$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa File: 01A59B2EB72111EC9885AF51C4F9AE02.roa (raw, json) Hash identifier: Giv4rcaEM71vd0FJYtYnZ1NZEvI1/oUilndLpAEn83g= Subject key identifier: 1E:9B:40:F7:3F:55:1C:C3:B8:CC:16:A5:3B:84:82:6A:91:68:B7:E7 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 5EE9 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa Signing time: Tue 26 Mar 2024 21:40:15 +0000 ROA not before: Tue 26 Mar 2024 21:40:15 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24462 IP address blocks: 210.0.224.0/24 maxlen: 24 218.189.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 21:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24297 (0x5ee9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Mar 26 21:40:15 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=660340bf-d20f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8b:94:96:01:94:38:27:e7:3a:1b:26:cc:31: 06:4c:61:a7:76:df:fd:56:b3:32:9d:26:b7:00:af: 61:78:c7:5d:45:07:d4:3c:f6:f6:c1:d5:4e:f1:88: 8d:47:d5:b9:06:58:f1:2a:98:d3:44:5e:8a:d8:52: 93:5c:51:ee:e6:4a:cb:16:c0:ef:ff:3f:0c:c3:7a: e1:97:a1:80:8e:39:af:d2:c1:03:79:ff:8a:93:af: 65:73:62:fe:20:df:0c:06:af:69:81:cf:3e:0e:e6: 91:f9:33:1d:a9:77:ee:0b:1a:2f:d4:d9:a1:8d:dd: 11:f2:3a:1f:3f:25:c1:22:d9:bf:77:15:d3:e4:15: fa:38:4e:23:a7:12:aa:e9:40:53:95:08:2c:a8:93: 49:ce:5c:11:53:34:35:c0:bc:82:5c:52:4b:e5:e1: 7d:61:5d:76:15:07:79:85:4c:31:d6:20:5e:60:da: a2:fd:03:14:9d:3c:7d:d1:42:af:df:68:6d:0c:a0: d6:70:4c:17:6e:29:c3:29:61:6e:10:b3:a4:c4:5b: 10:b2:8d:c9:ea:6f:c2:2a:78:2c:d0:46:e7:7b:42: fd:22:6f:4e:ee:72:2c:8e:d3:d7:d8:39:8e:a4:86: 20:dc:dd:7d:6b:45:5a:2c:94:f8:b5:f9:2e:89:bf: d8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9B:40:F7:3F:55:1C:C3:B8:CC:16:A5:3B:84:82:6A:91:68:B7:E7 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/01A59B2EB72111EC9885AF51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.0.224.0/24 218.189.74.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:02:8d:cb:82:2c:1e:e0:ce:9e:e0:c4:78:96:1c:cd:55:d4: c8:7c:18:ea:38:f9:0e:2b:a8:2c:46:f7:cd:a3:69:a5:3e:94: 86:38:00:b4:de:e9:1c:14:5d:b7:7c:9c:fe:e5:4f:d5:79:f1: e5:01:95:c8:cf:f0:06:da:da:e3:7b:73:15:59:83:46:a2:b6: 1e:fd:2a:cc:99:00:8e:a4:55:8c:7e:b1:97:c7:a3:87:64:a9: d3:c1:49:ee:fb:a4:2a:c9:69:43:e3:87:0b:40:a8:75:79:b1: d1:13:c6:c2:37:7f:0a:18:53:7c:bc:e4:16:a3:28:9a:1a:6d: 4f:1f:e0:3f:f2:ca:8a:d8:f4:15:a9:49:01:ff:fc:3d:da:c8: 5d:0b:3b:da:ad:e6:98:14:ec:61:6a:66:30:ce:ec:97:f1:01: f8:b3:98:35:cd:eb:ba:ec:1b:04:70:e7:d4:60:a6:d0:a4:87: d7:09:15:57:e3:8c:ef:97:5d:de:3f:7d:78:17:3b:c4:22:5e: 84:82:ee:68:76:5f:ab:02:f3:15:a1:70:2f:46:ec:db:a1:78: 52:0d:56:cf:df:ab:8c:1e:f0:0a:70:be:8d:95:7e:ed:c0:1d: ac:df:17:d5:3a:45:0c:7d:c6:1f:51:2c:69:69:2b:e4:f3:90: 5f:b4:51:7c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICXukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjQwMzI2MjE0MDE1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzNDBiZi1kMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuouUlgGUOCfnOhsmzDEGTGGndt/9VrMynSa3AK9heMddRQfUPPb2wdVO8YiN R9W5BljxKpjTRF6K2FKTXFHu5krLFsDv/z8Mw3rhl6GAjjmv0sEDef+Kk69lc2L+ IN8MBq9pgc8+DuaR+TMdqXfuCxov1Nmhjd0R8jofPyXBItm/dxXT5BX6OE4jpxKq 6UBTlQgsqJNJzlwRUzQ1wLyCXFJL5eF9YV12FQd5hUwx1iBeYNqi/QMUnTx90UKv 32htDKDWcEwXbinDKWFuELOkxFsQso3J6m/CKngs0Ebne0L9Im9O7nIsjtPX2DmO pIYg3N19a0VaLJT4tfkuib/YbQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB6bQPc/ VRzDuMwWpTuEgmqRaLfnMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvMDFBNTlCMkVC NzIxMTFFQzk4ODVBRjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADSAOADBADavUowDQYJKoZIhvcNAQELBQADggEBAI8CjcuC LB7gzp7gxHiWHM1V1Mh8GOo4+Q4rqCxG982jaaU+lIY4ALTe6RwUXbd8nP7lT9V5 8eUBlcjP8Aba2uN7cxVZg0aith79KsyZAI6kVYx+sZfHo4dkqdPBSe77pCrJaUPj hwtAqHV5sdETxsI3fwoYU3y85BajKJoabU8f4D/yyorY9BWpSQH//D3ayF0LO9qt 5pgU7GFqZjDO7JfxAfizmDXN67rsGwRw59RgptCkh9cJFVfjjO+XXd4/fXgXO8Qi XoSC7mh2X6sC8xWhcC9G7NuheFINVs/fq4we8Apwvo2Vfu3AHazfF9U6RQx9xh9R LGlpK+TzkF+0UXw= -----END CERTIFICATE-----Generated at Tue May 14 22:21:56 2024 by rpki-client on console-fra.rpki-client.org