:d5:c4:da:c0:28:ca: 54:f1:a0:43:fc:bf:a1:4d:00:c8:09:c2:8d:52:37:88:4f:4b: b8:41:01:dc:eb:83:5a:30:30:69:93:45:8b:3d:3c:4a:01:c1: a6:2f:ea:39:08:8a:cf:01:22:32:f3:4d:79:e1:df:74:6a:ee: 7d:76:c6:63:b9:82:8a:8b:2f:66:46:05:ba:02:6d:4b:f2:9a: 17:32:5a:88:63:e7:31:6a:2b:8a:83:b8:e9:79:b4:50:36:3f: f1:3b:4a:78:10:47:e2:94:70:21:e6:f3:b5:37:a4:e0:87:f3: a4:f6:f4:8e:e6:2f:ea:f9:1a:7e:32:a5:a3:3a:e6:76:9a:31: 16:e2:95:19:ed:56:83:dd:7c:70:71:5a:cb:ad:d6:3e:9d:3c: d7:18:bf:82:89:15:f4:9f:bc:65:65:1e:74:59:43:57:52:c9: 03:e9:83:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKENGNDFDREFGNDFDNTcwMDEyOTA2NENFRjI4NDAwM0JF RjBCOUJGQzIwHhcNMjQwNzE3MDQ0MTA3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3NGI2My03MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4F5QATVli55XuVJQnnrEJSiJvh7M3f/SliQG514840Gy9+BWTASlEA94deMi PHVcxkYTgtsJGFMzRXqpMYhsGproCmSOpWEvkU0tx0JVJwyiJ13ozUwISe2Rf6rs 26+q07lakvYWkGtV/+D0l2kpYhd3L2RR+xQYAiXTABc2CGPn5nKyXZiwnMafhvOI BEkZ74lqqi29LOB/eu0Xo95+RlG+EH463Ch3wf+CRiMjbMyT36eSJ+i9+06mDwbN s8VuEr49WMoX++6pReQWGfl7zlGJT+qPSurD3CnH9rKkGHb4gEe6ke1Ppzd7lsnB uSUuV3sOHzI9bwBZgh2DcCJxlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE4HAh5N IqI3P4MZwoKvtR26BMapMB8GA1UdIwQYMBaAFM9Bza9BxXABKQZM7yhAA77wub/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wRThCQ0IzODUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi96MEhOcjBIRmNBRXBCa3p2S0VBRHZ2QzV2 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3owSE5yMEhGY0FFcEJrenZLRUFEdnZDNXY4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBEMzcvMEU4QkNCMzg1MzVCMTFFRTlCRjIwQTZCQzRGOUFFMDIvQzg1RDgwQ0U0 M0Y2MTFFRjg0MTUxRDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJCwwDQYJKoZIhvcNAQELBQADggEBAHcltvE1dy1qAuYx jZ91qrJB+iunZtwDHfreYUki/wlgmPtzoSFChOO7Tvq3veT2CYuMJHOKxvvBFsmn SwBM5xcZxnoVCo6IZ1MyuZCrH4OkCBrf/dXE2sAoylTxoEP8v6FNAMgJwo1SN4hP S7hBAdzrg1owMGmTRYs9PEoBwaYv6jkIis8BIjLzTXnh33Rq7n12xmO5goqLL2ZG BboCbUvymhcyWohj5zFqK4qDuOl5tFA2P/E7SngQR+KUcCHm87U3pOCH86T29I7m L+r5Gn4ypaM65naaMRbilRntVoPdfHBxWsut1j6dPNcYv4KJFfSfvGVlHnRZQ1dS yQPpg+g= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org